-
-
Notifications
You must be signed in to change notification settings - Fork 6.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
noproxy tail matching still has an issue #9842
Comments
That is however how the functionality has been documented for curl for a very long time. The CURLOPT_NOPROXY docs from 7.85.0 says:
|
Added to the docs in 2d5fa35 it seems. |
The lines just above that say "For example, example.com would match example.com, |
Hah, yes it does. So, total confusion... |
This is a major breaking change from version 7.85.0 and earlier and is causing a fair number of issues because existing Can we please revert to the original behavior and update the man page instead? |
FWIW, the reason I noticed this is because I have a couple of dozen machines which had curl in the pipeline for checking for updates to packages, and after updating to 7.86.0 for the IDN security fix they were no longer able to do so because they relied on no_proxy to reach the relevant server. I've since changed how they do things, but wanted to mention it as an example of one type of problem that can be caused by this. If it is going to stay like this, then at least an explicit note in release notes would be appreciated. |
I will appreciate if you help me verify if #9858 brings back the old logic proper. |
A regfression in 7.86.0 (via 1e9a538) made the tailmatch work differently than before. This restores the logic to how it used to work: All names listed in NO_PROXY are tailmatched against the used domain name, if the lengths are identical it needs a full match. Update the docs, update test 1614. Reported-by: Stuart Henderson Fixes #9842 Closes #9858
Contrary to https://github.com/curl/curl/blob/master/tests/unit/unit1614.c#L88, traditional behaviour for no_proxy is for example.com to also match host.example.com.
I did this
I expected the following
As also seen in at least lynx, w3m, OpenBSD ftp(1).
curl/libcurl version
[see above]
operating system
OpenBSD $somehostname 7.2 GENERIC.MP#819 amd64
The text was updated successfully, but these errors were encountered: