Copyright-paperwork-exempt: Yes

'./bootstrap --skip-po' won't need wget nor rsync

* bootstrap.conf: Add 'warning' gnulib module
* configure.ac: Add --enable-fsanitize-* flags
* t...

* .gitignore: Exclude /lib/Makefile.am
* bootstrap.conf: Use --makefile-name=gnulib.mk with gnul...

* CONTRIBUTING.md: New file for contributors
* README: Mention CONTRIBUTING.md

ssl_init fails with openssl 1.1.1 when openssl.cnf is not found.
Redundant calls to intializatio...

Copyright-paperwork-exempt: Yes

* src/iri.c(do_conversion): Reallocate the output buffer to a larger
size if it is already full

* src/http.c (response_head_terminator): Don't access uninitialized data
* fuzz/wget_read_hunk_f...

* fuzz/Makefile.am: Add wget_read_hunk_fuzzer
* fuzz/wget_read_hunk_fuzzer.c: New file
* fuzz/wg...

* fuzz/wget_*_fuzzer.c: Take care when calling exit()

* fuzz/fuzzer.h: Add CLOSE_STDERR and RESTORE_STDERR
* fuzz/wget_*_fuzzer.c: Use CLOSE_STDERR an...

* configure.ac: Search for dlopen and add library to $FUZZ_LIBS
* fuzz/Makefile.am: Link with $F...

* doc/wget.texi: Add Cache-Control to docs
* src/wget.h: Add Cache-Control to comment of SEND_NO...

Reported-by: Simon Dales

* src/http-ntlm.c (ntlm_input): Continue on NTLMSTATE_LAST,
error on NTLMSTATE_TYPE3

The code...

Also the Referer info is reduced to scheme+host+port.

* src/ftp.c (getftp): Change params of se...

* src/init.c (defaults): Set enable_xattr to false by default
* src/main.c (print_help): Reverse...

.. since ws_mypath() saves the address it returns in a static pointer
for reuse, to also be retu...

This reverts commit 6f3b9959935ad7640bcf48a0a93848ed25ff8963.

The code is obviously wrong, see ...

* src/openssl.c: Check for OPENSSL_NO_ENGINE before
including openssl/engine.h and before calli...

* tests/SSLTest.pm: Rename server cert and key file
* tests/Test-https*.px: Fix and remove OpenS...

* src/init.c: Replace loop with strspn
* src/url.c: Replace loop with strrchr

Copyright-paperwo...

git:// does not work over http proxy

Signed-off-by: Luiz Angelo Daros de Luca <[email protected]...

Current sufmatch does not match when domain is dot-prefixed.
The example of no_proxy in man (.mi...

* configure.ac: Check for libpcre2-8
* src/init.c (choices): Test for HAVE_LIBPCRE2
* src/main.c...

* tests/*.px: Add -I . to the shebang

This allows perl test to be run from tests/ directory, e....

* doc/wget.texi: Add "TLSv1_3" to --secure-protocol
* src/gnutls.c (set_prio_default): Use GNUTL...

* src/log.c (check_redirect_output): Check for quiet mode

Error: RESOURCE_LEAK (CWE-772): - REAL ERROR
wget-1.19.5/src/warc.c:1376: alloc_fn: Storage is r...

In warc_write_start_record() function, the reutrn value of dup() is
directly used in gzdopen() c...

Error: RESOURCE_LEAK (CWE-772):
wget-1.19.5/src/utils.c:914: open_fn: Returning handle opened by...

Error: RESOURCE_LEAK (CWE-772):
wget-1.19.5/src/http.c:4486: alloc_fn: Storage is returned from ...

Error: RESOURCE_LEAK (CWE-772):
wget-1.19.5/src/http.c:2434: alloc_fn: Storage is returned from ...

Error: RESOURCE_LEAK (CWE-772):
wget-1.19.5/src/ftp.c:1493: alloc_fn: Storage is returned from a...

In Fedora, we are implementing crypto policies, in order to enhance the
security of user systems...

Reported-by: Nicholas Sielicki

* doc/wget.texi: Add docs for --retry-on-host-error
* src/http.c (http_loop): Add code for HOSTE...

* src/retr.c (write_data): Cleanup,
(fd_read_body): Write to WARC before uncompressing

Fixes:...