Skip to content

Commit

Permalink
curl.1 document -J doesn't %-decode
Browse files Browse the repository at this point in the history
...also added as KNOWN_BUG curl#87 with reference to bug curl#1294
  • Loading branch information
bagder committed Dec 15, 2013
1 parent be28223 commit 8a8f9a5
Show file tree
Hide file tree
Showing 2 changed files with 11 additions and 0 deletions.
8 changes: 8 additions & 0 deletions docs/KNOWN_BUGS
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,14 @@ join in and help us correct one or more of these! Also be sure to check the
changelog of the current development status, as one or more of these problems
may have been fixed since this was written!

87. -J/--remote-header-name doesn't decode %-encoded file names. RFC6266
details how it should be done. The can of worm is basically that we have no
charset handling in curl and ascii >=128 is a challenge for us. Not to
mention that decoding also means that we need to check for nastyness that is
attempted, like "../" sequences and the like. Probably everything to the left
of any embedded slashes should be cut off.
http://curl.haxx.se/bug/view.cgi?id=1294

86. The disconnect commands (LOGOUT and QUIT) may not be sent by IMAP, POP3
and SMTP if a failure occures during the authentication phase of a
connection.
Expand Down
3 changes: 3 additions & 0 deletions docs/curl.1
Original file line number Diff line number Diff line change
Expand Up @@ -711,6 +711,9 @@ cookies when they're closed down.
(HTTP) This option tells the \fI-O, --remote-name\fP option to use the
server-specified Content-Disposition filename instead of extracting a filename
from the URL.

There's no attempt to decode %-sequences (yet) in the provided file name, so
this option may provide you with rather unexpected file names.
.IP "-k, --insecure"
(SSL) This option explicitly allows curl to perform "insecure" SSL connections
and transfers. All SSL connections are attempted to be made secure by using
Expand Down

0 comments on commit 8a8f9a5

Please sign in to comment.