Notices by Stefan Eissing (icing@chaos.social)

@hailey @whitequark
It‘s an area where few can make it better, but everyone can make it worse (add a dependency or an unreliable test case).

An organisational challenge, not a technical one.

1 open #curl issue for some Kerberos header file on IBM OS400 platforms…

I expected more from you…🦧

RIP pthread_cancel() in curl. It was an interesting adventure.
#curl

https://eissing.org/icing/posts/rip_pthread_cancel/

With only 5 open issues in the curl project, it's becoming quite urgent to write new bugs!

@dalias that is the route when QUIC_EXIT is enabled and cancel is not supported on the platform.

We do not do detach be default as resolve attempts might outpace getaddrinfo() returnes and then you have an ever growing number of threads in your process.

libcurl is not only used in curl. there are application with thousands of concurrent transfers out there.

Fun with `pthread_cancel()` in curl. How I got that working and what challenges I encountered.
#curl #dns #pthreads

https://eissing.org/icing/posts/pthread_cancel/

OCSP at Lets Encrypt is Off.

https://letsencrypt.org/2025/08/06/ocsp-service-has-reached-end-of-life.html

The 10 billion requests per month to curl.se are a strong indicator for intelligent life in the galaxy.

The Earth population is simply not large enough to explain those numbers.💁🏻♂️

“one-acre solar farm produces as much energy as 100 acres of corn-based ethanol.”

The countries throttling renewables now (US, but also Germany) are just accelerating their decline. The laws of physics can not be lobbied.

https://www.newyorker.com/news/annals-of-a-warming-planet/46-billion-years-on-the-sun-is-having-a-moment

Started a curl discussion about adding an API call to retrieve information from a curl multi handle.

If you develop a libcurl application and you need information from a multi, please make your case.
#curl
https://github.com/curl/curl/discussions/17870

@isotopp @kaffeeringe @wonka @MBrandtner @genofire @phreaknerd @hanghuhn
Der Job der Gesellschaft ist „Erwachsene Heranziehen“ und nicht „Kinder Grossziehen“. Wird gerne verwechselt.💁🏻♂️

So, you are very rich. You do not pay taxes. You do not build great cities. You do not enrich civilization.

But for your wedding, that special day, you want to have all that. Because…the event needs more depth and history. You cannot provide it. Neither can your spouse.

But happily, people have created such things in the past and you can rent it.

It‘s nice that the wealthy before you made that. Even though they had far less money.

You still do not get it? So close…

https://www.theguardian.com/technology/2025/jun/24/inside-the-no-space-for-bezos-movement-one-man-rents-a-city-for-three-days-thats-obscene

Reporting a „possible memory leak“ in a 7 year old curl version, because the RSS jumps from 6.2 to 7 MB once.

Could be.

But, dear reporter, we can only try our best to be a better curl *today*. There is no changing the past (hence the name).

We outstretch our hands to you! Come and live with us in the present! Let the ancestors rest and rejoyce among the living!

#curl

Analog to Heisenbugs that disappear when you enable logging, there is a class of bugs exposed when you add small sleep()s in your threads/processes.

Maybe call them "sleepibugs"?😌

It has been "0" days that I dropped everything to look at a bogus AI security report.

CVEs are now called Jerries and are classed with up to five Llamas.
🦙🦙🦙🦙🦙

@ariadne Stein’s Corollary:

„If something is not distributed, it will stop.“

@bagder @briankrebs @GossiTheDog it seems a small step to just have CNAs own a permanent, published number range or prefix and an RSS feed. (which history teaches us will end up in DNS)

Anyone interested can then build their own database.

Let‘s Encrypt describing their ACME profiles in detail:

‚classic‘: 90 days, all as before
‚tlsserver‘: 90 days, smaller certs, cut lean for its server role and modern clients
‚shortlived‘: ~6 days, otherwise like ‚tlsserver‘

If you have no idea what the mentioned TLS extensions are about, do *not* configure a profile. But if you do, use classic.

If you have a rough idea and serve modern clients, tlsserver cuts some bytes and the auth process is tighter.

https://letsencrypt.org/docs/profiles/

„The GNU Project distributes most of its manuals in the Info format, which you read using an Info reader. You are probably using an Info reader to read this now.“

🧐Is that the GNU term for a browser?

https://www.gnu.org/software/emacs/manual/html_mono/info.html