2
0

KNOWN_BUGS 21 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616
  1. _ _ ____ _
  2. ___| | | | _ \| |
  3. / __| | | | |_) | |
  4. | (__| |_| | _ <| |___
  5. \___|\___/|_| \_\_____|
  6. Known Bugs
  7. These are problems and bugs known to exist at the time of this release. Feel
  8. free to join in and help us correct one or more of these. Also be sure to
  9. check the changelog of the current development status, as one or more of these
  10. problems may have been fixed or changed somewhat since this was written.
  11. 1. HTTP
  12. 1.1 hyper memory-leaks
  13. 1.2 hyper is slow
  14. 1.5 Expect-100 meets 417
  15. 2. TLS
  16. 2.3 Unable to use PKCS12 certificate with Secure Transport
  17. 2.4 Secure Transport will not import PKCS#12 client certificates without a password
  18. 2.5 Client cert handling with Issuer DN differs between backends
  19. 2.7 Client cert (MTLS) issues with Schannel
  20. 2.8 Schannel disable CURLOPT_SSL_VERIFYPEER and verify hostname
  21. 2.11 Schannel TLS 1.2 handshake bug in old Windows versions
  22. 2.12 FTPS with Schannel times out file list operation
  23. 2.13 CURLOPT_CERTINFO results in CURLE_OUT_OF_MEMORY with Schannel
  24. 3. Email protocols
  25. 3.1 IMAP SEARCH ALL truncated response
  26. 3.2 No disconnect command
  27. 3.3 POP3 expects "CRLF.CRLF" eob for some single-line responses
  28. 3.4 AUTH PLAIN for SMTP is not working on all servers
  29. 3.5 APOP authentication fails on POP3
  30. 4. Command line
  31. 5. Build and portability issues
  32. 5.1 OS400 port requires deprecated IBM library
  33. 5.2 curl-config --libs contains private details
  34. 5.3 building for old macOS fails with gcc
  35. 5.5 cannot handle Unicode arguments in non-Unicode builds on Windows
  36. 5.6 cygwin: make install installs curl-config.1 twice
  37. 5.9 Utilize Requires.private directives in libcurl.pc
  38. 5.11 configure --with-gssapi with Heimdal is ignored on macOS
  39. 5.12 flaky CI builds
  40. 5.13 long paths are not fully supported on Windows
  41. 5.14 Windows Unicode builds use homedir in current locale
  42. 6. Authentication
  43. 6.1 NTLM authentication and unicode
  44. 6.2 MIT Kerberos for Windows build
  45. 6.3 NTLM in system context uses wrong name
  46. 6.4 Negotiate and Kerberos V5 need a fake user name
  47. 6.5 NTLM does not support password with § character
  48. 6.6 libcurl can fail to try alternatives with --proxy-any
  49. 6.7 Do not clear digest for single realm
  50. 6.9 SHA-256 digest not supported in Windows SSPI builds
  51. 6.10 curl never completes Negotiate over HTTP
  52. 6.11 Negotiate on Windows fails
  53. 6.12 cannot use Secure Transport with Crypto Token Kit
  54. 6.13 Negotiate against Hadoop HDFS
  55. 7. FTP
  56. 7.3 FTP with NOBODY and FAILONERROR
  57. 7.4 FTP with ACCT
  58. 7.11 FTPS upload data loss with TLS 1.3
  59. 7.12 FTPS directory listing hangs on Windows with Schannel
  60. 9. SFTP and SCP
  61. 9.1 SFTP does not do CURLOPT_POSTQUOTE correct
  62. 9.2 wolfssh: publickey auth does not work
  63. 9.3 Remote recursive folder creation with SFTP
  64. 9.4 libssh blocking and infinite loop problem
  65. 9.5 cygwin: "WARNING: UNPROTECTED PRIVATE KEY FILE!"
  66. 10. SOCKS
  67. 10.3 FTPS over SOCKS
  68. 11. Internals
  69. 11.2 error buffer not set if connection to multiple addresses fails
  70. 11.4 HTTP test server 'connection-monitor' problems
  71. 11.5 Connection information when using TCP Fast Open
  72. 12. LDAP
  73. 12.1 OpenLDAP hangs after returning results
  74. 12.2 LDAP on Windows does authentication wrong?
  75. 12.3 LDAP on Windows does not work
  76. 13. TCP/IP
  77. 13.2 Trying local ports fails on Windows
  78. 15. CMake
  79. 15.1 cmake outputs: no version information available
  80. 15.2 support build with GnuTLS
  81. 15.3 unusable tool_hugehelp.c with MinGW
  82. 15.4 build docs/curl.1
  83. 15.6 uses -lpthread instead of Threads::Threads
  84. 15.7 generated .pc file contains strange entries
  85. 15.8 libcurl.pc uses absolute library paths
  86. 15.11 ExternalProject_Add does not set CURL_CA_PATH
  87. 15.13 CMake build with MIT Kerberos does not work
  88. 16. Applications
  89. 17. HTTP/2
  90. 17.2 HTTP/2 frames while in the connection pool kill reuse
  91. 17.3 ENHANCE_YOUR_CALM causes infinite retries
  92. 18. HTTP/3
  93. 18.1 connection migration does not work
  94. ==============================================================================
  95. 1. HTTP
  96. 1.1 hyper memory-leaks
  97. Building curl with the hyper backend causes mysterious memory-leaks
  98. https://github.com/curl/curl/issues/10803
  99. 1.2 hyper is slow
  100. When curl is built to use hyper for HTTP, it is unnecessary slow.
  101. https://github.com/curl/curl/issues/11203
  102. 1.5 Expect-100 meets 417
  103. If an upload using Expect: 100-continue receives an HTTP 417 response, it
  104. ought to be automatically resent without the Expect:. A workaround is for
  105. the client application to redo the transfer after disabling Expect:.
  106. https://curl.se/mail/archive-2008-02/0043.html
  107. 2. TLS
  108. 2.3 Unable to use PKCS12 certificate with Secure Transport
  109. See https://github.com/curl/curl/issues/5403
  110. 2.4 Secure Transport will not import PKCS#12 client certificates without a password
  111. libcurl calls SecPKCS12Import with the PKCS#12 client certificate, but that
  112. function rejects certificates that do not have a password.
  113. https://github.com/curl/curl/issues/1308
  114. 2.5 Client cert handling with Issuer DN differs between backends
  115. When the specified client certificate does not match any of the
  116. server-specified DNs, the OpenSSL and GnuTLS backends behave differently.
  117. The github discussion may contain a solution.
  118. See https://github.com/curl/curl/issues/1411
  119. 2.7 Client cert (MTLS) issues with Schannel
  120. See https://github.com/curl/curl/issues/3145
  121. 2.8 Schannel disable CURLOPT_SSL_VERIFYPEER and verify hostname
  122. This seems to be a limitation in the underlying Schannel API.
  123. https://github.com/curl/curl/issues/3284
  124. 2.11 Schannel TLS 1.2 handshake bug in old Windows versions
  125. In old versions of Windows such as 7 and 8.1 the Schannel TLS 1.2 handshake
  126. implementation likely has a bug that can rarely cause the key exchange to
  127. fail, resulting in error SEC_E_BUFFER_TOO_SMALL or SEC_E_MESSAGE_ALTERED.
  128. https://github.com/curl/curl/issues/5488
  129. 2.12 FTPS with Schannel times out file list operation
  130. "Instead of the command completing, it just sits there until the timeout
  131. expires." - the same command line seems to work with other TLS backends and
  132. other operating systems. See https://github.com/curl/curl/issues/5284.
  133. 2.13 CURLOPT_CERTINFO results in CURLE_OUT_OF_MEMORY with Schannel
  134. https://github.com/curl/curl/issues/8741
  135. 3. Email protocols
  136. 3.1 IMAP SEARCH ALL truncated response
  137. IMAP "SEARCH ALL" truncates output on large boxes. "A quick search of the
  138. code reveals that pingpong.c contains some truncation code, at line 408, when
  139. it deems the server response to be too large truncating it to 40 characters"
  140. https://curl.se/bug/view.cgi?id=1366
  141. 3.2 No disconnect command
  142. The disconnect commands (LOGOUT and QUIT) may not be sent by IMAP, POP3 and
  143. SMTP if a failure occurs during the authentication phase of a connection.
  144. 3.3 POP3 expects "CRLF.CRLF" eob for some single-line responses
  145. You have to tell libcurl not to expect a body, when dealing with one line
  146. response commands. Please see the POP3 examples and test cases which show
  147. this for the NOOP and DELE commands. https://curl.se/bug/?i=740
  148. 3.4 AUTH PLAIN for SMTP is not working on all servers
  149. Specifying "--login-options AUTH=PLAIN" on the command line does not seem to
  150. work correctly.
  151. See https://github.com/curl/curl/issues/4080
  152. 3.5 APOP authentication fails on POP3
  153. See https://github.com/curl/curl/issues/10073
  154. 4. Command line
  155. 5. Build and portability issues
  156. 5.1 OS400 port requires deprecated IBM library
  157. curl for OS400 requires QADRT to build, which provides ASCII wrappers for
  158. libc/POSIX functions in the ILE, but IBM no longer supports or even offers
  159. this library to download.
  160. See https://github.com/curl/curl/issues/5176
  161. 5.2 curl-config --libs contains private details
  162. "curl-config --libs" will include details set in LDFLAGS when configure is
  163. run that might be needed only for building libcurl. Further, curl-config
  164. --cflags suffers from the same effects with CFLAGS/CPPFLAGS.
  165. 5.3 building for old macOS fails with gcc
  166. Building curl for certain old macOS versions fails when gcc is used. We
  167. command using clang in those cases.
  168. See https://github.com/curl/curl/issues/11441
  169. 5.5 cannot handle Unicode arguments in non-Unicode builds on Windows
  170. If a URL or filename cannot be encoded using the user's current codepage then
  171. it can only be encoded properly in the Unicode character set. Windows uses
  172. UTF-16 encoding for Unicode and stores it in wide characters, however curl
  173. and libcurl are not equipped for that at the moment except when built with
  174. _UNICODE and UNICODE defined. And, except for Cygwin, Windows cannot use UTF-8
  175. as a locale.
  176. https://curl.se/bug/?i=345
  177. https://curl.se/bug/?i=731
  178. https://curl.se/bug/?i=3747
  179. 5.6 cygwin: make install installs curl-config.1 twice
  180. https://github.com/curl/curl/issues/8839
  181. 5.9 Utilize Requires.private directives in libcurl.pc
  182. https://github.com/curl/curl/issues/864
  183. 5.11 configure --with-gssapi with Heimdal is ignored on macOS
  184. ... unless you also pass --with-gssapi-libs
  185. https://github.com/curl/curl/issues/3841
  186. 5.12 flaky CI builds
  187. We run many CI builds for each commit and PR on github, and especially a
  188. number of the Windows builds are flaky. This means that we rarely get all CI
  189. builds go green and complete without errors. This is unfortunate as it makes
  190. us sometimes miss actual build problems and it is surprising to newcomers to
  191. the project who (rightfully) do not expect this.
  192. See https://github.com/curl/curl/issues/6972
  193. 5.13 long paths are not fully supported on Windows
  194. curl on Windows cannot access long paths (paths longer than 260 characters).
  195. However, as a workaround, the Windows path prefix \\?\ which disables all path
  196. interpretation may work to allow curl to access the path. For example:
  197. \\?\c:\longpath.
  198. See https://github.com/curl/curl/issues/8361
  199. 5.14 Windows Unicode builds use homedir in current locale
  200. The Windows Unicode builds of curl use the current locale, but expect Unicode
  201. UTF-8 encoded paths for internal use such as open, access and stat. The user's
  202. home directory is retrieved via curl_getenv in the current locale and not as
  203. UTF-8 encoded Unicode.
  204. See https://github.com/curl/curl/pull/7252 and
  205. https://github.com/curl/curl/pull/7281
  206. 6. Authentication
  207. 6.1 NTLM authentication and unicode
  208. NTLM authentication involving unicode user name or password only works
  209. properly if built with UNICODE defined together with the Schannel
  210. backend. The original problem was mentioned in:
  211. https://curl.se/mail/lib-2009-10/0024.html
  212. https://curl.se/bug/view.cgi?id=896
  213. The Schannel version verified to work as mentioned in
  214. https://curl.se/mail/lib-2012-07/0073.html
  215. 6.2 MIT Kerberos for Windows build
  216. libcurl fails to build with MIT Kerberos for Windows (KfW) due to KfW's
  217. library header files exporting symbols/macros that should be kept private to
  218. the KfW library. See ticket #5601 at https://krbdev.mit.edu/rt/
  219. 6.3 NTLM in system context uses wrong name
  220. NTLM authentication using SSPI (on Windows) when (lib)curl is running in
  221. "system context" will make it use wrong(?) user name - at least when compared
  222. to what winhttp does. See https://curl.se/bug/view.cgi?id=535
  223. 6.4 Negotiate and Kerberos V5 need a fake user name
  224. In order to get Negotiate (SPNEGO) authentication to work in HTTP or Kerberos
  225. V5 in the email protocols, you need to provide a (fake) user name (this
  226. concerns both curl and the lib) because the code wrongly only considers
  227. authentication if there's a user name provided by setting
  228. conn->bits.user_passwd in url.c https://curl.se/bug/view.cgi?id=440 How?
  229. https://curl.se/mail/lib-2004-08/0182.html A possible solution is to
  230. either modify this variable to be set or introduce a variable such as
  231. new conn->bits.want_authentication which is set when any of the authentication
  232. options are set.
  233. 6.5 NTLM does not support password with § character
  234. https://github.com/curl/curl/issues/2120
  235. 6.6 libcurl can fail to try alternatives with --proxy-any
  236. When connecting via a proxy using --proxy-any, a failure to establish an
  237. authentication will cause libcurl to abort trying other options if the
  238. failed method has a higher preference than the alternatives. As an example,
  239. --proxy-any against a proxy which advertise Negotiate and NTLM, but which
  240. fails to set up Kerberos authentication will not proceed to try authentication
  241. using NTLM.
  242. https://github.com/curl/curl/issues/876
  243. 6.7 Do not clear digest for single realm
  244. https://github.com/curl/curl/issues/3267
  245. 6.9 SHA-256 digest not supported in Windows SSPI builds
  246. Windows builds of curl that have SSPI enabled use the native Windows API calls
  247. to create authentication strings. The call to InitializeSecurityContext fails
  248. with SEC_E_QOP_NOT_SUPPORTED which causes curl to fail with CURLE_AUTH_ERROR.
  249. Microsoft does not document supported digest algorithms and that SEC_E error
  250. code is not a documented error for InitializeSecurityContext (digest).
  251. https://github.com/curl/curl/issues/6302
  252. 6.10 curl never completes Negotiate over HTTP
  253. Apparently it is not working correctly...?
  254. See https://github.com/curl/curl/issues/5235
  255. 6.11 Negotiate on Windows fails
  256. When using --negotiate (or NTLM) with curl on Windows, SSL/TLS handshake
  257. fails despite having a valid kerberos ticket cached. Works without any issue
  258. in Unix/Linux.
  259. https://github.com/curl/curl/issues/5881
  260. 6.12 cannot use Secure Transport with Crypto Token Kit
  261. https://github.com/curl/curl/issues/7048
  262. 6.13 Negotiate authentication against Hadoop HDFS
  263. https://github.com/curl/curl/issues/8264
  264. 7. FTP
  265. 7.3 FTP with NOBODY and FAILONERROR
  266. It seems sensible to be able to use CURLOPT_NOBODY and CURLOPT_FAILONERROR
  267. with FTP to detect if a file exists or not, but it is not working:
  268. https://curl.se/mail/lib-2008-07/0295.html
  269. 7.4 FTP with ACCT
  270. When doing an operation over FTP that requires the ACCT command (but not when
  271. logging in), the operation will fail since libcurl does not detect this and
  272. thus fails to issue the correct command:
  273. https://curl.se/bug/view.cgi?id=635
  274. 7.11 FTPS upload data loss with TLS 1.3
  275. During FTPS upload curl does not attempt to read TLS handshake messages sent
  276. after the initial handshake. OpenSSL servers running TLS 1.3 may send such a
  277. message. When curl closes the upload connection if unread data has been
  278. received (such as a TLS handshake message) then the TCP protocol sends an
  279. RST to the server, which may cause the server to discard or truncate the
  280. upload if it has not read all sent data yet, and then return an error to curl
  281. on the control channel connection.
  282. Since 7.78.0 this is mostly fixed. curl will do a single read before closing
  283. TLS connections (which causes the TLS library to read handshake messages),
  284. however there is still possibility of an RST if more messages need to be read
  285. or a message arrives after the read but before close (network race condition).
  286. https://github.com/curl/curl/issues/6149
  287. 7.12 FTPS directory listing hangs on Windows with Schannel
  288. https://github.com/curl/curl/issues/9161
  289. 9. SFTP and SCP
  290. 9.1 SFTP does not do CURLOPT_POSTQUOTE correct
  291. When libcurl sends CURLOPT_POSTQUOTE commands when connected to a SFTP server
  292. using the multi interface, the commands are not being sent correctly and
  293. instead the connection is "cancelled" (the operation is considered done)
  294. prematurely. There is a half-baked (busy-looping) patch provided in the bug
  295. report but it cannot be accepted as-is. See
  296. https://curl.se/bug/view.cgi?id=748
  297. 9.2 wolfssh: publickey auth does not work
  298. When building curl to use the wolfSSH backend for SFTP, the publickey
  299. authentication does not work. This is simply functionality not written for curl
  300. yet, the necessary API for make this work is provided by wolfSSH.
  301. See https://github.com/curl/curl/issues/4820
  302. 9.3 Remote recursive folder creation with SFTP
  303. On this servers, the curl fails to create directories on the remote server
  304. even when the CURLOPT_FTP_CREATE_MISSING_DIRS option is set.
  305. See https://github.com/curl/curl/issues/5204
  306. 9.4 libssh blocking and infinite loop problem
  307. In the SSH_SFTP_INIT state for libssh, the ssh session working mode is set to
  308. blocking mode. If the network is suddenly disconnected during sftp
  309. transmission, curl will be stuck, even if curl is configured with a timeout.
  310. https://github.com/curl/curl/issues/8632
  311. 9.5 cygwin: "WARNING: UNPROTECTED PRIVATE KEY FILE!"
  312. Running SCP and SFTP tests on cygwin makes this warning message appear.
  313. https://github.com/curl/curl/issues/11244
  314. 10. SOCKS
  315. 10.3 FTPS over SOCKS
  316. libcurl does not support FTPS over a SOCKS proxy.
  317. 11. Internals
  318. 11.2 error buffer not set if connection to multiple addresses fails
  319. If you ask libcurl to resolve a hostname like example.com to IPv6 addresses
  320. only. But you only have IPv4 connectivity. libcurl will correctly fail with
  321. CURLE_COULDNT_CONNECT. But the error buffer set by CURLOPT_ERRORBUFFER
  322. remains empty. Issue: https://github.com/curl/curl/issues/544
  323. 11.4 HTTP test server 'connection-monitor' problems
  324. The 'connection-monitor' feature of the sws HTTP test server does not work
  325. properly if some tests are run in unexpected order. Like 1509 and then 1525.
  326. See https://github.com/curl/curl/issues/868
  327. 11.5 Connection information when using TCP Fast Open
  328. CURLINFO_LOCAL_PORT (and possibly a few other) fails when TCP Fast Open is
  329. enabled.
  330. See https://github.com/curl/curl/issues/1332 and
  331. https://github.com/curl/curl/issues/4296
  332. 12. LDAP
  333. 12.1 OpenLDAP hangs after returning results
  334. By configuration defaults, OpenLDAP automatically chase referrals on
  335. secondary socket descriptors. The OpenLDAP backend is asynchronous and thus
  336. should monitor all socket descriptors involved. Currently, these secondary
  337. descriptors are not monitored, causing OpenLDAP library to never receive
  338. data from them.
  339. As a temporary workaround, disable referrals chasing by configuration.
  340. The fix is not easy: proper automatic referrals chasing requires a
  341. synchronous bind callback and monitoring an arbitrary number of socket
  342. descriptors for a single easy handle (currently limited to 5).
  343. Generic LDAP is synchronous: OK.
  344. See https://github.com/curl/curl/issues/622 and
  345. https://curl.se/mail/lib-2016-01/0101.html
  346. 12.2 LDAP on Windows does authentication wrong?
  347. https://github.com/curl/curl/issues/3116
  348. 12.3 LDAP on Windows does not work
  349. A simple curl command line getting "ldap://ldap.forumsys.com" returns an
  350. error that says "no memory" !
  351. https://github.com/curl/curl/issues/4261
  352. 13. TCP/IP
  353. 13.2 Trying local ports fails on Windows
  354. This makes '--local-port [range]' to not work since curl can't properly
  355. detect if a port is already in use, so it'll try the first port, use that and
  356. then subsequently fail anyway if that was actually in use.
  357. https://github.com/curl/curl/issues/8112
  358. 15. CMake
  359. 15.1 cmake outputs: no version information available
  360. Something in the SONAME generation seems to be wrong in the cmake build.
  361. https://github.com/curl/curl/issues/11158
  362. 15.2 support build with GnuTLS
  363. 15.3 unusable tool_hugehelp.c with MinGW
  364. see https://github.com/curl/curl/issues/3125
  365. 15.4 build docs/curl.1
  366. The cmake build does not create the docs/curl.1 file and therefore must rely on
  367. it being there already. This makes the --manual option not work and test
  368. cases like 1139 cannot function.
  369. 15.6 uses -lpthread instead of Threads::Threads
  370. See https://github.com/curl/curl/issues/6166
  371. 15.7 generated .pc file contains strange entries
  372. The Libs.private field of the generated .pc file contains -lgcc -lgcc_s -lc
  373. -lgcc -lgcc_s
  374. See https://github.com/curl/curl/issues/6167
  375. 15.8 libcurl.pc uses absolute library paths
  376. The libcurl.pc file generated by cmake contains things like Libs.private:
  377. /usr/lib64/libssl.so /usr/lib64/libcrypto.so /usr/lib64/libz.so. The
  378. autotools equivalent would say Libs.private: -lssl -lcrypto -lz
  379. See https://github.com/curl/curl/issues/6169
  380. 15.11 ExternalProject_Add does not set CURL_CA_PATH
  381. CURL_CA_BUNDLE and CURL_CA_PATH are not set properly when cmake's
  382. ExternalProject_Add is used to build curl as a dependency.
  383. See https://github.com/curl/curl/issues/6313
  384. 15.13 CMake build with MIT Kerberos does not work
  385. Minimum CMake version was bumped in curl 7.71.0 (#5358) Since CMake 3.2
  386. try_compile started respecting the CMAKE_EXE_FLAGS. The code dealing with
  387. MIT Kerberos detection sets few variables to potentially weird mix of space,
  388. and ;-separated flags. It had to blow up at some point. All the CMake checks
  389. that involve compilation are doomed from that point, the configured tree
  390. cannot be built.
  391. https://github.com/curl/curl/issues/6904
  392. 16. Applications
  393. 17. HTTP/2
  394. 17.2 HTTP/2 frames while in the connection pool kill reuse
  395. If the server sends HTTP/2 frames (like for example an HTTP/2 PING frame) to
  396. curl while the connection is held in curl's connection pool, the socket will
  397. be found readable when considered for reuse and that makes curl think it is
  398. dead and then it will be closed and a new connection gets created instead.
  399. This is *best* fixed by adding monitoring to connections while they are kept
  400. in the pool so that pings can be responded to appropriately.
  401. 17.3 ENHANCE_YOUR_CALM causes infinite retries
  402. Infinite retries with 2 parallel requests on one connection receiving GOAWAY
  403. with ENHANCE_YOUR_CALM error code.
  404. See https://github.com/curl/curl/issues/5119
  405. 18. HTTP/3
  406. 18.1 connection migration does not work
  407. https://github.com/curl/curl/issues/7695