moparisthebest
/
curl
mirror of https://github.com/moparisthebest/curl
1
0
Fork 0
Code Issues Releases Wiki Activity
curl/src/tool_cfgable.c

175 lines
5.3 KiB
C
Raw Normal View History

curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
/***************************************************************************
* _ _ ____ _
* Project ___| | | | _ \| |
* / __| | | | |_) | |
* | (__| |_| | _ <| |___
* \___|\___/|_| \_\_____|
*
--request-target: instead of --strip-path-slash ... and CURLOPT_REQUEST_TARGET instead of CURLOPT_STRIP_PATH_SLASH. This option instead provides the full "alternative" target to use in the request, instead of extracting the path from the URL. Test 1298 and 1299 updated accordingly. Idea-by: Evert Pot Suggestion: https://daniel.haxx.se/blog/2017/06/19/options-with-curl/comment-page-1/#comment-18373 Closes #1593
2017-06-21 17:35:08 -04:00
* Copyright (C) 1998 - 2017, Daniel Stenberg, <daniel@haxx.se>, et al.
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
*
* This software is licensed as described in the file COPYING, which
* you should have received as part of this distribution. The terms
URLs: change all http:// URLs to https://
2016-02-02 18:19:02 -05:00
* are also available at https://curl.haxx.se/docs/copyright.html.
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
*
* You may opt to use, copy, modify, merge, publish, distribute and/or sell
* copies of the Software, and permit persons to whom the Software is
* furnished to do so, under the terms of the COPYING file.
*
* This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
* KIND, either express or implied.
*
***************************************************************************/
curl tool: use configuration files from lib directory Configuration files such as curl_config.h and all config-*.h no longer exist nor are generated/copied into 'src' directory, now these only exist in 'lib' directory from where curl tool sources uses them. Additionally old src/setup.h has been refactored into src/tool_setup.h which now pulls lib/setup.h The possibility of a makefile needing an include path adjustment exists.
2012-04-06 17:35:15 -04:00
#include "tool_setup.h"
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
#include "tool_cfgable.h"
tool_operate: Moved initial config setup into new init_config() function
2014-02-01 08:36:48 -05:00
#include "tool_main.h"
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
Revert changes relative to lib/*.[ch] recent renaming This reverts renaming and usage of lib/*.h header files done 28-12-2012, reverting 2 commits: f871de0... build: make use of 76 lib/*.h renamed files ffd8e12... build: rename 76 lib/*.h files This also reverts removal of redundant include guard (redundant thanks to changes in above commits) done 2-12-2013, reverting 1 commit: c087374... curl_setup.h: remove redundant include guard This also reverts renaming and usage of lib/*.c source files done 3-12-2013, reverting 3 commits: 13606bb... build: make use of 93 lib/*.c renamed files 5b6e792... build: rename 93 lib/*.c files 7d83dff... build: commit 13606bbfde follow-up 1 Start of related discussion thread: http://curl.haxx.se/mail/lib-2013-01/0012.html Asking for confirmation on pushing this revertion commit: http://curl.haxx.se/mail/lib-2013-01/0048.html Confirmation summary: http://curl.haxx.se/mail/lib-2013-01/0079.html NOTICE: The list of 2 files that have been modified by other intermixed commits, while renamed, and also by at least one of the 6 commits this one reverts follows below. These 2 files will exhibit a hole in history unless git's '--follow' option is used when viewing logs. lib/curl_imap.h lib/curl_smtp.h
2013-01-03 20:50:28 -05:00
#include "memdebug.h" /* keep this as LAST include */
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
tool_cfgable: Renamed Configurable structure to OperationConfig To allow for the addition of a global config structure and prevent confusion between the two.
2014-02-23 07:59:59 -05:00
void config_init(struct OperationConfig* config)
tool_main: Moved config struct initialisation into a separate function In preparation for adding URL specific options moved the initialisation of the Configurable structure into a separate function in tool_cfgable.
2014-02-01 08:26:09 -05:00
{
tool_cfgable: Renamed Configurable structure to OperationConfig To allow for the addition of a global config structure and prevent confusion between the two.
2014-02-23 07:59:59 -05:00
memset(config, 0, sizeof(struct OperationConfig));
tool_main: Moved config struct initialisation into a separate function In preparation for adding URL specific options moved the initialisation of the Configurable structure into a separate function in tool_cfgable.
2014-02-01 08:26:09 -05:00
tool_operate: Moved initial config setup into new init_config() function
2014-02-01 08:36:48 -05:00
config->postfieldsize = -1;
config->use_httpget = FALSE;
config->create_dirs = FALSE;
config->maxredirs = DEFAULT_MAXREDIRS;
config->proto = CURLPROTO_ALL; /* FIXME: better to read from library */
config->proto_present = FALSE;
curl tool: Exclude SMB from the protocol redirect As local files could be accessed through \\localhost\c$.
2014-11-30 16:28:22 -05:00
config->proto_redir = CURLPROTO_ALL & /* All except FILE, SCP and SMB */
~(CURLPROTO_FILE | CURLPROTO_SCP | CURLPROTO_SMB |
CURLPROTO_SMBS);
tool_operate: Moved initial config setup into new init_config() function
2014-02-01 08:36:48 -05:00
config->proto_redir_present = FALSE;
CURLOPT_DEFAULT_PROTOCOL: added - Add new option CURLOPT_DEFAULT_PROTOCOL to allow specifying a default protocol for schemeless URLs. - Add new tool option --proto-default to expose CURLOPT_DEFAULT_PROTOCOL. In the case of schemeless URLs libcurl will behave in this way: When the option is used libcurl will use the supplied default. When the option is not used, libcurl will follow its usual plan of guessing from the hostname and falling back to 'http'.
2015-08-22 21:49:26 -04:00
config->proto_default = NULL;
CURLOPT_TCP_NODELAY: now enabled by default After a few wasted hours hunting down the reason for slowness during a TLS handshake that turned out to be because of TCP_NODELAY not being set, I think we have enough motivation to toggle the default for this option. We now enable TCP_NODELAY by default and allow applications to switch it off. This also makes --tcp-nodelay unnecessary, but --no-tcp-nodelay can be used to disable it. Thanks-to: Tim Rühsen Bug: https://curl.haxx.se/mail/lib-2016-06/0143.html
2016-06-30 08:56:02 -04:00
config->tcp_nodelay = TRUE; /* enabled by default */
tool_main: Moved config struct initialisation into a separate function In preparation for adding URL specific options moved the initialisation of the Configurable structure into a separate function in tool_cfgable.
2014-02-01 08:26:09 -05:00
}
tool_cfgable: Renamed Configurable structure to OperationConfig To allow for the addition of a global config structure and prevent confusion between the two.
2014-02-23 07:59:59 -05:00
static void free_config_fields(struct OperationConfig *config)
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
{
curl tool: fix some OOM handling issues
2011-09-23 23:32:51 -04:00
struct getout *urlnode;
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
Curl_safefree(config->random_file);
Curl_safefree(config->egd_file);
curl tool: create tool_myfunc.[ch] which later on will hold my_* functions Additionally function my_useragent() now provides default User-Agent string
2011-09-17 19:58:18 -04:00
Curl_safefree(config->useragent);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
Curl_safefree(config->cookie);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
Curl_safefree(config->cookiejar);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
Curl_safefree(config->cookiefile);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
Curl_safefree(config->postfields);
Curl_safefree(config->referer);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
Curl_safefree(config->headerfile);
Curl_safefree(config->ftpport);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
Curl_safefree(config->iface);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
Curl_safefree(config->range);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
Curl_safefree(config->userpwd);
Curl_safefree(config->tls_username);
Curl_safefree(config->tls_password);
Curl_safefree(config->tls_authtype);
proxy: Support HTTPS proxy and SOCKS+HTTP(s) * HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
2016-11-16 12:49:15 -05:00
Curl_safefree(config->proxy_tls_username);
Curl_safefree(config->proxy_tls_password);
Curl_safefree(config->proxy_tls_authtype);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
Curl_safefree(config->proxyuserpwd);
Curl_safefree(config->proxy);
curl: Add support for various DNS binding options. (Passed on to c-ares.) Allows something like this: curl --dns-interface sta8 --dns-ipv4-addr 8.8.1.111 --interface sta8 \ --localaddr 8.8.1.111 --dns-servers 8.8.8.1 www.google.com Signed-off-by: Ben Greear <greearb@candelatech.com>
2013-02-09 16:18:02 -05:00
Curl_safefree(config->dns_ipv6_addr);
Curl_safefree(config->dns_ipv4_addr);
Curl_safefree(config->dns_interface);
Curl_safefree(config->dns_servers);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
Curl_safefree(config->noproxy);
curl: Added support for --mail-auth Added an extra command-line argument to support the optional AUTH parameter in SMTPs MAIL FROM command.
2012-02-16 07:19:47 -05:00
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
Curl_safefree(config->mail_from);
curl_slist_free_all(config->mail_rcpt);
curl: Added support for --mail-auth Added an extra command-line argument to support the optional AUTH parameter in SMTPs MAIL FROM command.
2012-02-16 07:19:47 -05:00
Curl_safefree(config->mail_auth);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
Curl_safefree(config->netrc_file);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
curl tool: fix some OOM handling issues
2011-09-23 23:32:51 -04:00
urlnode = config->url_list;
while(urlnode) {
struct getout *next = urlnode->next;
Curl_safefree(urlnode->url);
Curl_safefree(urlnode->outfile);
Curl_safefree(urlnode->infile);
Curl_safefree(urlnode);
urlnode = next;
}
config->url_list = NULL;
config->url_last = NULL;
config->url_get = NULL;
config->url_out = NULL;
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
Curl_safefree(config->cipher_list);
proxy: Support HTTPS proxy and SOCKS+HTTP(s) * HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
2016-11-16 12:49:15 -05:00
Curl_safefree(config->proxy_cipher_list);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
Curl_safefree(config->cert);
proxy: Support HTTPS proxy and SOCKS+HTTP(s) * HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
2016-11-16 12:49:15 -05:00
Curl_safefree(config->proxy_cert);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
Curl_safefree(config->cert_type);
proxy: Support HTTPS proxy and SOCKS+HTTP(s) * HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
2016-11-16 12:49:15 -05:00
Curl_safefree(config->proxy_cert_type);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
Curl_safefree(config->cacert);
proxy: Support HTTPS proxy and SOCKS+HTTP(s) * HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
2016-11-16 12:49:15 -05:00
Curl_safefree(config->proxy_cacert);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
Curl_safefree(config->capath);
proxy: Support HTTPS proxy and SOCKS+HTTP(s) * HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
2016-11-16 12:49:15 -05:00
Curl_safefree(config->proxy_capath);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
Curl_safefree(config->crlfile);
SSL: implement public key pinning Option --pinnedpubkey takes a path to a public key in DER format and only connect if it matches (currently only implemented with OpenSSL). Provides CURLOPT_PINNEDPUBLICKEY for curl_easy_setopt(). Extract a public RSA key from a website like so: openssl s_client -connect google.com:443 2>&1 < /dev/null | \ sed -n '/-----BEGIN/,/-----END/p' | openssl x509 -noout -pubkey \ | openssl rsa -pubin -outform DER > google.com.der
2014-09-30 22:31:17 -04:00
Curl_safefree(config->pinnedpubkey);
proxy: Support HTTPS proxy and SOCKS+HTTP(s) * HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
2016-11-16 12:49:15 -05:00
Curl_safefree(config->proxy_crlfile);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
Curl_safefree(config->key);
proxy: Support HTTPS proxy and SOCKS+HTTP(s) * HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
2016-11-16 12:49:15 -05:00
Curl_safefree(config->proxy_key);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
Curl_safefree(config->key_type);
proxy: Support HTTPS proxy and SOCKS+HTTP(s) * HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
2016-11-16 12:49:15 -05:00
Curl_safefree(config->proxy_key_type);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
Curl_safefree(config->key_passwd);
proxy: Support HTTPS proxy and SOCKS+HTTP(s) * HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
2016-11-16 12:49:15 -05:00
Curl_safefree(config->proxy_key_passwd);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
Curl_safefree(config->pubkey);
Curl_safefree(config->hostpubmd5);
curl tool: fix some OOM handling issues
2011-09-23 23:32:51 -04:00
Curl_safefree(config->engine);
--request-target: instead of --strip-path-slash ... and CURLOPT_REQUEST_TARGET instead of CURLOPT_STRIP_PATH_SLASH. This option instead provides the full "alternative" target to use in the request, instead of extracting the path from the URL. Test 1298 and 1299 updated accordingly. Idea-by: Evert Pot Suggestion: https://daniel.haxx.se/blog/2017/06/19/options-with-curl/comment-page-1/#comment-18373 Closes #1593
2017-06-21 17:35:08 -04:00
Curl_safefree(config->request_target);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
Curl_safefree(config->customrequest);
Curl_safefree(config->krblevel);
oauth2: Don't use XOAUTH2 in OAuth 2.0 variables
2015-09-04 02:11:09 -04:00
Curl_safefree(config->oauth_bearer);
curl: added basic SASL XOAUTH2 support Added the ability to specify an XOAUTH2 bearer token [RFC6750] via the --bearer option. Example usage: curl --url "imaps://imap.gmail.com:993/INBOX/;UID=1" --ssl-reqd --bearer ya29.AHES6Z...OMfsHYI --user username@example.com
2013-08-25 13:18:59 -04:00
tool: add --unix-socket option Signed-off-by: Peter Wu <peter@lekensteyn.nl>
2014-11-27 17:59:26 -05:00
Curl_safefree(config->unix_socket_path);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
Curl_safefree(config->writeout);
tool: fix memory leak with --proto-default option
2015-08-23 14:57:17 -04:00
Curl_safefree(config->proto_default);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
curl_slist_free_all(config->quote);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
curl_slist_free_all(config->postquote);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
curl_slist_free_all(config->prequote);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
curl_slist_free_all(config->headers);
curl: add --proxy-header
2014-02-04 17:48:16 -05:00
curl_slist_free_all(config->proxyheaders);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
mime: use in curl cli tool instead of form API. Extended -F option syntax to support multipart mail messages. -F keyword headers= added to include custom headers in parts. Documentation upgraded.
2017-09-02 13:17:33 -04:00
if(config->mimepost) {
curl_mime_free(config->mimepost);
config->mimepost = NULL;
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
}
mime: use in curl cli tool instead of form API. Extended -F option syntax to support multipart mail messages. -F keyword headers= added to include custom headers in parts. Documentation upgraded.
2017-09-02 13:17:33 -04:00
config->mimecurrent = NULL;
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
curl_slist_free_all(config->telnet_options);
curl_slist_free_all(config->resolve);
news: CURLOPT_CONNECT_TO and --connect-to Makes curl connect to the given host+port instead of the host+port found in the URL.
2016-01-25 08:37:24 -05:00
curl_slist_free_all(config->connect_to);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
preproxy: renamed what was added as SOCKS_PROXY CURLOPT_SOCKS_PROXY -> CURLOPT_PRE_PROXY Added the corresponding --preroxy command line option. Sets a SOCKS proxy to connect to _before_ connecting to a HTTP(S) proxy.
2016-12-16 10:02:08 -05:00
Curl_safefree(config->preproxy);
Negotiate: custom service names for SPNEGO. * Add new options, CURLOPT_PROXY_SERVICE_NAME and CURLOPT_SERVICE_NAME. * Add new curl options, --proxy-service-name and --service-name.
2015-03-29 08:52:31 -04:00
Curl_safefree(config->proxy_service_name);
Curl_safefree(config->service_name);
curl tool: reorder free_config_fields() field handling Reorder handling of fields to match same order as the one given by current definition order of 'Configurable' struct fields. Fields currently not handled marked for further inspection.
2011-09-17 08:09:36 -04:00
Curl_safefree(config->ftp_account);
Curl_safefree(config->ftp_alternative_to_user);
curl tool: move 'Configurable' and free_config_fields() to tool_cfgable.[ch] Reviewing fields being free'd in free_config_fields() still pending
2011-09-16 15:44:45 -04:00
}
tool_cfgable: Introduced config_free() function
2014-02-07 14:29:46 -05:00
tool_cfgable: Renamed Configurable structure to OperationConfig To allow for the addition of a global config structure and prevent confusion between the two.
2014-02-23 07:59:59 -05:00
void config_free(struct OperationConfig *config)
tool_cfgable: Introduced config_free() function
2014-02-07 14:29:46 -05:00
{
tool_cfgable: Renamed Configurable structure to OperationConfig To allow for the addition of a global config structure and prevent confusion between the two.
2014-02-23 07:59:59 -05:00
struct OperationConfig *last = config;
tool_getparam: Added support for parsing of specific URL options
2014-02-07 16:14:43 -05:00
/* Free each of the structures in reverse order */
tool_operate: Moved easy handle cleanup into tool_main
2014-02-23 10:10:18 -05:00
while(last) {
tool_cfgable: Renamed Configurable structure to OperationConfig To allow for the addition of a global config structure and prevent confusion between the two.
2014-02-23 07:59:59 -05:00
struct OperationConfig *prev = last->prev;
tool_getparam: Added support for parsing of specific URL options
2014-02-07 16:14:43 -05:00
free_config_fields(last);
free(last);
last = prev;
tool_operate: Moved easy handle cleanup into tool_main
2014-02-23 10:10:18 -05:00
}
tool_cfgable: Introduced config_free() function
2014-02-07 14:29:46 -05:00
}