David Woodhouse
223612afa2
ntlm_wb: Avoid invoking ntlm_auth helper with empty username
2014-07-16 17:26:08 +02:00
David Woodhouse
9008f3d564
ntlm_wb: Fix hard-coded limit on NTLM auth packet size
...
Bumping it to 1KiB in commit aaaf9e50ec
is all very well, but having hit
a hard limit once let's just make it cope by reallocating as necessary.
2014-07-16 17:26:08 +02:00
Daniel Stenberg
df5169fa35
RELEASE-NOTES: synced with 4cb2521595
2014-07-16 16:29:02 +02:00
Daniel Stenberg
4cb2521595
test506: verify aa68848451
...
After the fixed cookie lock deadlock, this test now passes and it
detects double-locking and double-unlocking of mutexes.
2014-07-16 00:09:58 +02:00
Yousuke Kimoto
aa68848451
cookie: avoid mutex deadlock
...
... by removing the extra mutex locks around th call to
Curl_flush_cookies() which takes care of the locking itself already.
Bug: http://curl.haxx.se/mail/lib-2014-02/0184.html
2014-07-15 23:50:56 +02:00
Daniel Stenberg
f069b40f9d
gnutls: fix compiler warning
...
conversion to 'int' from 'long int' may alter its value
2014-07-15 21:28:10 +02:00
Dan Fandrich
4da6e0c966
test320: strip off the actual negotiated cipher width
...
It's irrelevant to the test, and will change depending on which SSL
library is being used by libcurl.
2014-07-15 01:01:39 +02:00
Dan Fandrich
9087b7e8f5
gnutls: detect lack of SRP support in GnuTLS at run-time and try without
...
Reported-by: David Woodhouse
2014-07-14 22:31:11 +02:00
Michał Górny
08b27e0892
configure: respect host tool prefix for krb5-config
...
Use ${host_alias}-krb5-config if available. This improves cross-
compilation support and fixes multilib on Gentoo (at least).
2014-07-14 20:49:28 +02:00
David Woodhouse
98866008a9
gnutls: handle IP address in cert name check
...
Before GnuTLS 3.3.6, the gnutls_x509_crt_check_hostname() function
didn't actually check IP addresses in SubjectAltName, even though it was
explicitly documented as doing so. So do it ourselves...
2014-07-14 20:14:15 +02:00
Dan Fandrich
08c8d5b89a
build: set _POSIX_PTHREAD_SEMANTICS on Solaris to get proper getpwuid_r
2014-07-14 20:11:08 +02:00
Daniel Stenberg
eb3e383390
RELEASE-NOTES: next one is called 7.37.1
2014-07-14 19:30:50 +02:00
Dan Fandrich
425459b8ae
gnutls: improved error message if setting cipher list fails
...
Reported-by: David Woodhouse
2014-07-13 01:32:11 +02:00
Dan Fandrich
763c51780c
netrc: fixed thread safety problem by using getpwuid_r if available
...
The old way using getpwuid could cause problems in programs that enable
reading from netrc files simultaneously in multiple threads.
Reported-by: David Woodhouse
2014-07-13 00:27:22 +02:00
Dan Fandrich
6c6ba59e6b
RELEASE-NOTES: add the reporter of the previous bug fix
2014-07-12 23:40:07 +02:00
Dan Fandrich
135c2dc14f
netrc: treat failure to find home dir same as missing netrc file
...
This previously caused a fatal error (with a confusing error code, at
that).
Reported by: Glen A Johnson Jr.
2014-07-12 20:22:09 +02:00
Steve Holme
4a67b3e650
RELEASE-NOTES: Synced with aaaf9e50ec
2014-07-12 15:23:39 +01:00
Steve Holme
aaaf9e50ec
ntlm_wb: Fixed buffer size not being large enough for NTLMv2 sessions
...
Bug: http://curl.haxx.se/mail/lib-2014-07/0103.html
Reported-by: David Woodhouse
2014-07-12 14:56:47 +01:00
Steve Holme
8a120710cc
build: Fixed overridden compiler PDB settings in VC7 to VC12
...
The curl tool project files for VC7 to VC12 would override the default
setting with the output filename being the same as the linker PDB file.
As such the compiler file would be overwritten with the linker file
for all debug builds.
To avoid this overwrite and for consistency with the libcurl project
files, removed the setting to force the default filename to be used.
2014-07-12 14:46:36 +01:00
Dan Fandrich
816979e3b8
tests: added globbing keyword to URL globbing tests
2014-07-12 01:52:07 +02:00
Dan Fandrich
45c93dad1d
Fixed some "statement not reached" warnings
2014-07-12 01:45:26 +02:00
Dan Fandrich
efc71583e7
gnutls: fixed a couple of uninitialized variable references
2014-07-12 01:31:12 +02:00
Dan Fandrich
3d2e1724cb
gnutls: fixed compilation against versions < 2.12.0
...
The AES-GCM ciphers were added to GnuTLS as late as ver. 3.0.1 but
the code path in which they're referenced here is only ever used for
somewhat older GnuTLS versions. This caused undeclared identifier errors
when compiling against those.
2014-07-12 00:33:16 +02:00
Dan Fandrich
447c31ce9d
gnutls: explicitly added SRP to the priority string
...
This seems to have become necessary for SRP support to work starting
with GnuTLS ver. 2.99.0. Since support for SRP was added to GnuTLS
before the function that takes this priority string, there should be no
issue with backward compatibility.
2014-07-12 00:11:44 +02:00
Dan Fandrich
d582c272a6
tests: adjust for capitalization differences in newer gnutls-serv
2014-07-11 23:47:48 +02:00
Dan Fandrich
4dc3a57718
test320/1/2/4: fix the port number substitution variables
...
These tests have been broken since commit 1958fe57
in Oct. 2011
2014-07-11 23:47:33 +02:00
Dan Fandrich
d033fc8323
tests: document more test identifiers and variables
2014-07-11 23:33:55 +02:00
Dan Fandrich
baf8b57b1d
gnutls: ignore invalid certificate dates with VERIFYPEER disabled
...
This makes the behaviour consistent with what happens if a date can
be extracted from the certificate but is expired.
2014-07-11 23:21:31 +02:00
Steve Holme
f9b80cded7
CURLOPT_UPLOAD: Corrected argument type
2014-07-10 22:30:43 +01:00
Daniel Stenberg
6273b23a05
FAQ: expand the thread-safe section
...
... with a mention of *NOSIGNAL, based on talk in bug #1386
2014-07-09 22:07:36 -05:00
Dan Fandrich
1cef8f0bc3
url.c: Fixed memory leak on OOM
...
This showed itself on some systems with torture failures
in tests 1060 and 1061
2014-07-09 23:55:12 +02:00
Dan Fandrich
3ae2b6cd7f
Update instances of some obsolete CURLOPTs to their new names
2014-07-05 22:47:13 +02:00
Marcel Raad
8ffe6f5b57
compiler warnings: potentially uninitialized variables
...
... pointed out by MSVC2013
Bug: http://curl.haxx.se/bug/view.cgi?id=1391
2014-07-05 01:42:10 +02:00
Kamil Dudka
ca2aa61b66
nss: make the list of CRL items global
...
Otherwise NSS could use an already freed item for another connection.
2014-07-04 13:15:03 +02:00
Kamil Dudka
52cd5ac21c
nss: fix a memory leak when CURLOPT_CRLFILE is used
2014-07-04 08:25:05 +02:00
Kamil Dudka
caa4db8a51
nss: make crl_der allocated on heap
...
... and spell it as crl_der instead of crlDER
2014-07-04 00:37:40 +02:00
Kamil Dudka
2968f957aa
nss: let nss_{cache,load}_crl return CURLcode
2014-07-04 00:20:59 +02:00
Kamil Dudka
0cd368c2ef
tool: oops, forgot to include <plarenas.h>
...
... that contains the declaration of PL_ArenaFinish()
2014-07-03 20:36:49 +02:00
Kamil Dudka
d343033f3d
tool: call PL_ArenaFinish() on exit if NSPR is used
...
This prevents valgrind from reporting still reachable memory allocated
by NSPR arenas (mainly the freelist).
Reported-by: Hubert Kario
2014-07-03 20:27:20 +02:00
Dimitrios Siganos
22eb00f937
example: use correct type (long) for CURLOPT_FOLLOWLOCATION
2014-07-03 22:47:28 +02:00
Dimitrios Siganos
afbd5f978e
Document type of argument for CURLOPT_FOLLOWLOCATION.
2014-07-03 22:44:45 +02:00
Dimitrios Siganos
7441c6d7af
Document type of argument for CURLOPT_ERRORBUFFER.
2014-07-03 22:44:45 +02:00
Dimitrios Siganos
3e0443239a
Document type of argument for CURLOPT_COPYPOSTFIELDS.
2014-07-03 22:44:45 +02:00
Dimitrios Siganos
8b8cc85d8d
Document type of argument for CURLOPT_ADDRESS_SCOPE.
2014-07-03 22:44:45 +02:00
Daniel Stenberg
97db9fb653
curl.1: minor language fix
...
Bug: http://curl.haxx.se/mail/archive-2014-07/0006.html
2014-07-03 22:37:43 +02:00
Ray Satiro
907520c4b9
progress callback: skip last callback update on errors
...
When an error has been detected, skip the final forced call to the
progress callback by making sure to pass the current return code
variable in the Curl_done() call in the CURLM_STATE_DONE state.
This avoids the "extra" callback that could occur even if you returned
error from the progress callback.
Bug: http://curl.haxx.se/mail/lib-2014-06/0062.html
Reported by: Jonathan Cardoso Machado
2014-07-02 23:53:25 +02:00
Dan Fandrich
1c1d9a3a86
opts: fixed some CURLOPT references so they get turned into links
2014-07-02 21:40:39 +02:00
Kamil Dudka
24c3cdce88
tool: call PR_Cleanup() on exit if NSPR is used
...
This prevents valgrind from reporting possibly lost memory that NSPR
uses for file descriptor cache and other globally allocated internal
data structures.
2014-07-02 18:11:05 +02:00
Kamil Dudka
7581dee10a
nss: make the fallback to SSLv3 work again
...
This feature was unintentionally disabled by commit ff92fcfb
.
2014-07-02 18:11:05 +02:00
Kamil Dudka
7c21558503
nss: do not abort on connection failure
...
... due to calling SSL_VersionRangeGet() with NULL file descriptor
reported-by: upstream tests 305 and 404
2014-07-02 17:59:03 +02:00