Daniel Stenberg
31be461c6b
ConnectionExists: for NTLM re-use, require credentials to match
...
CVE-2015-3143
Bug: http://curl.haxx.se/docs/adv_20150422A.html
Reported-by: Paras Sethia
2015-04-21 23:20:36 +02:00
byronhe
6088fbce06
openssl: add OPENSSL_NO_SSL3_METHOD check
2015-04-21 15:25:21 -04:00
Daniel Stenberg
cf2d21d86f
CURLOPT_HEADERFUNCTION.3: match parameter name in synopsis and desc
...
Bug: https://github.com/bagder/curl/issues/229
Reported-by: bsammon
2015-04-20 23:40:40 +02:00
Mostyn Bramley-Moore
875a6d9324
configure --with-nss: remove unneeded libs from the fallback
2015-04-20 10:25:07 +02:00
Daniel Stenberg
1b8f9c95b6
contributors.sh: fix help output, filter out (-prefix from names
2015-04-20 10:15:31 +02:00
Daniel Stenberg
9d704b3df9
RELEASE-NOTES: synced with cc0e7ebc3b
2015-04-20 10:05:46 +02:00
Michael Stapelberg
cc0e7ebc3b
CURLMOPT_TIMERFUNCTION.3: Clarify, add an example
2015-04-19 23:29:51 +02:00
Viktor Szakáts
3a87bdebd1
vtls/openssl: use https in URLs and a comment typo fixed
2015-04-19 19:52:37 +02:00
Daniel Stenberg
63c64e05a4
curl_version_info.3: fixed the 'protocols' variable type
...
Reported-by: John Marshall
Bug: https://github.com/bagder/curl/issues/225
2015-04-18 22:46:52 +02:00
Dan Fandrich
1e6d0e06f7
test1423: added missing "file" to server section
2015-04-18 21:12:36 +02:00
Daniel Stenberg
b6e477890f
TheArtOfHttpScripting: Multiple URLs + Multiple HTTP methods
...
... and some minor edits
2015-04-17 23:53:11 +02:00
Daniel Stenberg
2eb02480ef
Revert "HTTP: don't abort connections with pending Negotiate authentication"
...
This reverts commit 5dc68dd609
.
Bug: https://github.com/bagder/curl/issues/223
Reported-by: Michael Osipov
2015-04-17 23:23:42 +02:00
Jay Satiro
f70112522f
cyassl: Fix include order
...
Prior to this change CyaSSL's build options could redefine some generic
build symbols.
http://curl.haxx.se/mail/lib-2015-04/0069.html
2015-04-17 15:24:04 -04:00
Kamil Dudka
8dc3bbf0f8
configure --with-nss: drop redundant if statement
2015-04-17 16:43:20 +02:00
Kamil Dudka
67a8bbb51a
configure --with-nss=PATH: query pkg-config if available
...
Bug: https://github.com/bagder/curl/pull/171
2015-04-17 16:43:20 +02:00
Daniel Stenberg
691a07dac6
parsecfg: do not continue past a zero termination
...
When a config file line ends without newline, the parsing function could
continue reading beyond that point in memory.
Reported-by: Hanno Böck
2015-04-17 11:44:57 +02:00
Jay Satiro
05e4137d31
gitignore: Ignore Windows build output directories
2015-04-16 18:24:42 -04:00
Daniel Stenberg
82805b56b9
RELEASE-NOTES: synced with 1ba6e4c88e
2015-04-15 23:21:49 +02:00
Daniel Stenberg
1ba6e4c88e
TODO: 17.9 Choose the name of file in braces for complex URLs
2015-04-15 21:13:25 +02:00
Daniel Stenberg
8f78794fd5
TODO: a little caution that maybe not all ideas are still good
2015-04-15 20:56:43 +02:00
Daniel Stenberg
0cbbbbdc31
TODO: 17.8 offer color-coded HTTP header output
2015-04-15 14:29:30 +02:00
Daniel Stenberg
78843afb9f
TODO: 17.7 warning when sending binary output to terminal
2015-04-15 14:27:32 +02:00
Daniel Stenberg
ad48b177c3
KNOWN_BUGS: #90 IMAP "SEARCH ALL" truncates output on large boxes
2015-04-15 02:48:20 +02:00
Jay Satiro
9430dd583e
cyassl: Add support for TLS extension SNI
2015-04-14 02:05:25 -04:00
Matthew Hall
8df4b5af3f
gitignore: ignore test-driver file
2015-04-13 22:25:04 +02:00
Matthew Hall
a471a9f3b6
vtls_openssl: improve PKCS#12 load failure error message
2015-04-13 22:25:04 +02:00
Matthew Hall
27ac643455
vtls_openssl: fix minor typo in PKCS#12 load routine
2015-04-13 22:25:04 +02:00
Matthew Hall
b3175a767d
vtls_openssl: improve client certificate load failure error messages
2015-04-13 22:25:04 +02:00
Matthew Hall
58b0a8b059
vtls_openssl: remove ambiguous SSL_CLIENT_CERT_ERR constant
2015-04-13 22:25:04 +02:00
Daniel Stenberg
9e7125a1db
BUGS: refer to the github issue tracker now as primary
2015-04-13 16:43:52 +02:00
Daniel Stenberg
7fe172d3b2
firefox-db2pem: fix wildcard to find Firefox default profile
...
At some point, Firefox has changed and generates different directory
names for the default profile that made this script fail to find them.
Bug: https://github.com/bagder/curl/issues/207
Reported-by: sneakyimp
2015-04-13 15:31:26 +02:00
Jay Satiro
72bea7cc65
cyassl: Include the CyaSSL build config
...
CyaSSL >= 2.6.0 may have an options.h that was generated during
its build by configure.
2015-04-11 23:58:42 -04:00
Jay Satiro
139141f8d7
build: Generate source prerequisites for Visual Studio in generate.bat
...
Prior to this change Visual Studio builds could fail due to missing
prerequisites src/tool_hugehelp.c and include/curl/curlbuild.h.
http://curl.haxx.se/mail/lib-2015-04/0034.html
2015-04-11 02:16:59 -04:00
Viktor Szakats
e44155156a
lib/makefile.m32: add missing libs to build libcurl.dll
...
Add 'gdi32' and 'crypt32' Windows implibs to avoid failure
while building libcurl.dll using the mingw compiler.
The same logic is used in 'src/makefile.m32' when
building curl.exe.
2015-04-09 21:34:14 +02:00
Kamil Dudka
992a731116
test142[23]: verify that an empty file is stored on success
2015-04-08 09:43:13 +02:00
Kamil Dudka
261a0fedcf
src/tool_operate: create output file on successful download
...
... of an empty file
Bug: https://github.com/bagder/curl/issues/183
2015-04-08 09:43:08 +02:00
Kamil Dudka
f251417d85
src/tool_cb_wrt: separate fnc for output file creation
2015-04-08 09:36:56 +02:00
Da-Yoon Chung
a9e46749b2
lib/transfer.c: Remove factor of 8 from sleep time calculation
...
The factor of 8 is a bytes-to-bits conversion factor, but pkt_size and
rate_bps are both in bytes. When using the rate limiting option, curl
waits 8 times too long, and then transfers very quickly until the
average rate reaches the limit. The average rate follows the limit over
time, but the actual traffic is bursty.
Thanks-to: Benjamin Gilbert
2015-04-07 21:55:23 +02:00
Jay Satiro
c3101ae287
x509asn1: Silence x64 loss-of-data warning on RSA key length assignment
...
The key length in bits will always fit in an unsigned long so the
loss-of-data warning assigning the result of x64 pointer arithmetic to
an unsigned long is unnecessary.
2015-04-06 17:55:48 +02:00
Jay Satiro
d363c07912
cyassl: Use CYASSL_MAX_ERROR_SZ for error buffer size
...
Also fix it so that all ERR_error_string calls use an error buffer.
CyaSSL's implementation of ERR_error_string only writes the error when
an error buffer is passed.
http://www.yassl.com/forums/topic599-openssl-compatibility-and-errerrorstring.html
2015-04-06 17:54:14 +02:00
Jay Satiro
a30be951d6
cyassl: Remove 'Connecting to' message from cyassl_connect_step2
...
Prior to this change libcurl could show multiple 'CyaSSL: Connecting to'
messages since cyassl_connect_step2 is called multiple times, typically.
The message is superfluous even once since libcurl already informs the
user elsewhere in code that it is connecting.
2015-04-05 18:18:11 +02:00
Viktor Szakats
f2a0b2164a
checksrc.bat: quotes to support an SRC_DIR with spaces
2015-04-05 18:07:40 +02:00
Daniel Stenberg
81ee1e69fe
hostip: fix compiler warnings
...
introduced in the previous mini-series of 3 commits
2015-04-03 23:41:58 +02:00
Stefan Bühler
846f492053
actually implement CURLOPT_RESOLVE removals
...
- also log when a CURLOPT_RESOLVE entry couldn't get parsed
2015-04-03 16:46:14 +02:00
Stefan Bühler
b4be97fb67
move Curl_share_lock and ref counting into Curl_fetch_addr
2015-04-03 16:46:14 +02:00
Stefan Bühler
0db831976e
fix refreshing of obsolete dns cache entries
...
- cache entries must be also refreshed when they are in use
- have the cache count as inuse reference too, freeing timestamp == 0 special
value
- use timestamp == 0 for CURLOPT_RESOLVE entries which don't get refreshed
- remove CURLOPT_RESOLVE special inuse reference (timestamp == 0 will prevent refresh)
- fix Curl_hostcache_clean - CURLOPT_RESOLVE entries don't have a special
reference anymore, and it would also release non CURLOPT_RESOLVE references
- fix locking in Curl_hostcache_clean
- fix unit1305.c: hash now keeps a reference, need to set inuse = 1
2015-04-03 16:46:14 +02:00
Daniel Stenberg
369430cd17
RELEASE-NOTES: synced with abf6bddc14
2015-04-03 11:03:21 +02:00
Jay Satiro
abf6bddc14
checksrc.bat: Check lib\vtls source
2015-04-03 10:53:31 +02:00
Jay Satiro
f203edc544
cyassl: Set minimum protocol version before CTX callback
...
This change is to allow the user's CTX callback to change the minimum
protocol version in the CTX without us later overriding it, as we did
prior to this change.
2015-04-03 10:51:58 +02:00
Jay Satiro
e2a9ebb321
build-openssl.bat: Fix mixed line endings
...
Use LF not CRLF, throughout. msysgit will only convert a file to CRLF
on checkout if it's not mixed.
2015-04-02 17:21:09 +02:00