nickzman
e9665e9658
Merge pull request #93 from d235j/darwinssl_ip_address_fix
...
darwinssl: don't omit CN verification when an IP address is used
2014-02-25 17:36:44 -06:00
Daniel Stenberg
d48eb1dd69
parse_args: fix a too long source code line
2014-02-25 23:36:13 +01:00
naota
4548e0fe71
configure: Tiny fix to honor POSIX
...
Change "==" to "=" to honor POSIX test construction.
2014-02-25 23:29:13 +01:00
Steve Holme
70052836d1
tool_help: Moved --no-alpn and --no-npn to be listed alphabetically
...
...and added the HTTP suffix as these options are only used for HTTP2
based connections.
2014-02-25 21:38:36 +00:00
Steve Holme
249dc83571
tool: Moved --showerror to the global config
...
Other global options such as --libcurl, --trace and --verbose to
follow.
2014-02-25 20:52:36 +00:00
Steve Holme
0704dd770d
tool_getparam: Added global config to getparameter()
...
In preparation for parsing global options added the GlobalConfig
structure to the getparameter() function.
2014-02-25 19:38:17 +00:00
Steve Holme
ad388a7d37
tool_getparam.h: Fixed compilation warning
...
warning: declaration of 'struct GlobalConfig' will not be visible
outside of this function
2014-02-25 07:16:51 +00:00
Marc Hoersken
87683d4b76
RELEASE-NOTES: Updated for 63fc8ee7
2014-02-24 22:29:25 +01:00
Steve Holme
f35668985e
tool_cfgable: Added support for knowing the current operation
2014-02-24 21:25:36 +00:00
Marc Hoersken
e904b15f21
curl_schannel.c: Updated copyright years
2014-02-24 22:12:55 +01:00
David Ryskalczyk
63fc8ee7be
winssl: Enable hostname verification of IP address using SAN or CN
...
Original commit message was:
Don't omit CN verification in SChannel when an IP address is used.
Side-effect of this change:
SChannel and CryptoAPI do not support the iPAddress subjectAltName
according to RFC 2818. If present, SChannel will first compare the
IP address to the dNSName subjectAltNames and then fallback to the
most specific Common Name in the Subject field of the certificate.
This means that after this change curl will not connect to SSL/TLS
hosts as long as the IP address is not specified in the SAN or CN
of the server certificate or the verifyhost option is disabled.
2014-02-24 22:12:55 +01:00
Steve Holme
c27cc68815
tool_operate: Moved easy handle cleanup into tool_main
2014-02-24 20:35:48 +00:00
Marc Hoersken
0af2322bc6
tool_hugehelp: partially reverted 24e22e10
...
Compilation was not possible if manuel is disabled due this error:
error: macro "hugehelp" passed 1 arguments, but takes just 0
void hugehelp(void) {}
2014-02-24 21:30:36 +01:00
Steve Holme
59b5ef444e
tool_main: Moved easy handle into global config structure
2014-02-24 20:01:37 +00:00
David Ryskalczyk
afc6e5004f
Don't omit CN verification in DarwinSSL when an IP address is used.
2014-02-23 12:37:27 -05:00
Steve Holme
0d9ddf91ca
tool: Fixed line longer than 79 characters from commit 705a4cb549
2014-02-23 16:13:09 +00:00
Steve Holme
cc31a4a645
tool_main: Corrected typo from commit d6b9f054e9
in Symbian code
2014-02-23 14:10:05 +00:00
Steve Holme
665096e24c
tool_main: Moved OperateConfig cleanup into main_free()
2014-02-23 13:44:59 +00:00
Steve Holme
d6b9f054e9
tool_main: Moved initial OperateConfig creation into main_init()
2014-02-23 13:35:51 +00:00
Steve Holme
2249f7fe70
tool_cfgable: Added global config structure
2014-02-23 13:12:47 +00:00
Steve Holme
705a4cb549
tool_cfgable: Renamed Configurable structure to OperationConfig
...
To allow for the addition of a global config structure and prevent
confusion between the two.
2014-02-23 13:09:20 +00:00
Steve Holme
6512e93be1
tool: Fixed incorrect return code with --version from commit c10bf9bb36
2014-02-23 12:13:39 +00:00
Steve Holme
3674f2021d
RELEASE-NOTES: Synced with 8c80840d01
2014-02-23 11:24:46 +00:00
Steve Holme
8c80840d01
tool_getparam: Moved tool_help() call into operate()
2014-02-23 11:16:05 +00:00
Steve Holme
24e22e1078
tool_getparam: Moved hugehelp() call into operate()
2014-02-23 11:12:03 +00:00
Steve Holme
c10bf9bb36
tool_getparam: Moved tool_version_info() call into operate()
2014-02-23 11:10:01 +00:00
Steve Holme
e6e8b14405
tool_cfgable: Removed list_engine flag from config structure
...
In preparation for separating the global config options from the per
operation config options, reworked the list engines code to not use a
member variable in the Configurable structure.
2014-02-22 21:00:03 +00:00
Steve Holme
b914e7ed02
tool_operate: Start to use CURLcode rather than int for return codes
...
To help assist with the detection of incorrect return codes, as per
commits ee23d13a79
, 33b8960dc8
and aba98991a5
, updated the operate
based functions to return CURLcode error codes.
2014-02-22 18:57:02 +00:00
Steve Holme
ee23d13a79
tool: Fixed incorrect return code when setting HTTP request fails
...
During initialisation SetHTTPrequest() may fail and cURL would return
PARAM_BAD_USE, which is equivalent to CURLE_NOT_BUILT_IN in cURL error
terms.
Instead, return CURLE_FAILED_INIT as we do for other functions that may
fail during initialisation.
2014-02-22 18:14:33 +00:00
Steve Holme
dcbae71812
tool_getparam: Moved version information into separate function in tool_help
2014-02-22 17:47:13 +00:00
Steve Holme
67f051051f
tool_operhlp.h: Fixed compilation warning
...
warning: 'struct Configurable' declared inside parameter list
2014-02-22 17:13:02 +00:00
Steve Holme
b98c74b67e
tool_operhlp: Consolidated engine output code into tool_help
2014-02-22 16:50:29 +00:00
Steve Holme
6969e24aee
tool_operate: Moved list engines into separate function in tool_help
2014-02-22 16:47:59 +00:00
Marc Hoersken
e08d0662b7
RELEASE-NOTES: added note about impact of changes to WinSSL defaults
2014-02-22 16:57:29 +01:00
Marc Hoersken
b5486adc9b
stunnel: regenerated self-signed test certificate with SHA1 hash
...
The previous test certificate contained a MD5 hash which is not
supported using TLSv1.2 with Schannel on Windows 7 or newer.
See the update to this blog post on IEInternals / MSDN:
http://blogs.msdn.com/b/ieinternals/archive/2011/03/25/
misbehaving-https-servers-impair-tls-1.1-and-tls-1.2.aspx
"Update: If the server negotiates a TLS1.2 connection with a
Windows 7 or 8 schannel.dll-using client application, and it
provides a certificate chain which uses the (weak) MD5 hash
algorithm, the client will abort the connection (TCP/IP FIN)
upon receipt of the certificate."
2014-02-22 16:49:09 +01:00
Dan Fandrich
a660c0dbe6
easy: Fixed a memory leak on OOM condition
2014-02-22 15:41:59 +01:00
Steve Holme
3521e4e40d
tool_paramhlp: Fixed compilation warnings
...
declaration of 'index' shadows a global declaration
2014-02-20 23:18:48 +00:00
Steve Holme
873178a657
lib1515.c: Fixed #include path in commit 647f83e809
2014-02-19 20:36:36 +00:00
Maks Naumov
647f83e809
test1515: fix compilation with msvc
...
... or any other systems lacking a native snprintf
2014-02-19 13:50:17 +01:00
Daniel Stenberg
0d6225ad0d
SFTP: skip reading the dir when NOBODY=1
...
When asking for an SFTP directory with NOBODY set, no directory contents
should be retrieved.
Bug: http://curl.haxx.se/mail/lib-2014-02/0155.html
2014-02-19 10:40:28 +01:00
Dan Fandrich
8749bbe7fd
axtls: comment the call ssl_read repeatedly loop
2014-02-18 21:14:09 +01:00
Kamil Dudka
03c288202e
curl.1: update the description of --tlsv1
...
... and mention the --tlsv1.[0-2] options in the --tslv1 entry
Reported-by: Hubert Kario
2014-02-18 10:35:41 +01:00
Daniel Stenberg
938f93549f
curl_version.3: recommend using curl_version_info() instead
2014-02-18 08:59:56 +01:00
Daniel Stenberg
911a5c3646
curl_version_info.3: added *HTTP2
...
... and edited language slightly
2014-02-18 08:59:38 +01:00
Daniel Stenberg
f207f7e427
curl_multi_assign.3: updated language
2014-02-18 08:51:03 +01:00
Daniel Stenberg
b1096d2352
libcurl.3: edited slightly to improve readability
2014-02-18 08:46:46 +01:00
Daniel Stenberg
452a4d90a4
curl_easy_perform.3: extended and clarified
2014-02-18 08:30:59 +01:00
Daniel Stenberg
860424bb06
curl_multi_add_handle.3: clarify multi vs easy use
...
it is only WHILE added to a multi handle that it can't be used with the
easy interface
2014-02-18 08:29:39 +01:00
Tatsuhiro Tsujikawa
035b91a26c
http2: Support HTTP POST/PUT
...
This patch enables HTTP POST/PUT in HTTP2.
We disabled Expect header field and chunked transfer encoding
since HTTP2 forbids them.
In HTTP1, Curl sends small upload data with request headers, but
HTTP2 requires upload data must be in DATA frame separately.
So we added some conditionals to achieve this.
2014-02-17 23:45:58 +01:00
Daniel Stenberg
e9dfdef411
RELEASE-NOTES: synced with 854aca5420
2014-02-17 11:16:41 +01:00