Daniel Gustafsson
3509aa8023
darwinssl: Avoid parsing certificates when not in verbose mode
...
The information extracted from the server certificates in step 3 is only
used when in verbose mode, and there is no error handling or validation
performed as that has already been done. Only run the certificate
information extraction when in verbose mode and libcurl was built with
verbose strings.
Closes https://github.com/curl/curl/pull/1246
2017-02-07 02:39:14 -05:00
JDepooter
18495ecacc
schannel: Remove incorrect SNI disabled message
...
- Remove the SNI disabled when host verification disabled message
since that is incorrect.
- Show a message for legacy versions of Windows <= XP that connections
may fail since those versions of WinSSL lack SNI, algorithms, etc.
Bug: https://github.com/curl/curl/pull/1240
2017-02-07 02:39:13 -05:00
Daniel Stenberg
5aef498b8a
CHANGES: spell fix, use correct path to script
2017-02-07 08:22:37 +01:00
Daniel Stenberg
d3ab22f875
CHANGES.0: removed
...
This is the previously manually edited changelog, not touched since Aug
2015. Still present in git for those who wants it.
2017-02-07 08:20:10 +01:00
Dan Fandrich
edb2d02855
cmdline-opts: Fixed build and test in out of source tree builds
2017-02-06 23:37:05 +01:00
Viktor Szakats
88bdd7cf6f
use *.sourceforge.io and misc URL updates
...
Ref: https://sourceforge.net/blog/introducing-https-for-project-websites/
Closes: https://github.com/curl/curl/pull/1247
2017-02-06 19:21:05 +00:00
Jay Satiro
423a93ce32
docs: Add more HTTPS proxy documentation
...
- Document HTTPS proxy type.
- Document --write-out %{proxy_ssl_verify_result}.
- Document SOCKS proxy + HTTP/HTTPS proxy combination.
HTTPS proxy support was added in 7.52.0 for OpenSSL, GnuTLS and NSS.
Ref: https://github.com/curl/curl/commit/cb4e2be
2017-02-06 03:13:42 -05:00
Jay Satiro
a49d2d0e25
OS400: Fix symbols
...
- s/CURLOPT_SOCKS_PROXY/CURLOPT_PRE_PROXY
Follow-up to 7907a2b
and 845522c
.
- Fix incorrect id for CURLOPT_PROXY_PINNEDPUBLICKEY.
- Add id for CURLOPT_ABSTRACT_UNIX_SOCKET.
Bug: https://github.com/curl/curl/issues/1237
Reported-by: jonrumsey@users.noreply.github.com
2017-02-01 18:28:29 -05:00
Sean Burford
1c877a0712
cmake: Support curl --xattr when built with cmake
...
- Test for and set HAVE_FSETXATTR when support for extended file
attributes is present.
Closes https://github.com/curl/curl/pull/1176
2017-02-01 01:11:52 -05:00
Adam Langley
028391df5d
openssl: Don't use certificate after transferring ownership
...
SSL_CTX_add_extra_chain_cert takes ownership of the given certificate
while, despite the similar name, SSL_CTX_add_client_CA does not. Thus
it's best to call SSL_CTX_add_client_CA before
SSL_CTX_add_extra_chain_cert, while the code still has ownership of the
argument.
Closes https://github.com/curl/curl/pull/1236
2017-01-31 21:04:31 -05:00
Antoine Aubert
a90a5bccd4
mbedtls: implement CTR-DRBG and HAVEGE random generators
...
closes #1227
2017-01-29 11:37:22 +01:00
Daniel Stenberg
a1a5dd14d7
docs: we no longer ship HTML versions of man pages
...
... refer to the web site for the web versions.
2017-01-29 11:11:19 +01:00
railsnewbie257
bd7eaf75f1
docs: proofread README.netware README.win32
...
Closes #1231
2017-01-29 11:11:14 +01:00
Daniel Stenberg
54210fa5b0
RELEASE-NOTES; synced with ab08d82648
2017-01-28 23:58:13 +01:00
Michael Kaufmann
ab08d82648
mbedtls: disable TLS session tickets
...
SSL session reuse with TLS session tickets is not supported yet.
Use SSL session IDs instead.
See https://github.com/curl/curl/issues/1109
2017-01-28 20:15:30 +01:00
Michael Kaufmann
511674ab27
gnutls: disable TLS session tickets
...
SSL session reuse with TLS session tickets is not supported yet.
Use SSL session IDs instead.
Fixes https://github.com/curl/curl/issues/1109
2017-01-28 20:09:37 +01:00
Michael Kaufmann
bcca842e0d
polarssl: fix hangs
...
This bugfix is similar to commit c111178bd4
.
2017-01-28 19:47:08 +01:00
Daniel Stenberg
cbd4e1fa0d
cookies: do not assume a valid domain has a dot
...
This repairs cookies for localhost.
Non-PSL builds will now only accept "localhost" without dots, while PSL
builds okeys everything not listed as PSL.
Added test 1258 to verify.
This was a regression brought in a76825a5ef
2017-01-27 13:32:02 +01:00
Daniel Stenberg
074405786b
TODO: remove "Support TLS v1.3"
...
Support is trickling in already.
2017-01-27 10:00:33 +01:00
railsnewbie257
77350cef00
INTERNALS.md: language improvements
...
Closes #1226
2017-01-24 23:42:16 +01:00
Daniel Stenberg
d8a3aa702a
telnet: fix windows compiler warnings
...
Thumbs-up-by: Jay Satiro
Closes #1225
2017-01-24 08:45:25 +01:00
Daniel Stenberg
8611d985ee
VC: remove the makefile.vc6 build infra
...
The winbuild/ build files is now the single MSVC makefile build choice.
Closes #1215
2017-01-23 14:27:32 +01:00
Jay Satiro
d0837f36db
cmdline-opts/gen.pl: Open input files in CRLF mode
...
On Windows it's possible to have input files with CRLF line endings and
a perl that defaults to LF line endings (eg msysgit). Currently that
results in generator output of mixed line endings of CR, LF and CRLF.
This change fixes that issue in the most succinct way by opening the
files in :crlf text mode even when the perl being used does not default
to that mode. (On operating systems that don't have a separate text mode
it's essentially a no-op.) The output continues to be in the perl's
native line ending.
2017-01-23 13:57:54 +01:00
Daniel Stenberg
4c49b83597
docs/curl.1: generate from the cmdline-opts script
2017-01-23 13:57:54 +01:00
Daniel Stenberg
fd3ca89ced
vtls: source indentation fix
2017-01-22 12:00:28 +01:00
Daniel Stenberg
40e3d6c8c2
contri*.sh: cut off parentheses from names too
2017-01-20 17:10:08 +01:00
Daniel Stenberg
a2bcaa3194
RELEASE-NOTES: synced with 01ab7c30bb
2017-01-20 16:56:05 +01:00
Daniel Stenberg
01ab7c30bb
vtls: fix PolarSSL non-blocking handling
...
A regression brought in cb4e2be
Reported-by: Michael Kaufmann
Bug: https://github.com/curl/curl/issues/1174#issuecomment-274018791
2017-01-20 10:46:05 +01:00
Antoine Aubert
06b1197eeb
vtls: fix mbedtls multi non blocking handshake.
...
When using multi, mbedtls handshake is in non blocking mode. vtls must
set wait for read/write flags for the socket.
Closes #1223
2017-01-20 08:31:03 +01:00
Richy Kim
6b7616690e
CURLOPT_BUFFERSIZE: support enlarging receive buffer
...
Replace use of fixed macro BUFSIZE to define the size of the receive
buffer. Reappropriate CURLOPT_BUFFERSIZE to include enlarging receive
buffer size. Upon setting, resize buffer if larger than the current
default size up to a MAX_BUFSIZE (512KB). This can benefit protocols
like SFTP.
Closes #1222
2017-01-19 23:38:04 +01:00
Daniel Stenberg
81cb255cb3
sws: use SOCKERRNO, not errno
...
Reported-by: Gisle Vanem
2017-01-19 23:04:53 +01:00
Michael Kaufmann
1a9a99adf9
KNOWN_BUGS: HTTP/2 server push enabled when no pushes can be accepted
...
This has been implemented with commit 9ad034e
.
2017-01-19 21:02:11 +01:00
Viktor Szakats
df86db7dee
*.rc: escape non-ASCII/non-UTF-8 character for clarity
...
Closes https://github.com/curl/curl/pull/1217
2017-01-19 11:35:48 +00:00
Kamil Dudka
f1261b1253
docs: non-blocking SSL handshake is now supported with NSS
...
Implemented since curl-7_36_0-130-g8868a22
Reported-by: Fahim Chandurwala
2017-01-19 12:20:04 +01:00
Michael Kaufmann
2d6831b758
CURLOPT_CONNECT_TO: Fix compile warnings
...
Fix compile warnings that appeared only when curl has been configured
with '--disable-verbose'.
2017-01-18 13:02:25 +01:00
Daniel Stenberg
3a4326efd5
usercertinmem.c: improve the short description
2017-01-18 08:09:09 +01:00
Daniel Stenberg
e9f45aa91b
parseurl: move back buffer to function scope
...
Regression since 1d4202ad
, which moved the buffer into a more narrow
scope, but the data in that buffer was used outside of that more narrow
scope.
Reported-by: Dan Fandrich
Bug: https://curl.haxx.se/mail/lib-2017-01/0093.html
2017-01-18 00:01:03 +01:00
Jay Satiro
afd1564215
openssl: Fix random generation
...
- Fix logic error in Curl_ossl_random.
Broken a few days ago in 807698d
.
2017-01-17 02:53:59 -05:00
Daniel Stenberg
25543b8392
TODO: share OpenSSL contexts
...
By supporting this, subsequent connects would load a lot less data from
disk.
Closes #1110
2017-01-17 07:58:27 +01:00
Daniel Stenberg
8f8ba61224
bump: next release will be 7.53.0
2017-01-16 08:34:15 +01:00
Kamil Dudka
25ed9ea512
nss: use the correct lock in nss_find_slot_by_name()
2017-01-15 14:46:01 +01:00
Alessandro Ghedini
9ad034e5a1
http2: disable server push if not requested
...
Ref: https://github.com/curl/curl/pull/1160
2017-01-15 11:45:32 +00:00
railsnewbie257
02ee3b2737
docs: improved language in README.md HISTORY.md CONTRIBUTE.md
...
Closes #1211
2017-01-14 16:02:33 +01:00
Alessandro Ghedini
1ad1a0d186
http: print correct HTTP string in verbose output when using HTTP/2
...
Before:
```
% src/curl https://sigsegv.ninja/ -v --http2
...
> GET / HTTP/1.1
> Host: sigsegv.ninja
> User-Agent: curl/7.52.2-DEV
> Accept: */*
>
...
```
After:
```
% src/curl https://sigsegv.ninja/ -v --http2
...
> GET / HTTP/2
> Host: sigsegv.ninja
> User-Agent: curl/7.52.2-DEV
> Accept: */*
>
```
2017-01-14 12:50:51 +00:00
Daniel Stenberg
e3b911463a
TODO: send only part of --data
...
Closes #1200
2017-01-14 12:49:12 +01:00
Daniel Stenberg
535a29c01a
TODO: implemened "--fail-fast to exit on first transfer fail"
...
Even though it is called --fail-early
2017-01-14 12:42:53 +01:00
Daniel Stenberg
9dea60e550
TODO: Chunked transfer multipart formpost
...
Closes #1139
2017-01-14 12:41:46 +01:00
Daniel Stenberg
eb6cf75130
TODO: Improve formpost API, not just add an easy argument
2017-01-14 12:34:53 +01:00
Daniel Stenberg
6e12bb7cbe
addrinfo: fix compiler warning on offsetof() use
...
curl_addrinfo.c:519:20: error: conversion to ‘curl_socklen_t {aka
unsigned int}’ from ‘long unsigned int’ may alter its value
[-Werror=conversion]
Follow-up to 1d786faee1
2017-01-14 00:00:07 +01:00
Daniel Stenberg
d24c4ea2d0
THANKS-filter: Jiri Malak
2017-01-13 23:26:09 +01:00