moparisthebest
/
curl
mirror of https://github.com/moparisthebest/curl
1
0
Fork 0
Code Issues Releases Wiki Activity
19,018 Commits 10 Branches 144 Tags 113 MiB
Commit Graph

8004 Commits

Author SHA1 Message Date
Daniel Stenberg a4065ebf1c copyright years: after OCSP stapling changes 2015-01-16 23:23:29 +01:00
Alessandro Ghedini f46c6fbee0 nss: add support for the Certificate Status Request TLS extension 
Also known as "status_request" or OCSP stapling, defined in RFC6066 section 8.

This requires NSS 3.15 or higher.
 2015-01-16 23:23:29 +01:00
Alessandro Ghedini f13669a375 gtls: add support for the Certificate Status Request TLS extension 
Also known as "status_request" or OCSP stapling, defined in RFC6066 section 8.

This requires GnuTLS 3.1.3 or higher to build, however it's recommended to use
at least GnuTLS 3.3.11 since previous versions had a bug that caused the OCSP
response verfication to fail even on valid responses.
 2015-01-16 23:23:29 +01:00
Alessandro Ghedini 3af90a6e19 url: add CURLOPT_SSL_VERIFYSTATUS option 
This option can be used to enable/disable certificate status verification using
the "Certificate Status Request" TLS extension defined in RFC6066 section 8.

This also adds the CURLE_SSL_INVALIDCERTSTATUS error, to be used when the
certificate status verification fails, and the Curl_ssl_cert_status_request()
function, used to check whether the SSL backend supports the status_request
extension.
 2015-01-16 23:23:29 +01:00
Steve Holme bb12d44471 curl_endian: Fixed build when 64-bit integers are not supported 
Bug: http://curl.haxx.se/mail/lib-2015-01/0094.html
Reported-by: John E. Malmberg
 2015-01-16 12:31:24 +00:00
Daniel Stenberg cc28bc472e Curl_pretransfer: reset expected transfer sizes 
Reported-by: Mohammad AlSaleh
Bug: http://curl.haxx.se/mail/lib-2015-01/0065.html
 2015-01-14 23:31:57 +01:00
Marc Hoersken e9834808e9 curl_schannel.c: mark session as removed from cache if not freed 
If the session is still used by active SSL/TLS connections, it
cannot be closed yet. Thus we mark the session as not being cached
any longer so that the reference counting mechanism in
Curl_schannel_shutdown is used to close and free the session.

Reported-by: Jean-Francois Durand
 2015-01-12 21:56:05 +01:00
Guenter Knauf d21b66835f Merge pull request #134 from vszakats/mingw-m64 
add -m64 CFLAGS when targeting mingw64, add -m32/-m64 to LDFLAGS
 2015-01-09 22:03:12 +01:00
Guenter Knauf 4e58589b0e Merge pull request #136 from vszakats/mingw-allow-custom-cflags 
mingw build: allow to pass custom CFLAGS
 2015-01-09 22:02:23 +01:00
Daniel Stenberg e6b4b4b66d NSS: fix compiler error when built http2-enabled 2015-01-09 21:55:52 +01:00
Steve Holme 355bf01c82 gssapi: Remove need for duplicated GSS_C_NT_HOSTBASED_SERVICE definitions 
Better code reuse and consistency in calls to gss_import_name().
 2015-01-09 20:37:47 +00:00
Viktor Szakats b4f13a4952 mingw build: allow to pass custom CFLAGS 2015-01-09 21:03:54 +01:00
Daniel Stenberg 99e71e6a84 FTP: if EPSV fails on IPV6 connections, bail out 
... instead of trying PASV, since PASV can't work with IPv6.

Reported-by: Vojtěch Král
 2015-01-08 22:32:37 +01:00
Daniel Stenberg 9a452ba3a1 FTP: fix IPv6 host using link-local address 
... and make sure we can connect the data connection to a host name that
is longer than 48 bytes.

Also simplifies the code somewhat by re-using the original host name
more, as it is likely still in the DNS cache.

Original-Patch-by: Vojtěch Král
Bug: http://curl.haxx.se/bug/view.cgi?id=1468
 2015-01-08 22:32:37 +01:00
Guenter Knauf c712fe01a9 NetWare build: added TLS-SRP enabled build. 2015-01-08 21:40:35 +01:00
Steve Holme 5c0e66d632 sasl_gssapi: Fixed build on NetBSD with built-in GSS-API 
Bug: http://curl.haxx.se/bug/view.cgi?id=1469
Reported-by: Thomas Klausner
 2015-01-08 19:36:58 +00:00
Viktor Szakats acc8089bc2 add -m64 clags when targeting mingw64, add -m32/-m64 to LDFLAGS 2015-01-08 18:19:03 +01:00
Daniel Stenberg 4ce22c607b darwinssl: fix session ID keys to only reuse identical sessions 
...to avoid a session ID getting cached without certificate checking and
then after a subsequent _enabling_ of the check libcurl could still
re-use the session done without cert checks.

Bug: http://curl.haxx.se/docs/adv_20150108A.html
Reported-by: Marc Hesse
 2015-01-07 22:55:56 +01:00
Daniel Stenberg 178bd7db34 url-parsing: reject CRLFs within URLs 
Bug: http://curl.haxx.se/docs/adv_20150108B.html
Reported-by: Andrey Labunets
 2015-01-07 22:55:56 +01:00
Steve Holme f7d5ecec9c ldap: Convert attribute output to UTF-8 when Unicode 2015-01-07 20:01:29 +00:00
Steve Holme 4e420600c1 ldap: Convert DN output to UTF-8 when Unicode 2015-01-07 20:01:27 +00:00
Daniel Stenberg 9547954978 hostip: remove 'stale' argument from Curl_fetch_addr proto 
Also, remove the log output of the resolved name is NOT in the cache in
the spirit of only telling when something is actually happening.
 2015-01-07 14:06:12 +00:00
Steve Holme 4626f31d0e ldap/imap: Fixed spelling mistake in comments and variable names 
Reported-by: Michael Osipov
 2015-01-07 13:50:56 +00:00
Dan Fandrich 39217edb12 curl_multibyte.h: Eliminated some trailing whitespace 2015-01-05 10:08:08 +01:00
Steve Holme ea93252ef1 ldap: Fixed Unicode usage for all Win32 builds 
Otherwise, the fixes in the previous commits would only be applicable
to IDN and SSPI based builds and not others such as OpenSSL with LDAP
enabled.
 2015-01-04 22:19:30 +00:00
Steve Holme f6b168de4c ldap: Fixed memory leak from commit efb64fdf80 2015-01-04 20:33:58 +00:00
Steve Holme 4113ad50e4 ldap: Fix memory leak from commit 3a805c5cc1 2015-01-04 20:06:04 +00:00
Steve Holme c37dcf0edb ldap: Fixed attribute variable warnings when Unicode is enabled 
Use 'TCHAR *' for local attribute variable rather than 'char *'.
 2015-01-04 16:25:17 +00:00
Steve Holme 5359936d07 ldap: Fixed DN variable warnings when Unicode is enabled 
Use 'TCHAR *' for local DN variable rather than 'char *'.
 2015-01-04 16:21:13 +00:00
Steve Holme ea4f98dca6 ldap: Remove the unescape_elements() function 
Due to the recent modifications this function is no longer used.
 2015-01-04 16:11:36 +00:00
Steve Holme f9b50910e0 ldap.c: Fixed compilation warning 
ldap.c:98: warning: extra tokens at end of #endif directive
 2015-01-04 16:11:08 +00:00
Steve Holme 84143dc57d ldap: Fixed support for Unicode filter in Win32 search call 2015-01-04 15:16:22 +00:00
Steve Holme 747bad7c09 ldap.c: Fixed compilation warning 
ldap.c:802: warning: comparison between signed and unsigned integer
            expressions
 2015-01-04 15:16:21 +00:00
Steve Holme 3a805c5cc1 ldap: Fixed support for Unicode attributes in Win32 search call 2015-01-04 14:27:51 +00:00
Steve Holme 7241527956 ldap: Fixed memory leak from commit efb64fdf80 
The unescapped DN was not freed after a successful character conversion.
 2015-01-04 14:21:29 +00:00
Steve Holme 825b0c7968 ldap.c: Fixed compilation error 
ldap.c:738: error: macro "LDAP_TRACE" passed 2 arguments, but takes
            just 1
 2015-01-04 13:16:20 +00:00
Steve Holme 2948954535 ldap.c: Fixed compilation warning 
ldap.c:89: warning: extra tokens at end of #endif directive
 2015-01-04 13:04:06 +00:00
Steve Holme efb64fdf80 ldap: Fixed support for Unicode DN in Win32 search call 2015-01-04 12:10:26 +00:00
Steve Holme 6416dc998b ldap: Fixed Unicode user and password in Win32 bind calls 2015-01-04 01:57:09 +00:00
Steve Holme 0f26148423 ldap: Fixed Unicode host name in Win32 initialisation calls 2015-01-04 01:56:08 +00:00
Steve Holme f460f12c9d ldap: Use host.dispname for infof() connection failure messages 
As host.name may be encoded use dispname for infof() failure messages.
 2015-01-04 00:30:55 +00:00
Steve Holme 23bb054129 ldap: Prefer 'CURLcode result' for curl result codes 2015-01-03 18:46:32 +00:00
Steve Holme d4b540f85a ldap: Pass write length in all Curl_client_write() calls 
As we get the length for the DN and attribute variables, and we know
the length for the line terminator, pass the length values rather than
zero as this will save Curl_client_write() from having to perform an
additional strlen() call.
 2015-01-03 18:46:31 +00:00
Steve Holme 4967109ffc ldap: Fixed attribute memory leaks on failed client write 
Fixed memory leaks from commit 086ad79970 as was noted in the commit
comments.
 2015-01-03 18:46:30 +00:00
Steve Holme a68aa81320 ldap: Fixed DN memory leaks on failed client write 
Fixed memory leaks from commit 086ad79970 as was noted in the commit
comments.
 2015-01-03 18:46:28 +00:00
Steve Holme 0ea9381b7d curl_ntlm_core.c: Fixed compilation warning from commit 1cb17b2a5d 
curl_ntlm_core.c:146: warning: passing 'DES_cblock' (aka 'unsigned char
                      [8]') to parameter of type 'char *' converts
                      between pointers to integer types with different
                      sign
 2015-01-02 21:14:36 +00:00
Steve Holme 1cb17b2a5d ntlm: Use extend_key_56_to_64() for all cryptography engines 
Rather than duplicate the code in setup_des_key() for OpenSSL and in
extend_key_56_to_64() for non-OpenSSL based crypto engines, as it is
the same, use extend_key_56_to_64() for all engines.
 2015-01-02 20:17:05 +00:00
Steve Holme 34f0bd110f curl_ntlm_core.c: Fixed compilation warning 
curl_ntlm_core.c:458: warning: 'ascii_uppercase_to_unicode_le' defined
                      but not used
 2015-01-02 16:28:03 +00:00
Steve Holme a75ede4b9b endian: Fixed bit-shift in 64-bit integer read functions 
From commit 43792592ca and 4bb5a351b2.

Reported-by: Michael Osipov
 2015-01-02 15:53:42 +00:00
Steve Holme a3daf542ad smb: Use endian functions for reading NBT and message size values 2015-01-01 20:48:05 +00:00