aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2013-10-18email: Fixed QUIT / LOGOUT being sent when SSL connect failsSteve Holme
2013-10-18curl_sasl: initialize NSS before using cryptoKamil Dudka
2013-10-17SSL: Follow up work to commits 6a1363128f1107 and 87861c9b0e8155Steve Holme
Changed the failure code when TLS v1.1 and v1.2 is requested but not supported by older OpenSSL versions, following review from libcurl peers, and reduced the number of required preprocessor if statements.
2013-10-16SSL: Added unsupported cipher version check for OpenSSLSteve Holme
...with the use of CURL_SSLVERSION_TLSv1_1 and CURL_SSLVERSION_TLSv1_2 being conditional on OpenSSL v1.0.1 as the appropriate flags are not supported under earlier versions.
2013-10-16DOCS: Added libcurl version number to CURLOPT_SSLVERSIONSteve Holme
2013-10-16SSL: Corrected version number for new symbols from commit ad34a2d5c87c7fSteve Holme
2013-10-16SSL: Corrected typo from commit 87861c9b0e8155Steve Holme
2013-10-16SSL: Fixed OpenSSL builds prior to v1.0.1Steve Holme
Commit ad34a2d5c87c7f relies on definitions that are only present in OpenSSL v1.0.1 and up. This quick fix allows the builds that use older versions of OpenSSL to continue building.
2013-10-15test906: Fixed failing test on some platformsSteve Holme
Bug: http://sourceforge.net/p/curl/bugs/1291 Reported-by: David Walser
2013-10-15NSS: acknowledge the --no-sessionid/CURLOPT_SSL_SESSIONID_CACHE optionPaul Donohue
2013-10-15ssh: Handle successful SSH_USERAUTH_NONETyler Hall
According to the documentation for libssh2_userauth_list(), a NULL return value is not necessarily an error. You must call libssh2_userauth_authenticated() to determine if the SSH_USERAUTH_NONE request was successful. This fixes a segv when using sftp on a server that allows logins with an empty password. When NULL was interpreted as an error, it would free the session but not flag an error since the libssh2 errno would be clear. This resulted in dereferencing a NULL session pointer. Signed-off-by: Tyler Hall <tylerwhall@gmail.com>
2013-10-15usercertinmem: fix memory leaksIshan SinghLevett
2013-10-15build: distribute and install libcurl.m4 by defaultDave Reisner
2013-10-15tool: use XFERFUNCTION to save some castsDave Reisner
2013-10-15curl.1: fix typo conjuction -> conjunctionAlessandro Ghedini
2013-10-15curl: document the new --tlsv1.[012] optionsDaniel Stenberg
2013-10-15SSL: protocol version can be specified more preciselyGergely Nagy
CURL_SSLVERSION_TLSv1_0, CURL_SSLVERSION_TLSv1_1, CURL_SSLVERSION_TLSv1_2 enum values are added to force exact TLS version (CURL_SSLVERSION_TLSv1 means TLS 1.x). axTLS: axTLS only supports TLS 1.0 and 1.1 but it cannot be set that only one of these should be used, so we don't allow the new enum values. darwinssl: Added support for the new enum values. SChannel: Added support for the new enum values. CyaSSL: Added support for the new enum values. Bug: The original CURL_SSLVERSION_TLSv1 value enables only TLS 1.0 (it did the same before this commit), because CyaSSL cannot be configured to use TLS 1.0-1.2. GSKit: GSKit doesn't seem to support TLS 1.1 and TLS 1.2, so we do not allow those values. Bugfix: There was a typo that caused wrong SSL versions to be passed to GSKit. NSS: TLS minor version cannot be set, so we don't allow the new enum values. QsoSSL: TLS minor version cannot be set, so we don't allow the new enum values. OpenSSL: Added support for the new enum values. Bugfix: The original CURL_SSLVERSION_TLSv1 value enabled only TLS 1.0, now it enables 1.0-1.2. Command-line tool: Added command line options for the new values.
2013-10-14darwinssl: un-break iOS build after PKCS#12 feature addedNick Zitzmann
SecPKCS12Import() returns a few errors that are enumerated in OS X's headers but not in iOS' headers for some reason.
2013-10-14bump: start working on 7.33.1Daniel Stenberg
2013-10-14THANKS: added contributors from the 7.33.0 announcementDaniel Stenberg
2013-10-13RELEASE-NOTES: synced with 92cf6141ed0deDaniel Stenberg
2013-10-13curl: fix --oauth2-bearer in the --help outputDaniel Stenberg
After the option rename in 5df04bfafd1
2013-10-13OpenSSL: improve the grammar of the language in 39beaa5ffbccDaniel Stenberg
Reported-by: Petr Pisar
2013-10-13OpenSSL: use failf() when subjectAltName mismatchesAndrej E Baranov
Write to CURLOPT_ERRORBUFFER information about mismatch alternative certificate subject names. Signed-off-by: Andrej E Baranov <admin@andrej-andb.ru>
2013-10-12curl: rename --bearer to --oauth2-bearerDaniel Stenberg
The option '--bearer' might be slightly ambiguous in name. It doesn't create any conflict that I am aware of at the moment, however, OAUTH v2 is not the only authentication mechanism which uses "bearer" tokens. Reported-by: Kyle L. Huff URL: http://curl.haxx.se/mail/lib-2013-10/0064.html
2013-10-12ssh: improve the logic for detecting blocking directionKamil Dudka
This fixes a regression introduced by commit 0feeab78 limiting the speed of SCP upload to 16384 B/s on a fast connection (such as localhost).
2013-10-12Fixed typo in Makefile.inc that left http2.h out of the tar ballDan Fandrich
2013-10-11minor fix in docHeinrich Schaefer
2013-10-09curl_setup_once: fix errno access for lwip on WindowsGisle Vanem
lib/curl_setup_once.h assumed lwIP on Windows uses 'SetLastError()' to set network errors. It doesn't; it uses 'errno'.
2013-10-07test1239: verify 4cd444e01ad and the simulated 304 responseDaniel Stenberg
2013-10-07HTTP: Output http response 304 when modified time is too oldDerek Higgins
When using the -w '%{http_code}' flag and simulating a Not Modified then 304 should be output.
2013-10-07contributors: helper script to dig out contributors from gitDaniel Stenberg
2013-10-07RELEASE-NOTES: add twos refs to bug reportsDaniel Stenberg
2013-10-06RELEASE-NOTES: synced with 173160c0d068Daniel Stenberg
2013-10-02darwinssl: block TLS_RSA_WITH_NULL_SHA256 cipherNick Zitzmann
Credit (for catching a cipher I forgot to add to the blocked ciphers list): https://www.ssllabs.com/ssltest/viewMyClient.html
2013-10-02OpenSSL: acknowledge CURLOPT_SSL_VERIFYHOST without VERIFYPEERDaniel Stenberg
Setting only CURLOPT_SSL_VERIFYHOST without CURLOPT_SSL_VERIFYPEER set should still verify that the host name fields in the server certificate is fine or return failure. Bug: http://curl.haxx.se/mail/lib-2013-10/0002.html Reported-by: Ishan SinghLevett
2013-10-02KNOWN_BUGS: #84: CURLINFO_SSL_VERIFYRESULTDaniel Stenberg
CURLINFO_SSL_VERIFYRESULT is only implemented for the OpenSSL and NSS backends and not for any other!
2013-10-01xattr: add support for FreeBSD xattr APIFrançois Charlier
2013-09-30curl_easy_setopt.3: slight clarification of SEEKFUNCTIONDaniel Stenberg
2013-09-29tests: Fixed typos from commit 25a0c96a494297Steve Holme
2013-09-29tests: Updated email addresses in SMTP tests following recent changesSteve Holme
2013-09-29test909: Removed custom EHLO response after recent changesSteve Holme
...as it is no longer required following capability and authentication changes and is now causing problems following commit 49341628b50007 as the test number is obtained from the client address in the EHLO.
2013-09-29ftpserver.pl: Fixed compilation error from commit 49341628b50007Steve Holme
2013-09-29ftpserver.pl: Moved specifying the test number from the RCPT addressSteve Holme
...to the client address as this frees the RCPT strings to contain just an email address and by passing the test number into curl as the client address remains consistent with POP3 and IMAP tests as they are specified in the URL.
2013-09-29ftpserver.pl: Added unwanted argument check to SMTP DATA command handlerSteve Holme
2013-09-29getinmemory: remove a commentDaniel Stenberg
The comment mentioned the need to free the data, but the example already does that free
2013-09-29postinmemory: new exampleDaniel Stenberg
This is similar to getinmemory.c but with an initial POST. Combined-by: Ulf Samuelsson
2013-09-28win32: fix Visual Studio 2010 build with WINVER >= 0x600Daniel Stenberg
If no WINVER and/or _WIN32_IWNNT define was set, the Windows platform SDK often defaults to high value, e.g. 0x601 (whoch may probably depend on the Windows version being used, in my case Windows 7). If WINVER >= 0x600 then winsock2.h includes some defines for WSAPoll(), e.g. POLLIN, POLLPRI, POLLOUT etc. These defines clash with cURL's lib/select.h. Make sure HAVE_STRUCT_POLLFD is defined then. Bug: http://curl.haxx.se/bug/view.cgi?id=1282 Reported-by: "kdekker" Patch-by: Marcel Raad
2013-09-28ssluse.c: Fixed compilation warnings when ENGINE not supportedSteve Holme
The function "ssl_ui_reader" was declared but never referenced The function "ssl_ui_writer" was declared but never referenced
2013-09-27configure: use icc options without spaceDaniel Stenberg
The latest version(s) of the icc compiler no longer accept the extra space in the -we (warning enable), -wd (warning disable), etc. Reported-by: Elmira A Semenova Bug: http://curl.haxx.se/mail/lib-2013-09/0182.html