aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2014-11-02docs: Added mention of Kerberos for CURL_VERSION_SSPISteve Holme
As this has been present for SOCKSv5 proxy since v7.19.4 and for IMAP, POP3 and SMTP authentication since v7.38.0.
2014-11-02CURL_VERSION_KERBEROS4: Mark as deprecatedSteve Holme
Support for Kerberos V4 was removed in v7.33.0.
2014-11-02sasl: Fixed Kerberos V5 inclusion when CURL_DISABLE_CRYPTO_AUTH is usedSteve Holme
Typically the USE_WINDOWS_SSPI definition would not be used when the CURL_DISABLE_CRYPTO_AUTH define is, however, it is still a valid build configuration and, as such, the SASL Kerberos V5 (GSSAPI) authentication data structures and functions would incorrectly be used when they shouldn't be. Introduced a new USE_KRB5 definition that takes into account the use of CURL_DISABLE_CRYPTO_AUTH like USE_SPNEGO and USE_NTLM do.
2014-11-02openssl: Use 'CURLcode result'Steve Holme
More CURLcode fixes.
2014-11-01resume: consider a resume from [content-length] to be OKDaniel Stenberg
Basically since servers often then don't respond well to this and instead send the full contents and then libcurl would instead error out with the assumption that the server doesn't support resume. As the data is then already transfered, this is now considered fine. Test case 1434 added to verify this. Test case 1042 slightly modified. Reported-by: hugo Bug: http://curl.haxx.se/bug/view.cgi?id=1443
2014-11-01openssl: Use 'CURLcode result'Steve Holme
More standardisation of CURLcode usage and coding style.
2014-11-01openssl: Use 'CURLcode result'Steve Holme
...and some minor code style changes.
2014-11-01ftplistparser: We prefer 'CURLcode result'Steve Holme
2014-10-31opts: Use common wording for user/password option namesSteve Holme
2014-10-31CURLOPT_CONNECT_ONLY.3: Removed "This option is implemented for..." textSteve Holme
As this is covered by the PROTOCOLS section and saves having to update two parts of the document with the same information in future.
2014-10-31CURLOPT_GSSAPI_DELEGATION.3: Use GSS-API rather than GSSAPISteve Holme
As implementations are refereed to GSS-API libraries as per the RFC and GSSAPI typically refers to an authentication mechanism.
2014-10-31CURLOPT_CONNECT_ONLY.3: Fixed incomplete protocol listSteve Holme
Added missing IMAP to the protocol list.
2014-10-30code cleanup: Use 'CURLcode result'Steve Holme
2014-10-30curl_easy_setopt.3: Fixed lots of typosSteve Holme
2014-10-30curl_easy_setopt.3: Moved CURLOPT_DIRLISTONLY into PROTOCOL OPTIONSSteve Holme
...as this option affects more that just FTP.
2014-10-30build: added Watcom support to build with WinSSL.Guenter Knauf
2014-10-30CURLOPT_PINNEDPUBLICKEY.3: added detailsDaniel Stenberg
2014-10-30CURLOPT_CUSTOMREQUEST.3: Fixed incomplete protocol listSteve Holme
Whilst the description included information about SMTP, the protocol list only showed "TTP, FTP, IMAP, POP3".
2014-10-30CURLOPT_DIRLISTONLY.3: Added information about the usage in POP3Steve Holme
2014-10-29openssl: enable NPN separately from ALPNDaniel Stenberg
... and allow building with nghttp2 but completely without NPN and ALPN, as nghttp2 can still be used for plain-text HTTP. Reported-by: Lucas Pardue
2014-10-29configure.ac: remove checks for OpenSSL NPN/ALPN funcs againDaniel Stenberg
... since the conditional in the code are now based on OpenSSL versions instead to better support non-configure builds.
2014-10-29opts: added some "SEE ALSO" referencesDaniel Stenberg
2014-10-29RELEASE-NOTES: Synced with 32913182dcSteve Holme
2014-10-29vtls.c: Fixed compilation warningSteve Holme
conversion from 'size_t' to 'unsigned int', possible loss of data
2014-10-29sspi: Return CURLE_LOGIN_DENIED on AcquireCredentialsHandle() failureSteve Holme
Return a more appropriate error, rather than CURLE_OUT_OF_MEMORY when acquiring the credentials handle fails. This is then consistent with the code prior to commit f7e24683c4 when log-in credentials were empty.
2014-10-29sasl_sspi: Allow DIGEST-MD5 to use current windows credentialsSteve Holme
Fixed the ability to use the current log-in credentials with DIGEST-MD5. I had previously disabled this functionality in commit 607883f13c as I couldn't get this to work under Windows 8, however, from testing HTTP Digest authentication through Windows SSPI and then further testing of this code I have found it works in Windows 7. Some further investigation is required to see what the differences are between Windows 7 and 8, but for now enable this functionality as the code will return an error when AcquireCredentialsHandle() fails.
2014-10-29transfer: drop the code handling the ssl_connect_retry flagKamil Dudka
Its last use has been removed by the previous commit.
2014-10-29nss: drop the code for libcurl-level downgrade to SSLv3Kamil Dudka
This code was already deactivated by commit ec783dc142129d3860e542b443caaa78a6172d56.
2014-10-29openssl: fix a line length warningKamil Dudka
2014-10-29Added NetWare support to build with nghttp2.Guenter Knauf
2014-10-29Fixed error message since we require ALPN support.Guenter Knauf
2014-10-29Check for ALPN via OpenSSL version number.Guenter Knauf
This check works also with to non-configure platforms.
2014-10-28sasl_sspi: Fixed typo in commentSteve Holme
2014-10-28code cleanup: We prefer 'CURLcode result'Steve Holme
2014-10-28TODO: consider supporting STATDaniel Stenberg
2014-10-28mk-ca-bundle: spell fix "version"Daniel Stenberg
2014-10-27HTTP: return larger than 3 digit response codes tooDaniel Stenberg
HTTP 1.1 is clearly specified to only allow three digit response codes, and libcurl used sscanf("%3d") for that purpose. This made libcurl support smaller numbers but not larger. It does now, but we will not make any specific promises nor document this further since it is going outside of what HTTP is. Bug: http://curl.haxx.se/bug/view.cgi?id=1441 Reported-by: Balaji
2014-10-26src/: remove version.h.dist from gitignoreDaniel Stenberg
It has not been used since commit f7bfdbab in 2011
2014-10-26ntlm: We prefer 'CURLcode result'Steve Holme
Continuing commit 0eb3d15ccb more return code variable name changes.
2014-10-26Cosmetics: lowercase non-special subroutine names.Guenter Knauf
2014-10-26RELEASE-NOTES: Synced with 07ac29a058Steve Holme
2014-10-26http_negotiate: We prefer 'CURLcode result'Steve Holme
Continuing commit 0eb3d15ccb more return code variable name changes.
2014-10-26http_negotiate: Fixed missing check for USE_SPNEGOSteve Holme
2014-10-26sspi: Synchronization of cleanup code between auth mechanismsSteve Holme
2014-10-26sspi: Renamed max token length variablesSteve Holme
Code cleanup to try and synchronise code between the different SSPI based authentication mechanisms.
2014-10-26sspi: Renamed expiry time stamp variablesSteve Holme
Code cleanup to try and synchronise code between the different SSPI based authentication mechanisms.
2014-10-26sspi: Only call CompleteAuthToken() when complete is neededSteve Holme
Don't call CompleteAuthToken() after InitializeSecurityContext() has returned SEC_I_CONTINUE_NEEDED as this return code only indicates the function should be called again after receiving a response back from the server. This only affected the Digest and NTLM authentication code.
2014-10-26Added the "flaky" keyword to a number of testsDan Fandrich
Each shows evidence of flakiness on at least one platform on the autobuilds. Users can use this keyword to skip these tests if desired.
2014-10-26ntlm: Return all errors from Curl_ntlm_core_mk_nt_hash()Steve Holme
For consistency with other areas of the NTLM code propagate all errors from Curl_ntlm_core_mk_nt_hash() up the call stack rather than just CURLE_OUT_OF_MEMORY.
2014-10-26ntlm: Return CURLcode from Curl_ntlm_core_mk_lm_hash()Steve Holme