aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2008-02-18just mention in --cacert that curl normally has a default ca cert path built-inDaniel Stenberg
2008-02-18the ca-bundle is no longer shippedDaniel Stenberg
2008-02-18- We're no longer providing a very old ca-bundle in the curl tarball. You canDaniel Stenberg
get a fresh one downloaded and created with 'make ca-bundle' or you can get one from here => http://curl.haxx.se/docs/caextract.html if you want a fresh new one extracted from Mozilla's recent list of ca certs. The configure option --with-ca-bundle now lets you specify what file to use as default ca bundle for your build. If not specified, the configure script will check a few known standard places for a global ca cert to use.
2008-02-17- Jerome Muffat-Meridol helped me fix Curl_done() to close the currentDaniel Stenberg
connection by force when it was called before the entire request is completed, simply because we can't know if the connection really can be re-used safely at that point.
2008-02-17rephrased commentDaniel Stenberg
2008-02-17In Curl_done() if premature is TRUE, it means this connection was said to beDaniel Stenberg
DONE before the entire request operation is complete and thus we can't know in what state it is for re-using, so we're forced to close it. In a perfect world we can add code that keep track of if we really must close it here or not, but currently we have no such detail knowledge. Jerome Muffat-Meridol helped us work this out.
2008-02-17don't do the GOT_NOTHING error check if the DONE function was called withDaniel Stenberg
premature set TRUE, which means it was done before the request comleted. It could then very well not have received any data.
2008-02-17added a comment about the ignoring of the Curl_done() return codeDaniel Stenberg
2008-02-17sockfilt will quit when orphanedYang Tse
2008-02-16oops, that was debug code not meant to be committed like this...Daniel Stenberg
2008-02-16fix warnings about shadowingDaniel Stenberg
2008-02-16seems that curently we dont need the imports from (l)ldapx.imp.Gunter Knauf
2008-02-16fixed linker def file for tools when compiled with gcc/nlmconv.Gunter Knauf
2008-02-16re-ordered the module dependency list;Gunter Knauf
removed unsused ldap module dependency since the module didnt autounload from protected address space.
2008-02-15- Made the gnutls code path not even try to get the server cert if no peerDaniel Stenberg
verification is requested. Previously it would even return failure if gnutls failed to get the server cert even though no verification was asked for. - Fix my Curl_timeleft() leftover mistake in the gnutls code
2008-02-15mention that we explicitly ignore the return codeDaniel Stenberg
2008-02-15log SSH public key authentication failure and reasonYang Tse
2008-02-15new mirror and mirror recount after cleansingDaniel Stenberg
2008-02-15- Pooyan McSporran found and fixed a flaw where you first would do a normalDaniel Stenberg
http request and then you'd reuse the handle and replace the Accept: header, as then libcurl would send two Accept: headers!
2008-02-15fixed version var.Gunter Knauf
2008-02-15moved info block up before help block so that it can also be displayed ↵Gunter Knauf
before help option; trial to add a version number.
2008-02-14added some files which were missing in release tarballs.Gunter Knauf
2008-02-14five current issues we should deal with somehow before the next releaseDaniel Stenberg
2008-02-13Updated some out-of-date information.Dan Fandrich
2008-02-13make this test disabled properly when built with yasslDaniel Stenberg
2008-02-13verifyserver() actually returns the pid of the unsecure http and ftp serversYang Tse
when verifying the https and ftps servers
2008-02-12On heavily loaded systems any test server start up can take longer than theYang Tse
timeout passed to startnew, when this happens startnew completes without being able to read the pidfile and consequently returns a zero pid2. To fix the above posibility the server pid is recovered from the verification stage which will actually return the server pid when verification is valid.
2008-02-12fix grammatical issuesYang Tse
2008-02-11Yang Tse pointed out a few remaining quirks from my timeout refactoring fromDaniel Stenberg
Feb 7 that didn't abort properly on timeouts. These are actually old problems but now they should be fixed.
2008-02-11shell startup scripts and possible influence in scp/sftp/socks testsYang Tse
2008-02-11Disable test due to keyword before disabling due to bad server.Dan Fandrich
2008-02-11open pipe to openssl commandline instead of writing into temp file.Gunter Knauf
2008-02-11Fixed unused variable warning.Dan Fandrich
2008-02-11added strict to make sure all vars are properly defined;Gunter Knauf
added -t switch to make text info of CAs optional; added -q switch to be really quiet.
2008-02-11Additional SunSSH 1.1 ssh server optionsYang Tse
2008-02-10Bug report #1888932 (http://curl.haxx.se/bug/view.cgi?id=1888932) pointsYang Tse
out and provides test program that demonstrates that libcurl might not set error description message for error CURLE_COULDNT_RESOLVE_HOST for Windows threaded name resolver builds. Fixed now.
2008-02-10Verify only once test harness sftp server connectivity and functionality.Yang Tse
Make sure that the sftp client tool uses the ssh client binary that we have used to generate the configuration files, otherwise sftp might be using one located in the preferred path compiled into sftp.
2008-02-10removed 'mv' call and changed to use new backup feature of mk-ca-bundle.pl.Gunter Knauf
2008-02-10added -b switch to provide a backup functionality for existing ca-bundle.crt ↵Gunter Knauf
file.
2008-02-09fixed another wrong var in error message.Gunter Knauf
2008-02-09make use of mv's backup feature so that calling the ca-bundle target more ↵Gunter Knauf
than once will never fail; ignore error which can occure if for whatever reason there's no orignial ca-bundle.crt to rename.
2008-02-09fixed wrong var in error message.Gunter Knauf
2008-02-09Fixed some XML parsing problems.Dan Fandrich
2008-02-09Added key words to all SSL-using tests so they can be skipped if necessary.Dan Fandrich
Removed a few unnecessary requires SSL statements.
2008-02-09Fixed test to use HTTPS as documented.Dan Fandrich
2008-02-08- Mike Hommey filed and fixed bug report #1889856Daniel Stenberg
(http://curl.haxx.se/bug/view.cgi?id=1889856): When using the gnutls ssl layer, cleaning-up and reinitializing curl ends up with https requests failing with "ASN1 parser: Element was not found" errors. Obviously a regression added in 7.16.3.
2008-02-08fixed a typo.Gunter Knauf
2008-02-08Missed checking in these test data files.Dan Fandrich
2008-02-08Get rid of sftp subsystem additional parameters, they aren't widely supportedYang Tse
2008-02-08To verify that the sftp server is actually running, responsive and thatYang Tse
all curl's tests generated configuration and key files are fine, a real connection is established to the test harness sftp server authenticating and running a simple sftp remote pwd command. The verification is done using OpenSSH's or SunSSH's sftp client tool with a configuration file with the same options as the test harness socks server with the exception that dynamic forwarding is not used for sftp.