Age | Commit message (Collapse) | Author | |
---|---|---|---|
2019-05-18 | http_ntlm_wb: Handle auth for only a single request | Steve Holme | |
Currently when the server responds with 401 on NTLM authenticated connection (re-used) we consider it to have failed. However this is legitimate and may happen when for example IIS is set configured to 'authPersistSingleRequest' or when the request goes thru a proxy (with 'via' header). Implemented by imploying an additional state once a connection is re-used to indicate that if we receive 401 we need to restart authentication. Missed in fe6049f0. | |||
2019-05-18 | http_ntlm_wb: Cleanup handshake after clean NTLM failure | Steve Holme | |
Missed in 50b87c4e. | |||
2019-05-18 | http_ntlm_wb: Return the correct error on receiving an empty auth message | Steve Holme | |
Missed in fe20826b as it wasn't implemented in http.c in b4d6db83. Closes #3894 | |||
2019-05-18 | curl: make code work with protocol-disabled libcurl | Daniel Stenberg | |
Closes #3844 | |||
2019-05-17 | libcurl: #ifdef away more code for disabled features/protocols | Daniel Stenberg | |
2019-05-17 | progress: CURL_DISABLE_PROGRESS_METER | Daniel Stenberg | |
2019-05-17 | hostip: CURL_DISABLE_SHUFFLE_DNS | Daniel Stenberg | |
2019-05-17 | netrc: CURL_DISABLE_NETRC | Daniel Stenberg | |
2019-05-16 | docs: Markdown and misc improvements [ci skip] | Viktor Szakats | |
Approved-by: Daniel Stenberg Closes #3896 | |||
2019-05-16 | docs/RELEASE-PROCEDURE: link to live iCalendar [ci skip] | Viktor Szakats | |
Ref: https://github.com/curl/curl/commit/0af41b40b2c7bd379b2251cbe7cd618e21fa0ea1#commitcomment-33563135 Approved-by: Daniel Stenberg Closes #3895 | |||
2019-05-16 | travis: add an osx http-only build | Daniel Stenberg | |
Closes #3887 | |||
2019-05-16 | cleanup: remove FIXME and TODO comments | Daniel Stenberg | |
They serve very little purpose and mostly just add noise. Most of them have been around for a very long time. I read them all before removing or rephrasing them. Ref: #3876 Closes #3883 | |||
2019-05-16 | curl: don't set FTP options for FTP-disabled builds | Daniel Stenberg | |
... since libcurl has started to be totally unaware of options for disabled protocols they now return error. Bug: https://github.com/curl/curl/commit/c9c5304dd4747cbe75d2f24be85920d572fcb5b8#commitcomment-33533937 Reported-by: Marcel Raad Closes #3886 | |||
2019-05-16 | http_ntlm_wb: Move the type-2 message processing into a dedicated function | Steve Holme | |
This brings the code inline with the other HTTP authentication mechanisms. Closes #3890 | |||
2019-05-15 | RELEASE-NOTES: synced | Daniel Stenberg | |
2019-05-15 | docs/RELEASE-PROCEDURE: updated coming releases dates [ci skip] | Daniel Stenberg | |
2019-05-15 | CURLOPT_READFUNCTION.3: see also CURLOPT_UPLOAD_BUFFERSIZE [ci skip] | Daniel Stenberg | |
Reported-by: Roy Bellingan Bug: #3885 | |||
2019-05-15 | parse_proxy: use the URL parser API | Daniel Stenberg | |
As we treat a given proxy as a URL we should use the unified URL parser to extract the parts out of it. Closes #3878 | |||
2019-05-15 | http_negotiate: Move the Negotiate state out of the negotiatedata structure | Steve Holme | |
Given that this member variable is not used by the SASL based protocols there is no need to have it here. Closes #3882 | |||
2019-05-15 | http_ntlm: Move the NTLM state out of the ntlmdata structure | Steve Holme | |
Given that this member variable is not used by the SASL based protocols there is no need to have it here. | |||
2019-05-15 | url: Move the negotiate state type into a dedicated enum | Steve Holme | |
2019-05-14 | url: Remove duplicate clean up of the winbind variables in conn_shutdown() | Steve Holme | |
Given that Curl_disconnect() calls Curl_http_auth_cleanup_ntlm() prior to calling conn_shutdown() and it in turn performs this, there is no need to perform the same action in conn_shutdown(). Closes #3881 | |||
2019-05-14 | urlapi: require a non-zero host name length when parsing URL | Daniel Stenberg | |
Updated test 1560 to verify. Closes #3880 | |||
2019-05-14 | configure: error out if OpenSSL wasn't detected when asked for | Daniel Stenberg | |
If --with-ssl is used and configure still couldn't enable SSL this creates an error instead of just silently ignoring the fact. Suggested-by: Isaiah Norton Fixes #3824 Closes #3830 | |||
2019-05-14 | imap: Fix typo in comment | Daniel Gustafsson | |
2019-05-14 | url: Remove unnecessary initialisation from allocate_conn() | Steve Holme | |
No need to set variables to zero as calloc() does this for us. Closes #3879 | |||
2019-05-14 | CURLOPT_CAINFO.3: with Schannel, you want Windows 8 or later [ci skip] | Daniel Stenberg | |
Clues-provided-by: Jay Satiro Clues-provided-by: Jeroen Ooms Fixes #3711 Closes #3874 | |||
2019-05-13 | vtls: fix potential ssl_buffer stack overflow | Daniel Gustafsson | |
In Curl_multissl_version() it was possible to overflow the passed in buffer if the generated version string exceeded the size of the buffer. Fix by inverting the logic, and also make sure to not exceed the local buffer during the string generation. Closes #3863 Reported-by: nevv on HackerOne/curl Reviewed-by: Jay Satiro Reviewed-by: Daniel Stenberg | |||
2019-05-13 | RELEASE-NOTES: synced | Daniel Stenberg | |
2019-05-13 | appveyor: also build "/ci" branches like travis | Daniel Stenberg | |
2019-05-13 | pingpong: disable more when no pingpong enabled | Daniel Stenberg | |
2019-05-13 | proxy: acknowledge DISABLE_PROXY more | Daniel Stenberg | |
2019-05-13 | parsedate: CURL_DISABLE_PARSEDATE | Daniel Stenberg | |
2019-05-13 | sasl: only enable if there's a protocol enabled using it | Daniel Stenberg | |
2019-05-13 | mime: acknowledge CURL_DISABLE_MIME | Daniel Stenberg | |
2019-05-13 | wildcard: disable from build when FTP isn't present | Daniel Stenberg | |
2019-05-13 | http: CURL_DISABLE_HTTP_AUTH | Daniel Stenberg | |
2019-05-13 | base64: build conditionally if there are users | Daniel Stenberg | |
2019-05-13 | doh: CURL_DISABLE_DOH | Daniel Stenberg | |
2019-05-12 | auth: Rename the various authentication clean up functions | Steve Holme | |
For consistency and to a avoid confusion. Closes #3869 | |||
2019-05-12 | docs/INSTALL: fix broken link [ci skip] | Jay Satiro | |
Reported-by: Joombalaya on github Fixes #3818 | |||
2019-05-12 | easy: fix another "clarify calculation precedence" warning | Marcel Raad | |
I missed this one in commit 6b3dde7fe62ea5a557fd1fd323fac2bcd0c2e9be. | |||
2019-05-12 | build: fix "clarify calculation precedence" warnings | Marcel Raad | |
Codacy/CppCheck warns about this. Consistently use parentheses as we already do in some places to silence the warning. Closes https://github.com/curl/curl/pull/3866 | |||
2019-05-12 | cmake: restore C89 compatibility of CurlTests.c | Marcel Raad | |
I broke it in d1b5cf830bfe169745721b21245d2217d2c2453e and 97de97daefc2ed084c91eff34af2426f2e55e134. Reported-by: Viktor Szakats Ref: https://github.com/curl/curl/commit/97de97daefc2ed084c91eff34af2426f2e55e134#commitcomment-33499044 Closes https://github.com/curl/curl/pull/3868 | |||
2019-05-11 | http_ntlm: Corrected the name of the include guard | Steve Holme | |
Missed in f0bdd72c. Closes #3867 | |||
2019-05-11 | http_digest: Don't expose functions when HTTP and Crypto Auth are disabled | Steve Holme | |
Closes #3861 | |||
2019-05-11 | http_negotiate: Don't expose functions when HTTP is disabled | Steve Holme | |
2019-05-11 | SECURITY-PROCESS: fix links [ci skip] | Daniel Stenberg | |
2019-05-11 | CMake: suppress unused variable warnings | Marcel Raad | |
I missed these in commit d1b5cf830bfe169745721b21245d2217d2c2453e. | |||
2019-05-11 | doh: disable DOH for the cases it doesn't work | Daniel Stenberg | |
Due to limitations in Curl_resolver_wait_resolv(), it doesn't work for DOH resolves. This fix disables DOH for those. Limitation added to KNOWN_BUGS. Fixes #3850 Closes #3857 |