aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2012-04-04Revert "access the CA source file using HTTPS"Tim Heckman
This reverts commit f7e2ab6. This change caused fetching of the certificates to become unreliable. Bug: http://curl.haxx.se/mail/lib-2012-03/0238.html Reported by: Tim Heckman
2012-04-04IPv6 cookie domain: get rid of the first bracket before the second.Andrei Cipu
Commit 97b66ebe was copying a smaller buffer, thus duplicating the last character.
2012-04-04MAIL-ETIQUETTE: Added "How to unsubscribe"Daniel Stenberg
... as it seems to hard for some people
2012-04-04ftp.c: ftplistparser related OOM handling fixYang Tse
2012-04-04smtp.c: fix compiler warningsYang Tse
2012-04-04lib599.c: fix compiler warningYang Tse
2012-04-04runtests: yassl and polarssl are not opensslDaniel Stenberg
Don't set the "has_openssl" variable if yassl or polarssl is found as they will simply not work as 100% drop-in replacements for some of the stuff the "OpenSSL" feature is used for. I spotted this problem when doing test runs with PolarSSL builds.
2012-04-03connect.c: return changed to CURLE_COULDNT_CONNECT when opensocket failsLijo Antony
Curl_socket returns CURLE_COULDNT_CONNECT when the opensocket callback returns CURL_SOCKET_BAD. Previous return value CURLE_FAILED_INIT conveys incorrect information to the user.
2012-04-02pop3: Reworked the command sending and handlingSteve Holme
Reworked the command sending from two specific LIST and RETR command functions into a single command based function as well as the two associated response handlers into a generic command handler.
2012-04-01curl tool: add filename_effective token for --write-outDave Reisner
By modifying the parameter list for ourWriteOut() and passing the OutStruct that collects data in tool_operate, we get access to the remote name that we're writing to. Shell scripters should find this useful when used in conjuntion with the --remote-header-name option.
2012-04-01smtp.c: Code policing and tidy upSteve Holme
2012-04-01SSH: public key can now be an empty stringArmel Asselin
If an empty string is passed to CURLOPT_SSH_PUBLIC_KEYFILE, libcurl will pass no public key to libssh2 which then tries to compute it from the private key. This is known to work when libssh2 1.4.0+ is linked against OpenSSL.
2012-04-01OpenSSL: Made cert hostname check conform to RFC 6125Tatsuhiro Tsujikawa
This change replaces RFC 2818 based hostname check in OpenSSL build with RFC 6125 [1] based one. The hostname check in RFC 2818 is ambiguous and each project implements it in the their own way and they are slightly different. I check curl, gnutls, Firefox and Chrome and they are all different. I don't think there is a bug in current implementation of hostname check. But it is not as strict as the modern browsers do. Currently, curl allows multiple wildcard character '*' and it matches '.'. (as described in the comment in ssluse.c). Firefox implementation is also based on RFC 2818 but it only allows at most one wildcard character and it must be in the left-most label in the pattern and the wildcard must not be followed by any character in the label.[2] Chromium implementation is based on RFC 6125 as my patch does. Firefox and Chromium both require wildcard in the left-most label in the presented identifier. This patch is more strict than the current implementation, so there may be some cases where old curl works but new one does not. But at the same time I think it is good practice to follow the modern browsers do and follow the newer RFC. [1] http://tools.ietf.org/html/rfc6125#section-6.4.3 [2] https://bugzilla.mozilla.org/show_bug.cgi?id=159483
2012-04-01HTTP: reset expected DL/UL sizes on redirectsDaniel Stenberg
With FOLLOWLOCATION enabled. When a 3xx page is downloaded and the download size was known (like with a Content-Length header), but the subsequent URL (transfered after the 3xx page) was chunked encoded, then the previous "known download size" would linger and cause the progress meter to get incorrect information, ie the former value would remain being sent in. This could easily result in downloads that were WAY larger than "expected" and would cause >100% outputs with the curl command line tool. Test case 599 was created and it was used to repeat the bug and then verify the fix. Bug: http://curl.haxx.se/bug/view.cgi?id=3510057 Reported by: Michael Wallner
2012-03-31smtp: Add support for DIGEST-MD5 authenticationGökhan Şengün
2012-03-31smtp: Cody tidy up of md5 digest lengthGökhan Şengün
Replaced the hard coded md5 digest length (16) with a preprocessor constant
2012-03-31md5: Add support for calculating the md5 sum of buffers incrementallyGökhan Şengün
It is now possible to calculate the md5 sum as the stream of buffers becomes known where as previously it was only possible to calculate the md5 sum of a pre-prepared buffer.
2012-03-31Revert "mk-ca-bundle.pl: use LWP::UserAgent for https"Daniel Stenberg
This reverts commit 9f0e1689f169b83b8fbdae23e0024cc57dcbc770. It turned out that "improvement" instead made the fetching of the certificates unreliable Bug: http://curl.haxx.se/mail/lib-2012-03/0238.html Reported by: Tim Heckman
2012-03-31DOCS: Added information regarding POP3 commands to CURLOPT_CUSTOMREQUESTSteve Holme
2012-03-31pop3: Added support for additional pop3 commandsSteve Holme
This feature allows the user to specify and use additional POP3 commands such as UIDL and DELE via libcurl's CURLOPT_CUSTOMREQUEST or curl's -X command line option.
2012-03-30CMakeLists.txt: fix Windows LDAP/LDAPS option handlingtetetest tetetest
bug: http://curl.haxx.se/mail/lib-2012-03/0278.html
2012-03-29CMakeLists.txt: fix MS Visual Studio x64 unsigned long long literal suffixtetetest tetetest
bug: http://curl.haxx.se/mail/lib-2012-03/0255.html
2012-03-28TODO: Corrected POP3 section headingSteve Holme
2012-03-28curl-functions.m4: update detection logic of getaddrinfo() thread-safenessYang Tse
Take in account that h_errno might be a modifiable lvalue not defined as a C preprocessor macro
2012-03-27TODO: Added SMTP and POP3 specific featuresSteve Holme
2012-03-27tool_cb_dbg.c: fix tool_cb_dbg() to behave properly even for size 0Olaf Flebbe
curl segfault in debug callback triggered with CURLINFO_HEADER_OUT and size 0 bug: http://curl.haxx.se/bug/view.cgi?id=3511794
2012-03-26test #1405: support HTTP disabled buildsYang Tse
2012-03-26test #809: Updated error code to match recent pop3 changesSteve Holme
2012-03-25ssh.c: code cleanup, Curl_safefree() already nullifies pointerYang Tse
2012-03-25fix some compiler warningsYang Tse
2012-03-25pop3.c: Corrected problem with state() introduced in 01690ed2bce5Steve Holme
2012-03-25pop.c: Small code tidy upSteve Holme
2012-03-25pop3: Removed the need for the single message LIST command handlerSteve Holme
Simplified the code to remove the need for a separate "LIST <msg id>" command handler and state machine and instead use the LIST command handler for both operations.
2012-03-24pop3.c: Code policing and tidy upSteve Holme
Corrected character and line spacing and re-ordered list and retr functions based on the order of their state machines.
2012-03-24email: Moved server greeting responses into separate functionsSteve Holme
Moved the server greeting response handling code from the statemach_act functions to separate response functions. This makes the code simpler to follow and provides consistency with the other responses that are handled here.
2012-03-24pop3.c: Fixed body data being written when CURLOPT_NOBODY is specifiedSteve Holme
Body data would be forwarded to the client application in both the RETR and LIST commands even if CURLOPT_NOBODY was specified.
2012-03-23docs: clarify -z/--time-cond with filename (mention mtime)Rodrigo Silva (MestreLion)
Original wording could lead users in thinking it tries to somehow parse the filename for a date expression (like news_2012_03_05.html). It never mentions that it actually reads the mtime of the file in filesystem.
2012-03-23tests #1316 #1319 #1320 #1321: add missing keywordsYang Tse
2012-03-23test #598: add missing keywordsYang Tse
2012-03-23version: start working on 7.25.1-DEVYang Tse
2012-03-22configure: check for gethostbyname in the watt libBenjamin Johnson
This allows building of libcurl on DOS using DJGPP 2.04 and Watt-32 sockets. I know there's already Makefile.djgpp, but I find this more convenient since I'm used to using the ./configure script from other platforms
2012-03-22THANKS: 8 new contributors from 7.25.0Daniel Stenberg
2012-03-22RELEASE-NOTES: synced with b8b2cf612b2Daniel Stenberg
2012-03-22tests #1400 #1401: add missing keywordsYang Tse
2012-03-22http_proxy.h: fix builds with proxy or http disabledYang Tse
2012-03-22parsedate.c: fix a numeric overflowYang Tse
2012-03-22cookies: strip the numerical ipv6 host properlyAndrei Cipu
The commit e650dbde86d4 that stripped off [brackets] from ipv6-only host headers for the sake of cookie parsing wrongly incremented the host pointer which would cause a bad free() call later on.
2012-03-22test #598: add to Makefile.amYang Tse
2012-03-22test #598: OOM handling fixesYang Tse
2012-03-22fix several compiler warningsYang Tse