aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2014-04-20sockfilt.c: ignore non-key-events and continue waiting for inputMarc Hoersken
2014-04-20sockfilt.c: free memory in case of memory allocation errorsMarc Hoersken
2014-04-19multi.c: fix possible invalid memory access in case nfds overflowsMarc Hoersken
ufds might not be allocated in case nfds overflows to zero while extra_nfds is still non-zero. udfs is then accessed within the extra_nfds-based for loop.
2014-04-19netrc.c: fix multiple possible dereferences of null pointersMarc Hoersken
2014-04-19parsedate.c: check sscanf result before passing it to strlenMarc Hoersken
2014-04-19telnet.c: check sscanf results before passing them to snprintfMarc Hoersken
2014-04-19telnet.c: fix possible use of uninitialized variableMarc Hoersken
2014-04-19telnet.c: fix possible use of non-null-terminated stringsMarc Hoersken
2014-04-19url.c: fix possible use of non-null-terminated string with strlenMarc Hoersken
Follow up on b0e742544be22ede33206a597b22682e51e0c676
2014-04-19tool_writeout.c: initialize string pointer variableMarc Hoersken
2014-04-19tool_formparse.c: fix possible use of non-null-terminated stringsMarc Hoersken
2014-04-19url.c: fix possible use of non-null-terminated string with strlenMarc Hoersken
2014-04-18connect.c: fix multiple possible dereferences of null pointersMarc Hoersken
In case the first address in the tempaddr array is NULL, the code would previously dereference an unchecked null pointer.
2014-04-18tftp.c: fix possible dereference of null pointerMarc Hoersken
2014-04-18tool_urlglob.c: added some comments to clarify for loop conditionsMarc Hoersken
I was tempted to change those to >= 0 until I saw that this is actually a for loop that terminates once i underflows.
2014-04-18socks_sspi.c: added pointer guards to FreeContextBuffer callsMarc Hoersken
The FreeContextBuffer SAL declaration does not declare the pointer as optional, therefore it must not be NULL.
2014-04-18md5.c: fix use of uninitialized variableMarc Hoersken
2014-04-18curl_schannel.c: added explicit cast of structure pointersMarc Hoersken
2014-04-18curl_schannel.c: fix possible dereference of null pointerMarc Hoersken
2014-04-18RELEASE-NOTES: Synced with 33e0cba8f1Steve Holme
2014-04-18curl_easy_setopt: Updated CURLOPT_URL to include IMAP PARTIAL FETCH exampleSteve Holme
2014-04-18imap: Extended FETCH support to include PARTIAL URL specifierSteve Holme
2014-04-18url.c: Fixed typo in commentSteve Holme
2014-04-18curl_easy_setopt: Updated CURLOPT_URL to include IMAP query string examplesSteve Holme
2014-04-18test810: Updated to use new IMAP URL query string functionalitySteve Holme
2014-04-18imap: Expanded mailbox SEARCH support to use URL query stringsSteve Holme
2014-04-18imap: Added support for parsing URL query stringsSteve Holme
Added support for parsing query strings from the URL as defined by RFC-5092.
2014-04-18imap: Introduced the SEARCH stateSteve Holme
2014-04-18imap: Fixed untagged response detection when no data after commandSteve Holme
Should a command return untagged responses that contained no data then the imap_matchresp() function would not detect them as valid responses, as it wasn't taking the CRLF characters into account at the end of each line.
2014-04-18build: Added Visual Studio 2012 (VC11) project filesSteve Holme
Carrying on from commit 11025613b9 added VC11 project files which are capable of supporting side-by-side compilation, 32-bit and 64-bit builds as well as support for some of the third-party libraries curl uses.
2014-04-17build: Corrected Visual Studio solutions for DLL Release x64Steve Holme
2014-04-17README.http2: mention some alt-svc thoughtsDaniel Stenberg
2014-04-16Makefile.am: Missed separator in commit fbaa2f8660Steve Holme
2014-04-16build: Added Visual Studio 2010 (VC10) project filesSteve Holme
Carrying on from commit 11025613b9 added VC10 project files which are capable of supporting side-by-side compilation, 32-bit and 64-bit builds as well as support for some of the third-party libraries curl uses.
2014-04-14url: only use if_nametoindex() if IFNAMSIZ is availableDan Fandrich
2014-04-09symbian: fixed typo in commentDan Fandrich
2014-04-09build: Added Visual Studio 2008 (VC9) project filesSteve Holme
Carrying on from commit 11025613b9, added VC9 project files which are capable of supporting side-by-side compilation, 32-bit and 64-bit builds as well as support for some of the third-party libraries curl uses.
2014-04-08sas: Added DIGEST-MD5 qop-option validation in native challange handlingSteve Holme
Given that we presently support "auth" and not "auth-int" or "auth-conf" for native challenge-response messages, added client side validation of the quality-of-protection options from the server's challenge message.
2014-04-08dist: include the projects/ files in releasesDaniel Stenberg
... the recent MSVC project files added by Steve Holme
2014-04-06strerror: fix comment about vxworks' strerror_r buffer sizeDaniel Stenberg
Bug: http://curl.haxx.se/mail/lib-2014-04/0063.html Reported-by: Jeroen Koekkoek
2014-04-06sasl: Added forward declaration of structures following recent changesSteve Holme
To avoid urldata.h being included from the header file or that the source file has the correct include order as highlighted by one of the auto builds recently.
2014-04-06RELEASE-NOTES: Synced with 5cdb61abb2Steve Holme
2014-04-06tests: Disabled DIGEST-MD5 tests when running with SSPI enabledSteve Holme
2014-04-06sasl: Fixed compilation warningSteve Holme
warning: no previous prototype for 'Curl_sasl_create_digest_md5_message'
2014-04-06sasl: Added curl_memory.h include as per test 1132Steve Holme
2014-04-06sasl: Fixed compilation warning in SSPI buildsSteve Holme
warning: 'sasl_digest_get_key_value' defined but not used
2014-04-06sasl: Corrected missing free of decoded challenge message from 607883f13cSteve Holme
2014-04-06sasl: Corrected add of Curl_sasl_decode_digest_md5_message() from 2c49e96092Steve Holme
2014-04-06sasl: Post DIGEST-MD5 SSPI code tidy upSteve Holme
* Added comments to SSPI NTLM message generation * Added comments to native DIGEST-MD5 code * Removed redundant identity pointer
2014-04-06sasl: Corrected pre-processor inclusion of SSPI based DIGEST-MD5 codeSteve Holme
When CURL_DISABLE_CRYPTO_AUTH is defined the DIGEST-MD5 code should not be included, regardless of whether USE__WINDOWS_SSPI is defined or not. This is indicated by the definition of USE_HTTP_NEGOTIATE and USE_NTLM in curl_setup.h.