Age | Commit message (Collapse) | Author | |
---|---|---|---|
2014-02-24 | winssl: Enable hostname verification of IP address using SAN or CN | David Ryskalczyk | |
Original commit message was: Don't omit CN verification in SChannel when an IP address is used. Side-effect of this change: SChannel and CryptoAPI do not support the iPAddress subjectAltName according to RFC 2818. If present, SChannel will first compare the IP address to the dNSName subjectAltNames and then fallback to the most specific Common Name in the Subject field of the certificate. This means that after this change curl will not connect to SSL/TLS hosts as long as the IP address is not specified in the SAN or CN of the server certificate or the verifyhost option is disabled. | |||
2014-02-24 | tool_operate: Moved easy handle cleanup into tool_main | Steve Holme | |
2014-02-24 | tool_hugehelp: partially reverted 24e22e10 | Marc Hoersken | |
Compilation was not possible if manuel is disabled due this error: error: macro "hugehelp" passed 1 arguments, but takes just 0 void hugehelp(void) {} | |||
2014-02-24 | tool_main: Moved easy handle into global config structure | Steve Holme | |
2014-02-23 | Don't omit CN verification in DarwinSSL when an IP address is used. | David Ryskalczyk | |
2014-02-23 | tool: Fixed line longer than 79 characters from commit 705a4cb549 | Steve Holme | |
2014-02-23 | tool_main: Corrected typo from commit d6b9f054e9 in Symbian code | Steve Holme | |
2014-02-23 | tool_main: Moved OperateConfig cleanup into main_free() | Steve Holme | |
2014-02-23 | tool_main: Moved initial OperateConfig creation into main_init() | Steve Holme | |
2014-02-23 | tool_cfgable: Added global config structure | Steve Holme | |
2014-02-23 | tool_cfgable: Renamed Configurable structure to OperationConfig | Steve Holme | |
To allow for the addition of a global config structure and prevent confusion between the two. | |||
2014-02-23 | tool: Fixed incorrect return code with --version from commit c10bf9bb36 | Steve Holme | |
2014-02-23 | RELEASE-NOTES: Synced with 8c80840d01 | Steve Holme | |
2014-02-23 | tool_getparam: Moved tool_help() call into operate() | Steve Holme | |
2014-02-23 | tool_getparam: Moved hugehelp() call into operate() | Steve Holme | |
2014-02-23 | tool_getparam: Moved tool_version_info() call into operate() | Steve Holme | |
2014-02-22 | tool_cfgable: Removed list_engine flag from config structure | Steve Holme | |
In preparation for separating the global config options from the per operation config options, reworked the list engines code to not use a member variable in the Configurable structure. | |||
2014-02-22 | tool_operate: Start to use CURLcode rather than int for return codes | Steve Holme | |
To help assist with the detection of incorrect return codes, as per commits ee23d13a79, 33b8960dc8 and aba98991a5, updated the operate based functions to return CURLcode error codes. | |||
2014-02-22 | tool: Fixed incorrect return code when setting HTTP request fails | Steve Holme | |
During initialisation SetHTTPrequest() may fail and cURL would return PARAM_BAD_USE, which is equivalent to CURLE_NOT_BUILT_IN in cURL error terms. Instead, return CURLE_FAILED_INIT as we do for other functions that may fail during initialisation. | |||
2014-02-22 | tool_getparam: Moved version information into separate function in tool_help | Steve Holme | |
2014-02-22 | tool_operhlp.h: Fixed compilation warning | Steve Holme | |
warning: 'struct Configurable' declared inside parameter list | |||
2014-02-22 | tool_operhlp: Consolidated engine output code into tool_help | Steve Holme | |
2014-02-22 | tool_operate: Moved list engines into separate function in tool_help | Steve Holme | |
2014-02-22 | RELEASE-NOTES: added note about impact of changes to WinSSL defaults | Marc Hoersken | |
2014-02-22 | stunnel: regenerated self-signed test certificate with SHA1 hash | Marc Hoersken | |
The previous test certificate contained a MD5 hash which is not supported using TLSv1.2 with Schannel on Windows 7 or newer. See the update to this blog post on IEInternals / MSDN: http://blogs.msdn.com/b/ieinternals/archive/2011/03/25/ misbehaving-https-servers-impair-tls-1.1-and-tls-1.2.aspx "Update: If the server negotiates a TLS1.2 connection with a Windows 7 or 8 schannel.dll-using client application, and it provides a certificate chain which uses the (weak) MD5 hash algorithm, the client will abort the connection (TCP/IP FIN) upon receipt of the certificate." | |||
2014-02-22 | easy: Fixed a memory leak on OOM condition | Dan Fandrich | |
2014-02-20 | tool_paramhlp: Fixed compilation warnings | Steve Holme | |
declaration of 'index' shadows a global declaration | |||
2014-02-19 | lib1515.c: Fixed #include path in commit 647f83e809 | Steve Holme | |
2014-02-19 | test1515: fix compilation with msvc | Maks Naumov | |
... or any other systems lacking a native snprintf | |||
2014-02-19 | SFTP: skip reading the dir when NOBODY=1 | Daniel Stenberg | |
When asking for an SFTP directory with NOBODY set, no directory contents should be retrieved. Bug: http://curl.haxx.se/mail/lib-2014-02/0155.html | |||
2014-02-18 | axtls: comment the call ssl_read repeatedly loop | Dan Fandrich | |
2014-02-18 | curl.1: update the description of --tlsv1 | Kamil Dudka | |
... and mention the --tlsv1.[0-2] options in the --tslv1 entry Reported-by: Hubert Kario | |||
2014-02-18 | curl_version.3: recommend using curl_version_info() instead | Daniel Stenberg | |
2014-02-18 | curl_version_info.3: added *HTTP2 | Daniel Stenberg | |
... and edited language slightly | |||
2014-02-18 | curl_multi_assign.3: updated language | Daniel Stenberg | |
2014-02-18 | libcurl.3: edited slightly to improve readability | Daniel Stenberg | |
2014-02-18 | curl_easy_perform.3: extended and clarified | Daniel Stenberg | |
2014-02-18 | curl_multi_add_handle.3: clarify multi vs easy use | Daniel Stenberg | |
it is only WHILE added to a multi handle that it can't be used with the easy interface | |||
2014-02-17 | http2: Support HTTP POST/PUT | Tatsuhiro Tsujikawa | |
This patch enables HTTP POST/PUT in HTTP2. We disabled Expect header field and chunked transfer encoding since HTTP2 forbids them. In HTTP1, Curl sends small upload data with request headers, but HTTP2 requires upload data must be in DATA frame separately. So we added some conditionals to achieve this. | |||
2014-02-17 | RELEASE-NOTES: synced with 854aca5420f | Daniel Stenberg | |
2014-02-17 | multi: ignore sigpipe internally | Daniel Stenberg | |
When the multi API is used we must also ignore SIGPIPE signals when caused by things we do, like they can easily be generated by OpenSSL. | |||
2014-02-17 | tests: Made the crypto test feature usable | Dan Fandrich | |
This feature specifies the availability of cryptographic authentication, which can be disabled at compile-time | |||
2014-02-17 | configure: Fix the --disable-crypto-auth option | Dan Fandrich | |
It now disables NTLM and GSS authentication methods, and produces compilable code when SSL is enabled. | |||
2014-02-17 | curl_multi_setopt.3: clarify CURLMOPT_MAXCONNECTS | Daniel Stenberg | |
2014-02-17 | ConnectionDone: default maxconnects to 4 x number of easy handles | Shao Shuchao | |
... as documented! | |||
2014-02-17 | examples: remove all use of CURLM_CALL_MULTI_PERFORM | Daniel Stenberg | |
... since it is never returned since a long while back. | |||
2014-02-16 | curl_easy_setopt.3: Add another non-matching hostname | Colin Hogben | |
For the avoidance of doubt, show a domain which contains the no-proxy pattern but not at the top level. | |||
2014-02-16 | axtls: bump copyright year | Daniel Stenberg | |
2014-02-16 | axtls: call ssl_read repeatedly | Fabian Frank | |
Perform more work in between sleeps. This is work around the fact that axtls does not expose any knowledge about when work needs to be performed. Depending on connection and how often perform is being called this can save ~25% of time on SSL handshakes (measured on 20ms latency connection calling perform roughly every 10ms). | |||
2014-02-16 | url_easy_setopt.3: Add undocumented values of curl_infotype | Yehezkel Horowitz | |
... for debug function |