aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2016-12-19schannel: fix wildcard cert name validation on Win CEDan McNulty
Fixes a few issues in manual wildcard cert name validation in schannel support code for Win32 CE: - when comparing the wildcard name to the hostname, the wildcard character was removed from the cert name and the hostname was checked to see if it ended with the modified cert name. This allowed cert names like *.com to match the connection hostname. This violates recommendations from RFC 6125. - when the wildcard name in the certificate is longer than the connection hostname, a buffer overread of the connection hostname buffer would occur during the comparison of the certificate name and the connection hostname.
2016-12-19printf: fix floating point buffer overflow issuesDaniel Stenberg
... and add a bunch of floating point printf tests
2016-12-18config-amigaos.h: (embarrassed) made the line shorterDaniel Stenberg
2016-12-18config-amigaos.h: fix bug report email referenceDaniel Stenberg
2016-12-18RELEASE-NOTES: synced with 4517158abfebaDaniel Stenberg
2016-12-18CIPHERS.md: backtick the names to show underscores fineDaniel Stenberg
2016-12-18form-string.d: fix format mistakeDaniel Stenberg
and regenerated curl.1 Reported-by: Gisle Vanem
2016-12-18openssl: simplify expression in Curl_ossl_versionMichael Kaufmann
2016-12-18curl_easy_recv: Improve documentation and example programMichael Kaufmann
Follow-up to 82245ea: Fix the example program sendrecv.c (handle CURLE_AGAIN, handle incomplete send). Improve the documentation for curl_easy_recv() and curl_easy_send(). Reviewed-by: Frank Meier Assisted-by: Jay Satiro See https://github.com/curl/curl/pull/1134
2016-12-18Curl_getconnectinfo: avoid checking if the connection is closedIsaac Boukris
It doesn't benefit us much as the connection could get closed at any time, and also by checking we lose the ability to determine if the socket was closed by reading zero bytes. Reported-by: Michael Kaufmann Closes https://github.com/curl/curl/pull/1134
2016-12-18CIPHERS.md: attempt to document TLS cipher namesDaniel Stenberg
As the official docs seems really hard to keep track of and link to over time
2016-12-18curl.1: generated after 6cce4dbf830Daniel Stenberg
2016-12-18cmdline-opts/post30X.d: fix the RFC referencesDaniel Stenberg
2016-12-17curl.1: regeneratedDaniel Stenberg
Fixed trailing whitespace and numerous formatting glitches
2016-12-17cmdline-opts: formatting fixesDaniel Stenberg
2016-12-17curl_easy_setopt.3: removed CURLOPT_SOCKS_PROXYTYPEDaniel Stenberg
2016-12-17tool_getparam.c: make comments use the up-to-date option namesDaniel Stenberg
2016-12-17manpage-scan.pl: allow deprecated options to get removed from curl.1Daniel Stenberg
--krb4, --ftp-ssl and --ftp-ssl-reqd no longer need to be documented in the man page
2016-12-17cmdline-opts/gen.pl: trim off trailing spacesDaniel Stenberg
2016-12-17cmdline-opts/proxy-tlsuser.d: remove trailing .dDaniel Stenberg
2016-12-17curl_easy_setopt.3: CURLOPT_PRE_PROXY instead of CURLOPT_SOCKS_PROXYDaniel Stenberg
2016-12-17symbols: removed two, added oneDaniel Stenberg
2016-12-17cmdline-opts: include the man page split up files in the distDaniel Stenberg
2016-12-16curl.1: generated with gen.plDaniel Stenberg
This is the first time we replace the manually edited curt.1 with the generated one created by gen.pl and the individual option documentation pages. Do not edit this file, edit the individual pages and regenerate this output. This file will be generated by the build system soon and then removed from git.
2016-12-16cmdline-opts: added some missing infoDaniel Stenberg
2016-12-16CURLINFO_SSL_VERIFYRESULT.3: languageDaniel Stenberg
2016-12-16HTTPS-PROXY docs: update/polishDaniel Stenberg
2016-12-16cmdline-opts/page-header: mention it is generatedDaniel Stenberg
... to avoid people from trying to edit the pending curl.1 version that gets generated by gen.pl
2016-12-16preproxy: renamed what was added as SOCKS_PROXYDaniel Stenberg
CURLOPT_SOCKS_PROXY -> CURLOPT_PRE_PROXY Added the corresponding --preroxy command line option. Sets a SOCKS proxy to connect to _before_ connecting to a HTTP(S) proxy.
2016-12-16curl: normal socks proxies still use CURLOPT_PROXYDaniel Stenberg
... the newly introduced CURLOPT_SOCKS_PROXY is special and should be asked for specially. (Needs new code.) Unified proxy type to a single variable in the config struct.
2016-12-16CURLOPT_SOCKS_PROXYTYPE: removedDaniel Stenberg
This was added as part of the SOCKS+HTTPS proxy merge but there's no need to support this as we prefer to have the protocol specified as a prefix instead.
2016-12-15curl_multi_socket.3: fix typoDaniel Stenberg
2016-12-14checksrc: warn for assignments within if() expressionsDaniel Stenberg
... they're already frowned upon in our source code style guide, this now enforces the rule harder.
2016-12-13checksrc: stricter no-space-before-paren enforcementDaniel Stenberg
In order to make the code style more uniform everywhere
2016-12-11ISSUE_TEMPLATE: try mentioning known bugs/todo in new issue templateDaniel Stenberg
2016-12-08RELEASE-NOTES: synced with 71a55534fa6Daniel Stenberg
2016-12-07openssl: don't use OpenSSL's ERR_PACK.Adam Langley
ERR_PACK is an internal detail of OpenSSL. Also, when using it, a function name must be specified which is overly specific: the test will break whenever OpenSSL internally change things so that a different function creates the error. Closes #1157
2016-12-05test2032: Mark test as flakyDan Fandrich
2016-12-03libcurl-multi.3: typoJeremy Pearson
Closes https://github.com/curl/curl/pull/1153
2016-12-02test1281: added http as a required featureDan Fandrich
2016-12-02curl: support zero-length argument strings in config filesDaniel Stenberg
... like 'user-agent = ""' Adjusted test 71 to verify.
2016-12-01http_proxy: simplify CONNECT response readingDaniel Stenberg
Since it now reads responses one byte a time, a loop could be removed and it is no longer limited to get the whole response within 16K, it is now instead only limited to 16K maximum header line lengths.
2016-12-01tests: fix CONNECT test cases to be more strictDaniel Stenberg
... as they broke with the cleaned up CONNECT handling
2016-12-01CONNECT: read responses one byte at a timeDaniel Stenberg
... so that it doesn't read data that is actually coming from the remote. 2xx responses have no body from the proxy, that data is from the peer. Fixes #1132
2016-12-01CONNECT: reject TE or CL in 2xx responsesDaniel Stenberg
A server MUST NOT send any Transfer-Encoding or Content-Length header fields in a 2xx (Successful) response to CONNECT. (RFC 7231 section 4.3.6) Also fixes the three test cases that did this.
2016-12-01URL parser: reject non-numerical port numbersDaniel Stenberg
Test 1281 added to verify
2016-11-30runtests: made Servers: output be more consistent by removing OFFDan Fandrich
2016-11-30cyassl: fixed typo introduced in 4f8b1774Dan Fandrich
2016-11-30CURLOPT_CONNECT_TO: Skip non-matching "connect-to" entries properlyMichael Kaufmann
If a port number in a "connect-to" entry does not match, skip this entry instead of connecting to port 0. If a port number in a "connect-to" entry matches, use this entry and look no further. Reported-by: Jay Satiro Assisted-by: Jay Satiro, Daniel Stenberg Closes #1148
2016-11-29BUGS: describe bug handling processDaniel Stenberg