Age | Commit message (Collapse) | Author | |
---|---|---|---|
2015-02-02 | build: Renamed top level Visual Studio solution files | Steve Holme | |
In preparation for adding the test suite and examples projects renamed the top level "all" solution files to better describe what they are. This will also enable us to use "curl" rather than "curlsrc" for the command line tool solution and project files, which will simplify some of the configuration. | |||
2015-02-02 | build: Enabled DEBUGBUILD in Visual Studio debug builds | Steve Holme | |
Defined the DEBUGBUILD pre-processor variable to allow extra logging, which is particularly useful in debug builds, as we use this and Visual Studio typically uses _DEBUG. We could define DEBUBBUILD, in curl_setup.h, when _MSC_VER and _DEBUG is defined but that would also affect the makefile based builds which we probably don't want to do. | |||
2015-02-02 | build: Removed unused Visual Studio bscmake settings | Steve Holme | |
2015-02-02 | CURLOPT_HTTP_VERSION.3: CURL_HTTP_VERSION_2_0 added in 7.33.0 | Daniel Stenberg | |
And modify the text to refer to HTTP 2 as it isn't called "2.0". Reported-By: Michael Wallner | |||
2015-01-31 | TODO: moved WinSSL/SChannel todo items into docs | Marc Hoersken | |
2015-01-29 | CURLOPT_SEEKFUNCTION.3: also when server closes a connection | Michael Kaufmann | |
2015-01-29 | curl_sasl.c: Fixed compilation warning when cryptography is disabled | Steve Holme | |
curl_sasl.c:1506: warning: unused variable 'chlg' | |||
2015-01-28 | curl_sasl.c: Fixed compilation warning when verbose debug output disabled | Steve Holme | |
curl_sasl.c:1317: warning: unused parameter 'conn' | |||
2015-01-28 | ntlm_core: Use own odd parity function when crypto engine doesn't have one | Steve Holme | |
2015-01-28 | ntlm_core: Prefer sizeof(key) rather than hard coded sizes | Steve Holme | |
2015-01-28 | ntlm_core: Added consistent comments to DES functions | Steve Holme | |
2015-01-28 | des: Added Curl_des_set_odd_parity() | Steve Holme | |
Added Curl_des_set_odd_parity() for use when cryptography engines don't include this functionality. | |||
2015-01-28 | tests: Grouped SMTP SASL EXTERNAL tests with other SMTP tests | Steve Holme | |
2015-01-28 | tests: Grouped POP3 SASL EXTERNAL tests with other POP3 tests | Steve Holme | |
2015-01-28 | tests: Grouped IMAP SASL EXTERNAL tests with other IMAP tests | Steve Holme | |
2015-01-28 | sasl: Minor code policing and grammar corrections | Steve Holme | |
2015-01-28 | ldap: build with BoringSSL | Gisle Vanem | |
2015-01-28 | security: avoid compiler warning | Daniel Stenberg | |
Possible access to uninitialised memory '&nread' at line 140 of lib/security.c in function 'ftp_send_command'. Reported-by: Rich Burridge | |||
2015-01-28 | runtests: identify BoringSSL and libressl | Daniel Stenberg | |
2015-01-27 | docs: cite SASL external authentication. | Patrick Monnerat | |
2015-01-27 | sasl: remove XOAUTH2 from default enabled authentication mechanism. | Patrick Monnerat | |
2015-01-27 | test: add test cases for sasl external authentication (imap/pop3/smtp). | Patrick Monnerat | |
2015-01-27 | imap: remove automatic password setting: it breaks external sasl authentication | Patrick Monnerat | |
2015-01-27 | sasl: implement EXTERNAL authentication mechanism. | Patrick Monnerat | |
Its use is only enabled by explicit requirement in URL (;AUTH=EXTERNAL) and by not setting the password. | |||
2015-01-27 | openssl: Fixed Curl_ossl_cert_status_request() not returning FALSE | Steve Holme | |
Modified the Curl_ossl_cert_status_request() function to return FALSE when built with BoringSSL or when OpenSSL is missing the necessary TLS extensions. | |||
2015-01-27 | openssl: Fixed compilation errors when OpenSSL built with 'no-tlsext' | Steve Holme | |
Fixed the build of openssl.c when OpenSSL is built without the necessary TLS extensions for OCSP stapling. Reported-by: John E. Malmberg | |||
2015-01-26 | curl_setup: Disable SMB/CIFS support when HTTP only | Brad Spencer | |
2015-01-23 | RELEASE-NOTES: Synced with 37824498a3 | Steve Holme | |
2015-01-22 | configure: remove detection of the old yassl emulation API | Daniel Stenberg | |
... as that is ancient history and not used. | |||
2015-01-22 | OCSP stapling: disabled when build with BoringSSL | Daniel Stenberg | |
2015-01-22 | openssl: add support for the Certificate Status Request TLS extension | Alessandro Ghedini | |
Also known as "status_request" or OCSP stapling, defined in RFC6066 section 8. Thanks-to: Joe Mason - for the work-around for the OpenSSL bug. | |||
2015-01-22 | BoringSSL: fix build for non-configure builds | Daniel Stenberg | |
HAVE_BORINGSSL gets defined now by configure and should be defined by other build systems in case a BoringSSL build is desired. | |||
2015-01-22 | configure: fix BoringSSL detection and detect libresssl | Daniel Stenberg | |
2015-01-22 | curl_sasl: Reinstate the sasl_ prefix for locally scoped functions | Steve Holme | |
Commit 7a8b2885e2 made some functions static and removed the public Curl_ prefix. Unfortunately, it also removed the sasl_ prefix, which is the naming convention we use in this source file. | |||
2015-01-22 | curl_sasl: Minor code policing following recent commits | Steve Holme | |
2015-01-22 | openvms: Handle openssl/0.8.9zb version parsing | John Malmberg | |
packages/vms/gnv_link_curl.com was assuming only a single letter suffix in the openssl version. That assumption has been fixed for 7.40. | |||
2015-01-22 | BoringSSL: detected by configure, switches off NTLM | Daniel Stenberg | |
2015-01-22 | BoringSSL: no PKCS12 support nor ERR_remove_state | Daniel Stenberg | |
2015-01-22 | BoringSSL: fix build | Leith Bade | |
2015-01-20 | curl_sasl.c: chlglen is not used when cryptography is disabled | Steve Holme | |
2015-01-20 | curl_sasl.c: Fixed compilation warning when cyptography is disabled | Steve Holme | |
curl_sasl.c:1453: warning C4101: 'serverdata' : unreferenced local variable | |||
2015-01-20 | curl_sasl.c: Fixed compilation error when USE_WINDOWS_SSPI defined | Steve Holme | |
curl_sasl.c:1221: error C2065: 'mechtable' : undeclared identifier This error could also happen for non-SSPI builds when cryptography is disabled (CURL_DISABLE_CRYPTO_AUTH is defined). | |||
2015-01-20 | SASL: make some procedures local-scoped | Patrick Monnerat | |
2015-01-20 | SASL: common state engine for imap/pop3/smtp | Patrick Monnerat | |
2015-01-20 | SASL: common URL option and auth capabilities decoders for all protocols | Patrick Monnerat | |
2015-01-20 | IMAP/POP3/SMTP: use a per-connection sub-structure for SASL parameters. | Patrick Monnerat | |
2015-01-20 | ipv6: enclose AF_INET6 uses with proper #ifdefs for ipv6 | Daniel Stenberg | |
Reported-by: Chris Young | |||
2015-01-20 | timeval: typecast for better type (on Amiga) | Chris Young | |
There is an issue with conflicting "struct timeval" definitions with certain AmigaOS releases and C libraries, depending on what gets included when. It's a minor difference - the OS one is unsigned, whereas the common structure has signed elements. If the OS one ends up getting defined, this causes a timing calculation error in curl. It's easy enough to resolve this at the curl end, by casting the potentially errorneous calculation to a signed long. | |||
2015-01-19 | openssl: do public key pinning check independently | Daniel Stenberg | |
... of the other cert verification checks so that you can set verifyhost and verifypeer to FALSE and still check the public key. Bug: http://curl.haxx.se/bug/view.cgi?id=1471 Reported-by: Kyle J. McKay | |||
2015-01-19 | OS400: CURLOPT_SSL_VERIFYSTATUS for ILE/RPG too. | Patrick Monnerat | |