Age | Commit message (Collapse) | Author | |
---|---|---|---|
2015-01-16 | curlver.h: next release is 7.41.0 due to the changes | Daniel Stenberg | |
2015-01-16 | RELEASE-NOTES: mention the new OCSP stapling options, bump version | Daniel Stenberg | |
2015-01-16 | opts: add CURLOPT_SSL_VERIFYSTATUS* to docs/Makefile | Daniel Stenberg | |
2015-01-16 | help: add --cert-status to --help output | Daniel Stenberg | |
2015-01-16 | copyright years: after OCSP stapling changes | Daniel Stenberg | |
2015-01-16 | curl: add --cert-status option | Alessandro Ghedini | |
This enables the CURLOPT_SSL_VERIFYSTATUS functionality. | |||
2015-01-16 | nss: add support for the Certificate Status Request TLS extension | Alessandro Ghedini | |
Also known as "status_request" or OCSP stapling, defined in RFC6066 section 8. This requires NSS 3.15 or higher. | |||
2015-01-16 | gtls: add support for the Certificate Status Request TLS extension | Alessandro Ghedini | |
Also known as "status_request" or OCSP stapling, defined in RFC6066 section 8. This requires GnuTLS 3.1.3 or higher to build, however it's recommended to use at least GnuTLS 3.3.11 since previous versions had a bug that caused the OCSP response verfication to fail even on valid responses. | |||
2015-01-16 | url: add CURLOPT_SSL_VERIFYSTATUS option | Alessandro Ghedini | |
This option can be used to enable/disable certificate status verification using the "Certificate Status Request" TLS extension defined in RFC6066 section 8. This also adds the CURLE_SSL_INVALIDCERTSTATUS error, to be used when the certificate status verification fails, and the Curl_ssl_cert_status_request() function, used to check whether the SSL backend supports the status_request extension. | |||
2015-01-16 | TheArtOfHttpScripting: skip the date at the top, we have git | Daniel Stenberg | |
2015-01-16 | TheArtOfHttpScripting: phrase it TLS lib agnostic | Daniel Stenberg | |
2015-01-16 | TODO: Added some SMB ideas | Steve Holme | |
2015-01-16 | RELEASE-NOTES: Synced with 5f09947d28 | Steve Holme | |
2015-01-16 | build-openssl.bat: Added check for Perl installation | Steve Holme | |
2015-01-16 | checksrc.bat: Better detection of Perl installation | Steve Holme | |
2015-01-16 | curl_endian: Fixed build when 64-bit integers are not supported | Steve Holme | |
Bug: http://curl.haxx.se/mail/lib-2015-01/0094.html Reported-by: John E. Malmberg | |||
2015-01-15 | curl.h: remove extra space | Yun SangHo | |
2015-01-14 | Curl_pretransfer: reset expected transfer sizes | Daniel Stenberg | |
Reported-by: Mohammad AlSaleh Bug: http://curl.haxx.se/mail/lib-2015-01/0065.html | |||
2015-01-12 | curl_schannel.c: mark session as removed from cache if not freed | Marc Hoersken | |
If the session is still used by active SSL/TLS connections, it cannot be closed yet. Thus we mark the session as not being cached any longer so that the reference counting mechanism in Curl_schannel_shutdown is used to close and free the session. Reported-by: Jean-Francois Durand | |||
2015-01-09 | RELEASE-NOTES: Synced with d21b66835f | Steve Holme | |
2015-01-09 | Merge pull request #134 from vszakats/mingw-m64 | Guenter Knauf | |
add -m64 CFLAGS when targeting mingw64, add -m32/-m64 to LDFLAGS | |||
2015-01-09 | Merge pull request #136 from vszakats/mingw-allow-custom-cflags | Guenter Knauf | |
mingw build: allow to pass custom CFLAGS | |||
2015-01-09 | NSS: fix compiler error when built http2-enabled | Daniel Stenberg | |
2015-01-09 | gssapi: Remove need for duplicated GSS_C_NT_HOSTBASED_SERVICE definitions | Steve Holme | |
Better code reuse and consistency in calls to gss_import_name(). | |||
2015-01-09 | mingw build: allow to pass custom CFLAGS | Viktor Szakats | |
2015-01-08 | FTP: if EPSV fails on IPV6 connections, bail out | Daniel Stenberg | |
... instead of trying PASV, since PASV can't work with IPv6. Reported-by: Vojtěch Král | |||
2015-01-08 | FTP: fix IPv6 host using link-local address | Daniel Stenberg | |
... and make sure we can connect the data connection to a host name that is longer than 48 bytes. Also simplifies the code somewhat by re-using the original host name more, as it is likely still in the DNS cache. Original-Patch-by: Vojtěch Král Bug: http://curl.haxx.se/bug/view.cgi?id=1468 | |||
2015-01-08 | winbuild: Added option to build with c-ares | Sam Schanken | |
Added support for a WITH_CARES option to be used when invoking nmake via Makefile.vc. This option enables linking against both the DLL and static versions of the c-ares libraries, as well as the debug and release varients, depending on the value of DEBUG. The USE_ARES preprocessor symbol is also defined. | |||
2015-01-08 | NetWare build: added TLS-SRP enabled build. | Guenter Knauf | |
2015-01-08 | sasl_gssapi: Fixed build on NetBSD with built-in GSS-API | Steve Holme | |
Bug: http://curl.haxx.se/bug/view.cgi?id=1469 Reported-by: Thomas Klausner | |||
2015-01-08 | add -m64 clags when targeting mingw64, add -m32/-m64 to LDFLAGS | Viktor Szakats | |
2015-01-08 | bump: start working towards 7.40.1 | Daniel Stenberg | |
2015-01-08 | THANKS: 14 new contributors from the 7.40.0 release notes | Daniel Stenberg | |
2015-01-07 | RELEASE-NOTES: version 7.40.0 | Daniel Stenberg | |
2015-01-07 | darwinssl: fix session ID keys to only reuse identical sessions | Daniel Stenberg | |
...to avoid a session ID getting cached without certificate checking and then after a subsequent _enabling_ of the check libcurl could still re-use the session done without cert checks. Bug: http://curl.haxx.se/docs/adv_20150108A.html Reported-by: Marc Hesse | |||
2015-01-07 | tests: make sure CRLFs can't be used in URLs passed to proxy | Daniel Stenberg | |
Bug: http://curl.haxx.se/docs/adv_20150108B.html | |||
2015-01-07 | url-parsing: reject CRLFs within URLs | Daniel Stenberg | |
Bug: http://curl.haxx.se/docs/adv_20150108B.html Reported-by: Andrey Labunets | |||
2015-01-07 | ldap: Convert attribute output to UTF-8 when Unicode | Steve Holme | |
2015-01-07 | ldap: Convert DN output to UTF-8 when Unicode | Steve Holme | |
2015-01-07 | hostip: remove 'stale' argument from Curl_fetch_addr proto | Daniel Stenberg | |
Also, remove the log output of the resolved name is NOT in the cache in the spirit of only telling when something is actually happening. | |||
2015-01-07 | ldap/imap: Fixed spelling mistake in comments and variable names | Steve Holme | |
Reported-by: Michael Osipov | |||
2015-01-07 | RELEASE-NOTES: updated with ./contributors.sh output | Daniel Stenberg | |
2015-01-05 | curl_multibyte.h: Eliminated some trailing whitespace | Dan Fandrich | |
2015-01-04 | RELEASE-NOTES: Synced with ea93252ef1 | Steve Holme | |
2015-01-04 | ldap: Fixed Unicode usage for all Win32 builds | Steve Holme | |
Otherwise, the fixes in the previous commits would only be applicable to IDN and SSPI based builds and not others such as OpenSSL with LDAP enabled. | |||
2015-01-04 | ldap: Fixed memory leak from commit efb64fdf80 | Steve Holme | |
2015-01-04 | ldap: Fix memory leak from commit 3a805c5cc1 | Steve Holme | |
2015-01-04 | ldap: Fixed attribute variable warnings when Unicode is enabled | Steve Holme | |
Use 'TCHAR *' for local attribute variable rather than 'char *'. | |||
2015-01-04 | ldap: Fixed DN variable warnings when Unicode is enabled | Steve Holme | |
Use 'TCHAR *' for local DN variable rather than 'char *'. | |||
2015-01-04 | ldap: Remove the unescape_elements() function | Steve Holme | |
Due to the recent modifications this function is no longer used. |