aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2012-06-14schannel: fix shadowing of global declarationsYang Tse
2012-06-14schannel: fix Curl_schannel_init() and Curl_schannel_cleanup() declarationsYang Tse
2012-06-14urldata.h: fix cyassl/openssl/ssl.h build clash with wincrypt.hGisle Vanem
Building with CyaSSL failed compilation. Reason being that OCSP_REQUEST and OCSP_RESPONSE are enum values in CyaSSL and defines in <wincrypt.h> included via <winldap.h> in ldap.c. http://curl.haxx.se/mail/lib-2012-06/0196.html
2012-06-13MakefileBuild.vc: Allow building without SSLYang Tse
In order to use Windows native SSL support define 'USE_WINSSL'
2012-06-13configure: new option --with-winsslYang Tse
This option may be used to build curl/libcurl using SSL/TLS support provided by MS windows system libraries. Option is mutually exclusive with any other SSL library. Default value is --without-winssl. --with-winssl option implies --with-sspi option. Option meaningful only for Windows builds.
2012-06-13Changed Schannel string to SSL-Windows-native.Guenter Knauf
This is more descriptive for the user who might not even know what schannnel is at all.
2012-06-13schannel: remove version number and identify its use with 'schannel' literalYang Tse
Version number is removed in order to make this info consistent with how we do it with other MS and Linux system libraries for which we don't provide this info. Identifier changed from 'WinSSPI' to 'schannel' given that this is the actual provider of the SSL/TLS support. libcurl can still be built with SSPI and without SCHANNEL support.
2012-06-12singlesocket: remove dead codeDaniel Stenberg
No need to check if 'entry' is non-NULL in a spot where it is already checked and guaranteed to be non-NULL. (Spotted by a Coverity scan)
2012-06-12netrc: remove dead codeDaniel Stenberg
Remove two states from the enum and the corresponding code for them as these states were never reached or used. (Spotted by a Coverity scan)
2012-06-12Revert "connect.c/ftp.c: Fixed dereferencing pointer breakin strict-aliasing"Yang Tse
This reverts commit 9c94236e6cc078a0dc5a78b6e2fefc1403e5375e. It didn't server its purpose, so lets go back to long-time working code.
2012-06-12socks_sspi.c: further cleanupYang Tse
2012-06-12socks_sspi.c: Clean up and removal of obsolete minor statusMarc Hoersken
Removed obsolete minor status variable and parameter of status function which was never used or set at all. Also Curl_sspi_strerror does support only one status and there is no need for a second sub status.
2012-06-12Removed trailing whitespaces.Guenter Knauf
2012-06-12strerror.c: make Curl_sspi_strerror() always return code for errorsYang Tse
2012-06-12curl_sspi.h: provide sspi status definitions missing in old headersYang Tse
2012-06-12sspi: make Curl_sspi_strerror() libcurl's sspi status code string functionYang Tse
2012-06-12sspi: make Curl_sspi_strerror() libcurl's sspi status code string functionYang Tse
2012-06-11Revert: 634f7cfee40d4658 partiallyDaniel Stenberg
Make sure CURL_VERSION_SSPI is present and works as in previous releases for ABI and API compatibility reasons.
2012-06-11checksrc: shorten a few lines to complyDaniel Stenberg
2012-06-11cleanup: remove trailing whitespaceDaniel Stenberg
2012-06-11winbuild: Removed WITH_SSL=schannel and tie schannel to SSPIMarc Hoersken
Removed specific WITH_SSL=schannel paramter that did not fit the general schema and complicated the parameters. For now Schannel will be enabled if SSPI is enabled and OpenSSL is disabled.
2012-06-11Makefile.vc6: Added version.lib if built with SSPISteve Holme
2012-06-11winbuild: Updated winbuild scripts to add schannelMarc Hoersken
2012-06-11mingw32: Fixed warning of USE_SSL being redefinedMarc Hoersken
2012-06-11sspi: Fixed incompatible parameter pointer type in Curl_sspi_versionMarc Hoersken
2012-06-11sspi: Updated RELEASE-NOTES, FEATURES and THANKSMarc Hoersken
2012-06-11setup.h: Automatically define USE_SSL if USE_SCHANNEL is definedMarc Hoersken
2012-06-11version: Replaced SSPI feature information with version string detailsMarc Hoersken
Added Windows SSPI version information to the curl version string when SCHANNEL SSL is not enabled, as the version of the library should also be included when SSPI is used to generate security contexts. Removed SSPI from the feature list as the features are GSS-Negotiate, NTLM and SSL depending on the usage of the SSPI library.
2012-06-11sspi.c: Post Curl_sspi_version() rework code tidy upSteve Holme
Removed duplicate blank lines. Removed spaces between the not and test in various if statements. Removed explicit test of NULL in an if statement. Placed function returns on same line as function declarations. Replaced the use of curl_maprintf() with aprintf() as it is the preprocessor job to do this substitution if ENABLE_CURLX_PRINTF is set.
2012-06-11sspi: Reworked Curl_sspi_version() to return version componentsSteve Holme
Reworked the version function to return four version components rather than a string that has to be freed by the caller.
2012-06-11configure.ac: Added -lversion if built with SSPIGuenter Knauf
2012-06-11schannel: Code cleanup and bug fixesMarc Hoersken
curl_sspi.c: Fixed mingw32-gcc compiler warnings curl_sspi.c: Fixed length of error code hex output The hex value was printed as signed 64-bit value on 64-bit systems: SEC_E_WRONG_PRINCIPAL (0xFFFFFFFF80090322) It is now correctly printed as the following: SEC_E_WRONG_PRINCIPAL (0x80090322) curl_sspi.c: Fallback to security function table version number Instead of reporting an unknown version, the interface version is used. curl_sspi.c: Removed SSPI/ version prefix from Curl_sspi_version curl_schannel: Replaced static buffer sizes with defined names curl_schannel.c: First brace when declaring functions on column 0 curl_schannel.c: Put the pointer sign directly at variable name curl_schannel.c: Use structs directly instead of typedef'ed structs curl_schannel.c: Removed space before opening brace curl_schannel.c: Fixed lines being longer than 80 chars
2012-06-11curl_sspi: Added Curl_sspi_version functionMarc Hoersken
Added new function to get SSPI version as string. Added required library version.lib to makefiles. Changed curl_schannel.c to use Curl_sspi_version.
2012-06-11schannel: Updated mingw32 makefilesGuenter Knauf
2012-06-11schannel: Replace ASCII specific code with general definesMarc Hoersken
2012-06-11schannel: Added definitions which are missing in mingw32Marc Hoersken
2012-06-11schannel: Moved interal struct types to urldata.hMarc Hoersken
Moved type definitions in order to avoid inclusion loop
2012-06-11schannel: Fixed compiler warnings about pointer type assignmentsMarc Hoersken
2012-06-11schannel: Fixed critical typo in conditions and added buffer length checksMarc Hoersken
2012-06-11sspi: Refactored socks_sspi and schannel to use same error message functionsMarc Hoersken
Moved the error constant switch to curl_sspi.c and added two new helper functions to curl_sspi.[ch] which either return the constant or a fully translated message representing the SSPI security status. Updated socks_sspi.c and curl_schannel.c to use the new functions.
2012-06-11schannel: Added special shutdown check for Windows 2000 ProfessionalMarc Hoersken
Windows 2000 Professional: Schannel returns SEC_E_OK instead of SEC_I_CONTEXT_EXPIRED. If the length of the output buffer is zero and the first byte of the encrypted packet is 0x15, the application can safely assume that the message was a close_notify message and change the return value to SEC_I_CONTEXT_EXPIRED. Connection shutdown does not mean that there is no data to read Correctly handle incomplete message and ask curl to re-read Fixed buffer for decrypted being to small Re-structured read condition to be more effective Removed obsolete verbose messages Changed memory reduction method to keep a minimum buffer of size 4096
2012-06-11schannel: Implemented SSL/TLS renegotiationMarc Hoersken
Updated TODO information and added related MSDN articles
2012-06-11schannel: Save session credential handles in session cacheMarc Hoersken
2012-06-11schannel: Code cleanupMarc Hoersken
2012-06-11schannel: Check for required context attributesMarc Hoersken
2012-06-11schannel: Allow certificate and revocation checks being deactivatedMarc Hoersken
2012-06-11schannel: Added SSL/TLS support with Microsoft Windows Schannel SSPIMarc Hoersken
2012-06-11http: Replaced specific SSL libraries list in https_getsock fallbackMarc Hoersken
2012-06-11connect.c/ftp.c: Fixed dereferencing pointer breakin strict-aliasingMarc Hoersken
Fixed warning: dereferencing pointer does break strict-aliasing rules by using a union instead of separate pointer variables. Internal union sockaddr_u could probably be moved to generic header. Thanks to Paul Howarth for the hint about using unions for this. Important for winbuild: Separate declaration of sockaddr_u pointer. The pointer variable *sock cannot be declared and initialized right after the union declaration. Therefore it has to be a separate statement.
2012-06-11curl_ntlm_msgs.c: Fixed passwdlen not being used and recalculatedMarc Hoersken