aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2011-02-22nss: do not ignore failure of SSL handshakeKamil Dudka
Flaw introduced in fc77790 and present in curl-7.21.4. Bug: https://bugzilla.redhat.com/669702#c16
2011-02-21CURLOPT_SSH_KEYFUNCTION: requires *SSH_KNOWNHOSTSDaniel Stenberg
Extend the docs to clarify that CURLOPT_SSH_KEYFUNCTION is only called if the known hosts option is also correctly set!
2011-02-20curl_easy_setopt.3: Removed wrong reference to CURLOPT_USERPASSWORD.Julien Chaffraix
CURLOPT_HTTPAUTH was mentioning CURLOPT_USERPASSWORD instead of CURLOPT_PASSWORD. Reported by: Mike Henshaw
2011-02-20netrc: Removed _NETRC_DEBUG code.Julien Chaffraix
This is not needed anymore as we have unit testing running on it.
2011-02-20tests: Cleaned up netrc testing.Julien Chaffraix
Removed the "netrc_debug" keyword replaced with --netrc-file additions. Removed the debug code from Curl_parsenetrc as it is superseeded by --netrc-file.
2011-02-20curl: Added --netrc-file.Julien Chaffraix
This enables people to specify a path to the netrc file to use. The new option override --netrc if both are present. However it does follow --netrc-optional if specified.
2011-02-20IMAP in multi mode: use Curl_ssl_connect_nonblocking() when upgrading the ↵Ben Noordhuis
connection to TLS/SSL.
2011-02-20IMAP in multi mode: use Curl_ssl_connect_nonblocking() when connecting.Ben Noordhuis
2011-02-18multi: close connection on timeoutMike Crowe
After a request times out, the connection wasn't properly closed and prevented to get re-used, so subsequent transfers could still mistakenly get to use the previously aborted connection.
2011-02-18multi: better failed connect treatmentDaniel Stenberg
When failing to connect the protocol during the CURLM_STATE_PROTOCONNECT state, Curl_done() has to be called with the premature flag set TRUE as for the pingpong protocols this can be important. When Curl_done() is called with premature == TRUE, it needs to call Curl_disconnect() with its 'dead_connection' argument set to TRUE as well so that any protocol handler's disconnect function won't attempt to use the (control) connection for anything. This problem caused the pingpong protocols to fail to disconnect when STARTTLS failed. Reported by: Alona Rossen Bug: http://curl.haxx.se/mail/lib-2011-02/0195.html
2011-02-18PolarSSL: Return 0 on receiving TLS CLOSE_NOTIFY alertHoi-Ho Chan
Signed-off-by: Hoi-Ho Chan <hoiho.chan@gmail.com>
2011-02-17symbols-in-versions: sortedDaniel Stenberg
I forgot to sort it when I added the CURL_SOCKOPT_* symbols
2011-02-17TODO-RELEASE: refreshDaniel Stenberg
2011-02-17SOCKOPTFUNCTION: documented new return codesDaniel Stenberg
2011-02-17SOCKOPTFUNCTION: callback can say already-connectedDaniel Stenberg
Introducing a few CURL_SOCKOPT* defines for conveniance. The new CURL_SOCKOPT_ALREADY_CONNECTED signals to libcurl that the socket is to be treated as already connected and thus it will skip the connect() call.
2011-02-17nss: avoid memory leak on SSL connection failureKamil Dudka
2011-02-17RELEASE-NOTES: fresh start towards 7.21.5Daniel Stenberg
2011-02-17curlver.h: bump to 7.21.5Daniel Stenberg
2011-02-17THANKS: add contributors from 7.21.4Daniel Stenberg
2011-02-17Set -fpcc-struct-return only for gcc compiler.Guenter Knauf
2011-02-17RELEASE-NOTES: credits since 7.21.3Daniel Stenberg
I went through all the names mentioned as authors and in commit messages since 7.21.3, and this list inserted now is sorted on first name.
2011-02-16nss_load_key: fix unused variable warningDaniel Stenberg
2011-02-14gmtime: remove defineDaniel Stenberg
It turns out some systems rely on the gmtime or gmtime_r to be defined already in the system headers and thus my "precaution" redefining of them only caused trouble. They are now removed.
2011-02-13Added -m32 to CFLAGS to compile with x86_64 gcc.Guenter Knauf
2011-02-13Updated OpenSSL version, added links to docu.Guenter Knauf
2011-02-10RELEASE-NOTES: synced with 3bb1291fbd4Daniel Stenberg
2011-02-10--keepalive-time: warn if not supported properlyDaniel Stenberg
Since the feature requires support for TCP_KEEPIDLE and TCP_KEEPINTVL to function as documented, it now warns if that support is missing when the option is used.
2011-02-10Call ERR_peek_error instead of ERR_peek_last_errorDan Fandrich
The latter isn't available in older OpenSSL versions, and is less useful since it returns the most recent error instead of the first one encountered.
2011-02-10netrc: Enable setting up the filename in unit tests.Julien Chaffraix
Unset the environment variable so that we can specify different filenames in the unit test.
2011-02-10test1304: Added some unit tests for Curl_parsenetrc.Julien Chaffraix
Moved some definitons into the header file so that we can reuse them.
2011-02-09CURLE_TLSAUTH_FAILED: removedQuinn Slack
On second thought, I think CURLE_TLSAUTH_FAILED should be eliminated. It was only being raised when an internal error occurred while allocating or setting the GnuTLS SRP client credentials struct. For TLS authentication failures, the general CURLE_SSL_CONNECT_ERROR seems appropriate; its error string already includes "passwords" as a possible cause. Having a separate TLS auth error code might also cause people to think that a TLS auth failure means the wrong username or password was entered, when it could also be a sign of a man-in-the-middle attack.
2011-02-09TLS-SRP: new options documentedQuinn Slack
2011-02-09CURLOPT_SOCKOPTFUNCTION: return proper error codeDaniel Stenberg
When the callback returns an error, this function must make sure to return CURLE_ABORTED_BY_CALLBACK properly and not CURLE_OK as before to allow the callback to properly abort the operation.
2011-02-08curl.1: typo in -v descriptionDaniel Stenberg
Reported by: Ian D Allen Bug: https://bugs.launchpad.net/ubuntu/+source/curl/+bug/714895 Forwarded to us by: Reported by: Andreas Olsson Bug: http://curl.haxx.se/bug/view.cgi?id=3175422
2011-02-07netrc: Removed dead code.Julien Chaffraix
The main has not been updated from some time and is out of sync with the code. The code is now tested by several test cases so no need for a seperate code path.
2011-02-07netrc: Tightened up the type checks.Julien Chaffraix
The state should not be anonymous so that we can check if the values are fine. Added 2 unreachables states to the switch as a result of this change.
2011-02-07imap: Fixed typo in a comment.Julien Chaffraix
2011-02-07Curl_gmtime: avoid future mistakesDaniel Stenberg
Document Curl_gmtime() and define away the old functions so that they won't be used internally again by mistake.
2011-02-07Curl_gmtime: added a portable gmtimeDaniel Stenberg
Instead of polluting many places with #ifdefs, we create a single place for this function, and also check return code properly so that a NULL pointer returned won't cause problems.
2011-02-03mk-ca-bundle.vbs: use new cacert urlGuenter Knauf
The official Mozilla page at http://www.mozilla.org/projects/security/certs/ points out a new place as the "proper" place to get Mozilla's CA certs from so this script is now updated to use that instead. Reported by: Daniel Mentz
2011-02-02mk-ca-bundle.pl: use new cacert urlDaniel Stenberg
The official Mozilla page at http://www.mozilla.org/projects/security/certs/ points out a new place as the "proper" place to get Mozilla's CA certs from so this script is now updated to use that instead. Reported by: Daniel Mentz
2011-02-02ssluse: improved error message on SSL_CTX_new failuresBjoern Sikora
"SSL: couldn't create a context" really isn't that helpful, now it'll also extract an explanation from OpenSSL and append to the right.
2011-02-02multi: fix CURLM_STATE_TOOFAST for multi_socketNicholas Maniscalco
The code in the toofast state needs to first recalculate the values before it uses them again since it may have been a while since it last did it when it reaches this point.
2011-02-02unit1300: code style cleanupDaniel Stenberg
2011-02-02adding unit tests for Curl_llist_removeAmr Shahin
2011-01-31Include TLSAUTH options in ILE/RPG binding.Patrick Monnerat
2011-01-31file: add support for CURLOPT_TIMECONDITIONDave Reisner
2011-01-31transfer: add Curl_meets_timecondition()Dave Reisner
This will be used by file_do() and Curl_readwrite() as a unified method of checking to see if a remote document meets the supplied CURLOPT_TIMEVAL and CURLOPT_TIMECONDITION. Signed-off-by: Dave Reisner <d@falconindy.com>
2011-01-29FAQ: clarified/expanded 6.7 a bitDaniel Stenberg
"6.7 What are my obligations when using libcurl in my commercial apps?" got the piece about what exactly "in all copies" mean to a user of the code. This interpretation is based on what other MIT-like licenses have made more explicit.
2011-01-29COPYING: update the year to 2011Daniel Stenberg
The generic copyright year range now includes 2011