aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2014-09-04darwinssl: Use CopyCertSubject() to check CA cert.Vilmos Nebehaj
SecCertificateCopyPublicKey() is not available on iPhone. Use CopyCertSubject() instead to see if the certificate returned by SecCertificateCreateWithData() is valid. Reported-by: Toby Peterson
2014-09-04RELEASE-NOTES: Clarify email Kerberos support is currently via Windows SSPISteve Holme
2014-09-04MAIL-ETIQUETTE: "1.8 I posted, now what?"Daniel Stenberg
2014-09-03CURLOPT_CA*: better refering between *CAINFO and *CAPATHDaniel Stenberg
... and a minor wording edit
2014-09-03THANKS: added Dennis ClarkeDaniel Stenberg
Dennis Clarke from Blastwave.org for ensuring that nightly builds run smooth on Solaris!
2014-09-02curl_multi_cleanup: remove superfluous NULL assignsDaniel Stenberg
... as the struct is free()d in the end anyway. It was first pointed out to me that one of the ->msglist assignments were supposed to have been ->pending but was a copy and paste mistake when I realized none of the clearing of pointers had to be there.
2014-09-02multi: convert CURLM_STATE_CONNECT_PEND handling to a listDaniel Stenberg
... instead of scanning through all handles, stash only the actual handles that are in that state in the new ->pending list and scan that list only. It should be mostly empty or very short. And only used for pipelining. This avoids a rather hefty slow-down especially notable if you add many handles to the same multi handle. Regression introduced in commit 0f147887 (version 7.30.0). Bug: http://curl.haxx.se/mail/lib-2014-07/0206.html Reported-by: David Meyer
2014-09-01RELEASE-NOTES: synced with e608324f9f9Daniel Stenberg
2014-09-01polarssl: implement CURLOPT_SSLVERSIONAndre Heinecke
Forwards the setting as minimum ssl version (if set) to polarssl. If the server does not support the requested version the SSL Handshake will fail. Bug: http://curl.haxx.se/bug/view.cgi?id=1419
2014-09-01Merge pull request #115 from ldx/darwinsslfixprnickzman
darwinssl: now accepts cacert bundles in PEM format in addition to single certs
2014-09-01Check CA certificate in curl_darwinssl.c.Vilmos Nebehaj
SecCertificateCreateWithData() returns a non-NULL SecCertificateRef even if the buffer holds an invalid or corrupt certificate. Call SecCertificateCopyPublicKey() to make sure cacert is a valid certificate.
2014-08-31low-speed-limit: avoid timeout floodDaniel Stenberg
Introducing Curl_expire_latest(). To be used when we the code flow only wants to get called at a later time that is "no later than X" so that something can be checked (and another timeout be added). The low-speed logic for example could easily be made to set very many expire timeouts if it would be called faster or sooner than what it had set its own timer and this goes for a few other timers too that aren't explictiy checked for timer expiration in the code. If there's no condition the code that says if(time-passed >= TIME), then Curl_expire_latest() is preferred to Curl_expire(). If there exists such a condition, it is on the other hand important that Curl_expire() is used and not the other. Bug: http://curl.haxx.se/mail/lib-2014-06/0235.html Reported-by: Florian Weimer
2014-08-31resolve: cache lookup for async resolversMichael Wallner
While waiting for a host resolve, check if the host cache may have gotten the name already (by someone else), for when the same name is resolved by several simultanoues requests. The resolver thread occasionally gets stuck in getaddrinfo() when the DNS or anything else is crappy or slow, so when a host is found in the DNS cache, leave the thread alone and let itself cleanup the mess.
2014-08-30Fix CA certificate bundle handling in darwinssl.Vilmos Nebehaj
If the --cacert option is used with a CA certificate bundle that contains multiple CA certificates, iterate through it, adding each certificate as a trusted root CA.
2014-08-29getinfo-times: Typo fixedAskar Safin
2014-08-29libcurl.3: Typo fixedAskar Safin
2014-08-29curl_formadd.3: setting CURLFORM_CONTENTSLENGTH 0 zero means strlenDaniel Stenberg
2014-08-29curl.1: add an example for -HDaniel Stenberg
2014-08-28FAQ: mention -w in the 4.20 answer as wellDaniel Stenberg
2014-08-28FAQ: 4.20 curl doesn't return error for HTTP non-200 responsesDaniel Stenberg
2014-08-28CURLOPT_NOBODY.3: clarify this option is for downloadsDaniel Stenberg
When enabling CURLOPT_NOBODY, libcurl effectively switches off upload mode and will do a download (without a body). This is now better explained in this man page. Bug: http://curl.haxx.se/mail/lib-2014-08/0236.html Reported-by: John Coffey
2014-08-26INTERNALS: nghttp2 must be 0.6.0 or laterDaniel Stenberg
2014-08-26Compile with latest nghttp2Tatsuhiro Tsujikawa
2014-08-26THANKS: removed a few more duplicatesDan Fandrich
2014-08-26RELEASE-NOTES: synced with 007242257683aDaniel Stenberg
... and bumped the contributor amount after recount
2014-08-25THANKS: added 52 missing contributorsDaniel Stenberg
I re-ran contributors.sh on all changes since 7.10 and I found these contributors who are mentioned in the commits but never were added to THANKS before! I also removed a couple of duplicates (mostly due to different spellings).
2014-08-25contributors: grep and sort case insensitivelyDaniel Stenberg
2014-08-25configure.ac: Add support for recent GSS-API implementations for HP-UXMichael Osipov
By default, configure script assumes that libcurl will use the HP-supplied GSS-API implementation which does not have krb5-config. If a dev needs a more recent version which has that config script, the change will allow to pass an appropriate GSSAPI_ROOT.
2014-08-25CONNECT: close proxy connections that fail to CONNECTDaniel Stenberg
This is usually due to failed auth. There's no point in us keeping such a connection alive since it shouldn't be re-used anyway. Bug: http://curl.haxx.se/bug/view.cgi?id=1381 Reported-by: Marcel Raad
2014-08-25RELEASE-NOTES: added two missing HTTP/2 bug fixesDaniel Stenberg
And renamed all http2 references to HTTP/2 in this file
2014-08-25RELEASE-NOTES: synced with f646e9075f47Daniel Stenberg
2014-08-25Cmake: Possibility to use OpenLDAP, OpenSSL, LibSSH2 on windowsJakub Zakrzewski
At this point I can build libcurl on windows. It provides at least the same list of protocols as for linux build and works with our software.
2014-08-25Cmake: Removed repeated content from ending blocksJakub Zakrzewski
They are unnecesary in modern CMake and removing them improves readability.
2014-08-25Cmake: Removed some useless empty SET statements.Jakub Zakrzewski
Undefined variables resolve to empty strings and we do not ever test if the variable is defined thus those SETs are superfluous.
2014-08-25Cmake: Removed useless comments from CMakeLists.txtJakub Zakrzewski
They look like some relics after changes.
2014-08-25Cmake: Don't check for all headers each timeJakub Zakrzewski
One header at a time is the right way. Apart from that the output on windows goes from: ... -- Looking for include files I:/src/libssh2-1.4.3/include/libssh2.h, ws2tcpip.h -- Looking for include files I:/src/libssh2-1.4.3/include/libssh2.h, ws2tcpip.h - found -- Looking for 3 include files I:/src/libssh2-1.4.3/include/libssh2.h, ..., wins ock2.h -- Looking for 3 include files I:/src/libssh2-1.4.3/include/libssh2.h, ..., wins ock2.h - found -- Looking for 4 include files I:/src/libssh2-1.4.3/include/libssh2.h, ..., stdi o.h -- Looking for 4 include files I:/src/libssh2-1.4.3/include/libssh2.h, ..., stdi o.h - found -- Looking for 5 include files I:/src/libssh2-1.4.3/include/libssh2.h, ..., wind ows.h -- Looking for 5 include files I:/src/libssh2-1.4.3/include/libssh2.h, ..., wind ows.h - found -- Looking for 6 include files I:/src/libssh2-1.4.3/include/libssh2.h, ..., wins ock.h -- Looking for 6 include files I:/src/libssh2-1.4.3/include/libssh2.h, ..., wins ock.h - found -- Looking for 7 include files I:/src/libssh2-1.4.3/include/libssh2.h, ..., sys/ filio.h -- Looking for 7 include files I:/src/libssh2-1.4.3/include/libssh2.h, ..., sys/ filio.h - not found -- Looking for 7 include files I:/src/libssh2-1.4.3/include/libssh2.h, ..., sys/ ioctl.h -- Looking for 7 include files I:/src/libssh2-1.4.3/include/libssh2.h, ..., sys/ ioctl.h - not found -- Looking for 7 include files I:/src/libssh2-1.4.3/include/libssh2.h, ..., sys/ resource.h ... To much nicer: ... -- Looking for ws2tcpip.h -- Looking for ws2tcpip.h - found -- Looking for winsock2.h -- Looking for winsock2.h - found -- Looking for stdio.h -- Looking for stdio.h - found -- Looking for windows.h -- Looking for windows.h - found -- Looking for winsock.h -- Looking for winsock.h - found -- Looking for sys/filio.h -- Looking for sys/filio.h - not found -- Looking for sys/ioctl.h -- Looking for sys/ioctl.h - not found -- Looking for sys/resource.h
2014-08-25Cmake: Append OpenSSL include directory to search pathJakub Zakrzewski
At this point I can build libcurl with OpenSSL, OpenLDAP and LibSSH2. Supported protocols are at least: HTTP, HTTPS, FTP, SFTP, TFTP, LDAP, LDAPS, POP3, SMTP (those are the ones we have regression tests for in our product's testsuite)
2014-08-25Cmake: Search for liblber, LDAP SSL headers, swith for using OpenLDAP code.Jakub Zakrzewski
2014-08-25Cmake: LibSSH2 detection and use.Jakub Zakrzewski
2014-08-25Cmake: Moved macros out of the main CMakeLists.txtJakub Zakrzewski
2014-08-25Cmake: Added missing protocol-disable switchesJakub Zakrzewski
They already have their defines in config.h. This makes it possible to disable the protocols from command line during configure step.
2014-08-25Cmake: Made boolean defines be defined to "1" instead of "ON"Jakub Zakrzewski
It's by convention, for compatibility and because the comments say so. Just mabe someone have written a test like "#if HAVE_XX==1"
2014-08-25Cmake: Require at least CMake 2.8.Jakub Zakrzewski
CMake 2.6 is already a bit old. Many bugs have been fixed since its release. We use 2.8 in our company and we have no intention of polluting our environment with old software, so 2.6 would not be tested. This shouldn't be a problem since all one need to build CMake from source is C and C++ compiler.
2014-08-25disconnect: don't touch easy-related state on disconnectsDaniel Stenberg
This was done to make sure NTLM state that is bound to a connection doesn't survive and gets used for the subsequent request - but disconnects can also be done to for example make room in the connection cache and thus that connection is not strictly related to the easy handle's current operation. The http authentication state is still kept in the easy handle since all http auth _except_ NTLM is connection independent and thus survive over multiple connections. Bug: http://curl.haxx.se/mail/lib-2014-08/0148.html Reported-by: Paras S
2014-08-23curl.1: clarify --limit-rate's effect on both directionsDaniel Stenberg
Bug: http://curl.haxx.se/bug/view.cgi?id=1414 Reported-by: teo8976
2014-08-23curl.1: mention the --post30x options within the --location descDaniel Stenberg
2014-08-22sasl: Fixed a memory leak on OOMDan Fandrich
2014-08-22NTLM: ignore CURLOPT_FORBID_REUSE during NTLM HTTP authFrank Meier
Problem: if CURLOPT_FORBID_REUSE is set, requests using NTLM failed since NTLM requires multiple requests that re-use the same connection for the authentication to work Solution: Ignore the forbid reuse flag in case the NTLM authentication handshake is in progress, according to the NTLM state flag. Fixed known bug #77.
2014-08-22openssl.c: Fixed longer than 79 columnsSteve Holme
2014-08-21openssl.c: Fixed compilation warningSteve Holme
warning: declaration of 'minor' shadows a global declaration