aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2011-02-09CURLE_TLSAUTH_FAILED: removedQuinn Slack
On second thought, I think CURLE_TLSAUTH_FAILED should be eliminated. It was only being raised when an internal error occurred while allocating or setting the GnuTLS SRP client credentials struct. For TLS authentication failures, the general CURLE_SSL_CONNECT_ERROR seems appropriate; its error string already includes "passwords" as a possible cause. Having a separate TLS auth error code might also cause people to think that a TLS auth failure means the wrong username or password was entered, when it could also be a sign of a man-in-the-middle attack.
2011-02-09TLS-SRP: new options documentedQuinn Slack
2011-02-09CURLOPT_SOCKOPTFUNCTION: return proper error codeDaniel Stenberg
When the callback returns an error, this function must make sure to return CURLE_ABORTED_BY_CALLBACK properly and not CURLE_OK as before to allow the callback to properly abort the operation.
2011-02-08curl.1: typo in -v descriptionDaniel Stenberg
Reported by: Ian D Allen Bug: https://bugs.launchpad.net/ubuntu/+source/curl/+bug/714895 Forwarded to us by: Reported by: Andreas Olsson Bug: http://curl.haxx.se/bug/view.cgi?id=3175422
2011-02-07netrc: Removed dead code.Julien Chaffraix
The main has not been updated from some time and is out of sync with the code. The code is now tested by several test cases so no need for a seperate code path.
2011-02-07netrc: Tightened up the type checks.Julien Chaffraix
The state should not be anonymous so that we can check if the values are fine. Added 2 unreachables states to the switch as a result of this change.
2011-02-07imap: Fixed typo in a comment.Julien Chaffraix
2011-02-07Curl_gmtime: avoid future mistakesDaniel Stenberg
Document Curl_gmtime() and define away the old functions so that they won't be used internally again by mistake.
2011-02-07Curl_gmtime: added a portable gmtimeDaniel Stenberg
Instead of polluting many places with #ifdefs, we create a single place for this function, and also check return code properly so that a NULL pointer returned won't cause problems.
2011-02-03mk-ca-bundle.vbs: use new cacert urlGuenter Knauf
The official Mozilla page at http://www.mozilla.org/projects/security/certs/ points out a new place as the "proper" place to get Mozilla's CA certs from so this script is now updated to use that instead. Reported by: Daniel Mentz
2011-02-02mk-ca-bundle.pl: use new cacert urlDaniel Stenberg
The official Mozilla page at http://www.mozilla.org/projects/security/certs/ points out a new place as the "proper" place to get Mozilla's CA certs from so this script is now updated to use that instead. Reported by: Daniel Mentz
2011-02-02ssluse: improved error message on SSL_CTX_new failuresBjoern Sikora
"SSL: couldn't create a context" really isn't that helpful, now it'll also extract an explanation from OpenSSL and append to the right.
2011-02-02multi: fix CURLM_STATE_TOOFAST for multi_socketNicholas Maniscalco
The code in the toofast state needs to first recalculate the values before it uses them again since it may have been a while since it last did it when it reaches this point.
2011-02-02unit1300: code style cleanupDaniel Stenberg
2011-02-02adding unit tests for Curl_llist_removeAmr Shahin
2011-01-31Include TLSAUTH options in ILE/RPG binding.Patrick Monnerat
2011-01-31file: add support for CURLOPT_TIMECONDITIONDave Reisner
2011-01-31transfer: add Curl_meets_timecondition()Dave Reisner
This will be used by file_do() and Curl_readwrite() as a unified method of checking to see if a remote document meets the supplied CURLOPT_TIMEVAL and CURLOPT_TIMECONDITION. Signed-off-by: Dave Reisner <d@falconindy.com>
2011-01-29FAQ: clarified/expanded 6.7 a bitDaniel Stenberg
"6.7 What are my obligations when using libcurl in my commercial apps?" got the piece about what exactly "in all copies" mean to a user of the code. This interpretation is based on what other MIT-like licenses have made more explicit.
2011-01-29COPYING: update the year to 2011Daniel Stenberg
The generic copyright year range now includes 2011
2011-01-28Windows build: alternative makefilePierre Joye
This is a separate makefile for MSVC builds. It is deliberately put in another dir than src/ and lib/ to allow a different build experience than the previous - at least during a period. Eventually we should unify.
2011-01-28test: add test 580 to the distDaniel Stenberg
2011-01-27Some minor edits including updates to function namesDan Fandrich
2011-01-27ares: memory leak fixDaniel Stenberg
The double name resolve trick used with c-ares could leave allocated memory in 'temp_ai' if the operation was aborted in the middle.
2011-01-27ares_query_completed_cb: don't touch invalid dataDaniel Stenberg
When this callback is called due to the destruction of the ares handle, the connection pointer passed in as an argument may no longer pointing to valid data and this function doesn't need to do anything with it anyway so we make sure it doesn't. Bug: http://curl.haxx.se/mail/lib-2011-01/0333.html Reported by: Vsevolod Novikov
2011-01-27nss: avoid memory leaks and failure of NSS shutdownKamil Dudka
... in case more than one CA is loaded. Bug: https://bugzilla.redhat.com/670802
2011-01-26Mention that sftp quote commands can be quotedDan Fandrich
2011-01-25tests: more multiple headers checksDaniel Stenberg
2011-01-25HTTP: memory leak on multiple Location:Daniel Stenberg
The HTTP parser allocated memory on each received Location: header without properly freeing old data. Starting now, the code only considers the first Location: header and will blissfully ignore subsequent ones. Bug: http://curl.haxx.se/bug/view.cgi?id=3165129 Reported by: Martin Lemke
2011-01-24FAQ: clarify 5.13 how to stop a transferDaniel Stenberg
2011-01-22Fixed C++ style comment not allowed in ISO C90.Guenter Knauf
2011-01-21Mention axTLS in some more documentationDan Fandrich
2011-01-20runtests.pl: make -s not show skipped testsDaniel Stenberg
2011-01-20unittest: add 3 tests to test1300Amr Shahin
Testing Curl_llist_insert_next
2011-01-20Fixed compile using OpenSSL versions < 0.9.4aDarshan Mody
2011-01-19main: make the tlsauth options always presentDaniel Stenberg
... to not make the connection between the tool and the libcurl used tighter than necessary, the tlsauth options are now always present but if the used libcurl doesn't have TLSAUTH support it will return failure. Also, replaced strncmp() with strequal to get case insensitive matching.
2011-01-19symbols-in-versions: add the new TLSAUTH-SRP symbolsDaniel Stenberg
2011-01-19configure: TLS-SRP wasn't added as a featureDaniel Stenberg
Test case 1014 failed since TLS-SRP was correctly set to the features variable so curl-config --features didn't output it.
2011-01-19dist: add new certs to tarballDaniel Stenberg
2011-01-19TLS-SRP: support added when using GnuTLSQuinn Slack
2011-01-19CURLOPT_SSL_VERIFYPEER: more clarificationsDaniel Stenberg
The default value is 1. curl _uses_ a default CA bundle, it doesn't install one. Drop the references to 7.10 as that is now >8 years old!
2011-01-19TheArtOfHttpScripting: extendedDaniel Stenberg
Extended the intial HTTP protcol part and added a mention of --trace and --trace-ascii. Replaced most URLs in the text to use example.com instead of all the made up strange names. Shortened a bunch of lines.
2011-01-19curl_easy_setopt.3: clarify VERIFYHOST/PEERDaniel Stenberg
Extended the descriptions somewhat and made the options get listed next to each other.
2011-01-18RELEASE-NOTES: mention contributorsDaniel Stenberg
2011-01-18RELEASE-NOTES: synced with 7fcbdd68b9eDaniel Stenberg
2011-01-18Fixed configure define for Win32.Guenter Knauf
Submitted by Vincent Torri.
2011-01-18nss: fix a bug in handling of CURLOPT_CAPATHKamil Dudka
... and update the curl.1 and curl_easy_setopt.3 man pages such that they do not suggest to use an OpenSSL utility if curl is not built against OpenSSL. Bug: https://bugzilla.redhat.com/669702
2011-01-17Avoid redefines.Guenter Knauf
2011-01-15curl.1: fix spellingDaniel Stenberg
Bug: http://curl.haxx.se/bug/view.cgi?id=3157232 Reported by: John Bradshaw
2011-01-14Added casts to silent gcc warnings.Guenter Knauf