aboutsummaryrefslogtreecommitdiff
path: root/RELEASE-NOTES
AgeCommit message (Collapse)Author
2008-05-07- Liam Healy filed the debian bug report #480044Daniel Stenberg
(http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=480044) identifying a segfault when using krb5 ftp, but the krb4 code had the same problem.
2008-05-07Christopher Palow provided the patch (edited by me) that introducesYang Tse
the use of microsecond resolution keys for internal splay trees. http://curl.haxx.se/mail/lib-2008-04/0513.html
2008-05-03- Yuriy Sosov pointed out a configure fix for detecting c-ares when that isDaniel Stenberg
built debug-enabled.
2008-05-03- Ben Van Hof filed bug report #1945240: "libcurl sometimes sends body twiceDaniel Stenberg
when using CURL_AUTH_ANY" (http://curl.haxx.se/bug/view.cgi?id=1945240). The problem was that when libcurl rewound a stream meant for upload when it would prepare for a second request, it could accidentally continue the sending of the rewound data on the first request instead of on the second. Ben also provided test case 1030 that verifies this fix.
2008-05-03- Jean-Francois Bertrand reported a libcurl crash with CURLOPT_TCP_NODELAYDaniel Stenberg
since libcurl used getprotobyname() and that isn't thread-safe. We now switched to use IPPROTO_TCP unconditionally, but perhaps the proper fix is to detect the thread-safe version of the function and use that. http://curl.haxx.se/mail/lib-2008-05/0011.html
2008-05-01- Bart Whiteley provided a patch that made libcurl work properly when an appDaniel Stenberg
uses the CURLOPT_OPENSOCKETFUNCTION callback to create a unix domain socket to a http server.
2008-04-30- To make it easier for applications that want lots of magic stuff done onDaniel Stenberg
redirections and thus cannot use CURLOPT_FOLLOWLOCATION easily, we now introduce the new CURLINFO_REDIRECT_URL option that lets applications extract the URL libcurl would've redirected to if it had been told to. This then enables the application to continue to that URL as it thinks is suitable, without having to re-implement the magic of creating the new URL from the Location: header etc. Test 1029 verifies it.
2008-04-28- Norbert Frese filed bug report #1951588: "Problem with curlftpfs andDaniel Stenberg
libcurl" (http://curl.haxx.se/bug/view.cgi?id=1951588) which seems to be an identical report to what Denis Golovan reported in http://curl.haxx.se/mail/lib-2008-02/0108.html The FTP code didn't reset the user/password pointers properly even though there might've been a new struct/cconnection getting used.
2008-04-22Added support for running on Symbian OS.Dan Fandrich
2008-04-14allow disabling the typechecker by defining CURL_DISABLE_TYPECHECK, asMichal Marek
discussed in http://curl.haxx.se/mail/lib-2008-04/0291.html
2008-04-14- Stefan Krause reported a case where the OpenSSL handshake phase wasn'tDaniel Stenberg
properly acknowledging the timeout values, like if you pulled the network plug in the midst of it.
2008-04-14mention Sandor as contributorDaniel Stenberg
2008-04-14- Brock Noland reported that curl behaved differently depending on which orderDaniel Stenberg
you used -i and -I.
2008-04-12- Andre Guibert de Bruet found and fixed a case where malloc() was called butDaniel Stenberg
was not checked for a NULL return, in the Negotiate code.
2008-04-07- Fix the MIT / Heimdal check for good:Michal Marek
Define HAVE_GSSMIT if <gssapi/{gssapi.h,gssapi_generic.h,gssapi_krb5.h}> are available, otherwise define HAVE_GSSHEIMDAL if <gssapi.h> is available. Only define GSS_C_NT_HOSTBASED_SERVICE to gss_nt_service_name if GSS_C_NT_HOSTBASED_SERVICE isn't declared by the gssapi headers. This should avoid breakage in case we wrongly recognize Heimdal as MIT again.
2008-04-05- Alexey Simak fixed curl_easy_reset() to reset the max redirect limit properlyDaniel Stenberg
2008-04-03- Setting CURLOPT_NOBODY to FALSE will now switch the HTTP request method toDaniel Stenberg
GET simply because previously when you set CURLOPT_NOBODY to TRUE first and then FALSE you'd end up in a broken state where a HTTP request would do a HEAD by still act a lot like for a GET and hang waiting for the content etc.
2008-04-03Scott Barrett added support for CURLOPT_NOBODY over SFTPDaniel Stenberg
2008-03-31- Added CURLFORM_STREAM as a supported option to curl_formadd() to allow anDaniel Stenberg
application to provide data for a multipart with the read callback. Note that the size needs to be provided with CURLFORM_CONTENTSLENGTH when the stream option is used. This feature is verified by the new test case 554. This feature was sponsored by Xponaut.
2008-03-30back to a blank for 7.18.2Daniel Stenberg
2008-03-27- Stephen Collyer pointed out that configure --with-libssh2 without a givenDaniel Stenberg
path didn't work properly but now it does!
2008-03-27- As found out and reported by Dan Petitt, libcurl didn't show progress/callDaniel Stenberg
the progress callback for the first (potentially huge) piece of body data sent together with the POST request headers in the initial send().
2008-03-25spell!Daniel Stenberg
2008-03-25- Made setting the CURLOPT_SSL_CTX_FUNCTION option return a failure in caseDaniel Stenberg
libcurl wasn't built to use OpenSSL as that is a prerequisite for this option to function!
2008-03-22- Fixed the problem with doing a zero byte SCP transfer, verified with testDaniel Stenberg
case 617 (which was added by Daniel Fandrich 5 Mar 2008).
2008-03-20Jes reported the curl-config bugDan Fandrich
2008-03-20Fixed a problem where curl-config --protocols could erroneously show LDAPSDan Fandrich
support when curl didn't even have regular LDAP support. It looks like this could happen when the --enable-ldaps configure switch is given but configure couldn't find the LDAP headers or libraries.
2008-03-20- Added --with-ca-path=DIRECTORY configure option to use an openSSL CApath byMichal Marek
default instead of a ca bundle. The configure script will also look for a ca path if no ca bundle is found and no option given. - Fixed detection of previously installed curl-ca-bundle.crt
2008-03-18Fixed an infinite loop when given an invalid SFTP quote command.Dan Fandrich
2008-03-18- Added curl_easy_getinfo typechecker.Michal Marek
- Added macros for curl_share_setopt and curl_multi_setopt to check at least the correct number of arguments.
2008-03-13- Brian Ulm figured out that if you did an SFTP upload withDaniel Stenberg
CURLOPT_FTP_CREATE_MISSING_DIRS to create a directory, and then re-used the handle and uploaded another file to another directory that needed to be created, the second upload would fail. Another case of a state variable that wasn't properly reset between requests. - I rewrote the 100-continue code to use a single state variable instead of the previous two ones. I think it made the logic somewhat clearer.
2008-03-11- Dmitry Popov filed bug report #1911069Daniel Stenberg
(http://curl.haxx.se/bug/view.cgi?id=1911069) that identified a race condition in the name resolver code when the DNS cache is shared between multiple easy handles, each running in simultaneous threads that could cause crashes.
2008-03-11- Added a macro for curl_easy_setopt() that accepts three arguments and simplyDaniel Stenberg
does nothing with them, just to make sure libcurl users always use three arguments to this function. Due to its use of ... for the third argument, it is otherwise hard to detect abuse.
2008-03-11- Added a type checking macro for curl_easy_setopt(), needs gcc-4.3 and onlyMichal Marek
works in C mode atm (http://curl.haxx.se/mail/lib-2008-02/0267.html , http://curl.haxx.se/mail/lib-2008-02/0292.html )
2008-03-09- Brian Ulm reported a crash when doing a second SFTP transfer on a re-usedDaniel Stenberg
easy handle if curl_easy_reset() was used between them. I fixed it and Brian verified that it cured his problem. - Brian Ulm reported that if you first tried to download a non-existing SFTP file and then fetched an existing one and re-used the handle, libcurl would still report the second one as non-existing as well! I fixed it abd Brian verified that it cured his problem.
2008-03-06Fix the gssapi configure check to detect newer MIT Kerberos (patch byMichal Marek
Michael Calmer)
2008-03-06Regression fix:Yang Tse
select/poll calls will only be retried upon EINTR failures as it previously was in lib/select.c revision 1.29 In this way Curl_socket_ready() and Curl_poll() will again fail on any select/poll errors different than EINTR.
2008-03-04Mike Protts brought a patch that makes resumed transfers work with SFTP.Daniel Stenberg
2008-03-01- Anatoli Tubman found and fixed a crash with Negotiate authentication used onDaniel Stenberg
a re-used connection where both requests used Negotiate.
2008-02-25- Kaspar Brand made GnuTLS-built libcurl properly acknowledge the option thatDaniel Stenberg
forces it to prefer SSLv3.
2008-02-23- Sam Listopad provided a patch in feature-request #1900014Daniel Stenberg
http://curl.haxx.se/bug/feature.cgi?id=1900014 that makes libcurl (built to use OpenSSL) support a full chain of certificates in a given PKCS12 certificate.
2008-02-22- Georg Lippitsch made the src/Makefile.vc6 makefile use the same memory modelDaniel Stenberg
options as the lib/Makefile.vc6 already did.
2008-02-21- Zmey Petroff found a crash when libcurl accessed a NULL pointer, whichDaniel Stenberg
happened if you set the connection cache size to 1 and for example failed to login to an FTP site. Bug report #1896698 (http://curl.haxx.se/bug/view.cgi?id=1896698)
2008-02-20- Fixed test case 405 to not fail when libcurl is built with GnuTLSDaniel Stenberg
2008-02-20- Based on initial work done by Gautam Kachroo to address a bug, we now keepDaniel Stenberg
better control at the exact state of the connection's SSL status so that we know exactly when it has completed the SSL negotiation or not so that there won't be accidental re-uses of connections that are wrongly believed to be in SSL-completed-negotiate state.
2008-02-20- We no longer support setting the CURLOPT_URL option from inside a callbackDaniel Stenberg
such as the CURLOPT_SSL_CTX_FUNCTION one treat that as if it was a Location: following. The patch that introduced this feature was done for 7.11.0, but this code and functionality has been broken since about 7.15.4 (March 2006) with the introduction of non-blocking OpenSSL "connects". It was a hack to begin with and since it doesn't work and hasn't worked correctly for a long time and nobody has even noticed, I consider it a very suitable subject for plain removal. And so it was done.
2008-02-18- We're no longer providing a very old ca-bundle in the curl tarball. You canDaniel Stenberg
get a fresh one downloaded and created with 'make ca-bundle' or you can get one from here => http://curl.haxx.se/docs/caextract.html if you want a fresh new one extracted from Mozilla's recent list of ca certs. The configure option --with-ca-bundle now lets you specify what file to use as default ca bundle for your build. If not specified, the configure script will check a few known standard places for a global ca cert to use.
2008-02-17- Jerome Muffat-Meridol helped me fix Curl_done() to close the currentDaniel Stenberg
connection by force when it was called before the entire request is completed, simply because we can't know if the connection really can be re-used safely at that point.
2008-02-15- Made the gnutls code path not even try to get the server cert if no peerDaniel Stenberg
verification is requested. Previously it would even return failure if gnutls failed to get the server cert even though no verification was asked for. - Fix my Curl_timeleft() leftover mistake in the gnutls code
2008-02-15new mirror and mirror recount after cleansingDaniel Stenberg