aboutsummaryrefslogtreecommitdiff
path: root/RELEASE-NOTES
AgeCommit message (Collapse)Author
2007-11-15Ates Goral identified a problem in http.c:add_buffer_send() when a debugDaniel Stenberg
callback was used, as it could wrongly pass on a bad size for the outgoing HTTP header. The bad size would be a very large value as it was a wrapped size_t content. This happened when the whole HTTP request failed to get sent in one single send. http://curl.haxx.se/mail/lib-2007-11/0165.html
2007-11-14Fix a variable potential wrapping in add_buffer() when using absolutelyYang Tse
huge send buffer sizes
2007-11-12Bug report #1830637 (http://curl.haxx.se/bug/view.cgi?id=1830637), which wasDaniel Stenberg
forwarded from the Gentoo bug tracker by Daniel Black and was originally submitted by Robin Johnson, pointed out that libcurl would do bad memory references when it failed and bailed out before the handler thing was setup. My fix is not done like the provided patch does it, but instead I make sure that there's never any chance for a NULL pointer in that struct member.
2007-11-11new ruby binding, curl-multi version 0.1Daniel Stenberg
2007-11-08Bug report #1823487 (http://curl.haxx.se/bug/view.cgi?id=1823487) pointedDaniel Stenberg
out that SFTP requests didn't use persistent connections. Neither did SCP ones. I gave the SSH code a good beating and now both SCP and SFTP should use persistent connections fine. I also did a bunch for indent changes as well as a bug fix for the "keyboard interactive" auth.
2007-11-06Bug report #1824894 (http://curl.haxx.se/bug/view.cgi?id=1824894) pointedYang Tse
out a problem in curl.h when building C++ apps with MSVC. To fix it, the inclusion of header files in curl.h is moved outside of the C++ extern "C" linkage block.
2007-11-05tclcurl and a mirror recount when bad ones have been cut outDaniel Stenberg
2007-11-01Toby Peterson patched a memory problem in the command line tool thatDaniel Stenberg
happened when a user had a home dir as an empty string. curl would then do free() on a wrong area.
2007-11-01Fixed curl-config --features to not display libz when it wasn't usedDan Fandrich
due to a missing header file.
2007-10-31Fixed the output of curl-config --protocols which showed SCP and SFTPDan Fandrich
always, except when --without-libssh2 was given
2007-10-31contributor re-count (we'll break the 600 limit very very soon now) and I madeDaniel Stenberg
all the numericals at the top phrased "shorter" and I cut out the "number of releases since the very beginning" since that's just the number curl releases + 26 and not a very interesting number anyway.
2007-10-29curl-config --features and --protocols show the correct output when builtDaniel Stenberg
with NSS
2007-10-29start working on 7.17.2Daniel Stenberg
2007-10-29correct mirror countDaniel Stenberg
2007-10-28http://curl.wetzlmayr.at/ is a new web mirror in Nuremberg, GermanyDaniel Stenberg
2007-10-25Added the --static-libs option to curl-configDan Fandrich
2007-10-25oopsDaniel Stenberg
2007-10-25Made libcurl built with NSS possible to ignore the peer verification.Daniel Stenberg
Previously it would fail if the ca bundle wasn't present, even if the code ignored the verification results.
2007-10-25Michal Marek fixed the test script to be able to use valgrind even when theDaniel Stenberg
lib is built shared with libtool.
2007-10-25Fixed a TFTP memory leak. Enabled test 2003 to verify this.Daniel Stenberg
2007-10-24Vladimir Lazarenko pointed out that we should do some 'mt' magic whenDaniel Stenberg
building with VC8 to get the "manifest" embedded to make fine stand-alone binaries. The maketgz and the src/Makefile.vc6 files were adjusted accordingly.
2007-10-23Bug report #1812190 (http://curl.haxx.se/bug/view.cgi?id=1812190) points outDaniel Stenberg
that libcurl tried to re-use connections a bit too much when using non-SSL protocols tunneled over a HTTP proxy.
2007-10-22Michal Marek forwarded the bug reportDaniel Stenberg
https://bugzilla.novell.com/show_bug.cgi?id=332917 about a HTTP redirect to FTP that caused memory havoc. His work together with my efforts created two fixes: #1 - FTP::file was moved to struct ftp_conn, because is has to be dealt with at connection cleanup, at which time the struct HandleData could be used by another connection. Also, the unused char *urlpath member is removed from struct FTP. #2 - provide a Curl_reset_reqproto() function that frees data->reqdata.proto.* on connection setup if needed (that is if the SessionHandle was used by a different connection).
2007-10-22mention Patrick Monnerat's recent work on the postfields problemsDaniel Stenberg
2007-10-22Bug report #1815530 (http://curl.haxx.se/bug/view.cgi?id=1815530) points outDaniel Stenberg
that specifying a proxy with a trailing slash didn't work (unless it also contained a port number).
2007-10-05Michael Wallner made the CULROPT_COOKIELIST option support a new magicDaniel Stenberg
string: "FLUSH". Using that will cause libcurl to flush its cookies to the CURLOPT_COOKIEJAR file.
2007-10-04Kim Rinnewitz reported that --local-port didn't work with TFTP transfers.Daniel Stenberg
This happened because the tftp code always uncondionally did a bind() without caring if one already had been done and then it failed. I wrote a test case (1009) to verify this, but it is a bit error-prone since it will have to pick a fixed local port number and since the tests are run on so many different hosts in different situations I add it in disabled state.
2007-10-03Fix issue related with the use of ares_timeout() result.Yang Tse
2007-10-03recount contributors after the 7.17.0 releaseDaniel Stenberg
2007-10-03Alexey Pesternikov introduced CURLOPT_OPENSOCKETFUNCTION andDaniel Stenberg
CURLOPT_OPENSOCKETDATA to set a callback that allows an application to replace the socket() call used by libcurl. It basically allows the app to change address, protocol or whatever of the socket. (I also did some whitespace indent/cleanups in lib/url.c which kind of hides some of these changes, sorry for mixing those in.)
2007-10-03Based on a patch brought by Johnny Luong, libcurl now offersDaniel Stenberg
CURLOPT_SSH_HOST_PUBLIC_KEY_MD5 and the curl tool --hostpubmd5. They both make the SCP or SFTP connection verify the remote host's md5 checksum of the public key before doing a connect, to reduce the risk of a man-in-the-middle attack.
2007-10-02known bug #46: chunked-encoded CONNECT responses from a http proxy now works.Daniel Stenberg
Added test case 1008 to verify. Note that #47 is still there.
2007-09-30Alex Fishman reported a curl_easy_escape() problem that was made theDaniel Stenberg
function do wrong on all input bytes that are >= 0x80 (decimal 128) due to a signed / unsigned mistake in the code. I fixed it and added test case 543 to verify.
2007-09-29Immanuel Gregoire fixed a problem with persistent transfers over SFTP - theDaniel Stenberg
previous proto struct was kept.
2007-09-28Adapted the c-ares code to the API change c-ares 1.5.0 brings in theDaniel Stenberg
notifier callback(s).
2007-09-26we added a curl_easy_setopt() option tooDaniel Stenberg
2007-09-26Philip Langdale provided the new CURLOPT_POST301 option forDaniel Stenberg
curl_easy_setopt() that alters how libcurl functions when following redirects. It makes libcurl obey the RFC2616 when a 301 response is received after a non-GET request is made. Default libcurl behaviour is to change method to GET in the subsequent request (like it does for response code 302 - because that's what many/most browsers do), but with this CURLOPT_POST301 option enabled it will do what the spec says and do the next request using the same method again. I.e keep POST after 301. The curl tool got this option as --post301 Test case 1011 and 1012 were added to verify.
2007-09-26Max Katsev reported that when doing a libcurl FTP request withDaniel Stenberg
CURLOPT_NOBODY enabled but not CURLOPT_HEADER, libcurl wouldn't do TYPE before it does SIZE which makes it less useful. I walked over the code and made it do this properly, and added test case 542 to verify it.
2007-09-24Immanuel Gregoire fixed KNOWN_BUGS #44: --ftp-method nocwd did not handleDaniel Stenberg
URLs ending with a slash properly (it should list the contents of that directory). Test case 351 brought back and also test 1010 was added.
2007-09-21Available command line options: 119Daniel Stenberg
2007-09-21Mark Davies fixed Negotiate authentication over proxy, and also introducedDaniel Stenberg
the --proxy-negotiate command line option to allow a user to explicitly select it.
2007-09-20Immanuel Gregoire is the manDaniel Stenberg
2007-09-18Rob Crittenden provided an NSS update with the following highlights:Daniel Stenberg
o It looks for the NSS database first in the environment variable SSL_DIR, then in /etc/pki/nssdb, then it initializes with no database if neither of those exist. o If the NSS PKCS#11 libnspsem.so driver is available then PEM files may be loaded, including the ca-bundle. If it is not available then only certificates already in the NSS database are used. o Tries to detect whether a file or nickname is being passed in so the right thing is done o Added a bit of code to make the output more like the OpenSSL module, including displaying the certificate information when connecting in verbose mode o Improved handling of certificate errors (expired, untrusted, etc) The libnsspem.so PKCS#11 module is currently only available in Fedora 8/rawhide. Work will be done soon to upstream it. The NSS module will work with or without it, all that changes is the source of the certificates and keys.
2007-09-18Immanuel pointed out that public key SSH auth failed if no public/privateDaniel Stenberg
key was specified and there was no HOME environment variable, and then it didn't continue to try the other auth methods. Now it will instead try to get the files id_dsa.pub and id_dsa from the current directory if none of the two conditions were met.
2007-09-17Günter's ldap fixesDaniel Stenberg
2007-09-15Michal Marek made libcurl automatically append ";type=<a|i>" when using HTTPDaniel Stenberg
proxies for FTP urls.
2007-09-14Added LDAPS, SCP and SFTP to curl-config --protocols. Removed andDan Fandrich
fixed some AC_SUBST configure entries.
2007-09-13start over on 7.17.1Daniel Stenberg
2007-09-12TFTP error 0 is no longer treated as successDan Fandrich
2007-09-11rephrased to mention ftpDaniel Stenberg