Age | Commit message (Collapse) | Author | |
---|---|---|---|
2007-05-22 | Andre Guibert de Bruet fixed a memory leak in the function that verifies the | Daniel Stenberg | |
peer's name in the SSL certificate when built for OpenSSL. The leak happens for libcurls with CURL_DOES_CONVERSIONS enabled that fail to convert the CN name from UTF8. | |||
2007-04-07 | fix out of memory handling issue | Yang Tse | |
2007-03-31 | Pointless to check for non-NULL pointers that already have been dereferenced | Daniel Stenberg | |
and they have to be non-NULL long before this check. CID 22 in the coverity.com scan | |||
2007-03-27 | Update message | Yang Tse | |
2007-03-26 | Internal function Curl_select() renamed to Curl_socket_ready() | Yang Tse | |
2007-03-25 | fix compiler warning | Yang Tse | |
2007-03-14 | yassl doesn't have SSL_get_shutdown() in its OpenSSL() layer so we check for | Daniel Stenberg | |
it and avoid it, even if this cripples the CCC command | |||
2007-02-26 | Removed inclusion of <sys/types.h> and <sys/stat.h> in .c-files | Gisle Vanem | |
since they're already included through "setup.h". | |||
2007-02-21 | curlassert macro replaced with DEBUGASSERT macro defined in setup_once.h | Yang Tse | |
2007-02-20 | New FTP CCC functionality - adds passive and active mode to accomodate for ↵ | Linus Nielsen Feltzing | |
different server behaviour | |||
2007-02-16 | use macros ERRNO, SET_ERRNO(), SOCKERRNO and SET_SOCKERRNO() for errno handling | Yang Tse | |
2007-02-05 | - Michael Wallner provided a patch that adds support for CURLOPT_TIMEOUT_MS | Daniel Stenberg | |
and CURLOPT_CONNECTTIMEOUT_MS that, as their names should hint, do the timeouts with millisecond resolution instead. The only restriction to that is the alarm() (sometimes) used to abort name resolves as that uses full seconds. I fixed the FTP response timeout part of the patch. Internally we now count and keep the timeouts in milliseconds but it also means we multiply set timeouts with 1000. The effect of this is that no timeout can be set to more than 2^31 milliseconds (on 32 bit systems), which equals 24.86 days. We probably couldn't before either since the code did *1000 on the timeout values on several places already. | |||
2007-01-10 | Display crypto engine name correctly in debug message. | Dan Fandrich | |
2007-01-08 | Removed unused variable in Curl_ossl_shutdown() | Linus Nielsen Feltzing | |
2007-01-05 | - Linus Nielsen Feltzing introduced the --ftp-ssl-ccc command line option to | Daniel Stenberg | |
curl that uses the new CURLOPT_FTP_SSL_CCC option in libcurl. If enabled, it will make libcurl shutdown SSL/TLS after the authentication is done on a FTP-SSL operation. | |||
2006-11-11 | cleaned up Curl_write() and the sub functions it uses for various protocols. | Daniel Stenberg | |
They all now return ssize_t to Curl_write(). Unfortunately, Curl_read() is in a sorrier state but it too would benefit from a similar cleanup. | |||
2006-11-08 | Bradford Bruce reported that when setting CURLOPT_DEBUGFUNCTION without | Daniel Stenberg | |
CURLOPT_VERBOSE set to non-zero, you still got a few debug messages from the SSL handshake. This is now stopped. | |||
2006-10-21 | Armel Asselin separated CA cert verification problems from problems with | Daniel Stenberg | |
reading the (local) CA cert file to let users easier pinpoint the actual problem. CURLE_SSL_CACERT_BADFILE (77) is the new libcurl error code. | |||
2006-10-17 | Explicit typecast for Curl_debug() size argument | Yang Tse | |
2006-09-10 | Compiler warning fix | Yang Tse | |
2006-07-19 | Fix compiler warnings | Yang Tse | |
2006-07-19 | Avoid variable declaration shadowing previously declared one | Yang Tse | |
2006-07-17 | Update error buffer size used for SSL_strerror() | Yang Tse | |
2006-06-29 | with a very recent yassl, we now can display 'yassl' when the OpenSSL API is | Daniel Stenberg | |
in fact provided by yassl instead | |||
2006-06-09 | proper use of newlines | Daniel Stenberg | |
2006-06-07 | NTLM2 session response support | Daniel Stenberg | |
2006-05-10 | David McCreedy provided a fix for CURLINFO_LASTSOCKET that does extended | Daniel Stenberg | |
checks on the to-be-returned socket to make sure it truly seems to be alive and well. For SSL connection it (only) uses OpenSSL functions. | |||
2006-05-09 | Robson Braga Araujo fixed two problems in the recently added non-blocking SSL | Daniel Stenberg | |
connects. The state machine was not reset properly so that subsequent connects using the same handle would fail, and there were two memory leaks. | |||
2006-05-05 | additional renames of Curl_ourerrno => Curl_sockerrno | Daniel Stenberg | |
2006-05-04 | Roland Blom filed bug report #1481217 | Daniel Stenberg | |
(http://curl.haxx.se/bug/view.cgi?id=1481217), with follow-ups by Michele Bini and David Byron. libcurl previously wrongly used GetLastError() on windows to get error details after socket-related function calls, when it really should use WSAGetLastError() instead. When changing to this, the former function Curl_ourerrno() is now instead called Curl_sockerrno() as it is necessary to only use it to get errno from socket-related functions as otherwise it won't work as intended on Windows. | |||
2006-04-18 | corrected the SSL timeout, as Ates Goral's patch did it and that works (opposed | Daniel Stenberg | |
to my previous brain-damaged version) | |||
2006-04-10 | Ates Goral found out that if you specified both CURLOPT_CONNECTTIMEOUT and | Daniel Stenberg | |
CURLOPT_TIMEOUT, the _longer_ time would wrongly be used for the SSL connection time-out! | |||
2006-04-07 | First commit of David McCreedy's EBCDIC and TPF changes. | Daniel Stenberg | |
2006-03-21 | Xavier Bouchoux made the SSL connection non-blocking for the multi interface | Daniel Stenberg | |
(when using OpenSSL). | |||
2006-03-13 | David McCreedy found a use of the wrong variable when display the error | Daniel Stenberg | |
text from OpenSSL. | |||
2006-03-06 | Lots of users on Windows have reported getting the "SSL: couldn't set | Daniel Stenberg | |
callback" error message so I've now made the setting of that callback not be as critical as before. The function is only used for additional loggging/ trace anyway so a failure just means slightly less data. It should still be able to proceed and connect fine to the server. | |||
2005-12-19 | Fixed lcc compiler warnings. | Dan Fandrich | |
2005-12-13 | Fixed some compiler warnings on lcc. | Dan Fandrich | |
2005-12-05 | Yang Tse fixed: Openssl 0.9.9 makes 'const' the SSL_METHOD parameter in | Daniel Stenberg | |
SSL_CTX_new and others, and also makes functions SSLv23_client_method, TLSv1_client_method, etc return a 'const' SSL_METHOD pointer. Previous versions do not use the 'const' qualifier. | |||
2005-12-04 | Recent OpenSSL returns a 'const' in '*_client_method()'. So avoid | Gisle Vanem | |
'assignment discards qualifiers from pointer target type' warning. | |||
2005-11-13 | Yang Tse fixed compiler warnings | Daniel Stenberg | |
2005-08-10 | the debug callback was called with CURLINFO_TEXT with the data size one | Daniel Stenberg | |
too big | |||
2005-04-13 | fix compiler warning | Daniel Stenberg | |
2005-04-07 | GnuTLS support added. There's now a "generic" SSL layer that we use all over | Daniel Stenberg | |
internally, with code provided by sslgen.c. All SSL-layer-specific code is then written in ssluse.c (for OpenSSL) and gtls.c (for GnuTLS). As far as possible, internals should not need to know what SSL layer that is in use. Building with GnuTLS currently makes two test cases fail. TODO.gnutls contains a few known outstanding issues for the GnuTLS support. GnuTLS support is enabled with configure --with-gnutls | |||
2005-03-31 | Updated the copyright year since changes have been this year. | Daniel Stenberg | |
2005-03-04 | Reduced the length of data read from the random entropy file. | Dan Fandrich | |
2005-03-04 | Don't try to read the whole of the random file because when /dev/urandom is | Dan Fandrich | |
used, it slows initialization too much reading an infinitely long file! | |||
2005-02-10 | init fix for non-SSL builds | Daniel Stenberg | |
2005-02-09 | better error checking and SSL init by David Byron | Daniel Stenberg | |
2005-01-10 | Hzhijun reported a memory leak in the SSL certificate code, that leaked the | Daniel Stenberg | |
remote certificate name when it didn't match the used host name. |