curl - cURL mirror with patches applied

Age	Commit message (Collapse)	Author
2016-06-22	internals: rename the SessionHandle struct to Curl_easy	Daniel Stenberg

2016-06-22	vtls: Only call add/getsession if session id is enabled	Jay Satiro
	Prior to this change we called Curl_ssl_getsessionid and Curl_ssl_addsessionid regardless of whether session ID reusing was enabled. According to comments that is in case session ID reuse was disabled but then later enabled. The old way was not intuitive and probably not something users expected. When a user disables session ID caching I'd guess they don't expect the session ID to be cached anyway in case the caching is later enabled.
2016-06-16	axtls: Use Curl_wait_ms instead of the less-portable usleep	Dan Fandrich

2016-06-16	axtls: Fixed compile after compile 31c521b0	Dan Fandrich

2016-06-01	vtls: fix ssl session cache race condition	Ivan Avdeev
	Sessionid cache management is inseparable from managing individual session lifetimes. E.g. for reference-counted sessions (like those in SChannel and OpenSSL engines) every session addition and removal should be accompanied with refcount increment and decrement respectively. Failing to do so synchronously leads to a race condition that causes symptoms like use-after-free and memory corruption. This commit: - makes existing session cache locking explicit, thus allowing individual engines to manage lock's scope. - fixes OpenSSL and SChannel engines by putting refcount management inside this lock's scope in relevant places. - adds these explicit locking calls to other engines that use sessionid cache to accommodate for this change. Note, however, that it is unknown whether any of these engines could also have this race. Bug: https://github.com/curl/curl/issues/815 Fixes #815 Closes #847
2016-04-03	code: style updates	Daniel Stenberg

2016-02-03	URLs: change all http:// URLs to https://	Daniel Stenberg

2015-03-31	axtls: add timeout within Curl_axtls_connect	Dan Fandrich
	This allows test 405 to pass on axTLS.
2015-03-24	curl_memory: make curl_memory.h the second-last header file loaded	Dan Fandrich
	This header file must be included after all header files except memdebug.h, as it does similar memory function redefinitions and can be similarly affected by conflicting definitions in system or dependent library headers.
2015-03-19	axtls: version 1.5.2 now requires that config.h be manually included	Dan Fandrich

2015-03-03	vtls: use curl_printf.h all over	Daniel Stenberg
	No need to use _MPRINTF_REPLACE internally.
2015-02-06	axtls: fix conversion from size_t to int warning	Daniel Stenberg

2015-01-17	vtls: Removed unimplemented overrides of curlssl_close_all()	Steve Holme
	Carrying on from commit 037cd0d991, removed the following unimplemented instances of curlssl_close_all(): Curl_axtls_close_all() Curl_darwinssl_close_all() Curl_cyassl_close_all() Curl_gskit_close_all() Curl_gtls_close_all() Curl_nss_close_all() Curl_polarssl_close_all()
2014-07-31	axtls: define curlssl_random using axTLS's PRNG	Dan Fandrich

2014-05-17	axtls: Fixed too long source line	Dan Fandrich

2014-05-16	axtls: Add a TODO to a potential blocking call with no timeout	Dan Fandrich

2014-02-18	axtls: comment the call ssl_read repeatedly loop	Dan Fandrich

2014-02-16	axtls: bump copyright year	Daniel Stenberg

2014-02-16	axtls: call ssl_read repeatedly	Fabian Frank
	Perform more work in between sleeps. This is work around the fact that axtls does not expose any knowledge about when work needs to be performed. Depending on connection and how often perform is being called this can save ~25% of time on SSL handshakes (measured on 20ms latency connection calling perform roughly every 10ms).
2014-01-21	axtls: fix compiler warning on conversion ssize_t => int	Fabian Frank

2013-12-26	vtls: Updated comments referencing sslgen.c and ssluse.c	Steve Holme

2013-12-26	vtls: Fixed up include of vtls.h	Steve Holme

2013-12-20	vtls: moved all TLS/SSL source and header files into subdir	Daniel Stenberg