Age | Commit message (Collapse) | Author | |
---|---|---|---|
2015-02-11 | openssl: Use OPENSSL_IS_BORINGSSL for BoringSSL detection | Steve Holme | |
For consistency with other conditionally compiled code in openssl.c, use OPENSSL_IS_BORINGSSL rather than HAVE_BORINGSSL and try to use HAVE_BORINGSSL outside of openssl.c when the OpenSSL header files are not included. | |||
2015-02-11 | ftp: accept all 2xx responses to the PORT command | Patrick Monnerat | |
2015-02-09 | openssl: Disable OCSP in old versions of OpenSSL | Steve Holme | |
Versions of OpenSSL prior to v0.9.8h do not support the necessary functions for OCSP stapling. | |||
2015-02-09 | http2: Fix bug that associated stream canceled on PUSH_PROMISE | Tatsuhiro Tsujikawa | |
Previously we don't ignore PUSH_PROMISE header fields in on_header callback. It makes header values mixed with following HEADERS, resulting protocol error. | |||
2015-02-09 | polarssl: Fix exclusive SSL protocol version options | Jay Satiro | |
Prior to this change the options for exclusive SSL protocol versions did not actually set the protocol exclusive. http://curl.haxx.se/mail/lib-2015-01/0002.html Reported-by: Dan Fandrich | |||
2015-02-09 | gskit: Fix exclusive SSLv3 option | Jay Satiro | |
2015-02-07 | schannel: Removed curl_ prefix from source files | Steve Holme | |
Removed the curl_ prefix from the schannel source files as discussed with Marc and Daniel at FOSDEM. | |||
2015-02-06 | md5: use axTLS's own MD5 functions when available | Daniel Stenberg | |
2015-02-06 | MD(4|5): make the MD4_* and MD5_* functions static | Daniel Stenberg | |
2015-02-06 | axtls: fix conversion from size_t to int warning | Daniel Stenberg | |
2015-02-05 | ftp: Use 'CURLcode result' for curl result codes | Steve Holme | |
2015-02-05 | openssl: SSL_SESSION->ssl_version no longer exist | Daniel Stenberg | |
The struct went private in 1.0.2 so we cannot read the version number from there anymore. Use SSL_version() instead! Reported-by: Gisle Vanem Bug: http://curl.haxx.se/mail/lib-2015-02/0034.html | |||
2015-02-04 | MD5: fix compiler warnings and code style nits | Daniel Stenberg | |
2015-02-04 | MD5: replace implementation | Daniel Stenberg | |
The previous one was "encumbered" by RSA Inc - to avoid the licensing restrictions it has being replaced. This is the initial import, inserting the md5.c and md5.h files from http://openwall.info/wiki/people/solar/software/public-domain-source-code/md5 Code-by: Alexander Peslyak | |||
2015-02-04 | MD4: fix compiler warnings and code style nits | Daniel Stenberg | |
2015-02-04 | MD4: replace implementation | Daniel Stenberg | |
The previous one was "encumbered" by RSA Inc - to avoid the licensing restrictions it has being replaced. This is the initial import, inserting the md4.c and md4.h files from http://openwall.info/wiki/people/solar/software/public-domain-source-code/md4 Code-by: Alexander Peslyak | |||
2015-02-04 | telnet: Prefer 'CURLcode result' for curl result codes | Steve Holme | |
2015-02-04 | hostasyn: Prefer 'CURLcode result' for curl result codes | Steve Holme | |
2015-02-04 | schannel: Prefer 'CURLcode result' for curl result codes | Steve Holme | |
2015-02-03 | unit1601: MD5 unit tests | Daniel Stenberg | |
2015-02-03 | unit1600: unit test for Curl_ntlm_core_mk_nt_hash | Daniel Stenberg | |
2015-02-02 | curl_sasl.c: More code policing | Steve Holme | |
Better use of 80 character line limit, comment corrections and line spacing preferences. | |||
2015-01-31 | TODO: moved WinSSL/SChannel todo items into docs | Marc Hoersken | |
2015-01-29 | curl_sasl.c: Fixed compilation warning when cryptography is disabled | Steve Holme | |
curl_sasl.c:1506: warning: unused variable 'chlg' | |||
2015-01-28 | curl_sasl.c: Fixed compilation warning when verbose debug output disabled | Steve Holme | |
curl_sasl.c:1317: warning: unused parameter 'conn' | |||
2015-01-28 | ntlm_core: Use own odd parity function when crypto engine doesn't have one | Steve Holme | |
2015-01-28 | ntlm_core: Prefer sizeof(key) rather than hard coded sizes | Steve Holme | |
2015-01-28 | ntlm_core: Added consistent comments to DES functions | Steve Holme | |
2015-01-28 | des: Added Curl_des_set_odd_parity() | Steve Holme | |
Added Curl_des_set_odd_parity() for use when cryptography engines don't include this functionality. | |||
2015-01-28 | sasl: Minor code policing and grammar corrections | Steve Holme | |
2015-01-28 | ldap: build with BoringSSL | Gisle Vanem | |
2015-01-28 | security: avoid compiler warning | Daniel Stenberg | |
Possible access to uninitialised memory '&nread' at line 140 of lib/security.c in function 'ftp_send_command'. Reported-by: Rich Burridge | |||
2015-01-27 | sasl: remove XOAUTH2 from default enabled authentication mechanism. | Patrick Monnerat | |
2015-01-27 | imap: remove automatic password setting: it breaks external sasl authentication | Patrick Monnerat | |
2015-01-27 | sasl: implement EXTERNAL authentication mechanism. | Patrick Monnerat | |
Its use is only enabled by explicit requirement in URL (;AUTH=EXTERNAL) and by not setting the password. | |||
2015-01-27 | openssl: Fixed Curl_ossl_cert_status_request() not returning FALSE | Steve Holme | |
Modified the Curl_ossl_cert_status_request() function to return FALSE when built with BoringSSL or when OpenSSL is missing the necessary TLS extensions. | |||
2015-01-27 | openssl: Fixed compilation errors when OpenSSL built with 'no-tlsext' | Steve Holme | |
Fixed the build of openssl.c when OpenSSL is built without the necessary TLS extensions for OCSP stapling. Reported-by: John E. Malmberg | |||
2015-01-26 | curl_setup: Disable SMB/CIFS support when HTTP only | Brad Spencer | |
2015-01-22 | OCSP stapling: disabled when build with BoringSSL | Daniel Stenberg | |
2015-01-22 | openssl: add support for the Certificate Status Request TLS extension | Alessandro Ghedini | |
Also known as "status_request" or OCSP stapling, defined in RFC6066 section 8. Thanks-to: Joe Mason - for the work-around for the OpenSSL bug. | |||
2015-01-22 | BoringSSL: fix build for non-configure builds | Daniel Stenberg | |
HAVE_BORINGSSL gets defined now by configure and should be defined by other build systems in case a BoringSSL build is desired. | |||
2015-01-22 | curl_sasl: Reinstate the sasl_ prefix for locally scoped functions | Steve Holme | |
Commit 7a8b2885e2 made some functions static and removed the public Curl_ prefix. Unfortunately, it also removed the sasl_ prefix, which is the naming convention we use in this source file. | |||
2015-01-22 | curl_sasl: Minor code policing following recent commits | Steve Holme | |
2015-01-22 | BoringSSL: detected by configure, switches off NTLM | Daniel Stenberg | |
2015-01-22 | BoringSSL: no PKCS12 support nor ERR_remove_state | Daniel Stenberg | |
2015-01-22 | BoringSSL: fix build | Leith Bade | |
2015-01-20 | curl_sasl.c: chlglen is not used when cryptography is disabled | Steve Holme | |
2015-01-20 | curl_sasl.c: Fixed compilation warning when cyptography is disabled | Steve Holme | |
curl_sasl.c:1453: warning C4101: 'serverdata' : unreferenced local variable | |||
2015-01-20 | curl_sasl.c: Fixed compilation error when USE_WINDOWS_SSPI defined | Steve Holme | |
curl_sasl.c:1221: error C2065: 'mechtable' : undeclared identifier This error could also happen for non-SSPI builds when cryptography is disabled (CURL_DISABLE_CRYPTO_AUTH is defined). | |||
2015-01-20 | SASL: make some procedures local-scoped | Patrick Monnerat | |