Age | Commit message (Collapse) | Author | |
---|---|---|---|
2015-02-05 | ftp: Use 'CURLcode result' for curl result codes | Steve Holme | |
2015-02-05 | openssl: SSL_SESSION->ssl_version no longer exist | Daniel Stenberg | |
The struct went private in 1.0.2 so we cannot read the version number from there anymore. Use SSL_version() instead! Reported-by: Gisle Vanem Bug: http://curl.haxx.se/mail/lib-2015-02/0034.html | |||
2015-02-04 | MD5: fix compiler warnings and code style nits | Daniel Stenberg | |
2015-02-04 | MD5: replace implementation | Daniel Stenberg | |
The previous one was "encumbered" by RSA Inc - to avoid the licensing restrictions it has being replaced. This is the initial import, inserting the md5.c and md5.h files from http://openwall.info/wiki/people/solar/software/public-domain-source-code/md5 Code-by: Alexander Peslyak | |||
2015-02-04 | MD4: fix compiler warnings and code style nits | Daniel Stenberg | |
2015-02-04 | MD4: replace implementation | Daniel Stenberg | |
The previous one was "encumbered" by RSA Inc - to avoid the licensing restrictions it has being replaced. This is the initial import, inserting the md4.c and md4.h files from http://openwall.info/wiki/people/solar/software/public-domain-source-code/md4 Code-by: Alexander Peslyak | |||
2015-02-04 | telnet: Prefer 'CURLcode result' for curl result codes | Steve Holme | |
2015-02-04 | hostasyn: Prefer 'CURLcode result' for curl result codes | Steve Holme | |
2015-02-04 | schannel: Prefer 'CURLcode result' for curl result codes | Steve Holme | |
2015-02-03 | unit1601: MD5 unit tests | Daniel Stenberg | |
2015-02-03 | unit1600: unit test for Curl_ntlm_core_mk_nt_hash | Daniel Stenberg | |
2015-02-02 | curl_sasl.c: More code policing | Steve Holme | |
Better use of 80 character line limit, comment corrections and line spacing preferences. | |||
2015-01-31 | TODO: moved WinSSL/SChannel todo items into docs | Marc Hoersken | |
2015-01-29 | curl_sasl.c: Fixed compilation warning when cryptography is disabled | Steve Holme | |
curl_sasl.c:1506: warning: unused variable 'chlg' | |||
2015-01-28 | curl_sasl.c: Fixed compilation warning when verbose debug output disabled | Steve Holme | |
curl_sasl.c:1317: warning: unused parameter 'conn' | |||
2015-01-28 | ntlm_core: Use own odd parity function when crypto engine doesn't have one | Steve Holme | |
2015-01-28 | ntlm_core: Prefer sizeof(key) rather than hard coded sizes | Steve Holme | |
2015-01-28 | ntlm_core: Added consistent comments to DES functions | Steve Holme | |
2015-01-28 | des: Added Curl_des_set_odd_parity() | Steve Holme | |
Added Curl_des_set_odd_parity() for use when cryptography engines don't include this functionality. | |||
2015-01-28 | sasl: Minor code policing and grammar corrections | Steve Holme | |
2015-01-28 | ldap: build with BoringSSL | Gisle Vanem | |
2015-01-28 | security: avoid compiler warning | Daniel Stenberg | |
Possible access to uninitialised memory '&nread' at line 140 of lib/security.c in function 'ftp_send_command'. Reported-by: Rich Burridge | |||
2015-01-27 | sasl: remove XOAUTH2 from default enabled authentication mechanism. | Patrick Monnerat | |
2015-01-27 | imap: remove automatic password setting: it breaks external sasl authentication | Patrick Monnerat | |
2015-01-27 | sasl: implement EXTERNAL authentication mechanism. | Patrick Monnerat | |
Its use is only enabled by explicit requirement in URL (;AUTH=EXTERNAL) and by not setting the password. | |||
2015-01-27 | openssl: Fixed Curl_ossl_cert_status_request() not returning FALSE | Steve Holme | |
Modified the Curl_ossl_cert_status_request() function to return FALSE when built with BoringSSL or when OpenSSL is missing the necessary TLS extensions. | |||
2015-01-27 | openssl: Fixed compilation errors when OpenSSL built with 'no-tlsext' | Steve Holme | |
Fixed the build of openssl.c when OpenSSL is built without the necessary TLS extensions for OCSP stapling. Reported-by: John E. Malmberg | |||
2015-01-26 | curl_setup: Disable SMB/CIFS support when HTTP only | Brad Spencer | |
2015-01-22 | OCSP stapling: disabled when build with BoringSSL | Daniel Stenberg | |
2015-01-22 | openssl: add support for the Certificate Status Request TLS extension | Alessandro Ghedini | |
Also known as "status_request" or OCSP stapling, defined in RFC6066 section 8. Thanks-to: Joe Mason - for the work-around for the OpenSSL bug. | |||
2015-01-22 | BoringSSL: fix build for non-configure builds | Daniel Stenberg | |
HAVE_BORINGSSL gets defined now by configure and should be defined by other build systems in case a BoringSSL build is desired. | |||
2015-01-22 | curl_sasl: Reinstate the sasl_ prefix for locally scoped functions | Steve Holme | |
Commit 7a8b2885e2 made some functions static and removed the public Curl_ prefix. Unfortunately, it also removed the sasl_ prefix, which is the naming convention we use in this source file. | |||
2015-01-22 | curl_sasl: Minor code policing following recent commits | Steve Holme | |
2015-01-22 | BoringSSL: detected by configure, switches off NTLM | Daniel Stenberg | |
2015-01-22 | BoringSSL: no PKCS12 support nor ERR_remove_state | Daniel Stenberg | |
2015-01-22 | BoringSSL: fix build | Leith Bade | |
2015-01-20 | curl_sasl.c: chlglen is not used when cryptography is disabled | Steve Holme | |
2015-01-20 | curl_sasl.c: Fixed compilation warning when cyptography is disabled | Steve Holme | |
curl_sasl.c:1453: warning C4101: 'serverdata' : unreferenced local variable | |||
2015-01-20 | curl_sasl.c: Fixed compilation error when USE_WINDOWS_SSPI defined | Steve Holme | |
curl_sasl.c:1221: error C2065: 'mechtable' : undeclared identifier This error could also happen for non-SSPI builds when cryptography is disabled (CURL_DISABLE_CRYPTO_AUTH is defined). | |||
2015-01-20 | SASL: make some procedures local-scoped | Patrick Monnerat | |
2015-01-20 | SASL: common state engine for imap/pop3/smtp | Patrick Monnerat | |
2015-01-20 | SASL: common URL option and auth capabilities decoders for all protocols | Patrick Monnerat | |
2015-01-20 | IMAP/POP3/SMTP: use a per-connection sub-structure for SASL parameters. | Patrick Monnerat | |
2015-01-20 | ipv6: enclose AF_INET6 uses with proper #ifdefs for ipv6 | Daniel Stenberg | |
Reported-by: Chris Young | |||
2015-01-20 | timeval: typecast for better type (on Amiga) | Chris Young | |
There is an issue with conflicting "struct timeval" definitions with certain AmigaOS releases and C libraries, depending on what gets included when. It's a minor difference - the OS one is unsigned, whereas the common structure has signed elements. If the OS one ends up getting defined, this causes a timing calculation error in curl. It's easy enough to resolve this at the curl end, by casting the potentially errorneous calculation to a signed long. | |||
2015-01-19 | openssl: do public key pinning check independently | Daniel Stenberg | |
... of the other cert verification checks so that you can set verifyhost and verifypeer to FALSE and still check the public key. Bug: http://curl.haxx.se/bug/view.cgi?id=1471 Reported-by: Kyle J. McKay | |||
2015-01-18 | ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP | Steve Holme | |
For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define. | |||
2015-01-18 | http_negotiate: Use dynamic buffer for SPN generation | Steve Holme | |
Use a dynamicly allocated buffer for the temporary SPN variable similar to how the SASL GSS-API code does, rather than using a fixed buffer of 2048 characters. | |||
2015-01-18 | sasl_gssapi: Make Curl_sasl_build_gssapi_spn() public | Steve Holme | |
2015-01-18 | sasl_gssapi: Fixed memory leak with local SPN variable | Steve Holme | |