Age | Commit message (Collapse) | Author | |
---|---|---|---|
2005-03-04 | Reduced the length of data read from the random entropy file. | Dan Fandrich | |
2005-03-04 | Don't try to read the whole of the random file because when /dev/urandom is | Dan Fandrich | |
used, it slows initialization too much reading an infinitely long file! | |||
2005-03-04 | Dave Dribin made it possible to set CURLOPT_COOKIEFILE to "" to activate | Daniel Stenberg | |
the cookie "engine" without having to provide an empty or non-existing file. | |||
2005-03-04 | killed trailing whitespace | Daniel Stenberg | |
2005-03-04 | killed trailing whitespace | Daniel Stenberg | |
2005-02-28 | Fix for a base64 decode heap buffer overflow vulnerability. | Dan Fandrich | |
2005-02-24 | Fixed some compiler warnings. Fixed a low incidence memory leak in the test ↵ | Dan Fandrich | |
server. | |||
2005-02-22 | krb4 fixed | Daniel Stenberg | |
2005-02-22 | Curl_base64_decode() now returns an allocated buffer | Daniel Stenberg | |
2005-02-22 | Thanks for the notification iDEFENCE. We are the "initial vendor" and we sure | Daniel Stenberg | |
got no notification, no mail, no nothing. You didn't even bother to mail us when you went public with this. Cool. NTLM buffer overflow fix, as reported here: http://www.securityfocus.com/archive/1/391042 | |||
2005-02-18 | Ralph Mitchell reported a flaw when you used a proxy with auth, and you | Daniel Stenberg | |
requested data from a host and then followed a redirect to another host. libcurl then didn't use the proxy-auth properly in the second request, due to the host-only check for original host name wrongly being extended to the proxy auth as well. Added test case 233 to verify the flaw and that the fix removed the problem. | |||
2005-02-17 | close the socket properly when returning error due to failing localbind | Daniel Stenberg | |
Bug report #1124588 by David | |||
2005-02-16 | Christopher R. Palmer reported a problem with HTTP-POSTing using "anyauth" | Daniel Stenberg | |
that picks NTLM. Thanks to David Byron letting me test NTLM against his servers, I could quickly repeat and fix the problem. It turned out to be: When libcurl POSTs without knowing/using an authentication and it gets back a list of types from which it picks NTLM, it needs to either continue sending its data if it keeps the connection alive, or not send the data but close the connection. Then do the first step in the NTLM auth. libcurl didn't send the data nor close the connection but simply read the response-body and then sent the first negotiation step. Which then failed miserably of course. The fixed version forces a connection if there is more than 2000 bytes left to send. | |||
2005-02-14 | Rename Curl_pretransfersec() to *_second_connect() since it does not just | Daniel Stenberg | |
do pretransfer stuff like Curl_pretransfer(). | |||
2005-02-11 | Fixed bad krb4 code. It always tried to use krb4 if built enabled. | Daniel Stenberg | |
2005-02-11 | Removed all uses of strftime() since it uses the localised version of the | Daniel Stenberg | |
week day names and month names and servers don't like that. | |||
2005-02-10 | typecast assign to ftpport from int to prevent warnings | Daniel Stenberg | |
2005-02-10 | init fix for non-SSL builds | Daniel Stenberg | |
2005-02-09 | David Byron identified the lack of SSL_pending() use, and this is my take | Daniel Stenberg | |
at fixing this issue. | |||
2005-02-09 | better error checking and SSL init by David Byron | Daniel Stenberg | |
2005-02-09 | prevent a compiler warning | Daniel Stenberg | |
2005-02-09 | Set 'bits.close' in case of malloc fail. | Gisle Vanem | |
Don't free 'lud_dn' twice in case curl_unescape() fails. | |||
2005-02-09 | Use CURL_SOCKET_BAD. | Gisle Vanem | |
2005-02-09 | Handle CURLE_LOGIN_DENIED in strerror.c. | Gisle Vanem | |
For ftp only? | |||
2005-02-09 | FD_SET can be big macro, use braces | Daniel Stenberg | |
2005-02-09 | FTP code turned into state machine. Not completely yet, but a good start. | Daniel Stenberg | |
The tag 'before_ftp_statemachine' was set just before this commit in case of future need. | |||
2005-02-09 | Replace LF with CRLF. Ref RFC-2229, sec 2.3: | Gisle Vanem | |
"Each command line must be terminated by a CRLF". | |||
2005-02-08 | ares_gethostbyname wants a 'ares_host_callback' in the 4th argument | Daniel Stenberg | |
2005-02-08 | Curl_addrinfo?_callback() and addrinfo_callback() now returns | Gisle Vanem | |
CURLE_OK or CURLE_OUT_OF_MEMORY. Add typecast in hostares.c. | |||
2005-02-08 | Don't free too much in freedirs() if realloc() fails. | Gisle Vanem | |
2005-02-08 | Curl_wait_for_resolv() no longer disconnects on failure, but leaves that | Daniel Stenberg | |
operation to the caller. Disconnecting has the disadvantage that the conn pointer gets completely invalidated and this is not handled on lots of places in the code. | |||
2005-02-07 | Fix for a bug report that compressed files that are exactly 64 KiB long | Dan Fandrich | |
produce a zlib error. | |||
2005-02-06 | Preserve previous status in Curl_http_done(). | Gisle Vanem | |
2005-02-04 | Eric Vergnaud found a use of an uninitialized variable | Daniel Stenberg | |
2005-02-04 | David Byron pointed out that this -1 on the buffer size is pointless since | Daniel Stenberg | |
the buffer is already BUFSIZE +1 one big to fit the extra trailing zero. This change is reported to fix David's weird SSL problem... | |||
2005-01-30 | if the DO operation returns failure, bail out and close down nicely to | Daniel Stenberg | |
prevent memory leakage | |||
2005-01-30 | Use calloc() to save us the memset() call and terminate conn->host.name | Daniel Stenberg | |
properly, to avoid reading uninited variables when using file:// (valgrind) | |||
2005-01-29 | include "url.h" for the Curl_safefree() proto | Daniel Stenberg | |
2005-01-29 | Using the multi interface, and doing a requsted a re-used connection that | Daniel Stenberg | |
gets closed just after the request has been sent failed and did not re-issue a request on a fresh reconnect like the easy interface did. Now it does! (define CURL_MULTIEASY, run test case 160) | |||
2005-01-29 | Define CURL_MULTIEASY when building this, to use my new curl_easy_perform() | Daniel Stenberg | |
that uses the multi interface to run the request. It is a great testbed for the multi interface and I believe we shall do it this way for real in the future when we have a successor to curl_multi_fdset(). | |||
2005-01-29 | conn->ip_addr MUST NOT be used on re-used connections | Daniel Stenberg | |
2005-01-29 | multi interface: when a request is denied due to "Maximum redirects followed" | Daniel Stenberg | |
libcurl leaked the last Location: URL. | |||
2005-01-28 | Connect failures with the multi interface was often returned as "connect() | Daniel Stenberg | |
timed out" even though the reason was different. Fixed this problem by not setting this timeout to zero when using multi. | |||
2005-01-28 | KNOWN_BUGS #17 fixed. A DNS cache entry may not remain locked between two | Daniel Stenberg | |
curl_easy_perform() invokes. It was previously unlocked at disconnect, which could mean that it remained locked between multiple transfers. The DNS cache may not live as long as the connection cache does, as they are separate. To deal with the lack of DNS (host address) data availability in re-used connections, libcurl now keeps a copy of the IP adress as a string, to be able to show it even on subsequent requests on the same connection. | |||
2005-01-28 | Stephen More pointed out that CURLOPT_FTPPORT and the -P option didn't work | Daniel Stenberg | |
when built ipv6-enabled. I've now made a fix for it. Writing test cases for custom port strings turned too tricky so unfortunately there's none. | |||
2005-01-25 | Ian Ford asked about support for the FTP command ACCT, and I discovered it is | Daniel Stenberg | |
present in RFC959... so now (lib)curl supports it as well. --ftp-account and CURLOPT_FTP_ACCOUNT set the account string. (The server may ask for an account string after PASS have been sent away. The client responds with "ACCT [account string]".) Added test case 228 and 229 to verify the functionality. Updated the test FTP server to support ACCT somewhat. | |||
2005-01-25 | Use plain structs and not typedef'ed ones in the hash and linked-list code. | Daniel Stenberg | |
2005-01-21 | FTP third transfer support overhaul. See CHANGES for details. | Daniel Stenberg | |
2005-01-19 | Stephan Bergmann made libcurl return CURLE_URL_MALFORMAT if an FTP URL | Daniel Stenberg | |
contains %0a or %0d in the user, password or CWD parts. (A future fix would include doing it for %00 as well - see KNOWN_BUGS for details.) Test case 225 and 226 were added to verify this | |||
2005-01-19 | Don't copy 'stderr' for Win-CE in IPv6 code. Don't call | Gisle Vanem | |
GetCurrentProcess() twice; use a local variable. |