1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
1001
1002
1003
1004
1005
1006
1007
1008
1009
1010
1011
1012
1013
1014
1015
1016
1017
1018
1019
1020
1021
1022
1023
1024
1025
1026
1027
1028
1029
1030
1031
1032
1033
1034
1035
1036
1037
1038
1039
1040
1041
1042
1043
1044
1045
1046
1047
1048
1049
1050
1051
1052
1053
1054
1055
1056
1057
1058
1059
1060
1061
1062
1063
1064
1065
1066
1067
1068
1069
1070
1071
1072
1073
1074
1075
1076
1077
1078
1079
1080
1081
1082
1083
1084
1085
1086
1087
1088
1089
1090
1091
1092
1093
1094
1095
1096
1097
1098
1099
1100
1101
1102
1103
1104
1105
1106
1107
1108
1109
1110
1111
1112
1113
1114
1115
1116
1117
1118
1119
1120
1121
1122
1123
1124
1125
1126
1127
1128
1129
1130
1131
1132
1133
1134
1135
1136
1137
1138
1139
1140
1141
1142
1143
1144
1145
1146
1147
1148
1149
1150
1151
1152
1153
1154
1155
1156
1157
1158
1159
1160
1161
1162
1163
1164
1165
1166
1167
1168
1169
1170
1171
1172
1173
1174
1175
1176
1177
1178
1179
1180
1181
1182
1183
1184
1185
1186
1187
1188
1189
1190
1191
1192
1193
1194
1195
1196
1197
1198
1199
1200
1201
1202
1203
1204
1205
1206
1207
1208
1209
1210
1211
1212
1213
1214
1215
1216
1217
1218
1219
1220
1221
1222
1223
1224
1225
1226
1227
1228
1229
1230
1231
1232
1233
1234
1235
1236
1237
1238
1239
1240
1241
1242
1243
1244
1245
1246
1247
1248
1249
1250
1251
1252
1253
1254
1255
1256
1257
1258
1259
1260
1261
1262
1263
1264
1265
1266
1267
1268
1269
1270
1271
1272
1273
1274
1275
1276
1277
1278
1279
1280
1281
1282
1283
1284
1285
1286
1287
1288
1289
1290
1291
1292
1293
1294
1295
1296
1297
1298
1299
1300
1301
1302
1303
1304
1305
1306
1307
1308
1309
1310
1311
1312
1313
1314
1315
1316
1317
1318
1319
1320
1321
1322
1323
1324
1325
1326
1327
1328
1329
1330
1331
1332
1333
1334
1335
1336
1337
1338
1339
1340
1341
1342
1343
1344
1345
1346
1347
1348
1349
1350
1351
1352
1353
1354
1355
1356
1357
1358
1359
1360
1361
1362
1363
1364
1365
1366
1367
1368
1369
1370
1371
1372
1373
1374
1375
1376
1377
1378
1379
1380
1381
1382
1383
1384
1385
1386
1387
1388
1389
1390
1391
1392
1393
1394
1395
1396
1397
1398
1399
1400
1401
1402
1403
1404
1405
1406
1407
1408
1409
1410
1411
1412
1413
1414
1415
1416
1417
1418
1419
1420
1421
1422
1423
1424
1425
1426
1427
1428
1429
1430
1431
1432
1433
1434
1435
1436
1437
1438
1439
1440
1441
1442
1443
1444
1445
1446
1447
1448
1449
1450
1451
1452
1453
1454
1455
1456
1457
1458
1459
1460
1461
1462
1463
1464
1465
1466
1467
1468
1469
1470
1471
1472
1473
1474
1475
1476
1477
1478
1479
1480
1481
1482
1483
1484
1485
1486
1487
1488
1489
1490
1491
1492
1493
1494
1495
1496
1497
1498
1499
1500
1501
1502
1503
1504
1505
1506
1507
1508
1509
1510
1511
1512
1513
1514
1515
1516
1517
1518
1519
1520
1521
1522
1523
1524
1525
1526
1527
1528
1529
1530
1531
1532
1533
1534
1535
1536
1537
1538
1539
1540
1541
1542
1543
1544
1545
1546
1547
1548
1549
1550
1551
1552
1553
1554
1555
1556
1557
1558
1559
1560
1561
1562
1563
1564
1565
1566
1567
1568
1569
1570
1571
1572
1573
1574
1575
1576
1577
1578
1579
1580
1581
1582
1583
1584
1585
1586
1587
1588
1589
1590
1591
1592
1593
1594
1595
1596
1597
1598
1599
1600
1601
1602
1603
1604
1605
1606
1607
1608
1609
1610
1611
1612
1613
1614
1615
1616
1617
1618
1619
1620
1621
1622
1623
1624
1625
1626
1627
1628
1629
1630
1631
1632
1633
1634
1635
1636
1637
1638
1639
1640
1641
1642
1643
1644
1645
1646
1647
1648
1649
1650
1651
1652
1653
1654
1655
1656
1657
1658
1659
1660
1661
1662
1663
1664
1665
1666
1667
1668
1669
1670
1671
1672
1673
1674
1675
1676
1677
1678
1679
1680
1681
1682
1683
1684
1685
1686
1687
1688
1689
1690
1691
1692
1693
1694
1695
1696
1697
1698
1699
1700
1701
1702
1703
1704
1705
1706
1707
1708
1709
1710
1711
1712
1713
1714
1715
1716
1717
1718
1719
1720
1721
1722
1723
1724
1725
1726
1727
1728
1729
1730
1731
1732
1733
1734
1735
1736
1737
1738
1739
1740
1741
1742
1743
1744
1745
1746
1747
1748
1749
1750
1751
1752
1753
1754
1755
1756
1757
1758
1759
1760
1761
1762
1763
1764
1765
1766
1767
1768
1769
1770
1771
1772
1773
1774
1775
1776
1777
1778
1779
1780
1781
1782
1783
1784
1785
1786
1787
1788
1789
1790
1791
1792
1793
1794
1795
1796
1797
1798
1799
1800
1801
1802
1803
1804
1805
1806
1807
1808
1809
1810
1811
1812
1813
1814
1815
1816
1817
1818
1819
1820
1821
1822
1823
1824
1825
1826
1827
1828
1829
1830
1831
1832
1833
1834
1835
1836
1837
1838
1839
1840
1841
1842
1843
1844
1845
1846
1847
1848
1849
1850
1851
1852
1853
1854
1855
1856
1857
1858
1859
1860
1861
1862
1863
1864
1865
1866
1867
1868
1869
1870
1871
1872
1873
1874
1875
1876
1877
1878
1879
1880
1881
1882
1883
1884
1885
1886
1887
1888
1889
1890
1891
1892
1893
1894
1895
1896
1897
1898
1899
1900
1901
1902
1903
1904
1905
1906
1907
1908
1909
1910
1911
1912
1913
1914
1915
1916
1917
1918
1919
1920
1921
1922
1923
1924
1925
1926
1927
1928
1929
1930
1931
1932
1933
1934
1935
1936
1937
1938
1939
1940
1941
1942
1943
1944
1945
1946
1947
1948
1949
1950
1951
1952
1953
1954
1955
1956
1957
1958
1959
1960
1961
1962
1963
1964
1965
1966
1967
1968
1969
1970
1971
1972
1973
1974
1975
1976
1977
1978
1979
1980
1981
1982
1983
1984
1985
1986
1987
1988
1989
1990
1991
1992
1993
1994
1995
1996
1997
1998
1999
2000
2001
2002
2003
2004
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
2025
2026
2027
2028
2029
2030
2031
2032
2033
2034
2035
2036
2037
2038
2039
2040
2041
2042
2043
2044
2045
2046
2047
2048
2049
2050
2051
2052
2053
2054
2055
2056
2057
2058
2059
2060
2061
2062
2063
2064
2065
2066
2067
2068
2069
2070
2071
2072
2073
2074
2075
2076
2077
2078
2079
2080
2081
2082
2083
2084
2085
2086
2087
2088
2089
2090
2091
2092
2093
2094
2095
2096
2097
2098
2099
2100
2101
2102
2103
2104
2105
2106
2107
2108
2109
2110
2111
2112
2113
2114
2115
2116
2117
2118
2119
2120
2121
2122
2123
2124
2125
2126
2127
2128
2129
2130
2131
2132
2133
2134
2135
2136
2137
2138
2139
2140
2141
2142
2143
2144
2145
2146
2147
2148
2149
2150
2151
2152
2153
2154
2155
2156
2157
2158
2159
2160
2161
2162
2163
2164
2165
2166
2167
2168
2169
2170
2171
2172
2173
2174
2175
2176
2177
2178
2179
2180
2181
2182
2183
2184
2185
2186
2187
2188
2189
2190
2191
2192
2193
2194
2195
2196
2197
2198
2199
2200
2201
2202
2203
2204
2205
2206
2207
2208
2209
2210
2211
2212
2213
2214
2215
2216
2217
2218
2219
2220
2221
2222
2223
2224
2225
2226
2227
2228
2229
2230
2231
2232
2233
2234
2235
2236
2237
2238
2239
2240
2241
2242
2243
2244
2245
2246
2247
|
_ _ ____ _
___| | | | _ \| |
/ __| | | | |_) | |
| (__| |_| | _ <| |___
\___|\___/|_| \_\_____|
Changelog
Daniel (6 April 2004)
- The --limit-rate logic was corrected and now it works a lot better for
higher speeds, such as '10m' or similar. Reported in bug report #930249.
- Introducing curlx_tvnow() and curlx_tvdiff() using the new curlx_* fashion.
#include "timeval.h" from the lib dir to get the protos etc. Note that
these are NOT part of the libcurl API. The curl app simply uses the same
source files as the library does and therefore the file needs to be compiled
and linked with curl too, not just when creating libcurl.
- lib/strerror.c no longer uses sys_nerr on non-windows platforms since it
isn't portable enough
Daniel (2 April 2004)
- In the curl_strnqual.3 man page, we now prepend the man3 dir to the file
name to work better. As pointed out by Robin Kay.
- Andrés García updated the mingw makefiles.
- Dirk Manske fixed a problem I recently added in the progress meter code that
broke subsecond resolution for CURLINFO_TOTAL_TIME. He also pointed out a
mistake in the code that produces the final update of the progress meter
that would often prevent it from actually being updated that final time.
Daniel (1 April 2004)
- Dirk Manske fixed a memory leak that happened when we use ares for name
resolves and decides to time-out before ares does it. This fix uses the
brand new ares_cancel() function which is not present in c-ares 1.1.0.
When told to enable ares, the configure script now checks for presence of
the ares_cancel function to alert users if they attempt to use a too old
c-ares library.
Daniel (31 March 2004)
- Roy Shan fixed a flaw that prevented ares name resolve timeouts to occur!
- Dirk Manske found out that libcurl timed out waiting for resolves far too
easy when libcurl was built to use (c-)ares for name resolving.
- Further Digest fixing and a successful test case 153 now makes me believe
Mitz Wark's problems are fixed.
- Andres Garcia figured out that test case 63, while working, only proved a
flaw in libcurl's 'http_proxy' parser when a user name and password is
provided. The user name was not extracted properly (and 'http' was always
used as user name).
- Andrés García fixed compiler warnings in our ioctlsocket() usage.
Daniel (30 March 2004)
- Joe Halpin faced problems with the getnameinfo() argument ai_flags and the
particular bit named 'NI_WITHSCOPEID' on Solaris 9 for Intel. I've now
written a configure test that checks for a working NI_WITHSCOPEID
implemenation. No code uses the result from this test yet, it is still
experimental. James Carlson wrote in comp.unix.solaris: "It's a bug
(5006623) -- it's not supported and shouldn't be in the header file."
- I provided Mitz Wark with a first patch in order to fix libcurl's problems
to re-negotiate Digest authentication (when 'stale=true' is included in the
response header).
- Roy Shan discovered that the multi interface didn't properly timeout name
lookups which could make handles get stuck in that state and thus never get
completed. I've produced a first test patch that attempts to correct this.
- David Byron's patch was appplied to make CURLOPT_FAILONERROR work nicely
even with authentcations such as NTLM or Digest enabled. Test cases 150, 151
and 152 were added to verify the functionality.
Daniel (29 March 2004)
- Gisle Vanem updated files for the djgpp/MS-DOS build.
- Andrés García helped me work out a fix for the runtests.pl script to make
the file:// tests run fine when tested with the mingw-built version of curl.
- Fixed an include issue with netinet/tcp.h on AIX, based on input by Tor.
This also required a minor fix of the configure script.
- The postit2.c source example used the wrong struct name for the post data.
Daniel (26 March 2004)
- Gisle Vanem improved ipv6 support on windows by making the curl build to use
the correct getaddrinfo() function.
Daniel (25 March 2004)
- It turned out that AIX, despite having a "thread-safe libc", doesn't offer
all traditional functions thread-safe. This URL is informative on this
subject:
http://publibn.boulder.ibm.com/doc_link/en_US/a_doc_lib/aixprggd/ \
genprogc/thread_quick_ref.htm
As a result of this, we now check for three *_r() functions on recent AIX
versions as well that the URL mentions aren't thread-safe in AIX 5.1.
- renamed curl_strerror.[ch] to strerror.[ch]
- Joe Halpin added CURLOPT_TCP_NODELAY and --tcp-nodelay to make it possible
for users to disable the Nagle algorthim-usage.
- Tor Arntsen provided some interesting strerror_r() knowledge. glibc has its
own API which differs from the POSIX one. Daniel adjusted the configure
script to detect the version in use, and the code now uses the new defines
accordingly.
- Fixed some build flaws with the new lib/curl_strerror.c source file.
Daniel (24 March 2004)
- Gisle Vanem's fix to replace the bad use of strerror(). This introduces
Curl_strerror() that attempts to be thread-safe _and_ works on Windows too!
- Tor Arntsen spell-fixed lots of libcurl man pages.
- Tor Arntsen made testcurl.pl work with older perl 5 versions, and Daniel
made it not use chdir .. to go back, as that isn't very good when you've
setup a testdir containing symlinks.
- Added a check for strerror_r() in the configure script.
Daniel (23 March 2004)
- Added Greg Hewgill's testcurl.pl script to CVS. We have not moved over to
use this script for the real distributed testing just yet, but it is only
a matter of time.
- Gisle Vanem provided code that makes curl report a better error message
if --interface fails on windows.
- The regular progress meter is now fixed to never wrap due to long lines. All
fields are now static sized. If the time in the time fields get a time value
that would represent a time that is 100 hours or more (if not, it remains
using a HH:MM:SS display), it switches first to a "NNNd NNh" display (for
days and hours) and if that isn't enough it switches to a "NNNd" display if
it is more than 999 days.
Several of the calculations were also moved to fixed-point math instead of
using doubles.
Daniel (22 March 2004)
- Glen Nakamura noticed CURLINFO_CONTENT_LENGTH_DOWNLOAD didn't work as it
used to do if CURLOPT_NOBODY is set TRUE.
- Kevin Roth patched the cygwin package makefile and README to adjust to
new cygwin packaging guidelines.
- Enabled "NT responses" in the NTLM authentication. Doing this simply means
that we provide an extra chunk of data in each "type-3 message". The only
reason for doing this is that it seems that using only the "Lanmanager hash"
(as we've been doing until now) doesn't support passwords longer than 14
characters and it turns out there are users out there who want to use
libcurl and NTLM with such passwords! ;-) Seven NTLM-related test cases were
updated accordingly. Mentioned as issue 29 in TODO-RELEASE, bug report
#915609
- Moved the generated libcurl version info to a new header file, named
curl/curlver.h. Now interested parties can include ONLY version info, should
anyone want that (and it seems at least some windows resource files would).
Mentioned as issue 27 in TODO-RELEASE.
Daniel (21 March 2004)
- Fixed the root Makefile to use tabs for the netware target. Günter Knauf
pointed this out.
- Marty Kuhrt's VMS cleanup
- Thomas Schwinge made buildconf recognize ACLOCAL_FLAGS to invoke aclocal
with particular pre-determined options.
Version 7.11.1 (19 March 2004)
Daniel (18 March 2004)
- Tor Arntsen brought some info about SGI IRIX:
IRIX supports 3 different executable/object formats, -32, -n32 and -64.
-n32 is default 32-bit format, -32 is the "old" 32-bit format, and -64 is
the 64-bit format. Libraries for the different formats are in lib, lib32
and lib64 respectively.
We've now adjusted the configure script to adapt to this when scanning for
3rd party libs, such as OpenSSL.
Daniel (17 March 2004)
- Watz pointed out a few missing files in the MSVC project description file.
- Günter Knauf brought patches, code and makefiles to build curl on Novell
NetWare.
Daniel (15 March 2004)
- Lots of libcurl man pages were updated to contain references to other man
pages the recognized way so that they appear as nice hyperlinks in the HTML
versions.
- buildconf now checks the m4 version too, since autoconf requires a GNU m4
version to build proper configure scripts.
Daniel (12 March 2004)
- Added CURLOPT_POSTFIELDSIZE_LARGE, the large file version of
CURLOPT_POSTFIELDSIZE to allow POSTs larger than 2GB.
- David Byron fixed an uninitialized variable case/crash.
Daniel (10 March 2004)
- Jeff Lawson fixed the SSL connection to deal with received signals during the
connect.
- Changed the OS string for win32 to become "i386-pc-win32".
Daniel (9 March 2004)
- Changed the internals to use curl_socket_t for socket variable type. This
should enable us to build with less warnings on Windows, where SOCKET is
used which is an unsigned int, while most other platforms use a mere int.
- Modified lib/config-win32.h to build fine on MSVC again.
Version 7.11.1-pre1 (8 March 2004)
Daniel (8 March 2004)
- Minor fix to make curl CURL_VERSION_LARGEFILE is only set if curl_off_t is
larger than 4 bytes.
Daniel (4 March 2004)
- Improved PUT/POST with NTLM/Digest authentication, the so called issue 12.
- Modified the test HTTP server a lot to work with the upcoming changes for
PUT/POST with NTLM/Digest authentication (like test case 88). Added Andrés
García's win32-changes. Improved the logging.
- Fixed the file:-related progress/getinfo stuff a bit more.
Daniel (4 March 2004)
- I corrected a problem with the multi interface when following a Location:
header or when doing multiple-request authentications. A subsequent request
could erroneously re-use a previous connection that was sent with
Connection: close. Christopher R. Palmer reported.
- Andrés García patched curl to prevent warnings while compiling with mingw,
mainly because it is now possible to have both WIN32 and HAVE_CONFIG_H
defined.
- When transferring files from a file: URL, the progress meter and other
transfer metrics were not updated properly.
- David Byron provided a "version resource" file to the curl executable for
the windows builds.
Daniel (3 March 2004)
- David Byron's work on making libcurl only require winsock 1.1 on Windows
machines.
- More variable cleanups based on compiler warnings generated by Tor Arntsen's
autobuilds with MIPSPro.
- Joe Halpin helped us fix some pedantic compiler warnings on FreeBSD.
- Applied Tom Bates' patch to build on nsr-tandem-nsk.
- Dan Fandrich corrected some flaws in the configure GSS detection.
Daniel (2 March 2004)
- Fixed the libcurl code to use FORMAT_OFF_T for printf() formatting
curl_off_t types internally.
Daniel (1 March 2004)
- Added CURL_VERSION_LARGEFILE as a feature-bit in the curl_version_info()
response, that signals if this libcurl supports >2GB files. curl -V now
outputs 'Largefile' in the Features: field if this is the case. Most systems
are likely to support this.
- We offer a CURL_FORMAT_OFF_T define in the public header, which can be used
to printf() curl_off_t variables. We also modified the libcurl sources to
use this define instead of the previous %Od approach (although I've left the
O-flag functional in the code). This should also prevent compilers to warn
on the home-grown option.
- Fixed the resume-check code to test for a working resume at the end of the
headers and not at the first body-byte.
- CURLOPT_DNS_USE_GLOBAL_CACHE is now considered obsolete. Stop using it. If
you need a global DNS cache for whatever reason, use the share interface and
you'll get a global cache that works the way it should work. You can even
have any number of global caches, all at your command. This is now also
mentioned in the docs.
- Made the *printf code support the z-flag to enable size_t printf() in a
manner similar to how glibc allows it. To make printfing of this work on
platforms with 64bit size_t and 32bit ints. If there even are any! ;-)
- Christopher R. Palmer discovered that if you CURLOPT_FRESH_CONNECT and
CURLAUTH_NTLM (or CURLAUTH_ANY and libcurl then picked NTLM), libcurl would
loop without succeeding to authenticate due to the new connection that was
made for all round-trips in the authentication. Now, the FRESH_CONNECT is
remade to only matter for the first connection made with curl_easy_perform()
and all the rest that might follow due to FOLLOWLOCATION or HTTP
authentication are now ignoring that option.
- Adjusted the QUIT code slightly since it could core-dump.
- Corrected the test suite's FTP server to provide a correct size to the
'verifiedserver' request.
Daniel (27 February 2004)
- Joe Halpin made the FTP code send QUIT on the control connection before
disconnecting the TCP connection. This is what good-behaving ftp clients
should do.
Daniel (26 February 2004)
- David Byron updated several files to make curl build fine on MSVC 6. He
also added the 'buildconf.bat' that works like the 'buildconf + configure'
combo does on unixes.
- Gisle Vanem made the memdebug stuff support calloc() as well.
- Tor Arntsen pointed out that testcurl.sh needed to remove the generated
files in order to have them re-generated in each build.
- Andy Serpa found out that the share interface did not enjoy life when not
having the lock and unlock callbacks set, even though documented to be
OK. It still is OK, and now the code won't segfault anymore!
Daniel (25 February 2004)
- Based on a patch by Greg Hewgill I modified how long long is used in the
mprintf code, as we can use a 64bit type with MSVC that is a long long
equivalent. This corrects some weird large file behaviors on windows.
- Tor Arntsen helped me work out --enable-debug to work better with different
versions of the gcc and icc compilers.
- Added CURLOPT_SHARE to the curl_easy_setopt.3 man page.
Daniel (22 February 2004)
- Applied the final pieces of Gisle Vanem's patch that brings a working name
resolve timeout to the windows versions of curl!
Daniel (21 February 2004)
- David Byron's fix to allow the speed-limit logic work even if you set
limit-rate. It does work on the expense of the rate limiter.
Daniel (20 February 2004)
- configure --enable-debug with gcc now also tries to detect the icc compiler
(which somehow gets treated as if it is a gcc) to stop using all the gcc
options with it, and we also provide -isystem options for each extra -I
option the configure script has figured out (for OpenSSL, kerberos, zlib,
Heimdal etc). This of course to prevent warnings on headers we don't have
control of.
Daniel (19 February 2004)
- Doug Porter made libcurl use the HOME environment variable before the
getpwuid results when looking for .netrc files.
- If 'configure --enable-debug' is used with gcc, it now checks which gcc
version it is and uses as picky compiler options as possible for the
particular version.
- Code that can be used in both the lib and in the curl app is now made to use
the curlx_ prefix. The first function to be available like this is the
curlx_strtoll() function. This is made to allow the app to use existing code,
but without polluting the libcurl API. Further explanations posted here:
http://curl.haxx.se/mail/lib-2004-02/0215.html
Daniel (18 February 2004)
- Fixed buildconf to not use "which" as AIX and Tru64 have what have been
referred to as "horribly broken 'which' programs".
- Made sure dns cache timeout set to -1 really means caching forever.
Daniel (17 February 2004)
- Made it possibly to build c-ares with the libcurl memdebug system to better
track memory.
Daniel (16 February 2004)
- When using ares, we now initialize the ares 'channel' in curl_easy_init()
and re-use that same handle during the entire curl handle's life-time. It
improves performance.
- Fixed a problem when displaying verbose for ipv6-enabled libcurls and
re-used connections. Problem reported and fix verified by Grigory Entin.
- Jeff Lawson fixed the version-check in the SOCKS5 code.
Daniel (15 February 2004)
- Fixed a case where a host cache entry was not flagged in-use properly when a
cached entry was used.
- Andrés García's patch that checks for winmm in the configure script was
applied.
Daniel (13 February 2004)
- Ben Greear's SO_BINDTODEVICE patch for the binding of the local end to a
specific network interface.
- Greg Hewgill found out that the variable holding 'contentlength' wasn't big
enough to hold a large file!
- Tor Arntsen fixed a 64bit-related problem in date-related code in the ftp
department, and there was another potential problem in the name resolve code
too.
Daniel (11 February 2004)
- Removed a few variables that were only set but never used, as some compilers
warn about that and we do not like compiler warnings!
- Removed the need for symlinks in the tests/data directory if curl is built
outside of the source directory and the 'make test' is used. This was done
by providing a "source dir path" to the scripts/servers.
- Now, if the configure script can't find an nroff tool or an option to nroff
to use to convert man pages with, it will completely switch off the built-in
manual.
- 'configure --disable-manual' completely disables the built-in manual from
the curl command tool.
- Andrés García fixed the configure script and a minor source edit, and now
he has managed to get msys/mingw to run configure and then build!
Daniel (9 February 2004)
- The default HTTP Accept: header was modified to the much simpler
"Accept: */*".
- P R Schaffner updated the curl-ssl spec file for RPMs.
- Dominick Meglio brought lots of documentation for the share interface's man
pages that were previously missing.
- Tor Arntsen provided a patch that makes libcurl work-around a bug in the
AIX5 implementation of getaddrinfo(). This makes the FTP PORT stuff work on
ipv6-enabled AIX builds.
- Ken Rastatter provided portability fixes for the curlgtk.c example, and now
it runs on windows with GTK as well!
Daniel (6 February 2004)
- Andrés García made the configure script find gethostbyname() fine when run
with mingw on windows.
- Modified the ldap code to use proper function pointers all over (instead of
mixed data and function pointers) to work-around the picky MIPSPro compiler
warnings.
- A custom Host: header is only considered if the request is not made by
following a location. After discussions with Tim Baker.
Daniel (5 February 2004)
- The libz part of the configure script now only set the two libz-related
define HAVE_ZLIB_H and HAVE_LIBZ if both the lib and the header is found.
If one is missing, none of the defines is set.
- Andrés García fixed the Mingw makefiles.
- Len Krause reported that curl 7.9.X could do uploading from stdin without
doing chunked encoding, which current curl cannot do even if you disable
the transfer-encoding chunked header. Now it can again, and test case 98
verifies this functionality.
- Tor Arntsen fixed a weird getaddrinfo() usage in the FTP code, preventing
the ipv6-code for PORT work on AIX 5.2. We now also provide (better) error
messages when bailing out in the that function.
- Tor Arntsen now provides AIX and IRIX (using gcc, xlc and the MIPSPro
compilers) automated build logs (http://curl.haxx.se/auto/) and we've fixed
numerous minor quirks to make less warnings appear.
Daniel (4 February 2004)
- Based on a patch by Gilad, we now use the custom timeouts when waiting for a
server to connect when using FTP PORT. Previously we always waited 10
seconds, no more no less. We now also changed the default (if no timeout is
set) to wait 60 seconds for the connect before we fail.
Daniel (3 February 2004)
- Modified to link with c-ares instead of ares.
Daniel (2 February 2004)
- Added a configure test to check for which option the (g)nroff tool wants
to extract plain text from the man pages. Tor Arntsen told us the AIX
version of GNU gnroff doesn't support -man!
- Added an undef of accept in memdebug.h to make curl build with --enable-debug
on AIX 5.2 which seems to have accept defined. Reported by Tor Arntsen.
- curl_version() now includes c-ares version info, and curl_version_info() now
returns a struct with version SECOND that also includes that info.
- We are now officially using c-ares for asynch name resolves. c-ares is the
new library, based on the existing ares but with an extended and slightly
modified API.
- Dirk improved the ares timeout code, and now we also include the ares error
string when we fail to resolve a name.
- Another tweak to make test case 91 run fine. Now we have another bit on a
connection that is set true if the connection is marked for 'retry'. That
makes the connection get closed and re-opened and the HTTP-done code must
not complain on the fact that no data was received.
- Based on Dirk Manske's patch, I modified the name resolving with ares to
feature a timeout for really slow lookups. It now defaults to 300 seconds,
but is now adjusted to the CONNECTTIMEOUT/TIMOUE timeouts if one of them
is set.
- Fixed the inclusion of ca-bundle.h to really use the one in the build dir
before the one in the source dir. Domenico Andreoli found out and reported.
- Added test case 97, a simple POST with a custom Content-Type header
replacing the original application/x-www-form-urlencoded one.
Daniel (30 January 2004)
- Added code that attempts to fix the test 91 failure. As has been figured out
by Patrick Smith, the error happens because we re-use a connection that the
server is just about to close and we even manage to send away the request
without seeing an error. On the first read attempt we get a ECONNRESET.
Starting now, we attempt to detect this and if so, we retry the request on a
fresh connection.
- I added test case 510 which is a custom program that does a POST using a
read callback, with chunked transfer-encoding.
- Adjusted one of the MPE/iX changes as it made test case 504 fail all over.
- Added --socks as a recognized option. It works just like --proxy but sets a
SOCKS5 proxy to use. SOCKS5 support has been available in libcurl for a
while, just not provided by the curl tool. This does not currently work for
IPv6-enabled libcurls.
Daniel (29 January 2004)
- Stadler Stephan pointed out that src/hugehelp.c included config.h without
checking the define if its present...
- Ken Hirsch provided patches to make curl build fine on the MPE/iX operating
system.
- Dan Fandrich compiled curl with lots of aggressively pedantic compiler
options and thus found a few minor errors and did some general cleanups to
avoid them.
- Dirk Manske fixed a flaw in ares that prevented it to use non-blocking
sockets properly.
Daniel (28 January 2004)
- Richard Bramante fixed chunked transfer-encoded "uploads" to send a final
CRLF combo properly.
Daniel (27 January 2004)
- Made the response-headers during a CONNECT request to a proxy get passed on
as regular headers, so they appear with -i/-I options and similar.
- Based on a patch by Gisle Vanem, I've made the progress meter display
properly switch to a GB-display when more than 9999MB have been transfered.
Daniel (23 January 2004)
- Gisle Vanem pointed out a curlrc parser problem/crash when an option with a
required didn't have one and was on the last line of a file.
- More Windows fixes for large files. We now build and link with
../lib/strtoofft.c in the app code since Curl_strtoll() is not a provided
libcurl function... Perhaps we should consider a 'common' dir or similar
where we put source code used in both the lib and the client. Or perhaps
we'll just make this function available in the library...
- Vincent Bronner found out the socks5 code crashed when no username was
set.
- Vincent Bronner spotted a problem with proxy username/password when re-using
a persistent connection.
- Fixed the progress meter display for files larger than 2^31 bytes. Gisle
Vanem reported.
Daniel (22 January 2004)
- Gisle Vanem made strtoll() get used when curl is built with the mingw
compiler.
- Gisle Vanem fixed the compressed help text code to display properly.
- Removed the '#define HttpPost' from the public header file, as curl_httppost
is the proper name and it has been for quite some time now. Fixes another
name space pollution.
- Added 'curl_off_t' typedef in the public header file, to be used to provide
large file sizes to the *_LARGE options. Adjusted the code all over to use
this variable type instead of 'off_t'. This is an attempt to make the large
file support work on more platforms. The configure script now checks the
size of the curl_off_t instead of the plain off_t.
Version 7.11.0 (22 January 2004)
Daniel (21 January 2004)
- Removed the defines in the public header file with TIMECOND_ prefixes. They
have been obsolete since April 22nd 2002, and if this causes anyone any
problems now it is very easy to just add CURL_ to the names. This corrects
this name space pollution.
Daniel (19 January 2004)
- David Byron cleaned up how --trace with no option was treated, and also
arguments in a config file without a required parameter!
Daniel (16 January 2004)
- Gisle Vanem fixed a few issues where compilers warned about variables
possibly being used unassigned.
- Minor Interix build problem fixed.
Daniel (15 January 2004)
- Peter Sylvester pointed out some necessary escaping needed in the
acinclude.m4 file when automake 1.8 or later is used.
Daniel (14 January 2004)
- Vincent Bronner fixed the Curl_resolv() return code. This extends the fix
Steve Green provided on december 3...
Daniel (13 January 2004)
- Luke Call made the win32 version of the password prompting function support
backspace.
- Dan Fandrich fixed the hugehelp source file to contain both a compressed and
an uncompressed version in the distribution, so that more people easier can
build curl with the compressed version.
- Diego Casorran brought another AmigaOS build patch for native Amiga builds.
- Matt Veenstra updated the Mac OS X framework files.
- Brian R Duffy brought a section to the INSTALL file on how to build a
SSL-enabled curl using the free Borland C++ compiler. He also updated the
Borland lib/Makefile.b32.
- I fixed the test case 509 which I broke yesterday. Now the libtest are
compiled with an include path that points to the library's source dir, so
that the libtests can include files from the source tree. This was made to
make it possible to use the USE_SSLEAY define in the library test files.
Daniel (12 January 2004)
- Peter Sylvester brought code that now allows a callback to modified the URL
even when the multi interface is used, and then libcurl will simulate a
"follow location" to that new URL. Test 509 was added to test this feature.
- Extended the time we retry servers in the test script, and I also made it
retry the https and ftps servers before they are considered bad. I believe
the previous approach could turn problematic on really slow hosts.
Version 7.11.0-pre1 (12 January 2004)
Daniel (11 January 2004)
- Dominick Meglio pointed out FTPS should use default port 990 according to
IANA.
Daniel (8 January 2004)
- Fixed the SPNEGO configure check to not use -R or other non-portable options
in the LDFLAGS. Reported by Pierre in bug report #872930.
Daniel (5 January 2004)
- Dan Fandrich provided a fix on our zlib usage.
- David J Meyer's patch that introduce large file support to libcurl was
applied. New curl_easy_setopt options that accept 'off_t' arguments are:
INFILESIZE_LARGE
RESUME_FROM_LARGE
MAXFILESIZE_LARGE
Daniel (4 January 2004)
- Based on Dominick Meglio's comments, I made our private version of
gettimeofday() declared static. This would otherwise collide with the same
function in other libs (like ares for example).
- Added Dominick Meglio's description on how to build libcurl with ares
on win32.
Daniel (19 December)
- CURLOPT_IPRESOLVE was not possible to set.
- Gisle Vanem updated the djgpp build files.
Daniel (18 December)
- John McGowan reported a redirect-problem that happened if a site used a URL
like "url.com?var=content" (without a proper slash) and from that address
redirected the user-agent to an absolute directory.
- David Byron made libcurl build fine with both the .NET and VC6 versions of
MSVC
Daniel (16 December)
- Updated test 506 since it started to fail after the cache prune change
yesterday. I also changed it slightly to feature a counter in each debug
output for easier tracing.
Daniel (15 December)
- Old DNS cache entries are now only pruned after curl is done with a request,
and not in the actual name resolve call.
- corrected the --enable-ares patch
- Giuseppe Attardi found and fixed a problem within libcurl that re-used
already freed memory.
Daniel (10 December)
- Gisle Vanem reported that the dict support was broken. I broke it during my
ftps-changes overhaul. I've now added a 'curlassert' function that can be
used to verify expressions, to prevent future errors of the same
kind. They're only present in debug-builds.
- Diego Casorran made curl and libcurl possible to build natively (no more
need for the ixemul library) on AmigaOS.
- Dominick Meglio made configure --enable-ares support a given path to the
installed ares lib, instead of always using it in the curl source tree.
This also fixed the curl-config --libs output.
- Eric S. Raymond patched a very minor man page format error in
libcurl-errors.3
Daniel (8 December)
- Fixed the flaw that made -lz appear twice on the link command line.
- After correspondence with Gisle Vanem, I changed the 'connection aborted'
error text when the FTP response reader failed to more specificly identify
what the problem is.
- Based on a patch from Dominick Meglio, curl-config --feature now outputs
'AsynchDNS' as a feature if libcurl was built with ares. The feature name
is the same that 'curl -V' outputs, for simplicity.
Daniel (3 December)
- Marty Kuhrt made the build up-to-date on VMS, and moved most of the VMS-
specific stuff in the client code to a separate header file.
- Steve Green fixed a return code bug in Curl_resolv(), that made the socks5
code fail.
- swalkaus at yahoo.com patched libcurl to ignore Content-Length: headers
when Transfer-Encoding: chunked is used, as mandated by RFC2616.
Daniel (2 December)
- --ftp-pasv was added, which serves the only purpose of overriding a
previously set --ftpport option. Starting now, --ftp-port is a recognized
alias for --ftpport for consistency.
- Giuseppe Attardi pointed out that we should use MSG_NOSIGNAL when we use
send() and recv(). I added checks for the define in the configure script and
adjusted the code accordingly. If the symbol is present, we won't attempt
to ignore the SIGPIPE signal.
Daniel (1 December)
- Mathias Axelsson set up a bsdftpd-ssl server for me and I could make curl
run fine against its FTPS implementation. Now these FTPS-related things
work:
o explicit and implicit FTPS
o active (PORT) and passive (PASV)
o upload and download
o verified against bsdftpd-ssl and RaidenFTPD
Daniel (27 November)
- James Clancy made the Borland Makefiles up to date.
- Markus Moeller improved the SPNEGO detection in the configure script.
Daniel (25 November)
- Dave May filed bug report #848371, identifying that if you'd do POST over a
proxy to a https server, libcurl didn't POST at all, it just made a GET! It
turned out to be because libcurl wrongly didn't consider the authentication
"negotiation phase" to be complete yet.
I added test case 95 to verify my fix for this.
Daniel (24 November)
- Thanks to Mathias Axelsson, I've been able to work on FTPS for libcurl and it
seems to work somewhat fine now.
The FTPS stuff is based on RFC2228 and the murray-auth-ftp-ssl draft
(version 12). There seems to exist quite a few servers that have implemented
the server side of this.
We can now use ftps:// URLs to explicitly switch on SSL/TSL for the control
connection and the data connection (dealing with two SSL connections forced
me to change a lot of stuff in libcurl).
Alternatively, and what seems to be the recommended way, we can set the new
option CURLOPT_FTP_SSL to one of these values:
CURLFTPSSL_NOPE, - do not attempt to use SSL
CURLFTPSSL_TRY - try using SSL, proceed anyway otherwise
CURLFTPSSL_CONTROL - SSL for the control connection or fail
CURLFTPSSL_ALL - SSL for all communication or fail
Any failure to set the desired level will make libcurl fail with the error
code CURLE_FTP_SSL_FAILED. This new option makes a "normal" ftp:// transfer
attempt to be made securely.
I've been able to login and get files (passively) from Mathias' server using
both ftps:// and CURLOPT_FTP_SSL. (I've made 'curl' understand the --ftp-ssl
option that sets CURLFTPSSL_TRY.)
- Gaz Iqbal fixed a range string memory leak.
- Gisle Vanem fixed the Windows builds.
- Added the new FTPSSL defines in curl/curl.h
Daniel (20 November)
- Josh Kapell filed bug report #845247 as he found an endless loop when
getting a 407 back from a proxy when no user+password was given. Added test
case 94 to verify the fix.
Daniel (19 November)
- Kevin Roth fixed a progress-bar problem on Windows.
- While working with Nicolas Croiset's bug report #843739, I noticed two minor
problems related to ftp partial downloads: if a partial transfer is
detected, we must close the connection as we cannot know in what state it is
anymore. This looks like a ProFTPD bug:
http://curl.haxx.se/mail/lib-2003-11/0079.html
Daniel (17 November)
- Maciej W. Rozycki made the configure script use a cache variable for the
writable argv test. This way, the default can be overridden better (for
cross-compiles etc)
Daniel (15 November)
- Mathias Axelsson found out libcurl sometimes freed the server certificate
twice, leading to crashes!
Daniel (14 November)
- Siddhartha Prakash Jain found a case with a bad resolve that we didn't
properly bail out from, when using ares.
Daniel (13 November)
- Default Content-Type for parts in multipart formposts has changed to
"application/octet-stream". This seems more appropriate, and I believe
mozilla and the likes do this. In the same area: .html files now get
text/html as Content-Type. (Pointed out in bug report #839806)
- Gisle Vanem corrected the --progress-bar output by doing a flush of the
output, which apparently makes it look better on at least windows, but
possibly other platforms too.
- Peter Sylvester identified a problem in the connect code, which made the
multi interface on a ipv6-enabled solaris box do bad. Test case 504 to be
specific. I've spent some time to clean-up the Curl_connecthost() function
now to use less duplicated code for the two different sections: ipv6 and
ipv4.
Daniel (11 November)
- Added CURLOPT_NETRC_FILE. Use this to tell libcurl which file to use instead
of trying to find a .netrc in the current user's home directory. The
existing .netrc file finder is somewhat naive and is far from perfect on
several platforms that aren't unix-style. If this option isn't set when
CURLOPT_NETRC is set, the previous approach will still be used.
The current .netrc check code now also support longer than 256 bytes path
names.
Daniel (10 November)
- Kang-Jin Lee pointed out that the generated ca-bundle.h file shouldn't be
written in the source dir if a different build dir is used.
- After Sébastien Willemijns' bug report, we now check the separators properly
in the 229-reply servers respond on a EPSV command and bail out better if
the reply string is not RFC2428-compliant.
Daniel (7 November)
- Based on Gisle Vanem's patch, I made curl try harder to get the home
directory of the current user, in order to find the default .curlrc file.
We're also considering moving out the HOME-dir code from libcurl, and
instead have the app pass in the path to the .netrc file (which is the only
logic left in libcurl that uses the HOME dir). Then curl can use the home
dir for that purpose too.
- Ralph Mitchell's updated testcurl.sh to the script to take an existing
directory name and build/run/test curl in there instead of trying to update
from CVS. Using this approach, the script can now be used to test daily
tarballs etc.
- Gisle Vanem added a "resource file" to the Windows DLL builds, to contain
information such as version number, library name, copyright info etc.
Daniel (6 November)
- curl checks if the existing libcurl supports things like --ntlm, --negotiate
and --krb4 and returns error if not.
- I added three new global defines in the curl/curl.h header:
LIBCURL_VERSION_MAJOR, LIBCURL_VERSION_MINOR and LIBCURL_VERSION_PATCH. They
are the three numbers in the library's version number, separated for easier
usage. 'maketgz' was updated accordingly to generate these numbers properly
when building release-archives.
- Uninitialized variable fix, reported by both Marty Kuhrt and Benjamin
Gerard.
- Matt Veenstra provided build files to build libcurl as a "framework" under
Mac OS X. See the lib/libcurl.framework.make for details.
- Removed the defines of TRUE and FALSE from the curl/curl.h header file.
They're not in our name space so we should not fiddle with them.
Daniel (5 November)
- Replaced the man page to HTML converter program with a new one: roffit.
Makes nicer web pages.
Daniel (4 November)
- Troels Walsted Hansen fixed the MSVC makefiles to let them build curl fine
on Windows.
- Kevin Roth corrected the cygwin package generator and spell-fixed the
comment in the ca-bundle.h file.
Version 7.10.8 (1 November 2003)
Daniel (31 October)
- Assume that MDTM on an FTP server returns the timestamp using the UTC time
zone. This changes the time CURLINFO_FILETIME returns for a given file over
FTP, and will change existing uses of CURLOPT_TIMECONDITION. It will make
the functionality more similar to how the HTTP one is already working.
- Command line options that take numerical parameters (such as -y, -Y, -C etc)
now report error and exit if the parameter isn't truly a number greater than
or equal to zero. This helps users to notice bad usage earlier. Before, when
a user forgot or missed to add a numerical parameter to an option, the
command line parser would simply "eat" the following option and it would
cause great confusion.
Daniel (30 October)
- David Hull made libcurl deal with NOBODY and HEADER for file:// the same way
it already does for FTP: it provides HTTP-looking headers that provide info
only about the file, without doing the actual transfer. The curl tool then
lets --head do this.
Daniel (29 October)
- runtests.pl now checks for and use valgrind if present. It will redirect the
valgrind results in log/valgrind[num] but it currently doesn't scan that
file for any errors or anything, that is still only made manually.
- David Hull made the file: URL parser also accept the somewhat sloppy file
syntax: file:/path. I added test case 203 to verify this.
Daniel (28 October)
- Dan C tracked down yet another weird behavior in the glibc gethostbyname_r()
function for some specific versions (reported on 2.2.5 and 2.1.1), and
provided a fix. On Linux machines with these glibc versions, non-ipv6
builds of libcurl would often fail to resolve perfectly resolvable host
names.
Daniel (26 October)
- James Bursa found out that curl_msnprintf() could write the trailing
zero-byte outside its given buffer size. This could happen if you generated
a very long error message as then libcurl would overwrite the ERRORBUFFER
with one byte. Using a non-existing very long local file:// name is one case
that could make this occur.
Daniel (24 October)
- David Hull filed bug report #829827. It identified a problem with -C - if
the full file already was downloaded and thus the server responded with a
416. libcurl would then wrongly use the Content-Length: header and expect
that size to get transfer, causing a "hang" until the server closed the
connection and then an error 18 ("still N bytes data left of the transfer").
Now we don't return any error at all, but I think libcurl should perhaps
return some kind of info since the requested range was out of the size of
the document.
- Based on David Hull's fix in bug report #804599, we now check for solaris and
gcc in configure and set the -mimpure-text link flag for linking the lib
better.
- I've introduced a -t option to the runtests.pl script. With that option set,
the script runs special "memory torture" tests. For each test command line
in that section, the script first runs the command line and counts the total
amount of allocations made. It then runs the exact same command line again,
forcing allocation number N to fail. It will try every N from 1 to the total
number of amounts made. For every invoke, it checks that no memory was
leaked as that would indicate a bad cleanup somewhere in the code.
This is just beginning to work, and I've already made some corrections in
libcurl code. When this code works somewhat fine, I'll make sure 'make test'
in the root dir will run these tests as well.
Daniel (23 October)
- Georg Horn fixed how the CA verification is made. Verifications can now be
made while at the same time the result of it can be ignored. This also
affects the curl tool as -k can now be used together with --cacert or
--capath.
Daniel (22 October)
- Gisle Vanem found out --disable-eprt didn't work and patched it.
- Test case 91 was modified and could now repeat the problem Kevin Roth has
reported, and the bug was fixed.
- Dylan Ellicott added vc-libcurl-ssl-dll as a target to the root makefile
to build a static libcurl that links with a shared OpenSSL using MSVC.
Daniel (21 October)
- Andrés García updated the mingw32 makefiles.
Version 7.10.8-pre5 (21 October 2003)
Daniel (19 October)
- Georg Horn made libcurl output more info on SSL failures when receiving
data.
Version 7.10.8-pre4 (18 October 2003)
Daniel (17 October)
- Dominick Meglio implemented CURLOPT_MAXFILESIZE and --max-filesize.
- Made libcurl show verbose info about what auth type and user name that is
being sent in its HTTP request-headers.
Daniel (16 October)
- Removed support for CURLOPT_PASSWDFUNCTION and CURLOPT_PASSWDDATA. libcurl
no longer prompt for passwords under any circumstances. Password prompting
was instead moved to curl, which now prompts for password if -u or -U lack
it. This solves the problem Kevin Roth reported when curl prompted for
password twice when doing NTLM authentication.
- I rewrote the SSL subjectAltName check to avoid having to rely on OpenLDAP-
licensed derivate code.
Daniel (15 October)
- Avoid doing getsockopt() on Windows to verify connects. It seems that this
hogs Windows machines when libcurl is being used multi-threaded (with > ~50
threads). Andrew Fuller helped us verify and test this.
Daniel (14 October)
- Kimmo Kinnunen fixed a crash with duphandle() when CURLDEBUG is set.
- Gisle Vanem made libcurl build and work with IPv6 on Windows.
Daniel (13 October)
- Giuseppe Attardi reported yet another segfault with ares and the multi
interface. Me fixed.
- Domenico Andreoli removed the extra LDFLAGS assignment in lib/Makefile.am
that was reported about in the debian bug report #212086.
Domenico also fixed two makefiles where we used 'gnroff' instead of the more
portable $(NROFF).
Daniel (12 October)
- Dirk Manske made the share locking around DNS lookups slightly different to
allow the share system's DNS lookups to run somewhat more
independent/faster.
Daniel (9 October)
- Lachlan O'Dea fixed a resume problem: "If I set CURLOPT_RESUME_FROM, perform
an HTTP download, then reset CURLOPT_RESUME_FROM to 0, the next download
still has a Range header with a garbage value." bug report #820502
- Dominick Meglio made the inet_pton.c file build fine using MSVC.
- The 'sws' test suite web server now #include setup.h from the lib directory.
This makes it more portable easier.
Version 7.10.8-pre3 (8 October 2003)
Daniel (8 October)
- Frank Ticheler provided a patch that fixes how libcurl connects to multiple
addresses, if one of them fails (ipv4-code).
Daniel (7 October)
- Neil Dunbar provided a patch that now makes libcurl check SSL
subjectAltNames when matching certs. This is apparently detailed in RFC2818
as the right thing to do. I had to add configure checks for inet_pton() and
our own (strictly speaking, code from BIND written by Paul Vixie) provided
code for the function for platforms that miss it.
- HTTP POST using the read callback didn't work, as Florian Schoppmann
reported.
Daniel (5 October)
- Shared provided a few fixes to make libcurl build on BeOS
out-of-the-box. New code for BeOS-style non-blocking sockets, provided by
Shard and Jeremy Friesner. Modified the autoconf check for non-blocking
sockets to check for this kind too.
Daniel (4 October)
- Vincent Bronner pointed out that if you set CURLOPT_COOKIE for a transfer
and then set it to NULL in a subsequent one, the previous cookie was still
sent off!
- Jon Turner fixed a problem libcurl had when it failed on an FTP transfer due
to a bad path, it would cause the next transfer to use a bad path as well.
- Siddhartha Prakash Jain provided a patch with a fix for libcurl with ares,
when working on IP-only names as we then could return "wait" status when the
name in fact already was resolved. I edited the patch slightly to not expose
asynch details to non-ares aware source code.
Daniel (3 October)
- Neil Spring posted the debian bug report #213180, and pointed out that using
the name 'access' in a function prototype is not very wise as some compilers
complain.
- Peter Sylvester provided his and Jean-Paul Merlin's curlx.c example source
code that shows how they use ssl and callbacks.
Daniel (2 October)
- James MacMillan's patch makes curl build on QNX 6.2.x.
Daniel (26 September)
- My daughter was born!
Daniel (23 September)
- Added support for -4/--ipv4 and -6/--ipv6 to force names to resolve to that
particular IP version. They only work for IPv6-enabled libcurls.
- curl -V now outputs 'SPNEGO' as a feature in case libcurl was built to
support that.
Version 7.10.8-pre2 (22 September 2003)
Daniel (22 September)
- Giuseppe Attardi found a segfault in libcurl when using the multi interface
with ares and doing repeated operations against a non-resolving host name.
Daniel (19 September)
- Added the CURLOPT_IPRESOLVE option, that allows an application to select
what kind of IP addresses he wants to use when resolving host names. This
is only interesting when using host names that resolve addresses using more
than one version of IP.
- Applied Markus Moeller's patch that introduces SPNEGO support if libcurl
is built with the FBopenssl libraries. curl_version_info() now returns
info on SPNEGO availability. The patch also made the GSSAPI stuff work fine
with the MIT GSS-library (the Heimdal one still works too).
Daniel (16 September)
- Doing PUT with --digest failed, as reported in bug report #805853.
- Using --anyauth that picked NTLM, and then a redirect closed the connection
and took curl to a second NTLM page made curl fail. Bug report #806328
identified the problem, test case 90 was added to verify the fix.
Daniel (14 September)
- codemastr brought a patch for ares to make the Windows portions of it work
properly on NT4. I uploaded a new diff and updated the docs on where to get
it etc.
- Jeff Pohlmeyer tracked down a very hard-to-find bug where we removed a
cached DNS entry even though it may be in use, which caused "random" memory
to get overwritten and thus "random" crashes.
Daniel (12 September)
- Based on a bug report by David Kimdon, I made the runtests.pl script clear
all possible proxy environment variables before the tests are run.
- By default, easy handles within a multi handle now share DNS cache.
- Tim Bartley brought a patch that makes the GSSNEGOTIATE option work for
Microsoft's "Negotiate" authentication as well.
Daniel (11 September)
- A zero-length proxy string confused FTP transfers.
- Bjorn Reese found a case with an uninitialized pointer, only present when
built for ares.
Version 7.10.8-pre1 (8 September 2003)
Daniel (7 September)
- Jurij Smakov found out that the non-OpenSSL MD5 code was not working on
Alpha (or ia64). Only the OpenSSL-version did. I made a fix I think corrects
the problem.
Daniel (5 September)
- Kevin Fisk reported that configure --enable-thread didn't work. I fixed.
- De-macrofied the lib/hash.c source code somewhat.
Daniel (4 September)
- CURLINFO_HTTPAUTH_AVAIL and CURLINFO_PROXYAUTH_AVAIL added, Based on Joerg
Mueller-Tolk's patch,
Early (4 September)
- Added CURLOPT_FTP_RESPONSE_TIMEOUT - allows user to set strict timeout
requirements on the FTP server's ability to respond to individual commands
without placing global requirements on transfer or connect time. Files
affected:
- include/curl/curl.h
Added option CURLOPT_FTP_RESPONSE_TIMEOUT
- lib/ftp.c
Added branch inside Curl_GetFTPResponse to check for
data->set.ftp_response_timeout
- lib/url.c
Modified Curl_setopt to recognize CURLOPT_FTP_RESPONSE_TIMEOUT
- lib/urldata.h
Added ftp_response_timeout to struct UserDefined
Daniel (3 September)
- Peter Pentchev found and fixed two problems in the test suite's web server
code, that made it segfault at times.
- Jörg Mueller-Tolk improved the proxy user+password handling, especially
when providing a blank password.
Daniel (2 September)
- Fix for making CONNECT to proxies do the correct magic to allow NTLM, Digest
and similar to work.
Daniel (1 September)
- Henrik Storner made libcurl work fine with OpenLDAP 2.1.22 (current).
- Jeff Pohlmeyer added a proper error message for non-resolving hosts when
using ares for lookups.
Daniel (25 August)
- John McGowan reported that curl -k still failed if the HTTPS server's CN
field wasn't obtainable. This was due to the CURLOPT_SSL_VERIFYHOST being
set to 1, and libcurl failed if the CN was missing. Starting now, having it
set to 1 will simply output a warning if no CN could be obtained (as having
a mismatch is OK).
Daniel (21 August)
- Vincent Sanders provided a fix for name resolving when linked with uClibc.
Daniel (20 August)
- Gerd v. Egidy provided a patch that makes libcurl store the FTP response
code from ftp servers. Using curl_easy_getinfo() with CURLINFO_HTTP_CODE
returns that data. The option is therefore now also known as
CURLINFO_RESPONSE_CODE.
- Antoine Calando found a segfault when doing multi-part/formpost using
the multi interface.
- Antoine Calando pointed out that curl_multi_info_read() didn't set the
msgs_in_queue to 0 properly when returning NULL.
Daniel (19 August)
- I made curl support multiple -T options, as well as -T "{file1,file2}"
style globbing. One -T for each URL is supported.
- Jeff Pohlmeyer found a segfault when using ares-enabled libcurl and the
multi interface when trying a non-existing host name.
- Made the libcurl printf code support long longs if available.
- Loren Kirkby pointed out that we did not clean up all SSL-allocated memory
in curl_global_cleanup().
Daniel (17 August)
- Setting CURLOPT_WRITEFUNCTION or CURLOPT_READFUNCTION to NULL will now make
them get the internal defaults restored. Previously this could cause a
segfault. We should aim at having all pointer-related options get restored
to default/safe values when set to NULL.
Version 7.10.7 (15 August 2003)
Daniel (14 August)
- I modified the memdebug system to return failure on memory allocation
functions after a set amount of successful ones. This enables us to test
out-of-memory situations in a controlled manner and we can make sure that
curl/libcurl behaves good in those.
This made me find and fix several spots where we did not cleanup properly
when bailing out due to errors (low memory).
- Corrected test case 74. Made using -o with bad #[num] codes complain and
bail out. Made #[num] support numbers larger than 9 as well. Added test
case 86 for a proper range globbing test as well.
Version 7.10.7-pre4 (12 August 2003)
Daniel (12 August)
- curl_version_info() now returns a flag if libcurl was built with asynch DNS
support, and this is now also displayed with 'curl -V'.
- Added a few new man pages to the docs/libcurl dir: curl_share_init,
curl_share_setopt, curl_share_cleanup, libcurl-easy and libcurl-share.
Daniel (11 August)
- Mike Cherepov made the local binding code work for Windows, which makes
the option CURLOPT_INTERFACE work on Windows as well.
- Vincent Sanders updated the fopen.c example code a lot.
- --proxy-ntlm is now supported by the curl tool. It forces the proxy
authentication to be made using NTLM. It does not yet work for HTTPS over
proxies (or other proxy-tunneling options). Test case 81 and 82 do some
simple initial ntlm testing.
- Found and fixed a minor memory leak on re-used connections with
proxy-authentication.
- I removed -@ and -Z as valid short options. They were very rarely used (@
wasn't even documented).
- Serge Semashko introduced CURLOPT_PROXYAUTH, and make it work when set to
CURLAUTH_NTLM and/or CURLAUTH_BASIC. The PROXAUTH is similar to HTTPAUTH,
but is for the proxy connection only, and HTTPAUTH is for the remote host.
- Fixed loading of cookies with blank contents from a cookie jar. Also made the
cookie functions inform on added and skipped cookies (for cookie debugging).
Version 7.10.7-pre3 (8 August 2003)
Daniel (8 August)
- Applied David Byron's fix for file:// URLs with drive letters included.
- I added the --ftp-create-dirs to the client code, which activates Early's
CURLOPT_FTP_CREATE_MISSING_DIRS option, and wrote test case 147 to verify
it. Added the option to the curl.1 man page too. Added the option to the
curl_easy_setopt.3 man page too.
Daniel (7 August)
- Test case 60 failed on ia64 and AMD Opteron. Fixed now.
- Fixed a printf problem that resulted in urlglobbing bugs (bug #203827 in the
debian bug tracker). Added test case 74 to verify the fix and to discover if
this breaks in the future.
- "make distcheck" works again.
Version 7.10.7-pre2 (6 August 2003)
Daniel (5 August)
- Duncan Wilcox helped me verify that the latest incarnation of my ares patch
builds fine on Mac OS X (see the new lib/README.ares) file for all details.
- Salvatore Sorrentino filed bug report #783116 and Early Ehlinger posted a
bug report to the libcurl list, both identifying a problem with FTP
persistent connections and how the dir hierarchy was not properly reset
between files.
- David Byron's thoughts on a fixed Makefile in tests/ were applied.
- Jan Sundin reported a case where curl ignored a cookie that browsers don't,
which turned up to be due to the number of dots in the 'domain'. I've now
made curl follow the the original netscape cookie spec less strict on that
part.
Daniel (4 August)
- Dirk Manske added cookie support for the experimental, hidden and still
undocumented share feature!
- Mark Fletcher provided an excellent bug report that identified a problem
with FOLLOWLOCATION and chunked transfer-encoding, as libcurl would not
properly ignore the body contents of 3XX response that included the
Location: header.
Early (6 August)
- Added option CURLOPT_FTP_CREATE_MISSING_DIRS
This option will force the target file's path to be created if it
does not already exist on the remote system.
Files affected:
- include/curl/curl.h
Added option CURLOPT_FTP_CREATE_MISSING_DIRS
- lib/ftp.c
Added function ftp_mkd, which issues a MKD command
Added function ftp_force_cwd, which attempts a CWD,
and does a MKD and retries the CWD if the original CWD
fails
Modified ftp_perform() to call its change directory function
through a pointer. The pointer points to ftp_cwd by default,
and is modified to point to ftp_force_cwd IFF
data->set.ftp_create_missing_dirs is not 0.
- lib/url.c
Modified Curl_setopt to recognize CURLOPT_FTP_CREATE_MISSING_DIRS
- lib/urldata.h
Added ftp_create_missing_dirs to struct UserDefined
- Minor Bugfix for CURLOPT_TIMECONDITION with FTP - if the file was not
present to do the time comparison, it would fail.
Files affected:
- lib/ftp.c
In ftp_perform(), the call to ftp_getfiletime() used to be followed
by
if (result)
return result;
And then by the code that actually did the time comparison.
The code that did the comparison handled the case where the filetime
was not available (as indicated by info.filetime < 0 or set.timevalue
< 0), so I replaced the if (result) return result with a switch(result)
that allows CURLE_FTP_COULDNT_RETR_FILE to fall through to the
normal time comparison.
Daniel (3 August)
- When proxy authentication is used in a CONNECT request (as used for all SSL
connects and otherwise enforced tunnel-thru-proxy requests), the same
authentication header is also wrongly sent to the remote host.
This is a rather significant info leak. I've fixed it now and mailed a patch
and warning to the mailing lists.
Daniel (1 August)
- David Byron provided a patch to make 7.10.6 build correctly with the
compressed hugehelp.c source file.
Version 7.10.7-pre1 (31 July 2003)
Daniel (30 July)
- Jörg Müller-Tolk updated the VC makefile.
- Daniel Noguerol made the ftp code output "Accept-Ranges: bytes" in similar
style like other faked HTTP headers when NOBODY and HEADER are used. I
updated two corresponding test cases too.
- Marty Kuhrt pointed out a compilation problem on VMS due to my having
changed a type from long to time_t, and I'm now changing it back to work
more portably...
He also indicated that distributing the src/hugehelp.c in a compressed state
like I accidentally did may not be the smartest move... I've now fixed the
distribute procedure to automatically generate an uncompressed version when I
make release archives.
Daniel (29 July)
- Gisle Vanem brought changes to the mkhelp script for the generation of the
compressed help text on some platforms.
Version 7.10.6 (28 July 2003)
Daniel (28 July)
- François Pons brought a patch that once again made curl deal with ftp and
"double slash" as indicating the root directory. In the RFC1738-fix of April
30, that ability was removed (since it is not the "right" way). So, starting
now we can list the root dir of an ftp server both these ways:
curl ftp://server.com/%2f as well as
curl ftp://server.com//
Daniel (24 July)
- Henry Bland pointed out that we included sys/resource.h without good reason
in several source files. Without it included, QNX builds better...
- Andrés García updated the mingw makefiles.
Daniel (23 July)
- Tracy Boehrer experienced DNS cache problems and did some nice debugging
and tracking which made it easy for me to correct the problem and Tracy
could verify that it did cure the problem! When re-using a connection we
now make sure we don't re-use the 'connect_addr' struct.
- Daniel Kouril corrected the GSS-Negotiate code.
- Juan F. Codagnone provided fixes to allow curl to build fine on Windows
again.
Daniel (22 July)
- Edited the curl/curl.h include file to build on Windows properly.
Daniel (21 July)
- Moved the proxy credentials from the SessionHandle struct to the connectdata
struct, to make multiple proxy connections with differerent user names work.
- Adjusted the NTLM code to support proxy functionality.
- Made the krb4 stuff compile with the user+password fields moved.
Version 7.10.6-pre4 (21 July 2003)
Daniel (20 July)
- David Gardner pointed out in bug report 770755 that using the FTP command
CWD with a blank argument is a bad idea and I made libcurl skip empty path
segments starting now.
Daniel (18 July)
- Cris pointed out that my fix on July 16th didn't work fully. His pointing
out this (and his patch) also made me realize that we have a very similar
bug in the FTP connection re-use code. We must store a separate user and
password field for each connection we keep (at least for FTP and HTTP+NTLM
connections, so I made us do this unconditionally).
- Since NTLM authenticates connections instead of single requests, I had to
re-arrange how we store the NTLM data and I had to improve the test suite to
finally work properly with persistency to make the NTLM tests run fine
again. This also forced me to have to update lots of HTTP test cases.
Daniel (16 July)
- Cris Bailiff's bug report 768275 pointed out that using Basic auth with
wrong user+password caused an endless loop. Fixed now. He also found out that
we didn't properly authenticate connections with NTLM. Fixed too.
- Dan Winship provided fixes for the NTLM code.
Daniel (5 July)
- Doug Kaufman provided additional fixes for the DOS port.
Daniel (4 July)
- Rick Richardson pointed out that using setvbuf() to achieve non-buffering
on output is no-good for SCO Xenix and other unixes. We switched over to
using plain fflush() instead.
- Dan Grayson pointed out that we set the CURL_CA_BUNDLE variable wrongly in
the configure script, and I had to change some build stuff to make the new
way work.
- Peter Sylvester's patch was applied that introduces the following:
CURLOPT_SSL_CTX_FUNCTION to set a callback that gets called with the
OpenSSL's ssl_ctx pointer passed in and allow a callback to act on it. If
anything but CURLE_OK is returned, that will also be returned by libcurl
all the way back. If this function changes the CURLOPT_URL, libcurl will
detect this and instead go use the new URL.
CURLOPT_SSL_CTX_DATA is a pointer you set to get passed to the callback set
with CURLOPT_SSL_CTX_FUNCTION.
Daniel (1 July)
- David Byron provided a patch that allows a client to quit the test suite's
HTTP server.
- Gisle Vanem found and patched a lib handle leak in the ldap code.
Daniel (25 June)
- More NTLM-improvements. Less code. Smaller packets back and forth.
Daniel (23 June)
- Eric Glass provided us with a better doc on NTLM details, and I added more
comments and clarified the current code more. Using the new knowledge, we
should be able to make the NTLM stuff work even better.
Eric's original URL: http://davenport.sourceforge.net/ntlm.html
Version stored and provided at curl site: http://curl.haxx.se/rfc/ntlm.html
- Fixed the minor compile problems pre3 had if built without GSSAPI and/or
SSL.
Version 7.10.6-pre3 (19 June 2003)
Daniel (19 June)
- Made curl use curl_free() on memory returned by curl_getenv(), as this
should theoreticly make it possibly to build and run curl and libcurl with
different memory allocation schemes with no problems.
Daniel (18 June)
- Improved the mkhelp.pl a bit further to make a nicer hugehelp text and to
include a better comment in the top for the gzip compressed version.
Daniel (17 June)
- CURLOPT_HTTPAUTH is now a bitmask, in which you set which authentication
type(s) you want to use. If more than one is set, libcurl will use one of
the selected one and the one it considers is more secure. Test case 67 and
68 (for NTLM) were fixed and we've reduced a round-trip for specific --ntlm
fetches, and test case 69 and 70 were added for testing authentication
"picking". --anyauth is the new command line tool option, and I also added
--basic for completeness (that's the default type).
- Fixed the runtests.pl script to use the info provided by the new curl -V
output.
- --enable-debug now sets the CURLDEBUG define instead of MALLOCDEBUG, as it
is meant to be a generic debug conditional.
- curl_version_info() can now return CURL_VERSION_DEBUG as a feature bit, to
indicate that the library was built with CURLDEBUG set.
- Ralph Mitchell found out that some web applications very badly uses white
spaces in Location: redirects, and apparently IE is a browser (the only
one?) that supports this abomination. Based on Ralph's patch, I added code
that now attempts to replace white spaces with the proper "%20" or "+".
Test case 40 and 42 were added to verify my changes.
- curl -V now also outputs a list of features the available library offers (if
any).
- The curl_version() string now includes "GSS" if libcurl is built with GSSAPI
support.
- David Orrell reported that libcurl still crashed when sending HUGE requests
over HTTPS... I fixed.
Version 7.10.6-pre2 (16 June 2003)
Daniel (16 June)
- curl_version_info() now returns bitmasked information weather NTLM and
GSSNEGOTIATE are supported, since it is doomed to vary on different
installations.
- I remade the HTTP Digest code to use the MD5-code provided by OpenSSL if
that is present, and only use our own MD5-code if it isn't.
Daniel (13 June)
- More NTLM help, fixes and patches from Cris Bailiff.
- Marty Kuhrt brought include fixes for making VMS builds warning-free.
Daniel (12 June)
- NTLM authentication works somewhat against the test servers provided by
Mathias Axelsson and Cris Bailiff. Use by setting CURLOPT_HTTPAUTH to
CURLAUTH_NTLM to libcurl, or --ntlm for the curl tool. Test case 67 and 68
were added for this. NTLM-support requires OpenSSL.
- Dan Fandrich provided a patch, that granted that gzip and libz are available
at build-time, compresses the hugehelp text in the curl command line and
uncompresses it at request. Saves some ~60K in the final output executable.
Daniel (11 June)
- Long day of fighting the NTLM demons.
Daniel (10 June)
- Modified how to set auth type to libcurl. Now use CURLOPT_HTTPAUTH instead,
and pick method. Supported ones currently are:
CURLAUTH_BASIC - default selection
CURLAUTH_DIGEST - formerly CURLOPT_HTTPDIGEST
CURLAUTH_GSSNEGOTIATE
- Daniel Kouril added HTTP GSS-Negotiate authentication support, as defined in
the IETF draft draft-brezak-spnego-http-04.txt. In use already by various
Microsoft web applications. --negotiate is the new family member. To take
advantage of this, you need one of these packages:
o Heimdal Kerberos5 http://www.pdc.kth.se/heimdal/heimdal.html
o GSSAPI from Globus http://www.globus.org/
o GSSAPI libraries from MIT Kerberos5 http://web.mit.edu/kerberos/www/
- A missing ending bracket (']') while doing URL globbing could lead to a
segfault. While fixing this, I also introduced better error reporting in the
globbing code. (All this is application code outside libcurl.)
Daniel (6 June)
- David Orrell found out that sending a huge GET request over HTTPS could
make libcurl fail and return an error code.
Daniel (2 June)
- Richard Bramante found out that "Content-Length: 0" was not properly used by
libcurl if the response-headers indicated that the connection would be
closed.
- David Byron's patch was applied, that makes the --progress-bar take the
local size into account when doing resumed downloads.
- Feedback from Serge Semashko made me change the error message returned when
CURLE_HTTP_RETURNED_ERROR is returned.
- Anonymous in bug report #745122 pointed out that we should really be using
SSL_CTX_set_options(... SSL_OP_ALL) to work around flaws in existing SSL
implementations.
Daniel (27 May)
- Andreas Ley and Rich Gray helped me point out that no version of HP-UX has
the sys/select.h header file so including it unconditionally in curl/multi.h
is not a good thing. Now we check for HPUX and avoid using that header on
such systems.
- Rudy Koento experienced problems with curl's recent habit of POSTing data in
two separate send() calls, first the headers and then the data. I've now
made a fix that for static and known content that is less than 100K in size,
everything is now sent in one single system call again. This is also better
for network performance reasons.
- I modified the main makefile to not build the test suite and a few other
unnecessary things by default. Now, the test suite is built when 'make test'
is run. This reduces build time for those who don't care for the test
suite, and it also reduces confusion for people using platforms where the
test suite build fails!
Daniel (26 May)
- Chris Lewis pointed out a flaw in the #ifdefs in curl/multi.h for Windows,
which is now corrected.
- Jis Joy found another flaw in the SOCK5 code, as libcurl treated the socks5
proxy a little too much like as if it was a http proxy.
Daniel (23 May)
- Ricardo Cadime found a socket leak when listing directories without
contents. Test cases 144 and 145 were added to verify the fix.
- Rudy Koento found yet another problem when a HTTP server returns only a
single-line of contents without any headers at all. libcurl then failed to
count the data, thus returning error 52 "no contents". Test case 66 was
added to verify that we now do right.
Version 7.10.6-pre1 (23 May 2003)
Daniel (23 May)
- Jis in bug report #741841, fixed a bug in the SOCKS5 proxy-using code.
Daniel (22 May)
- David Remahl set up a test-server for me providing Digest authentication,
and I wrote the first working code that support it. The test suite was
modified slightly as well to work better for it and --digest was added to
the command line options (and CURLOPT_HTTPDIGEST to the library)... RFC2617
has all the gory details.
Daniel (21 May)
- David Balazic pointed out that curl_unescape() didn't check that %-codes
were correctly followed by two hexadecimal digits when it unescape strings.
Now, we do the check and only %XX codes are unescaped if the X letters are
hexadecimals.
- Gisle Vanem made curl build with djgpp on DOS.
- Gisle Vanem improved the mkhelp.pl script to make a nicer manual that is
shown with curl -M.
Daniel (20 May)
- Gisle Vanem provided a fix that makes libcurl more conservative, not
expecting h_aliases of the hostent struct to always be non-NULL.
Daniel (19 May)
- As requested by Martin Michlmayr in Debian bug report #193630, libcurl now
supports user name and password in the proxy environment variables. Added
test case 63 to verify this.
Version 7.10.5 (19 May 2003)
Daniel (15 May)
- Changed the order for the in_addr_t testing, as 'unsigned long' seems to be
a very common type inet_addr() returns.
Daniel (14 May)
- George Comninos provided a fix that calls the progress meter when waiting
for FTP command responses take >1 second. It'll make applications more
"responsive" even when dealing with very slow ftp servers.
Daniel (12 May)
- George Comninos pointed out that libcurl uploads had two quirks:
o when using FTP PORT command, it used blocking sockets!
o it could loop a long time without doing progress meter updates
Both items are fixed now.
Daniel (9 May)
- Dan Fandrich changed CURLOPT_ENCODING to select all supported encodings if
set to "". This frees the application from having to know which encodings
the library supports.
- Dan Fandrich pointed out we had three unnecessary files in CVS that is
generated with libtoolize, so they're now removed and libtoolize is invoked
accordingly in the buildconf script.
- Avery Fay found out that the CURLOPT_INTERFACE way of first checking if the
given name is a network interface gave a real performance penalty on Linux,
so now we more appropriately first check if it is an IP number and if so
we don't check for a network interface with that name.
- CURLOPT_FTP_USE_EPRT added. Set this to FALSE to disable libcurl's attempts
to use EPRT and LPRT before the traditional PORT command. The command line
tool sets this option with '--disable-eprt'.
Version 7.10.5-pre2 (6 May 2003)
Daniel (6 May)
- Kevin Delafield reported another case where we didn't correctly check for
EAGAIN but only EWOULDBLOCK, which caused badness on HPUX.
Daniel (4 May)
- Ben Greear noticed that the check for 'writable argv' exited the configure
script when run for cross-compiling, which wasn't nice. Now it'll default to
no and output a warning about the fact that it was not checked for.
Daniel (2 May)
- Added test case 62 and fixed some more on the cookie sending with a custom
Host: header set.
Daniel (1 May)
- Andy Cedilnik fixed a few compiler warnings.
- Made the "SSL read error: 5" error message more verbose, by adding code that
queries the OpenSSL library to fill in the error buffer.
Daniel (30 Apr)
- Added sys/select.h include in the curl/multi.h file, after having been
reminded about this by Rich Gray.
- I made each test set its own server requirements, thus abandoning the
previous system where the test number implied what server(s) to use for a
specific test.
- David Balazic made curl more RFC1738-compliant for FTP URLs, by fixing so
that libcurl now uses one CWD command for each path part. A bunch of test
cases were fixed to work accordingly.
- Cookie fixes:
A. Save domains in jars like Mozilla does. It means all domains set in
Set-Cookie: headers are dot-prefixed.
B. Save and use the 'tailmatch' field in the Mozilla/Netscape cookie jars
(the second column).
C. Reject cookies using illegal domains in the Set-Cookie: line. Concerns
both domains with too few dots or domains that are outside the currently
operating server host's domain.
D. Set the path part by default to the one used in the request, if none was
set in the Set-Cookie line.
To make item C really good, I also made libcurl notice custom Host: headers
and extract the host name set in there and use that as the host name for the
site we're getting the cookies from. This allows user to specify a site's
IP-address, but still be able to receive and send its cookies properly if
you provide a valid Host: name for the site.
Daniel (29 Apr)
- Peter Kovacs provided a patch that makes the CURLINFO_CONNECT_TIME work fine
when using the multi interface (too).
Version 7.10.5-pre1 (23 Apr 2003)
Daniel (23 Apr)
- Upgraded to libtool 1.5.
Daniel (22 Apr)
- Peter Sylvester pointed out that curl_easy_setopt() will always (wrongly)
return CURLE_OK no matter what happens.
- Dan Fandrich fixed some gzip decompression bugs and flaws.
Daniel (16 Apr)
- Fixed minor typo in man page, reported in the Debian bug tracker.
Daniel (15 Apr)
- Fixed some FTP tests in the test suite that failed on my Solaris host, due
to the config.h not being included before the system headers. When done that
way, it did get a mixed sense of if big files are supported or not and then
stat() and fstat() (as used in test case 505) got confused and failed to
return a proper file size.
- Formposting a file using a .html suffix is now properly set to Content-Type: text/html.
Daniel (14 Apr)
- Fixed the SSL error handling to return proper SSL error messages again, they
broke in 7.10.4. I also attempt to track down CA cert problems and then
return the CURLE_SSL_CACERT error code.
- The curl tool now intercepts the CURLE_SSL_CACERT error code and displays
a fairly big and explanatory error message. Kevin Roth helped me out with
the wording.
Daniel (11 Apr)
- Nic Hines provided a second patch for gzip decompression, and fixed a bug
when deflate or gzip contents were downloaded using chunked encoding.
- Dan Fandrich made libcurl support automatic decompression of gzip contents
(as an addition to the previous deflate support).
- I made the CWD command during FTP session consider all 2xy codes to be OK
responses.
Daniel (10 Apr)
- Vlad Krupin fixed a URL parsing issue. URLs that were not using a slash
after the host name, but still had "?" and parameters appended, as in
"http://hostname.com?foobar=moo", were not properly parsed by libcurl.
Daniel (9 Apr)
- Made CURLOPT_TIMECONDITION work for FTP transfers, using the same syntax as
for HTTP. This then made -z work for ftp transfers too. Added test case 139
and 140 for verifying this.
- Getting the file date of an ftp file used the wrong time zone when
displayed. It is supposedly always GMT. Added test case 141 for this.
- Made the test suite's FTP server support MDTM.
- The default DEBUGFUNCTION, as enabled with CURLOPT_VERBOSE now outputs
CURLINFO_HEADER_IN data as well. The most notable effect from this is that
using curl -v, you get to see the incoming "headers" as well. This is
perhaps most useful when doing ftp.
Daniel (8 Apr)
- James Bursa fixed a flaw in the Content-Type extraction code, which missed
the first letter if no space followed the colon.
- Magnus Nilsson pointed out that share.c was missing in the MSVC project
file.
Daniel (6 Apr)
- Ryan Weaver provided a patch that makes the CA cert bundle not get installed
anymore when 'configure --without-ssl' has been used.
Daniel (4 Apr)
- Martijn Broenland found another cases where a server application didn't
like the boundary string used by curl when doing a multi-part/formpost. We
modified the boundary string to look like the one IE uses, as this is
probably gonna make curl work with more applications.
Daniel (3 Apr)
- Kevin Roth reported that a bunch of tests fails on cygwin. One set fails
when using perl 5.8 (and they run fine with perl 5.6), and another set
failed because of an artifact in the test suite's FTP server that I
corrected. It turned out the FTP server code was still having a file opened
while the main test script removed it and invoked the HTTP server that
attempted to create the same file name of the file the FTP server kept open.
This operation works fine on unix, but not on cygwin.
Version 7.10.4 (2 Apr 2003)
Daniel (1 Apr)
- Added test case 505 to exercise FTP upload with rename done with libcurl,
and for that I had to extend the test suite's FTP server to deal with the
RNFR and RNTO commands.
Daniel (31 Mar)
- Even more SSL config check modifications after Richard's testing.
Version 7.10.4-pre6 (31 Mar 2003)
Daniel (31 Mar)
- More fixes for the SSL session ID cache checks when SSL configs are changed
between connections. Based on tests and talks with Richard Bramante.
- Guillaume Cottenceau provided a patch that added CURLOPT_UNRESTRICTED_AUTH.
When enabled, it will prevent libcurl from limiting to which host it sends
user+password to when following locations. By default, libcurl only sends
name and password to the original host used in the first URL, but with this
option set it will send the auth info to all hosts it follows location
headers to. The new tool command line option for this is named
"--location-trusted".
- Frankie Fong reported a problem with libcurl if you re-used an easy handle
with a proxy, and you first made a https:// connection to a host and then
switched to a http:// one to the same host. libcurl would then wrongly re-use
the same connection for it and fail to get the second URL properly
Daniel (29 Mar)
- Dan Shearer's fix that makes curl complain if invoked with nothing but "curl
-O" was applied.
Daniel (26 Mar)
- Bryan Kemp was friendly enough to lend me an account on his Redhat 9 box and
I could fix the configure problems on redhat 8.1 and 9 in no time thanks to
this. Thanks a bunch Bryan!
Daniel (25 Mar)
- Renamed configure.in to configure.ac
Version 7.10.4-pre5 (25 Mar 2003)
Daniel (25 Mar)
- Richard Bramante provided a fix for a handle re-use problem seen when you
change options on an SSL-enabled connection between requests. Previously,
changing peer verification or host verification and similar things was not
taken into account when a connection were checked for re-use and thus
enabling stricter check between requests on a re-used connection made no
difference and the connection would thus be used erroneously.
Daniel (24 Mar)
- Götz Babin-Ebell pointed out that the ca-bundle.crt file contained a
certificate from Trustcenter that was a demo certificate only that was never
intended to be part of a CA bundle.
Daniel (21 Mar)
- Life is a mystery. Within a time period of 17 hours, Tim Pope and Michael
Churchill filed one bug report each, both identifying problems with a second
transfer when doing persistent transfers re-using a connection. Tim's one is
#706624, labeled "Multiple uploads per handle fail" and Michael's #707003
"Does not send Authorization: header when reusing connection". I could track
both down to the same piece of logic and it turned out libcurl was not using
new settings properly when re-using an existing connection. This concerned
both uploading and downloading and involved exactly those pieces these two
reports identified. This code has been this faulty since the day I
introduced persistent connection support in libcurl, more than 2 years ago.
Daniel (20 Mar 2003)
- Five year anniversary. Today five years ago, the first ever curl release saw
the light of day.
Daniel (17 Mar)
- Andy Cedilnik corrected flaws in some libcurl example-usage sources.
Daniel (16 Mar)
- Juan F. Codagnone reported that the fix from March 2nd was incomplete.
- Added code to the configure.in to check for select() argument types. I've
not made any code use the results just yet though.
Daniel (15 Mar)
- Gisle Vanem provided two patches to build better on Windows.
- Adjusted the test suite code to better make sure that the server(s) required
for a specific test is properly started before the test case is attempted.
Many tests now run a lot faster than before.
Daniel (14 Mar)
- Another configure.in adjustment made the configure detect functions properly
on HPUX now.
Daniel (13 Mar)
- Philippe Raoult fixed pre4-compile quirks for FreeBSD.
Version 7.10.4-pre4 (13 Mar 2003)
Daniel (13 Mar)
- Added a backup-check for functions that aren't found by AC_CHECK_FUNCS()
as I believe some checks on HPUX need this. At least some of the info given
to us by Rick Jones seemed to indicate this.
Daniel (12 Mar)
- Thomas Tonino found out that if you used the curl tool to do PUT operations
as in 'curl www.foo.com/dir/ -T file' and the file name included for example
space or other characters that don't belong in URLs, curl did not properly
URL encode them before using them in the URL.
- Added an option to configure called --enable-libgcc that simply adds -lgcc
to the LIBS variable, as this seems to be a common problem.
- I modified the configure.in file, so that the headers are now checked in an
order of "viality". We must also make sure to use the "default headers"
parameter to AC_CHECK_HEADERS() so that headers are checked with the proper
prerequisites included (i.e all the major and generally important header
files are included there by default). This might be what we need for various
Sun, HP, AIX and Tru64 systems to behave good again on the header check
front.
- Rick Jones pointed out a few compiler warnings on HP-UX that I addressed.
- I made the configure --help output nicer by using AC_HELP_STRING() a lot
more.
Daniel (11 Mar)
- Christophe Demory fixed the socket sending code to work better on HP-UX
when sending data to a socket that would block. It then returns EAGAIN, not
EWOULDBLOCK.
- Richard Gorton improved the seeding function for systems without a good
and reliable random source.
- Richard Gorton fixed a few warnings that popped up when you built curl
using the Sun compiler on a 64bit SPARC platform.
- Martin C. Martin fixed a case where a connect failure using the multi
interface didn't produce a human readable error string.
Daniel (10 Mar)
- Reverted ltmain.sh back to libtool 1.4.2 status again, as the 1.4.3 version
broke the build on numerous platforms. It seems that libtool 1.4.3 puts some
requirements on what versions of the other tools (autoconf + automake) that
I am not familiar with and thus I couldn't fulfill at this point.
Yes, this is more than mildly frustrating.
Daniel (7 Mar)
- Run libtoolize version 1.4.3.
Version 7.10.4-pre3 (4 Mar 2003)
Daniel (3 Mar)
- Added share.obj to the VC6 and Borland libcurl makefiles.
- Troels Walsted Hansen found and investigated a problem with libcurl on AIX,
presumably only on 4.3 or later. gethostbyname_r() is not returning data
that is possible to "keep" and cache the way libcurl does. But instead these
versions of AIX uses a gethostbyname() that works thread-safely we can
instead use the ordinary gethostbyname() and our pack_hostent() approach to
achieve what we want. The configure script now attempts to detect AIX 4.3 or
later to adjust for this.
Daniel (2 Mar)
- Juan F. Codagnone found a problem introduced in 7.10.3 when you first did a
POST and then back to a GET using the same easy handle.
Daniel (28 Feb)
- Removed the strequal and strnequal defines from curl/curl.h header. They
were never meant for the public header anyway. Philippe Raoult brought it
up.
- James Bursa fixed the RISC OS build.
Daniel (27 Feb)
- Avery Fay pointed out the very misleading curl_multi_info_read man page, and
I updated it to become more accurate.
- Salvatore Sorrentino found a problem with FTP downloading that turned out to
be his FTP server returning size zero (0 bytes) when SIZE was used on a file
while being in BINARY mode. We now make a second check for the actual size
by scanning the RETR reply anyway, even if the SIZE command returned 0.
Daniel (26 Feb)
- Kyle Sallee reported a case where he would do a transfer that didn't update
the progress meter properly. It turned out to be a case where libcurl would
loop a little too eagerly in the transfer loop, which isn't really good for
the APIs, especially not the multi API.
Version 7.10.4-pre2 (24 Feb 2003)
Daniel (24 Feb)
- Kjetil Jacobsen found out that setting CURLOPT_MAXCONNECTS to a value higher
than 5 could cause a segfault.
- I believe I fixed the 'Expect: 100-continue' behavior that has been broken
for a while (I think since my change dated Dec 10 2002). When this header is
used, libcurl should wait for a HTTP 100 (or timeout) before sending the
post/put data.
Daniel (14 Feb)
- Matthew Clarke provided some info what to modify to make curl build
flawlessly on AIX 3.2.5.
- Martin C. Martin found and fixed a problem in the multi interface when
running on Windows and trying to connect to a port without a listener.
Daniel (13 Feb)
- Christopher R. Palmer fixed Curl_base64_encode() to deal with zeroes in the
data to encode.
Daniel (4 Feb)
- Jean-Philippe added the first code that enables the 'share' system. This
should now enable sharing of DNS data between two curl easy handles.
- Incorporated Nico Baggus' fixes to again compile flawlessly on VMS.
- James Bursa corrected a bad comment in the public include file curl/multi.h
- Peter Forret reported one of those error:00000000 cases in libcurl again
when connecting to a HTTPS site, and this time I did discover some oddities
in how curl reports SSL errors back. It could miss showing the actual error.
Version 7.10.4-pre1 (3 Feb 2003)
Daniel (3 Feb)
- Removed things in the docs saying capath doesn't work on Windows, as Julian
Noble told us it works fine.
Daniel (31 Jan)
- Kevin Roth fixed the zlib build stuff in the Mingw32 makefile.
Daniel (30 Jan)
- Kevin Roth found out that curl on Windows always checked for the CA cert
bundle using the environment variable and the path scan, even though
-k/--insecure was used.
- Hamish Mackenzie pointed out that curl only did strict host name verifying
if capath or cainfo was used. Now it'll always do it unless -k / --insecure
is used!
- Pavel Cenek pointed out that the Content-Type extraction was done wrongly
as the full string was not fetched. Added test case 57 to verify that curl
does it right now.
Daniel (29 Jan)
- Jamie Wilkinson provided a patch that now makes curl attempt to clear out
"sensitive" command line arguments so that they don't appear in ps outputs
(only on platforms that allow writing to argv[]).
- John McGowan found out that the DEBUGFUNCTION could be called with bad
arguments and thus cause the --trace outputs to go wrong.
- Removed all the emacs local variables from all files. Mats Lidell provided
the new sample.emacs file (for a sample of what to include in your .emacs)
and the curl-style.el that sets a better c-style for editing curl sources.
- Dave Halbakken found a problem with FTP downloads that could accidently
return CURLE_PARTIAL_FILE when curl_easy_perform() was called with NOBODY
set TRUE.
Daniel (27 Jan)
- The fopen.c example was flawed as Nick Humfrey noticed, and I fixed it to
work again.
Daniel (24 Jan)
- Bertrand Demiddelaer found and fixed a memory leak (the content-type string)
when following locations.
Daniel (22 Jan 2003)
- Ian Wilkes and Legoff Vincent both independently provided fixes for making
curl/multi.h work properly when compiled with a C++ compiler.
Daniel (20 Jan 2003)
- Fixed 'buildconf' to check version number of the required tools before
they're actually used.
- Wrote 'testcurl.sh', a script targeted for automatic and distributed curl
tests on various platforms.
- David Thiel pointed out that the .netrc file was not being dealt with
properly anymore. I broke this in the password prompting "fix".
- Markus F.X.J. Oberhumer patched libcurl to allocate the scratch buffer only
on demand and thus we save 32KB in each curl handle that don't use that
buffer. This need appeared when some people started using thousands of
simultaneous curl handles... :-)
Daniel (16 Jan 2003)
- Markus Oberhumer fixed curl-config --cflags when the includedir was not
/usr/include.
- Markus Oberhumer fixed CURLINFO_PRIVATE to properly return NULL if it was
set to NULL!
Version 7.10.3 (14 Jan 2003)
Daniel (10 Jan 2003)
- Steve Oliphant pointed out that test case 105 did not work anymore and this
was due to a missing fix for the password prompting.
Version 7.10.3-pre6 (10 Jan 2003)
Daniel (9 Jan 2003)
- Bryan Kemp pointed out that curl -u could not provide a blank password
without prompting the user. It can now. -u username: makes the password
empty, while -u username makes curl prompt the user for a password.
- Kjetil Jacobsen found a remaining connect problem in the multi interface on
ipv4 systems (Linux only?), that I fixed and Kjetil verified that it fixed
his problems.
- memanalyze.pl now reads a file name from the command line, and no longer
takes the data on stdin as before.
Version 7.10.3-pre5 (9 Jan 2003)
Daniel (9 Jan 2003)
- Fixed tests/memanalyze.pl to work with file names that contain colons (as on
Windows).
- Kjetil Jacobsen quickly pointed out that lib/share.h was missing...
Version 7.10.3-pre4 (9 Jan 2003)
Daniel (9 Jan 2003)
- Updated lib/share.c quite a bit to match the design document at
http://curl.haxx.se/dev/sharing.txt a lot more.
I'll try to update the document soonish. share.c is still not actually used
by libcurl, but the API is slowly getting there and we can start
implementing code that takes advantage of this system.
Daniel (8 Jan 2003)
- Updated share stuff in curl/curl.h, including data types, structs and
function prototypes. The corresponding files in lib/ were also modified
of course to remain compilable. Based on input from Jean-Philippe and also
to make it more in line with the design document.
- Jean-Philippe Barrette-LaPierre patched a very trivial memory leak in
curl_escape() that would happen when realloc() returns NULL...
- Matthew Blain provided feedback to make the --create-dirs stuff build
properly on Windows.
- Fixed the #include in tests/libtest/first.c as Legoff Vincent pointed out.
Daniel (7 Jan 2003)
- Philippe Raoult provided a patch that now makes libcurl properly support
wildcard checks for certificate names.
- Simon Liu added CURLOPT_HTTP200ALIASES, to let an application set other
strings recognized as "HTTP 200" to allow http-like protocols to get
downloaded fine by curl.
- Now using autoconf 2.57 and automake 1.7.2
- Doing "curl -I ftp://domain/non-existing-file" still outputed a date!
Wayne Haigh reported.
- The error message is now written properly with a newline in the --trace
file.
Daniel (6 Jan 2003)
- Sterling Hughes fixed a possible bug: previously, if you called
curl_easy_perform and then set the global dns cache, the global cache
wouldn't be used. Pointed out by Jean-Philippe Barrette-LaPierre.
- Matthew Blain's fixed the VC6 libcurl makefile to include better debug data
on debug builds.
|