Changelog
+Daniel (16 February 2005)
+- Christopher R. Palmer reported a problem with HTTP-POSTing using "anyauth"
+ that picks NTLM. Thanks to David Byron letting me test NTLM against his
+ servers, I could quickly repeat and fix the problem. It turned out to be:
+
+ When libcurl POSTs without knowing/using an authentication and it gets back
+ a list of types from which it picks NTLM, it needs to either continue
+ sending its data if it keeps the connection alive, or not send the data but
+ close the connection. Then do the first step in the NTLM auth. libcurl
+ didn't send the data nor close the connection but simply read the
+ response-body and then sent the first negotiation step. Which then failed
+ miserably of course. The fixed version forces a connection if there is more
+ than 2000 bytes left to send.
+
+Daniel (14 February 2005)
+- The configure script didn't check for ENGINE_load_builtin_engines() so it
+ was never used.
+
Daniel (11 February 2005)
- Removed all uses of strftime() since it uses the localised version of the
week day names and month names and servers don't like that.
This release includes the following bugfixes:
+ o HTTP POST with --anyauth picking NTLM
o SSL problems when downloading exactly 16KB data
o out of memory conditions preserve error codes better
o a few crashes at out of memory
This release would not have looked like this without help, code, reports and
advice from friends like these:
- Gisle Vanem, David Byron, Marty Kuhrt, Maruko, Eric Vergnaud
+ Gisle Vanem, David Byron, Marty Kuhrt, Maruko, Eric Vergnaud, Christopher
+ R. Palmer
Thanks! (and sorry if I forgot to mention someone)
if((expectsend == -1) || (expectsend > bytessent)) {
/* There is still data left to send */
- if((data->state.authproxy.picked == CURLAUTH_NTLM) ||/* using NTLM */
- (data->state.authhost.picked == CURLAUTH_NTLM) ) {
- conn->bits.close = FALSE; /* don't close, keep on sending */
+ if((data->state.authproxy.picked == CURLAUTH_NTLM) ||
+ (data->state.authhost.picked == CURLAUTH_NTLM)) {
+ if(((expectsend - bytessent) < 2000) ||
+ (conn->ntlm.state != NTLMSTATE_NONE)) {
+ /* The NTLM-negotiation has started *OR* there is just a little (<2K)
+ data left to send, keep on sending. */
+
+ /* rewind data when completely done sending! */
+ if(!conn->bits.authneg)
+ conn->bits.rewindaftersend = TRUE;
+
+ return CURLE_OK;
+ }
+ if(conn->bits.close)
+ /* this is already marked to get closed */
+ return CURLE_OK;
- /* rewind data when completely done sending! */
- conn->bits.rewindaftersend = TRUE;
- return CURLE_OK;
- }
- else {
- /* If there is more than just a little data left to send, close the
- * current connection by force.
- */
- conn->bits.close = TRUE;
- conn->size = 0; /* don't download any more than 0 bytes */
+ infof(data, "NTLM send, close instead of sending %ld bytes\n",
+ expectsend - bytessent);
}
+
+ /* This is not NTLM or NTLM with many bytes left to send: close
+ */
+ conn->bits.close = TRUE;
+ conn->size = 0; /* don't download any more than 0 bytes */
}
if(bytessent)
conn->newurl = strdup(data->change.url); /* clone URL */
if((data->set.httpreq != HTTPREQ_GET) &&
- (data->set.httpreq != HTTPREQ_HEAD)) {
+ (data->set.httpreq != HTTPREQ_HEAD) &&
+ !conn->bits.rewindaftersend) {
code = perhapsrewind(conn);
if(code)
return code;
if(result)
return result;
+
+ if(conn->bits.rewindaftersend) {
+ /* We rewind after a complete send, so thus we continue
+ sending now */
+ infof(data, "Keep sending data to get tossed away!\n");
+ k->keepon |= KEEP_WRITE;
+ }
}
#endif /* CURL_DISABLE_HTTP */
projects / curl / commitdiff