]> granicus.if.org Git - curl/log
curl
13 years agoReplaced var manipulations with perlish hacks.
Guenter Knauf [Wed, 13 Apr 2011 23:27:39 +0000 (01:27 +0200)]
Replaced var manipulations with perlish hacks.

13 years agoUpdated minimum binary sizes
Dan Fandrich [Wed, 13 Apr 2011 01:46:58 +0000 (18:46 -0700)]
Updated minimum binary sizes

13 years agoconfigure: libssh2 link fix without pkg-config
Daniel Stenberg [Tue, 12 Apr 2011 20:10:29 +0000 (22:10 +0200)]
configure: libssh2 link fix without pkg-config

The script didn't properly add the -lssh2 link option when it enabled
libssh2 linking where pkg-config isn't found.

Reported by: Saqib Ali
Bug: http://curl.haxx.se/mail/lib-2011-04/0054.html

13 years agoRELEASE-NOTES: synced with f01df197981
Daniel Stenberg [Mon, 11 Apr 2011 20:38:07 +0000 (22:38 +0200)]
RELEASE-NOTES: synced with f01df197981

13 years agocheckconnection: don't call with NULL pointer
Daniel Stenberg [Mon, 11 Apr 2011 11:17:55 +0000 (13:17 +0200)]
checkconnection: don't call with NULL pointer

When checking if an existing RTSP connection is alive or not, the
checkconnection function might be called with a SessionHandle pointer
being NULL and then referenced causing a crash. This happened only using
the multi interface.

Reported by: Tinus van den Berg

Bug: http://curl.haxx.se/bug/view.cgi?id=3280739

13 years agocurl.1: spell out the -O target directory
Daniel Stenberg [Mon, 11 Apr 2011 08:35:16 +0000 (10:35 +0200)]
curl.1: spell out the -O target directory

When using -O the file will be saved in the current directory, and this
is now spelled out clearly.

13 years agoOpenSSL: no-sslv2 aware
Daniel Stenberg [Sun, 10 Apr 2011 17:14:22 +0000 (19:14 +0200)]
OpenSSL: no-sslv2 aware

Allow openSSL without SSL2 to be used. This fix is inspired by the fix
provided by Cristian Rodríguez.

Reported by: Cristian Rodríguez

13 years agocurl_easy_setopt.3: CURLOPT_RESOLVE typo version
Daniel Stenberg [Sat, 9 Apr 2011 18:04:22 +0000 (20:04 +0200)]
curl_easy_setopt.3: CURLOPT_RESOLVE typo version

Reported by: Hongli Lai

13 years agonss: allow to use multiple client certificates for a single host
Kamil Dudka [Fri, 1 Apr 2011 14:31:28 +0000 (16:31 +0200)]
nss: allow to use multiple client certificates for a single host

In case a client certificate is used, invalidate SSL session cache
at the end of a session.  This forces NSS to ask for a new client
certificate when connecting second time to the same host.

Bug: https://bugzilla.redhat.com/689031

13 years agomk-ca-bundle.pl: show full URL in output
Daniel Stenberg [Thu, 7 Apr 2011 20:42:22 +0000 (22:42 +0200)]
mk-ca-bundle.pl: show full URL in output

When I decided to search for a potential error with the cacert bundle it
struck me I wanted to see the full source URL in the output...

13 years agoAdded mention of FTP proxies
Dan Fandrich [Thu, 7 Apr 2011 18:31:39 +0000 (11:31 -0700)]
Added mention of FTP proxies

13 years agosrc/Makefile.b32: updates
Gisle Vanem [Thu, 7 Apr 2011 13:19:21 +0000 (15:19 +0200)]
src/Makefile.b32: updates

* Rename the object object directory from 'objs' to 'BCC_obj' to be in
 sync with my previous patch for lib/Makefile.b32.

* Turn off these warnings to keep the build totally silent (with CBuilder-6
 that is).
  -w-inl    8026 Functions X are not expanded inline.
  -w-pia   8060 Possibly incorrect assignment
  -w-pin  8061 Initialization is only partially bracketed
 (same added in src/Makefile.b32)

* $(MKDIR) and $(RMDIR) have been replaced with the shell-commands 'md'
 and 'rd'. When having MingW/Msys programs 'mkdir.exe' and 'rmdir.exe' in
$PATH, this confuses Borland's make and the result (the cleaning etc.) would
 not be as expected.

* Removed the preprocessing step; no need for PP_CMD and the .int files.
 curl.exe builds fine w/o and the makefile gets simpler.

* Added a target for creating a compressed hugehelp.c if WITH_ZLIB is  defined.
It assumes groff, gzip and perl is available if such an "advanced"  users
requests it. Okay? BTW. My groff and Perl needs unix-slashes ('/').
 Other perls should handle both forms ('/' and '\').

13 years agolib/Makefile.b32: updates
Gisle Vanem [Thu, 7 Apr 2011 13:17:58 +0000 (15:17 +0200)]
lib/Makefile.b32: updates

* Rename the object object directory from 'objs' to 'BCC_obj'. I feel
 it should be named properly. Ref. Makefile.Watcom where it's called
 'WC_Win32.obj'.

* Turn off these warnings to keep the build totally silent (with CBuilder-6
 that is).
  -w-inl    8026 Functions X are not expanded inline.
  -w-pia   8060 Possibly incorrect assignment
  -w-pin  8061 Initialization is only partially bracketed

I'm sure the warnings could be fixed the "proper" way or with some added
"#pragma" statements. But that just clutters the sources IMHO.

* $(MKDIR) and $(RMDIR) have been replaced with the shell-commands 'md'
 and 'rd'. When having MingW/Msys programs 'mkdir.exe' and 'rmdir.exe' in
$PATH, this confuses Borland's make and the result (the cleaning etc.) would
 not be as expected.

* Added a ".path.int = $(OBJDIR)" to tell make where the $(PREPROCESSED)
 files are. Why we need the preprocess step in the fist place is beyond me
(Yang?). But I'll leave that for now.

13 years agoexamples/makefile.dj: update email
Gisle Vanem [Thu, 7 Apr 2011 13:16:38 +0000 (15:16 +0200)]
examples/makefile.dj: update email

13 years agoTODO-RELEASE: deleted 4 issues
Daniel Stenberg [Thu, 7 Apr 2011 12:25:19 +0000 (14:25 +0200)]
TODO-RELEASE: deleted 4 issues

These problems have gotten no interest/feedback from users:

-275 - Introduce a way to avoid sending USER for FTP connections
-288 - bug 3219997 curl rtmp request curl: (55) select/poll returned error

This problem is rather an autoconf bug with little user interest and it
can be worked around with an older autoconf:

-278 - "Configure  $as_echo does not work"

This problem is not fixed:

-286 - bug 3214223 Pipelined HTTP requests with a zero-length body broken

13 years agoHTTP pipelining: Fix handling of zero-length responses
Chris Smowton [Thu, 7 Apr 2011 12:17:05 +0000 (14:17 +0200)]
HTTP pipelining: Fix handling of zero-length responses

Also add test case 584 for the same

Bug: http://curl.haxx.se/bug/view.cgi?id=3214223

13 years agolibcurl.pc: version number fix
Daniel Stenberg [Wed, 6 Apr 2011 10:09:27 +0000 (12:09 +0200)]
libcurl.pc: version number fix

This hasn't show the version number correctly since the $VERSION change
in the configure, and now it works again.

13 years agoChanged some nonportable types
Dan Fandrich [Wed, 6 Apr 2011 05:30:09 +0000 (22:30 -0700)]
Changed some nonportable types

13 years agoDon't list NTLM in curl-config when HTTP is disabled
Dan Fandrich [Wed, 6 Apr 2011 05:28:26 +0000 (22:28 -0700)]
Don't list NTLM in curl-config when HTTP is disabled

Also, fixed Curl_proxyCONNECT() stub with HTTP disabled.

13 years agoFixed compatibility macro CURLE_URL_MALFORMAT_USER
Dan Fandrich [Tue, 5 Apr 2011 21:44:25 +0000 (14:44 -0700)]
Fixed compatibility macro CURLE_URL_MALFORMAT_USER

13 years agoreturn code cleanup: build, init and run-time errors
Daniel Stenberg [Tue, 5 Apr 2011 13:14:02 +0000 (15:14 +0200)]
return code cleanup: build, init and run-time errors

Stop the abuse of CURLE_FAILED_INIT as return code for things not being
init related by introducing two new return codes:

CURLE_NOT_BUILT_IN and CURLE_UNKNOWN_OPTION

CURLE_NOT_BUILT_IN replaces return code 4 that has been obsoleted for
several years. It is used for returning error when something is
attempted to be used but the feature/option was not enabled or
explictitly disabled at build-time. Getting this error mostly means that
libcurl needs to be rebuilt.

CURLE_FAILED_INIT is now saved and used strictly for init
failures. Getting this problem means something went seriously wrong,
like a resource shortage or similar.

CURLE_UNKNOWN_OPTION is the option formerly known as
CURLE_UNKNOWN_TELNET_OPTION (and the old name is still present,
separately defined to be removed in a very distant future). This error
code is meant to be used to return when an option is given to libcurl
that isn't known. This problem would mostly indicate a problem in the
program that uses libcurl.

13 years agoFTP+proxy: macrofied functions when proxy disabled
Daniel Stenberg [Tue, 5 Apr 2011 11:55:11 +0000 (13:55 +0200)]
FTP+proxy: macrofied functions when proxy disabled

In my attempts to reduce #ifdefs in code, the SOCKS functions are now
macros when libcurl is built without proxy support and therefore the FTP
code could avoid some #ifs.

13 years agoRELEASE-NOTES: synced with db59b6202d8
Daniel Stenberg [Tue, 5 Apr 2011 11:42:39 +0000 (13:42 +0200)]
RELEASE-NOTES: synced with db59b6202d8

13 years ago[pop3 starttls] PASS command was not sent after upgrade to TLS.
Ben Noordhuis [Thu, 17 Mar 2011 22:07:56 +0000 (23:07 +0100)]
[pop3 starttls] PASS command was not sent after upgrade to TLS.

13 years ago[pop3 starttls] the command to send is STLS, not STARTTLS.
Ben Noordhuis [Thu, 17 Mar 2011 21:35:18 +0000 (22:35 +0100)]
[pop3 starttls] the command to send is STLS, not STARTTLS.

13 years agoAdded http_proxy.c to the Symbian build files
Dan Fandrich [Mon, 4 Apr 2011 22:00:20 +0000 (15:00 -0700)]
Added http_proxy.c to the Symbian build files

13 years agohttp-proxy: move proxy code to http_proxy.c
Daniel Stenberg [Mon, 4 Apr 2011 14:24:37 +0000 (16:24 +0200)]
http-proxy: move proxy code to http_proxy.c

The new http_proxy.* files now host HTTP proxy specific code (500+ lines
moved out from http.c), and as a consequence there is a macro introduced
for the Curl_proxyCONNECT() function so that code can use it without
actually supporting proxy (or HTTP) in builds.

13 years agodisable cookies: remove ifdefs, move code
Daniel Stenberg [Mon, 4 Apr 2011 13:46:42 +0000 (15:46 +0200)]
disable cookies: remove ifdefs, move code

1 - make sure to #define macros for cookie functions in the cookie
header when cookies are disabled to avoid having to use #ifdefs in code
using those functions.

2 - move cookie-specific code to cookie.c and use the functio
conditionally as mentioned in (1).

net result: 6 #if lines removed, and 9 lines of code less

13 years agonss: fix a crash within SSL_AuthCertificate()
Kamil Dudka [Mon, 4 Apr 2011 16:24:32 +0000 (18:24 +0200)]
nss: fix a crash within SSL_AuthCertificate()

The bug was introduced in 806dbb0 (a wrong value was passed in as the
first argument to the default callback in our wrapper).

13 years agomulti: shorten lines
Daniel Stenberg [Sat, 2 Apr 2011 22:07:32 +0000 (00:07 +0200)]
multi: shorten lines

We keep them less than 80 columns

13 years agomulti: conn goes bad when data change
Daniel Stenberg [Sat, 2 Apr 2011 21:44:11 +0000 (23:44 +0200)]
multi: conn goes bad when data change

Within multi_socket when conn is used as a shorthand, data could be
changed and multi_runsingle could modify the connectdata struct to deal
with. This bug has not been included in a public release.

Using 'conn' like that turned out to be ugly. This change is a partial
revert of commit f1c6cd42f474df59.

Reported by: Miroslav Spousta
Bug: http://curl.haxx.se/bug/view.cgi?id=3265485

13 years agoIncreased script version.
Guenter Knauf [Fri, 1 Apr 2011 13:04:53 +0000 (15:04 +0200)]
Increased script version.

13 years agoMake use of proxy vars if set.
Guenter Knauf [Fri, 1 Apr 2011 12:58:36 +0000 (14:58 +0200)]
Make use of proxy vars if set.

Posted to the list by Quanah Gibson-Mount [quanah zimbra.com].

13 years agoUse var again instead of hard-coded filename.
Guenter Knauf [Fri, 1 Apr 2011 12:38:01 +0000 (14:38 +0200)]
Use var again instead of hard-coded filename.

13 years agotypo fix
Gisle Vanem [Tue, 29 Mar 2011 11:08:01 +0000 (13:08 +0200)]
typo fix

13 years agocurl_easy_setopt.3: mention TFTP read callback flaw
Daniel Stenberg [Tue, 29 Mar 2011 09:19:49 +0000 (11:19 +0200)]
curl_easy_setopt.3: mention TFTP read callback flaw

The read callback must return the exact requested amount of data when it
is used for doing TFTP uploads. This is due to how it deals with data
internally. This could/should be fixed but for now we document the
existing behavior.

Reported by: Colin Blair
Bug: http://curl.haxx.se/mail/lib-2011-03/0319.html

13 years agoconfigure: fix libtool warning
Yang Tse [Sun, 27 Mar 2011 02:36:14 +0000 (04:36 +0200)]
configure: fix libtool warning

13 years agoTSL-SRP: enabled with OpenSSL
Peter Sylvester [Fri, 25 Mar 2011 22:09:28 +0000 (23:09 +0100)]
TSL-SRP: enabled with OpenSSL

If a new enough OpenSSL version is used, configure detects the TLS-SRP
support and enables it.

13 years agoRELEASE-NOTES: synced with 11c2db2aa2a
Daniel Stenberg [Fri, 25 Mar 2011 20:56:50 +0000 (21:56 +0100)]
RELEASE-NOTES: synced with 11c2db2aa2a

13 years agofix: re-use of bound connections
Daniel Stenberg [Fri, 25 Mar 2011 15:00:41 +0000 (16:00 +0100)]
fix: re-use of bound connections

When asked to bind the local end of a connection when doing a request,
the code will now disqualify other existing connections from re-use even
if they are connected to the correct remote host.

This will also affect which connections that can be used for pipelining,
so that only connections that aren't bound or bound to the same
device/port you're asking for will be considered.

13 years agosymbols-in-versions: make test 1119 happy
Daniel Stenberg [Thu, 24 Mar 2011 12:48:18 +0000 (13:48 +0100)]
symbols-in-versions: make test 1119 happy

13 years agortsp: move protocol code to dedicated file
Daniel Stenberg [Wed, 23 Mar 2011 16:27:58 +0000 (17:27 +0100)]
rtsp: move protocol code to dedicated file

The RTSP-specific function for checking for "dead" connection is better
located in rtsp.c. The code using this is now written without #ifdefs as
the function call is instead turned into a macro (in rtsp.h) when RTSP
is disabled.

13 years agoMAIL-ETIQUETTE: intro and spam
Daniel Stenberg [Wed, 23 Mar 2011 13:22:29 +0000 (14:22 +0100)]
MAIL-ETIQUETTE: intro and spam

Added a little generic info section about the lists and a section about
how to deal with trolls and spam on the lists.

13 years agoTODO-RELEASE: 1 fixed, 1 notabug
Daniel Stenberg [Wed, 23 Mar 2011 10:16:30 +0000 (11:16 +0100)]
TODO-RELEASE: 1 fixed, 1 notabug

Fixed:

271 - fix the IPv6-working probing to only exist at one place in the code and
      only get done once

A problem not repeatable and no proper recipe given and therefore simply
removed for now until we hear something else:

282 - 100 Continue responses should return the "final" HTTP response code:
      "Getting the HTTP response code following a 100 Continue"

13 years agoipv6: only probe once
Daniel Stenberg [Wed, 23 Mar 2011 10:10:55 +0000 (11:10 +0100)]
ipv6: only probe once

Move ipv6-functional-probe into a single function that is used from all
places that need to know.

Make the probe function store the result in a static variable so that
subsequent invokes just returns the previous result and won't have to
probe again.

13 years agoheaders: more copyright headers added
Daniel Stenberg [Tue, 22 Mar 2011 21:48:11 +0000 (22:48 +0100)]
headers: more copyright headers added

13 years agoMAIL-ETIQUETTE: how to behave
Daniel Stenberg [Tue, 22 Mar 2011 08:20:42 +0000 (09:20 +0100)]
MAIL-ETIQUETTE: how to behave

This is a new documentation for the source tree. This information has
been present since a long time at
http://curl.haxx.se/mail/etiquette.html but now it is put into a plain
text version too for wider distribution. The web version will be
automatically generated from this source document.

13 years agoprogress: don't print the last update on a separate line.
Julien Chaffraix [Mon, 21 Mar 2011 01:00:29 +0000 (18:00 -0700)]
progress: don't print the last update on a separate line.

Curl_posttransfer is called too soon to add the final new line.
Moved the new line logic to pgrsDone as there is no more call to
update the progress status after this call.

Reported by: Dmitri Shubin <sbn_at_tbricks.com>
http://curl.haxx.se/mail/lib-2010-12/0162.html

13 years agoTODO-RELEASE: fixed 2, got 3 new!
Daniel Stenberg [Mon, 21 Mar 2011 18:57:35 +0000 (19:57 +0100)]
TODO-RELEASE: fixed 2, got 3 new!

13 years agolibcurl.m4: Add missing quotes in AC_LINK_IFELSE
Dave Reisner [Mon, 21 Mar 2011 17:18:57 +0000 (13:18 -0400)]
libcurl.m4: Add missing quotes in AC_LINK_IFELSE

This avoids warnings generated by autoconf 2.68.

Signed-off-by: Dave Reisner <d@falconindy.com>
13 years agoretry-request: rewind if data was sent
Daniel Stenberg [Sun, 20 Mar 2011 22:24:45 +0000 (23:24 +0100)]
retry-request: rewind if data was sent

When libcurl sends a HTTP request on a re-used connection and detects it
being closed (ie no data at all was read from it), it is important to
rewind if any data in the request was sent using the read callback or
was read from file, as otherwise the retried request will be broken.

Reported by: Chris Smowton
Bug: http://curl.haxx.se/bug/view.cgi?id=3195205

13 years agoconfigure: avoid $VERSION
Daniel Stenberg [Sun, 20 Mar 2011 18:32:54 +0000 (19:32 +0100)]
configure: avoid $VERSION

To reduce the risk of variable name conflicts, use CURLVERSION instead
of VERSION.

13 years agosymbols-in-versions: many corrections
Daniel Stenberg [Sat, 19 Mar 2011 14:34:46 +0000 (15:34 +0100)]
symbols-in-versions: many corrections

Scanned with a tool that checked for mistakes and this is the subsequent
cleanup.

13 years agounit1305: Fixed the test to match our coding style.
Julien Chaffraix [Sun, 20 Mar 2011 15:03:25 +0000 (08:03 -0700)]
unit1305: Fixed the test to match our coding style.

13 years agourl: 0 is PROTOPT_NONE.
Julien Chaffraix [Sat, 19 Mar 2011 16:44:31 +0000 (09:44 -0700)]
url: 0 is PROTOPT_NONE.

Tiny tweak after Daniel's refactoring of the protocol handlers.

13 years agopop3: add state name in debug array
Daniel Stenberg [Sat, 19 Mar 2011 10:05:45 +0000 (11:05 +0100)]
pop3: add state name in debug array

We have an array with the state names only built and used when built
debug enabled and this need to list all the states from the .h

13 years agoAdded two more POP3 tests
Dan Fandrich [Fri, 18 Mar 2011 20:59:48 +0000 (13:59 -0700)]
Added two more POP3 tests

13 years agopop3: use Curl_safefree() to allow torture tests to succeed
Dan Fandrich [Fri, 18 Mar 2011 18:20:24 +0000 (11:20 -0700)]
pop3: use Curl_safefree() to allow torture tests to succeed

13 years agosymbol-scan.pl: detect duplicates
Daniel Stenberg [Fri, 18 Mar 2011 14:42:58 +0000 (15:42 +0100)]
symbol-scan.pl: detect duplicates

Test 1119 now also makes sure that symbols-in-versions doesn't contain
any duplicates

13 years agoCONTRIBUTE: minor edits
Daniel Stenberg [Fri, 18 Mar 2011 10:14:51 +0000 (11:14 +0100)]
CONTRIBUTE: minor edits

Slightly modified to become a nicer web page when converted for the site

13 years agoRELEASE-NOTES: synced with 0c05ee3a33d4d7
Daniel Stenberg [Fri, 18 Mar 2011 08:30:53 +0000 (09:30 +0100)]
RELEASE-NOTES: synced with 0c05ee3a33d4d7

13 years agopop3: remove unused variable
Daniel Stenberg [Fri, 18 Mar 2011 08:18:22 +0000 (09:18 +0100)]
pop3: remove unused variable

13 years agoAdded support for LISTing a single POP3 message
Dan Fandrich [Thu, 17 Mar 2011 23:59:30 +0000 (16:59 -0700)]
Added support for LISTing a single POP3 message

Added tests for a number of POP3 LIST operations, including one
that shows a curl problem when listing no messages, so is
disabled.

13 years agopop3: fixed memory leak in an error retrieval case
Dan Fandrich [Thu, 17 Mar 2011 23:28:12 +0000 (16:28 -0700)]
pop3: fixed memory leak in an error retrieval case

13 years agosymbols-in-versions: remove duplicates
Daniel Stenberg [Thu, 17 Mar 2011 14:25:12 +0000 (15:25 +0100)]
symbols-in-versions: remove duplicates

13 years agosymbols-in-versions: 2 corrections
Daniel Stenberg [Thu, 17 Mar 2011 12:42:36 +0000 (13:42 +0100)]
symbols-in-versions: 2 corrections

CURLE_CHUNK_FAILED and CURLE_FTP_BAD_FILE_LIST were introduced in
7.21.0, not 7.20.1

13 years agoconnection setup: if HTTP is disabled asking for HTTP proxy is bad
Daniel Stenberg [Thu, 17 Mar 2011 10:45:58 +0000 (11:45 +0100)]
connection setup: if HTTP is disabled asking for HTTP proxy is bad

13 years agoFAQ: better english
Daniel Stenberg [Thu, 17 Mar 2011 10:30:29 +0000 (11:30 +0100)]
FAQ: better english

Reported by: Andre Guibert de Bruet

13 years agoscan-build warning
Daniel Stenberg [Tue, 15 Mar 2011 23:19:26 +0000 (00:19 +0100)]
scan-build warning

Value stored to 'len' is never read

13 years agoldap_recv: check return code from ldap_get_dn_ber
Daniel Stenberg [Tue, 15 Mar 2011 23:16:34 +0000 (00:16 +0100)]
ldap_recv: check return code from ldap_get_dn_ber

13 years agocompiler warnings fixed
Daniel Stenberg [Tue, 15 Mar 2011 23:08:32 +0000 (00:08 +0100)]
compiler warnings fixed

Use (void)[variable] to inhibit unused argument/variables warnings.

13 years agoSMTP-multi: non-blocking connect
Ben Noordhuis [Wed, 16 Feb 2011 21:28:01 +0000 (22:28 +0100)]
SMTP-multi: non-blocking connect

Use Curl_ssl_connect_nonblocking() when upgrading the connection to
TLS/SSL while using the multi interface.

13 years agoSMTP in multi mode: use Curl_ssl_connect_nonblocking() when connecting.
Ben Noordhuis [Wed, 16 Feb 2011 21:13:10 +0000 (22:13 +0100)]
SMTP in multi mode: use Curl_ssl_connect_nonblocking() when connecting.

13 years agolib582: use curl_socket_t for portability
Daniel Stenberg [Tue, 15 Mar 2011 17:37:35 +0000 (18:37 +0100)]
lib582: use curl_socket_t for portability

13 years agobuildfix: spell define correctly
Daniel Stenberg [Tue, 15 Mar 2011 15:44:50 +0000 (16:44 +0100)]
buildfix: spell define correctly

13 years agonss: do not ignore value of CURLOPT_SSL_VERIFYPEER
Kamil Dudka [Tue, 15 Mar 2011 13:52:26 +0000 (14:52 +0100)]
nss: do not ignore value of CURLOPT_SSL_VERIFYPEER

When NSS-powered libcurl connected to a SSL server with
CURLOPT_SSL_VERIFYPEER equal to zero, NSS remembered that the peer
certificate was accepted by libcurl and did not ask the second time when
connecting to the same server with CURLOPT_SSL_VERIFYPEER equal to one.

This patch turns off the SSL session cache for the particular SSL socket
if peer verification is disabled.  In order to avoid any performance
impact, the peer verification is completely skipped in that case, which
makes it even faster than before.

Bug: https://bugzilla.redhat.com/678580

13 years agoRemoved unused var.
Guenter Knauf [Tue, 15 Mar 2011 11:21:58 +0000 (12:21 +0100)]
Removed unused var.

13 years agoconfigure: stop using the deprecated AM_INIT_AUTOMAKE syntax
Daniel Stenberg [Tue, 15 Mar 2011 10:27:44 +0000 (11:27 +0100)]
configure: stop using the deprecated AM_INIT_AUTOMAKE syntax

13 years agoprotocol handler cleanup: SSL awareness
Daniel Stenberg [Tue, 15 Mar 2011 09:02:05 +0000 (10:02 +0100)]
protocol handler cleanup: SSL awareness

As a follow-up to commit 8831000bc0: don't assume that the SSL powered
protocol alternatives are available.

13 years agoldap: use the new protocol handler setup
Daniel Stenberg [Tue, 15 Mar 2011 08:13:11 +0000 (09:13 +0100)]
ldap: use the new protocol handler setup

Use the new flags field and stop using the old protocol defines.

13 years agoTODO-RELEASE: add and remove issues
Daniel Stenberg [Tue, 15 Mar 2011 08:04:52 +0000 (09:04 +0100)]
TODO-RELEASE: add and remove issues

Removed a fixed issue, added five new existing ones and clarified one of
the previous ones.

13 years agoprotocols: use CURLPROTO_ internally
Daniel Stenberg [Mon, 14 Mar 2011 21:52:14 +0000 (22:52 +0100)]
protocols: use CURLPROTO_ internally

The PROT_* set of internal defines for the protocols is no longer
used. We now use the same bits internally as we have defined in the
public header using the CURLPROTO_ prefix. This is for simplicity and
because the PROT_* prefix was already used duplicated internally for a
set of KRB4 values.

The PROTOPT_* defines were moved up to just below the struct definition
within which they are used.

13 years agoprotocol handler: added flags field
Daniel Stenberg [Mon, 14 Mar 2011 21:22:22 +0000 (22:22 +0100)]
protocol handler: added flags field

The protocol handler struct got a 'flags' field for special information
and characteristics of the given protocol.

This now enables us to move away central protocol information such as
CLOSEACTION and DUALCHANNEL from single defines in a central place, out
to each protocol's definition. It also made us stop abusing the protocol
field for other info than the protocol, and we could start cleaning up
other protocol-specific things by adding flags bits to set in the
handler struct.

The "protocol" field connectdata struct was removed as well and the code
now refers directly to the conn->handler->protocol field instead. To
make things work properly, the code now always store a conn->given
pointer that points out the original handler struct so that the code can
learn details from the original protocol even if conn->handler is
modified along the way - for example when switching to go over a HTTP
proxy.

13 years ago- Take new char * options into account in OS400 curl_easy_setopt_ccsid().
Patrick Monnerat [Mon, 14 Mar 2011 16:54:57 +0000 (17:54 +0100)]
- Take new char * options into account in OS400 curl_easy_setopt_ccsid().
- Keep RPG binding, STRING_* table end check and OS400 README up to date.

13 years agoFAQ: indent tables
Daniel Stenberg [Mon, 14 Mar 2011 12:31:05 +0000 (13:31 +0100)]
FAQ: indent tables

Lines that are indented with at least 5 spaces get special treatment by
the script that converts it to HTML on the site.

13 years agosslgen: define Curl_ssl_connect_nonblocking for non-SSL
Daniel Stenberg [Mon, 14 Mar 2011 10:13:12 +0000 (11:13 +0100)]
sslgen: define Curl_ssl_connect_nonblocking for non-SSL

The non-blocking connect improvement for IMAP showed that we didn't
properly define the Curl_ssl_connect_nonblocking function for non-SSL
builds.

Reported by: Tor Arntsen

13 years agoconfigure: removed wrongly claimed default paths
Daniel Stenberg [Mon, 14 Mar 2011 09:42:15 +0000 (10:42 +0100)]
configure: removed wrongly claimed default paths

Several --with-XXX options claimed the wrong default path in their help
outputs.

Reported by: Vincent Torri

13 years agomk-ca-bundle.pl: Only download if modified
Ask Bjørn Hansen [Mon, 14 Mar 2011 05:52:33 +0000 (06:52 +0100)]
mk-ca-bundle.pl: Only download if modified

Only download and convert the certdata to the ca-bundle.crt if Mozilla
changed the data

The Perl LWP module (which in a bit of a circular reference is used by
mk-ca-bundle.pl) is now indirectly using this script. I made this small
tweak to make it easier to automatically maintain the generated
ca-bundle.crt file in version control.

13 years agoSSH: add protocol lock direction
Daniel Stenberg [Sun, 13 Mar 2011 22:21:03 +0000 (23:21 +0100)]
SSH: add protocol lock direction

Some protocols have to call the underlying functions without regard to
what exact state the socket signals. For example even if the socket says
"readable", the send function might need to be called while uploading,
or vice versa. This is the case for libssh2 based protocols: SCP and
SFTP and we now introduce a define to set those protocols and we make
the multi interface code aware of this concept.

This is another fix to make test 582 run properly.

13 years agostate: add missing state to debug table
Daniel Stenberg [Sun, 13 Mar 2011 13:19:16 +0000 (14:19 +0100)]
state: add missing state to debug table

As a new state recently was added to the IMAP state machine it has to be
in the array of names as well as otherwise libcurl crashes when a debug
version runs...

13 years agotest 582: enabled again
Daniel Stenberg [Sun, 13 Mar 2011 13:11:48 +0000 (14:11 +0100)]
test 582: enabled again

Commit ca37692bf43b5ef should now hopefully make it run

13 years agossh_statemach_act: set cselect for sftp upload
Daniel Stenberg [Sun, 13 Mar 2011 13:10:27 +0000 (14:10 +0100)]
ssh_statemach_act: set cselect for sftp upload

For uploads we want to use the _sending_ function even when the socket
turns out readable as the underlying libssh2 sftp send function will
deal with both accordingly. This is what the cselect_bits magic is for.

Fixes test 582.

13 years agoRELEASE-NOTES: synced with e649a7baae2
Daniel Stenberg [Sun, 13 Mar 2011 00:06:23 +0000 (01:06 +0100)]
RELEASE-NOTES: synced with e649a7baae2

13 years agoRevert "test582: enabled"
Daniel Stenberg [Sat, 12 Mar 2011 23:55:27 +0000 (00:55 +0100)]
Revert "test582: enabled"

This reverts commit b8478187406cf625c9d0f10b45a082221130cc92.

13 years agoMerge branch 'imap' of https://github.com/bnoordhuis/curl into bnoordhuis-imap
Daniel Stenberg [Sat, 12 Mar 2011 23:36:38 +0000 (00:36 +0100)]
Merge branch 'imap' of https://github.com/bnoordhuis/curl into bnoordhuis-imap

13 years agoTODO-RELEASE: fixed four isues
Daniel Stenberg [Sat, 12 Mar 2011 23:28:31 +0000 (00:28 +0100)]
TODO-RELEASE: fixed four isues

These issues are now addressed:

276 - Karl M's vc makefile patch
277 - The "Stall when uploading to sftp using multi interface"  bug
279 - curl_multi_remove_handle() crashes
280 - Marcus Sundberg's gss patch

13 years agoVC: add missing file
Karl M [Sat, 12 Mar 2011 23:23:04 +0000 (00:23 +0100)]
VC: add missing file

http_negotiate_sspi.c was added to the source tree recently

13 years agoGSS: handle reuse fix
Marcus Sundberg [Sat, 12 Mar 2011 23:21:07 +0000 (00:21 +0100)]
GSS: handle reuse fix

Make GSS authentication work when a curl handle is reused for multiple
authenticated requests, by always setting negdata->state in
output_auth_headers().

Signed-off-by: Marcus Sundberg <marcus.sundberg@aptilo.com>
13 years agotest583: verify early SSH multi remove handle
Daniel Stenberg [Sat, 12 Mar 2011 23:18:04 +0000 (00:18 +0100)]
test583: verify early SSH multi remove handle

This test case is meant to verify that the logic in commit
60172a0446bbe3f8b actually works. This test failed for me before that
change and it works after it.

13 years agoSFTP: gracefully handle shutdown early
Daniel Stenberg [Sat, 12 Mar 2011 23:15:59 +0000 (00:15 +0100)]
SFTP: gracefully handle shutdown early

When using the multi interface and a handle using SFTP was removed very
early on, we would get a segfault due to the code assumed data was there
that hadn't yet been setup.

Bug: http://curl.haxx.se/mail/lib-2011-03/0066.html
Reported by: Saqib Ali