platform/upstream/curl.git
11 years agotest1414: FTP PORT download without SIZE support
Daniel Stenberg [Mon, 15 Jul 2013 17:33:37 +0000 (19:33 +0200)]
test1414: FTP PORT download without SIZE support

11 years agotests/Makefile.am: add configurehelp.pm to DISTCLEANFILES
Yang Tse [Tue, 16 Jul 2013 20:51:35 +0000 (22:51 +0200)]
tests/Makefile.am: add configurehelp.pm to DISTCLEANFILES

11 years agocurl_slist_append(): fix error detection
Patrick Monnerat [Mon, 15 Jul 2013 17:49:30 +0000 (19:49 +0200)]
curl_slist_append(): fix error detection

11 years agoslist.c: fix indentation
Patrick Monnerat [Mon, 15 Jul 2013 17:46:19 +0000 (19:46 +0200)]
slist.c: fix indentation

11 years agoOS400: new SSL backend GSKit
Patrick Monnerat [Mon, 15 Jul 2013 17:00:36 +0000 (19:00 +0200)]
OS400: new SSL backend GSKit

11 years agoOS400: add slist and certinfo EBCDIC support
Patrick Monnerat [Mon, 15 Jul 2013 16:48:02 +0000 (18:48 +0200)]
OS400: add slist and certinfo EBCDIC support

11 years agoconfig-os400.h: enable system strdup(), strcmpi(), etc.
Patrick Monnerat [Mon, 15 Jul 2013 16:38:17 +0000 (18:38 +0200)]
config-os400.h: enable system strdup(), strcmpi(), etc.

11 years agox509asn1.c,x509asn1.h: new module to support ASN.1/X509 parsing & info extract
Patrick Monnerat [Mon, 15 Jul 2013 16:16:13 +0000 (18:16 +0200)]
x509asn1.c,x509asn1.h: new module to support ASN.1/X509 parsing & info extract
Use from qssl backend

11 years agossluse.c,sslgen.c,sslgen.h: move certinfo support to generic SSL
Patrick Monnerat [Mon, 15 Jul 2013 15:26:59 +0000 (17:26 +0200)]
ssluse.c,sslgen.c,sslgen.h: move certinfo support to generic SSL

11 years agoMerge branch 'master' of github.com:bagder/curl
Patrick Monnerat [Mon, 15 Jul 2013 14:55:30 +0000 (16:55 +0200)]
Merge branch 'master' of github.com:bagder/curl

Merge for resync

11 years agoslist.c, slist.h, cookie.c: new internal procedure Curl_slist_append_nodup()
Patrick Monnerat [Mon, 15 Jul 2013 14:53:43 +0000 (16:53 +0200)]
slist.c, slist.h, cookie.c: new internal procedure Curl_slist_append_nodup()

11 years agosslgen.c: fix Curl_rand() compiler warning
Yang Tse [Mon, 15 Jul 2013 13:54:28 +0000 (15:54 +0200)]
sslgen.c: fix Curl_rand() compiler warning

Use simple seeding method upon RANDOM_FILE seeding method failure.

11 years agosslgen.c: fix unreleased Curl_rand() infinite recursion
Yang Tse [Mon, 15 Jul 2013 11:20:44 +0000 (13:20 +0200)]
sslgen.c: fix unreleased Curl_rand() infinite recursion

11 years agosrc/tool: allow timeouts to accept decimal values
Dave Reisner [Tue, 30 Apr 2013 14:23:39 +0000 (14:23 +0000)]
src/tool: allow timeouts to accept decimal values

Implement wrappers around strtod to convert the user argument to a
double with sane error checking. Use this to allow --max-time and
--connect-timeout to accept decimal values instead of strictly integers.

The manpage is updated to make mention of this feature and,
additionally, forewarn that the actual timeout of the operation can
vary in its precision (particularly as the value increases in its
decimal precision).

11 years agocurl.1: fix long line, found by checksrc.pl
Dave Reisner [Sun, 14 Jul 2013 16:33:46 +0000 (18:33 +0200)]
curl.1: fix long line, found by checksrc.pl

11 years agosrc/tool_paramhlp: try harder to catch negatives
Dave Reisner [Sun, 14 Jul 2013 16:33:44 +0000 (18:33 +0200)]
src/tool_paramhlp: try harder to catch negatives

strto* functions happily chomp off leading whitespace, so simply
checking for str[0] can lead to false negatives. Do the full parse and
check the out value instead.

11 years agobuild_vms.com: detect and use zlib shared image
John E. Malmberg [Sun, 14 Jul 2013 15:37:49 +0000 (17:37 +0200)]
build_vms.com: detect and use zlib shared image

Update the build_vms.com to detect and use zlib shared image installed
by the ZLIB kit produced by Jean-Francois Pieronne, and the also the
future ZLIB 1.2.8 kit in addition to the older ZLIB kits.

Also fix the indentation to match one of the common standards used for
VMS DCL command files and removed the hard tab characters.

Tested on OpenVMS 8.4 Alpha and IA64, and OpenVMS 7.3 VAX.

11 years agourl.c: fix parse_url_login() OOM handling
Yang Tse [Sun, 14 Jul 2013 10:19:57 +0000 (12:19 +0200)]
url.c: fix parse_url_login() OOM handling

11 years agohttp_digest.c: SIGSEGV and OOM handling fixes
Yang Tse [Fri, 12 Jul 2013 17:32:13 +0000 (19:32 +0200)]
http_digest.c: SIGSEGV and OOM handling fixes

11 years agourl.c: fix parse_login_details() OOM handling
Yang Tse [Fri, 12 Jul 2013 10:16:48 +0000 (12:16 +0200)]
url.c: fix parse_login_details() OOM handling

11 years agosetup-vms.h: sk_pop symbol tweak
John E. Malmberg [Fri, 12 Jul 2013 10:07:02 +0000 (12:07 +0200)]
setup-vms.h: sk_pop symbol tweak

Newer versions of curl are referencing a sk_pop symbol while the HP
OpenSSL library has the symbol in uppercase only.

11 years agogetinfo.c: fix enumerated type mixed with another type
Yang Tse [Thu, 11 Jul 2013 15:03:14 +0000 (17:03 +0200)]
getinfo.c: fix enumerated type mixed with another type

11 years agotest 1511: fix enumerated type mixed with another type
Yang Tse [Thu, 11 Jul 2013 15:01:02 +0000 (17:01 +0200)]
test 1511: fix enumerated type mixed with another type

11 years agourl.c: fix SIGSEGV
Yang Tse [Thu, 11 Jul 2013 11:29:48 +0000 (13:29 +0200)]
url.c: fix SIGSEGV

11 years agodotdot.c: fix global declaration shadowing
Yang Tse [Thu, 11 Jul 2013 11:29:20 +0000 (13:29 +0200)]
dotdot.c: fix global declaration shadowing

11 years agoeasy.c: fix global declaration shadowing
Yang Tse [Thu, 11 Jul 2013 11:28:47 +0000 (13:28 +0200)]
easy.c: fix global declaration shadowing

11 years agoRevert "curl.1: document the --time-cond option in the man page"
Kamil Dudka [Tue, 9 Jul 2013 13:45:36 +0000 (15:45 +0200)]
Revert "curl.1: document the --time-cond option in the man page"

This reverts commit 3a0e931fc715a80004958794a96b12cf90503f99 because
the documentation of --time-cond was duplicated by mistake.

Reported by: Dave Reisner

11 years agocurl.1: document the --sasl-ir option in the man page
Kamil Dudka [Tue, 9 Jul 2013 12:59:01 +0000 (14:59 +0200)]
curl.1: document the --sasl-ir option in the man page

11 years agocurl.1: document the --post303 option in the man page
Kamil Dudka [Tue, 9 Jul 2013 12:59:01 +0000 (14:59 +0200)]
curl.1: document the --post303 option in the man page

11 years agocurl.1: document the --time-cond option in the man page
Kamil Dudka [Tue, 9 Jul 2013 12:59:01 +0000 (14:59 +0200)]
curl.1: document the --time-cond option in the man page

11 years agoconfigure: automake 1.14 compatibility tweak (use XC_AUTOMAKE)
Yang Tse [Mon, 8 Jul 2013 22:10:38 +0000 (00:10 +0200)]
configure: automake 1.14 compatibility tweak (use XC_AUTOMAKE)

11 years agoxc-am-iface.m4: provide XC_AUTOMAKE macro
Yang Tse [Mon, 8 Jul 2013 22:07:26 +0000 (00:07 +0200)]
xc-am-iface.m4: provide XC_AUTOMAKE macro

11 years agoAdded winssl-zlib target to VC builds.
Guenter Knauf [Mon, 8 Jul 2013 15:46:15 +0000 (17:46 +0200)]
Added winssl-zlib target to VC builds.

11 years agoSynced Makefile.vc6 with recent changes.
Guenter Knauf [Mon, 8 Jul 2013 13:05:10 +0000 (15:05 +0200)]
Synced Makefile.vc6 with recent changes.

Issue posted to the list by malinowsky AT FTW DOT at.

11 years agoAdded libmetalink URL; added Android versions.
Guenter Knauf [Thu, 4 Jul 2013 02:35:22 +0000 (04:35 +0200)]
Added libmetalink URL; added Android versions.

11 years agoexamples: Moved usercertinmem.c to COMPLICATED_EXAMPLES
Dan Fandrich [Wed, 3 Jul 2013 19:09:50 +0000 (21:09 +0200)]
examples: Moved usercertinmem.c to COMPLICATED_EXAMPLES

This prevents it from being built during a "make check" since it
depends on OpenSSL.

11 years agoMerge branch 'master' of https://github.com/bagder/curl
Nick Zitzmann [Wed, 3 Jul 2013 01:40:14 +0000 (19:40 -0600)]
Merge branch 'master' of https://github.com/bagder/curl

11 years agodarwinssl: SSLv2 connections are aborted if unsupported by the OS
Nick Zitzmann [Wed, 3 Jul 2013 01:34:54 +0000 (19:34 -0600)]
darwinssl: SSLv2 connections are aborted if unsupported by the OS

I just noticed that OS X no longer supports SSLv2. Other TLS engines return
an error if the requested protocol isn't supported by the underlying
engine, so we do that now for SSLv2 if the framework returns an error
when trying to turn on SSLv2 support. (Note: As always, SSLv2 support is
only enabled in curl when starting the app with the -2 argument; it's off
by default. SSLv2 is really old and insecure.)

11 years agolib506.c: Fixed possible use of uninitialized variables
Marc Hoersken [Mon, 1 Jul 2013 19:42:15 +0000 (21:42 +0200)]
lib506.c: Fixed possible use of uninitialized variables

11 years agourl: restore the functionality of 'curl -u :'
Kamil Dudka [Sun, 30 Jun 2013 17:51:16 +0000 (19:51 +0200)]
url: restore the functionality of 'curl -u :'

This commit fixes a regression introduced in
fddb7b44a79d78e05043e1c97e069308b6b85f79.

Reported by: Markus Moeller
Bug: http://curl.haxx.se/mail/archive-2013-06/0052.html

11 years agodigest: append the timer to the random for the nonce
Daniel Stenberg [Tue, 25 Jun 2013 09:37:27 +0000 (11:37 +0200)]
digest: append the timer to the random for the nonce

11 years agodigest: improve nonce generation
Daniel Stenberg [Tue, 25 Jun 2013 09:28:22 +0000 (11:28 +0200)]
digest: improve nonce generation

Use the new improved Curl_rand() to generate better random nonce for
Digest auth.

11 years agocurl.1: fix typo in --xattr description
Daniel Stenberg [Tue, 25 Jun 2013 08:41:16 +0000 (10:41 +0200)]
curl.1: fix typo in --xattr description

Bug: http://curl.haxx.se/bug/view.cgi?id=1252
Reported-by: Jean-Noël Rouvignac
11 years agoRELEASE-NOTES: synced with 365c5ba39591
Daniel Stenberg [Tue, 25 Jun 2013 08:35:21 +0000 (10:35 +0200)]
RELEASE-NOTES: synced with 365c5ba39591

The 10 first bug fixes for the pending release...

11 years agoformpost: better random boundaries
Daniel Stenberg [Mon, 24 Jun 2013 20:24:35 +0000 (22:24 +0200)]
formpost: better random boundaries

When doing multi-part formposts, libcurl used a pseudo-random value that
was seeded with time(). This turns out to be bad for users who formpost
data that is provided with users who then can guess how the boundary
string will look like and then they can forge a different formpost part
and trick the receiver.

My advice to such implementors is (still even after this change) to not
rely on the boundary strings being cryptographically strong. Fix your
code and logic to not depend on them that much!

I moved the Curl_rand() function into the sslgen.c source file now to be
able to take advantage of the SSL library's random function if it
provides one. If not, try to use the RANDOM_FILE for seeding and as a
last resort keep the old logic, just modified to also add microseconds
which makes it harder to properly guess the exact seed.

The formboundary() function in formdata.c is now using 64 bit entropy
for the boundary and therefore the string of dashes was reduced by 4
letters and there are 16 hex digits following it. The total length is
thus still the same.

Bug: http://curl.haxx.se/bug/view.cgi?id=1251
Reported-by: "Floris"
11 years agoprintf: make sure %x are treated unsigned
Daniel Stenberg [Tue, 25 Jun 2013 07:52:06 +0000 (09:52 +0200)]
printf: make sure %x are treated unsigned

When using %x, the number must be treated as unsigned as otherwise it
would get sign-extended on for example 64bit machines and do wrong
output. This problem showed when doing printf("%08x", 0xffeeddcc) on a
64bit host.

11 years agotests: add test1395 to the tarball
Daniel Stenberg [Mon, 24 Jun 2013 07:25:58 +0000 (09:25 +0200)]
tests: add test1395 to the tarball

11 years agoSIGPIPE: don't use 'data' in sigpipe restore
Daniel Stenberg [Mon, 24 Jun 2013 07:02:19 +0000 (09:02 +0200)]
SIGPIPE: don't use 'data' in sigpipe restore

Follow-up fix from 7d80ed64e43515.

The SessionHandle may not be around to use when we restore the sigpipe
sighandler so we store the no_signal boolean in the local struct to know
if/how to restore.

11 years agoTODO: 1.8 Modified buffer size approach
Daniel Stenberg [Sun, 23 Jun 2013 20:48:39 +0000 (22:48 +0200)]
TODO: 1.8 Modified buffer size approach

Thoughts around buffer sizes and what might be possible to do...

11 years agoc-ares: improve error message on failed resolve
Daniel Stenberg [Sun, 23 Jun 2013 18:25:38 +0000 (20:25 +0200)]
c-ares: improve error message on failed resolve

When the c-ares based resolver backend failed to resolve a name, it
tried to show the name that failed from existing structs. This caused
the wrong output and shown hostname when for example --interface
[hostname] was used and that name resolving failed.

Now we use the hostname used in the actual resolve attempt in the error
message as well.

Bug: http://curl.haxx.se/bug/view.cgi?id=1191
Reported-by: Kim Vandry
11 years agoossl_recv: check for an OpenSSL error, don't assume
Daniel Stenberg [Sun, 23 Jun 2013 08:31:04 +0000 (10:31 +0200)]
ossl_recv: check for an OpenSSL error, don't assume

When we recently started to treat a zero return code from SSL_read() as
an error we also got false positives - which primarily looks to be
because the OpenSSL documentation is wrong and a zero return code is not
at all an error case in many situations.

Now ossl_recv() will check with ERR_get_error() to see if there is a
stored error and only then consider it to be a true error if SSL_read()
returned zero.

Bug: http://curl.haxx.se/bug/view.cgi?id=1249
Reported-by: Nach M. S.
Patch-by: Nach M. S.
11 years agoMerge branch 'master' of https://github.com/bagder/curl
Nick Zitzmann [Sat, 22 Jun 2013 21:16:05 +0000 (15:16 -0600)]
Merge branch 'master' of https://github.com/bagder/curl

11 years agodarwinssl: fix crash that started happening in Lion
Nick Zitzmann [Sat, 22 Jun 2013 21:13:36 +0000 (15:13 -0600)]
darwinssl: fix crash that started happening in Lion

Something (a recent security update maybe?) changed in Lion, and now it
has changed SSLCopyPeerTrust such that it may return noErr but also give
us a null trust, which caught us off guard and caused an eventual crash.

11 years agoSIGPIPE: ignored while inside the library
Daniel Stenberg [Sun, 10 Mar 2013 23:39:52 +0000 (00:39 +0100)]
SIGPIPE: ignored while inside the library

... and restore the ordinary handling again when it returns. This is
done for curl_easy_perform() and curl_easy_cleanup() only for now - and
only when built to use OpenSSL as backend as this is the known culprit
for the spurious SIGPIPEs people have received.

Bug: http://curl.haxx.se/bug/view.cgi?id=1180
Reported by: Lluís Batlle i Rossell

11 years agoKNOWN_BUGS: #83 unable to load non-default openssl engines
Daniel Stenberg [Sat, 22 Jun 2013 20:24:36 +0000 (22:24 +0200)]
KNOWN_BUGS: #83 unable to load non-default openssl engines

11 years agotest1396: invoke the correct test tool!
Daniel Stenberg [Sat, 22 Jun 2013 20:20:31 +0000 (22:20 +0200)]
test1396: invoke the correct test tool!

This erroneously run unit test 1310 instead of 1396!

11 years agotest1230: avoid using hard-wired port number
Kamil Dudka [Sat, 22 Jun 2013 20:12:49 +0000 (22:12 +0200)]
test1230: avoid using hard-wired port number

... to prevent failure when a non-default -b option is given

11 years agocurl-config.in: replace tabs by spaces
Kamil Dudka [Sat, 22 Jun 2013 20:08:42 +0000 (22:08 +0200)]
curl-config.in: replace tabs by spaces

11 years agodarwinssl: reform OS-specific #defines
Nick Zitzmann [Sat, 22 Jun 2013 18:23:26 +0000 (12:23 -0600)]
darwinssl: reform OS-specific #defines

This doesn't need to be in the release notes. I cleaned up a lot of the #if
lines in the code to use MAC_OS_X_VERSION_MIN_REQUIRED and
MAC_OS_X_VERSION_MAX_ALLOWED instead of checking for whether things like
__MAC_10_6 or whatever were defined, because for some SDKs Apple has released
they were defined out of place.

11 years agodocs: fix typo in curl_easy_getinfo manpage
Alessandro Ghedini [Sat, 22 Jun 2013 13:21:19 +0000 (15:21 +0200)]
docs: fix typo in curl_easy_getinfo manpage

11 years agodotdot: introducing dot file path cleanup
Daniel Stenberg [Sat, 15 Jun 2013 21:47:02 +0000 (23:47 +0200)]
dotdot: introducing dot file path cleanup

RFC3986 details how a path part passed in as part of a URI should be
"cleaned" from dot sequences before getting used. The described
algorithm is now implemented in lib/dotdot.c with the accompanied test
case in test 1395.

Bug: http://curl.haxx.se/bug/view.cgi?id=1200
Reported-by: Alex Vinnik
11 years agobump: start working towards what most likely will become 7.32.0
Daniel Stenberg [Sat, 22 Jun 2013 12:13:28 +0000 (14:13 +0200)]
bump: start working towards what most likely will become 7.32.0

11 years agoTHANKS: added 24 new contributors from the 7.31.0 release
Daniel Stenberg [Sat, 22 Jun 2013 11:52:27 +0000 (13:52 +0200)]
THANKS: added 24 new contributors from the 7.31.0 release

11 years agoRELEASE-NOTES: synced with 0de7249bb39a2 - 7.31.0
Daniel Stenberg [Sat, 22 Jun 2013 09:30:31 +0000 (11:30 +0200)]
RELEASE-NOTES: synced with 0de7249bb39a2 - 7.31.0

11 years agounit1396: unit tests to verify curl_easy_(un)escape
Daniel Stenberg [Sun, 19 May 2013 21:30:06 +0000 (23:30 +0200)]
unit1396: unit tests to verify curl_easy_(un)escape

11 years agoCurl_urldecode: no peeking beyond end of input buffer
Daniel Stenberg [Sun, 19 May 2013 21:24:29 +0000 (23:24 +0200)]
Curl_urldecode: no peeking beyond end of input buffer

Security problem: CVE-2013-2174

If a program would give a string like "%FF" to curl_easy_unescape() but
ask for it to decode only the first byte, it would still parse and
decode the full hex sequence. The function then not only read beyond the
allowed buffer but it would also deduct the *unsigned* counter variable
for how many more bytes there's left to read in the buffer by two,
making the counter wrap. Continuing this, the function would go on
reading beyond the buffer and soon writing beyond the allocated target
buffer...

Bug: http://curl.haxx.se/docs/adv_20130622.html
Reported-by: Timo Sirainen
11 years agoUse opened body.out file and write content to it.
Guenter Knauf [Thu, 20 Jun 2013 20:53:37 +0000 (22:53 +0200)]
Use opened body.out file and write content to it.

11 years agomulti_socket: react on socket close immediately
Daniel Stenberg [Wed, 19 Jun 2013 21:54:28 +0000 (23:54 +0200)]
multi_socket: react on socket close immediately

As a remedy to the problem when a socket gets closed and a new one is
opened with the same file descriptor number and as a result
multi.c:singlesocket() doesn't detect the difference, the new function
Curl_multi_closed() gets told when a socket is closed so that it can be
removed from the socket hash. When the old one has been removed, a new
socket should be detected fine by the singlesocket() on next invoke.

Bug: http://curl.haxx.se/bug/view.cgi?id=1248
Reported-by: Erik Johansson
11 years agoRELEASE-NOTES: synced with e305f5ec715f
Daniel Stenberg [Thu, 20 Jun 2013 20:27:33 +0000 (22:27 +0200)]
RELEASE-NOTES: synced with e305f5ec715f

11 years agoTODO: mention the DANE patch from March
Daniel Stenberg [Tue, 18 Jun 2013 07:38:06 +0000 (09:38 +0200)]
TODO: mention the DANE patch from March

11 years agoCURLOPT_COOKIELIST: take cookie share lock
Daniel Stenberg [Mon, 17 Jun 2013 21:29:05 +0000 (23:29 +0200)]
CURLOPT_COOKIELIST: take cookie share lock

When performing COOKIELIST operations the cookie lock needs to be taken
for the cases where the cookies are shared among multiple handles!

Verified by Benjamin Gilbert's updated test 506

Bug: http://curl.haxx.se/bug/view.cgi?id=1215
Reported-by: Benjamin Gilbert
11 years agotest506: verify that CURLOPT_COOKIELIST takes share lock
Benjamin Gilbert [Mon, 17 Jun 2013 21:28:35 +0000 (23:28 +0200)]
test506: verify that CURLOPT_COOKIELIST takes share lock

It doesn't right now: http://curl.haxx.se/bug/view.cgi?id=1215

11 years agoTODO: HTTP2/SPDY support
Daniel Stenberg [Sat, 15 Jun 2013 12:36:35 +0000 (14:36 +0200)]
TODO: HTTP2/SPDY support

11 years agocurl_easy_setopt.3: clarify CURLOPT_PROGRESSFUNCTION frequency
Daniel Stenberg [Fri, 14 Jun 2013 21:17:14 +0000 (23:17 +0200)]
curl_easy_setopt.3: clarify CURLOPT_PROGRESSFUNCTION frequency

Make it clearer that the CURLOPT_PROGRESSFUNCTION callback will be
called more frequently than once per second when things are happening.

11 years agoRELEASE-NOTES: synced with 9c3e098259b82
Daniel Stenberg [Thu, 13 Jun 2013 21:01:32 +0000 (23:01 +0200)]
RELEASE-NOTES: synced with 9c3e098259b82

Mention 7 recent bug fixes and their associated contributors

11 years agocurl_multi_wait.3: clarify the numfds counter
Daniel Stenberg [Thu, 13 Jun 2013 20:38:53 +0000 (22:38 +0200)]
curl_multi_wait.3: clarify the numfds counter

11 years agocurl_easy_perform: avoid busy-looping
Daniel Stenberg [Thu, 13 Jun 2013 17:27:12 +0000 (19:27 +0200)]
curl_easy_perform: avoid busy-looping

When curl_multi_wait() finds no file descriptor to wait for, it returns
instantly and this must be handled gracefully within curl_easy_perform()
or cause a busy-loop. Starting now, repeated fast returns without any
file descriptors is detected and a gradually increasing sleep will be
used (up to a max of 1000 milliseconds) before continuing the loop.

Bug: http://curl.haxx.se/bug/view.cgi?id=1238
Reported-by: Miguel Angel
11 years agocookies: follow-up fix for path checking
YAMADA Yasuharu [Wed, 12 Jun 2013 09:19:56 +0000 (11:19 +0200)]
cookies: follow-up fix for path checking

The initial fix to only compare full path names were done in commit
04f52e9b4db0 but found out to be incomplete. This takes should make the
change more complete and there's now two additional tests to verify
(test 31 and 62).

11 years agolib1900: use tutil_tvnow instead of gettimeofday
Sergei Nikulov [Tue, 11 Jun 2013 22:04:03 +0000 (02:04 +0400)]
lib1900: use tutil_tvnow instead of gettimeofday

Makes it build on windows

11 years agoaxtls: now done non-blocking
Eric Hu [Wed, 12 Jun 2013 08:36:31 +0000 (10:36 +0200)]
axtls: now done non-blocking

11 years agotest2033: requires NTLM support
Eric Hu [Wed, 12 Jun 2013 08:34:10 +0000 (10:34 +0200)]
test2033: requires NTLM support

11 years agoKNOWN_BUGS: #82 failed build with Borland compiler
Daniel Stenberg [Mon, 10 Jun 2013 22:21:16 +0000 (00:21 +0200)]
KNOWN_BUGS: #82 failed build with Borland compiler

11 years agoCurl_output_digest: support auth-int for empty entity body
Daniel Stenberg [Mon, 10 Jun 2013 22:08:13 +0000 (00:08 +0200)]
Curl_output_digest: support auth-int for empty entity body

By always returning the md5 for an empty body when auth-int is asked
for, libcurl now at least sometimes does the right thing.

Bug: http://curl.haxx.se/bug/view.cgi?id=1235
Patched-by: Nach M. S.
11 years agomulti_socket: reduce timeout inaccuracy margin
Daniel Stenberg [Mon, 10 Jun 2013 08:09:16 +0000 (10:09 +0200)]
multi_socket: reduce timeout inaccuracy margin

Allow less room for "triggered too early" mistakes by applications /
timers on non-windows platforms. Starting now, we assume that a timeout
call is never made earlier than 3 milliseconds before the actual
timeout. This greatly improves timeout accuracy on Linux.

Bug: http://curl.haxx.se/bug/view.cgi?id=1228
Reported-by: Hang Su
11 years agocert_stuff: avoid double free in the PKCS12 code
Daniel Stenberg [Mon, 10 Jun 2013 21:42:48 +0000 (23:42 +0200)]
cert_stuff: avoid double free in the PKCS12 code

In the pkcs12 code, we get a list of x509 records returned from
PKCS12_parse but when iterating over the list and passing each to
SSL_CTX_add_extra_chain_cert() we didn't also properly remove them from
the "stack", which made them get freed twice (both in sk_X509_pop_free()
and then later in SSL_CTX_free).

This isn't really documented anywhere...

Bug: http://curl.haxx.se/bug/view.cgi?id=1236
Reported-by: Nikaiw
11 years agocert_stuff: remove code duplication in the pkcs12 logic
Daniel Stenberg [Mon, 10 Jun 2013 14:10:44 +0000 (16:10 +0200)]
cert_stuff: remove code duplication in the pkcs12 logic

11 years agoaxtls: honor disabled VERIFYHOST
Aleksey Tulinov [Fri, 7 Jun 2013 22:20:38 +0000 (00:20 +0200)]
axtls: honor disabled VERIFYHOST

When VERIFYHOST == 0, libcurl should let invalid certificates to pass.

11 years agocurl_easy_setopt.3: HTTP header with no content
Peter Gal [Fri, 7 Jun 2013 14:39:16 +0000 (16:39 +0200)]
curl_easy_setopt.3: HTTP header with no content

Update the documentation on how to specify a HTTP header with no
content.

11 years agoRELEASE-NOTES: synced with 87cf677eca55
Daniel Stenberg [Fri, 7 Jun 2013 08:39:21 +0000 (10:39 +0200)]
RELEASE-NOTES: synced with 87cf677eca55

Added 11 bugs and 7 contributors

11 years agolib1500: remove bad check
Daniel Stenberg [Thu, 6 Jun 2013 20:20:39 +0000 (22:20 +0200)]
lib1500: remove bad check

After curl_multi_wait() returns, this test checked that we got exactly
one file descriptor told to read from, but we cannot be sure that is
true. curl_multi_wait() will sometimes return earlier without any file
descriptor to handle, just just because it is a suitable time to call
*perform().

This problem showed up with commit 29bf0598.

Bug: http://curl.haxx.se/mail/lib-2013-06/0029.html
Reported-by: Fabian Keil
11 years agotests/Makefile: typo in the perlcheck target
Daniel Stenberg [Tue, 4 Jun 2013 21:22:11 +0000 (23:22 +0200)]
tests/Makefile: typo in the perlcheck target

Bug: http://curl.haxx.se/bug/view.cgi?id=1239
Reported-by: Christian Weisgerber
11 years agotest1230: verify CONNECT to a numerical ipv6-address
Daniel Stenberg [Tue, 4 Jun 2013 20:52:13 +0000 (22:52 +0200)]
test1230: verify CONNECT to a numerical ipv6-address

11 years agosws: support extracting test number from CONNECT ipv6-address!
Daniel Stenberg [Tue, 4 Jun 2013 20:50:58 +0000 (22:50 +0200)]
sws: support extracting test number from CONNECT ipv6-address!

If an ipv6-address is provided to CONNECT, the last hexadecimal group in
the address will be used as the test number! For example the address
"[1234::ff]" would be treated as test case 255.

11 years agocurl_multi_wait: only use internal timer if not -1
Daniel Stenberg [Tue, 4 Jun 2013 11:22:40 +0000 (13:22 +0200)]
curl_multi_wait: only use internal timer if not -1

commit 29bf0598aad5 introduced a problem when the "internal" timeout is
prefered to the given if shorter, as it didn't consider the case where
-1 was returned. Now the internal timeout is only considered if not -1.

Reported-by: Tor Arntsen
Bug: http://curl.haxx.se/mail/lib-2013-06/0015.html

11 years agolibcurl-tutorial.3: added a section on IPv6
Dan Fandrich [Mon, 3 Jun 2013 20:44:05 +0000 (22:44 +0200)]
libcurl-tutorial.3: added a section on IPv6

Also added a (correctly-escaped) backslash to the autoexec.bat
example file and a new Windows character device name with
a colon as examples of other characters that are special
and potentially dangerous (this reverts and reworks commit
7d8d2a54).

11 years agocurl_multi_wait: reduce timeout if the multi handle wants to
Daniel Stenberg [Mon, 3 Jun 2013 18:19:51 +0000 (20:19 +0200)]
curl_multi_wait: reduce timeout if the multi handle wants to

If the multi handle's pending timeout is less than what is passed into
this function, it will now opt to use the shorter time anyway since it
is a very good hint that the handle wants to process something in a
shorter time than what otherwise would happen.

curl_multi_wait.3 was updated accordingly to clarify

This is the reason for bug #1224

Bug: http://curl.haxx.se/bug/view.cgi?id=1224
Reported-by: Andrii Moiseiev
11 years agomulti_runsingle: switch an if() condition for readability
Daniel Stenberg [Mon, 3 Jun 2013 18:13:35 +0000 (20:13 +0200)]
multi_runsingle: switch an if() condition for readability

... because there's an identical check right next to it so using the
operators in the check in the same order increases readability.

11 years agocurl_schannel.c: Removed variable unused since 35874298e4
Marc Hoersken [Sun, 2 Jun 2013 18:21:42 +0000 (20:21 +0200)]
curl_schannel.c: Removed variable unused since 35874298e4

11 years agocurl_setup.h: Fixed redefinition warning using mingw-w64
Marc Hoersken [Sun, 2 Jun 2013 13:53:08 +0000 (15:53 +0200)]
curl_setup.h: Fixed redefinition warning using mingw-w64

11 years agomulti_runsingle: add braces to clarify the code
Daniel Stenberg [Thu, 30 May 2013 21:34:33 +0000 (23:34 +0200)]
multi_runsingle: add braces to clarify the code