Marc Hoersken [Fri, 18 Apr 2014 21:53:48 +0000 (23:53 +0200)]
tftp.c: fix possible dereference of null pointer
Marc Hoersken [Fri, 18 Apr 2014 21:28:26 +0000 (23:28 +0200)]
tool_urlglob.c: added some comments to clarify for loop conditions
I was tempted to change those to >= 0 until I saw that this is
actually a for loop that terminates once i underflows.
Marc Hoersken [Fri, 18 Apr 2014 21:24:41 +0000 (23:24 +0200)]
socks_sspi.c: added pointer guards to FreeContextBuffer calls
The FreeContextBuffer SAL declaration does not declare the pointer
as optional, therefore it must not be NULL.
Marc Hoersken [Fri, 18 Apr 2014 20:59:25 +0000 (22:59 +0200)]
md5.c: fix use of uninitialized variable
Marc Hoersken [Fri, 18 Apr 2014 20:38:42 +0000 (22:38 +0200)]
curl_schannel.c: added explicit cast of structure pointers
Marc Hoersken [Fri, 18 Apr 2014 20:36:12 +0000 (22:36 +0200)]
curl_schannel.c: fix possible dereference of null pointer
Steve Holme [Fri, 18 Apr 2014 19:35:01 +0000 (20:35 +0100)]
RELEASE-NOTES: Synced with
33e0cba8f1
Steve Holme [Fri, 18 Apr 2014 17:02:04 +0000 (18:02 +0100)]
curl_easy_setopt: Updated CURLOPT_URL to include IMAP PARTIAL FETCH example
Steve Holme [Fri, 18 Apr 2014 16:42:40 +0000 (17:42 +0100)]
imap: Extended FETCH support to include PARTIAL URL specifier
Steve Holme [Fri, 18 Apr 2014 16:04:39 +0000 (17:04 +0100)]
url.c: Fixed typo in comment
Steve Holme [Fri, 18 Apr 2014 15:59:50 +0000 (16:59 +0100)]
curl_easy_setopt: Updated CURLOPT_URL to include IMAP query string examples
Steve Holme [Fri, 18 Apr 2014 15:50:38 +0000 (16:50 +0100)]
test810: Updated to use new IMAP URL query string functionality
Steve Holme [Fri, 18 Apr 2014 15:42:45 +0000 (16:42 +0100)]
imap: Expanded mailbox SEARCH support to use URL query strings
Steve Holme [Fri, 18 Apr 2014 14:58:33 +0000 (15:58 +0100)]
imap: Added support for parsing URL query strings
Added support for parsing query strings from the URL as defined by
RFC-5092.
Steve Holme [Fri, 18 Apr 2014 14:43:04 +0000 (15:43 +0100)]
imap: Introduced the SEARCH state
Steve Holme [Fri, 18 Apr 2014 14:01:57 +0000 (15:01 +0100)]
imap: Fixed untagged response detection when no data after command
Should a command return untagged responses that contained no data then
the imap_matchresp() function would not detect them as valid responses,
as it wasn't taking the CRLF characters into account at the end of each
line.
Steve Holme [Fri, 18 Apr 2014 09:24:20 +0000 (10:24 +0100)]
build: Added Visual Studio 2012 (VC11) project files
Carrying on from commit
11025613b9 added VC11 project files which are
capable of supporting side-by-side compilation, 32-bit and 64-bit
builds as well as support for some of the third-party libraries curl
uses.
Steve Holme [Thu, 17 Apr 2014 19:58:48 +0000 (20:58 +0100)]
build: Corrected Visual Studio solutions for DLL Release x64
Daniel Stenberg [Sat, 22 Mar 2014 16:07:31 +0000 (17:07 +0100)]
README.http2: mention some alt-svc thoughts
Steve Holme [Wed, 16 Apr 2014 22:15:02 +0000 (23:15 +0100)]
Makefile.am: Missed separator in commit
fbaa2f8660
Steve Holme [Wed, 16 Apr 2014 20:22:26 +0000 (21:22 +0100)]
build: Added Visual Studio 2010 (VC10) project files
Carrying on from commit
11025613b9 added VC10 project files which are
capable of supporting side-by-side compilation, 32-bit and 64-bit
builds as well as support for some of the third-party libraries curl
uses.
Dan Fandrich [Mon, 14 Apr 2014 06:02:06 +0000 (08:02 +0200)]
url: only use if_nametoindex() if IFNAMSIZ is available
Dan Fandrich [Wed, 9 Apr 2014 20:12:47 +0000 (22:12 +0200)]
symbian: fixed typo in comment
Steve Holme [Tue, 8 Apr 2014 23:01:51 +0000 (00:01 +0100)]
build: Added Visual Studio 2008 (VC9) project files
Carrying on from commit
11025613b9, added VC9 project files which are
capable of supporting side-by-side compilation, 32-bit and 64-bit
builds as well as support for some of the third-party libraries curl
uses.
Steve Holme [Tue, 8 Apr 2014 20:08:02 +0000 (21:08 +0100)]
sas: Added DIGEST-MD5 qop-option validation in native challange handling
Given that we presently support "auth" and not "auth-int" or "auth-conf"
for native challenge-response messages, added client side validation of
the quality-of-protection options from the server's challenge message.
Daniel Stenberg [Tue, 8 Apr 2014 08:17:03 +0000 (10:17 +0200)]
dist: include the projects/ files in releases
... the recent MSVC project files added by Steve Holme
Daniel Stenberg [Sun, 6 Apr 2014 21:13:08 +0000 (23:13 +0200)]
strerror: fix comment about vxworks' strerror_r buffer size
Bug: http://curl.haxx.se/mail/lib-2014-04/0063.html
Reported-by: Jeroen Koekkoek
Steve Holme [Sun, 6 Apr 2014 16:09:16 +0000 (17:09 +0100)]
sasl: Added forward declaration of structures following recent changes
To avoid urldata.h being included from the header file or that the
source file has the correct include order as highlighted by one of
the auto builds recently.
Steve Holme [Sun, 6 Apr 2014 15:56:05 +0000 (16:56 +0100)]
RELEASE-NOTES: Synced with
5cdb61abb2
Steve Holme [Sun, 6 Apr 2014 15:32:05 +0000 (16:32 +0100)]
tests: Disabled DIGEST-MD5 tests when running with SSPI enabled
Steve Holme [Sun, 6 Apr 2014 15:11:17 +0000 (16:11 +0100)]
sasl: Fixed compilation warning
warning: no previous prototype for 'Curl_sasl_create_digest_md5_message'
Steve Holme [Sun, 6 Apr 2014 15:09:19 +0000 (16:09 +0100)]
sasl: Added curl_memory.h include as per test 1132
Steve Holme [Sun, 6 Apr 2014 13:21:46 +0000 (14:21 +0100)]
sasl: Fixed compilation warning in SSPI builds
warning: 'sasl_digest_get_key_value' defined but not used
Steve Holme [Sun, 6 Apr 2014 13:10:18 +0000 (14:10 +0100)]
sasl: Corrected missing free of decoded challenge message from
607883f13c
Steve Holme [Sun, 6 Apr 2014 12:52:03 +0000 (13:52 +0100)]
sasl: Corrected add of Curl_sasl_decode_digest_md5_message() from
2c49e96092
Steve Holme [Sun, 6 Apr 2014 12:29:29 +0000 (13:29 +0100)]
sasl: Post DIGEST-MD5 SSPI code tidy up
* Added comments to SSPI NTLM message generation
* Added comments to native DIGEST-MD5 code
* Removed redundant identity pointer
Steve Holme [Sun, 6 Apr 2014 11:46:53 +0000 (12:46 +0100)]
sasl: Corrected pre-processor inclusion of SSPI based DIGEST-MD5 code
When CURL_DISABLE_CRYPTO_AUTH is defined the DIGEST-MD5 code should not
be included, regardless of whether USE__WINDOWS_SSPI is defined or not.
This is indicated by the definition of USE_HTTP_NEGOTIATE and USE_NTLM
in curl_setup.h.
Steve Holme [Sun, 6 Apr 2014 11:08:11 +0000 (12:08 +0100)]
sasl: Added support for DIGEST-MD5 via Windows SSPI
Steve Holme [Sun, 6 Apr 2014 00:22:47 +0000 (01:22 +0100)]
http_negotiate_sspi: Fixed compilation when USE_HTTP_NEGOTIATE not defined
Steve Holme [Sat, 5 Apr 2014 23:57:23 +0000 (00:57 +0100)]
Makefile.vc6: Added curl_sasl_sspi.c
Steve Holme [Sat, 5 Apr 2014 23:53:47 +0000 (00:53 +0100)]
Makefile.vc6: Follow up fix to commit
45d3f00803
Steve Holme [Wed, 2 Apr 2014 21:04:13 +0000 (22:04 +0100)]
ntlm: Moved the identity generation into shared SSPI code
Steve Holme [Sat, 5 Apr 2014 23:16:30 +0000 (00:16 +0100)]
sasl: Renamed SSPI module following short name clash
Steve Holme [Wed, 2 Apr 2014 20:21:12 +0000 (21:21 +0100)]
sasl: Added initial stub functions for SSPI DIGEST-MD support
Steve Holme [Wed, 2 Apr 2014 19:53:43 +0000 (20:53 +0100)]
sasl: Combined DIGEST-MD5 message decoding and generation
Marc Hoersken [Sat, 5 Apr 2014 19:45:39 +0000 (21:45 +0200)]
Makefile.vc6: added warnless.c to fix build
Steve Holme [Sat, 5 Apr 2014 17:48:48 +0000 (18:48 +0100)]
winbuild: Updated the VC++ make instructions following commit
11025613b9
* Added information regarding the February 2003 Platform SDK for VC6
* Updated the introduction to be similar to the IDE projects README
Tatsuhiro Tsujikawa [Sat, 5 Apr 2014 09:57:20 +0000 (18:57 +0900)]
http2: Compile with current nghttp2, which supports h2-11
Steve Holme [Sat, 5 Apr 2014 17:05:03 +0000 (18:05 +0100)]
winbuild: Added Visual Studio 2005 (VC8) project files
Added a more thorough version of the VC8 project files that exist in
the "vs" folder with the intention to add support for other versions of
Visual Studio. These files support side-by-side compilation, 32-bit and
64-bit builds as well as support for some of the third-party libraries
curl uses.
Daniel Stenberg [Fri, 4 Apr 2014 15:20:55 +0000 (17:20 +0200)]
curl_easy_setopt: fix wrong version number references
Daniel Stenberg [Fri, 4 Apr 2014 15:08:28 +0000 (17:08 +0200)]
docs: this is for 7.37.0
And clarify for curl that --proxy-header now must be used for headers
that are meant for a proxy, and they will not be included if the request
is not for a proxy.
Daniel Stenberg [Thu, 20 Feb 2014 16:10:00 +0000 (17:10 +0100)]
PROXYHEADER: send these headers in "normal" proxy requests too
Updated the docs to clarify and the code accordingly, with test 1528 to
verify:
When CURLHEADER_SEPARATE is set and libcurl is asked to send a request
to a proxy but it isn't CONNECT, then _both_ header lists
(CURLOPT_HTTPHEADER and CURLOPT_PROXYHEADER) will be used since the
single request is then made for both the proxy and the server.
Daniel Stenberg [Tue, 4 Feb 2014 22:59:30 +0000 (23:59 +0100)]
test1428: verify --proxy-header
Daniel Stenberg [Tue, 4 Feb 2014 22:54:39 +0000 (23:54 +0100)]
curl.1: documented --proxy-header
Maciej Puzio [Tue, 4 Feb 2014 22:48:16 +0000 (23:48 +0100)]
curl: add --proxy-header
Daniel Stenberg [Thu, 20 Feb 2014 16:23:59 +0000 (17:23 +0100)]
symbols-in-versions: Added CURLHEADER_*
... and sorted the list
Daniel Stenberg [Tue, 4 Feb 2014 22:37:29 +0000 (23:37 +0100)]
CURLOPT_HEADEROPT: added
Modified the logic so that CURLOPT_HEADEROPT now controls if PROXYHEADER
is actually used or not.
Daniel Stenberg [Fri, 31 Jan 2014 07:10:07 +0000 (08:10 +0100)]
CURLOPT_PROXYHEADER: set headers for proxy-only
Includes docs and new test cases: 1525, 1526 and 1527
Co-written-by: Vijay Panghal
Daniel Stenberg [Fri, 4 Apr 2014 12:50:18 +0000 (14:50 +0200)]
HTTP: don't send Content-Length: 0 _and_ Expect: 100-continue
Without request body there's no point in asking for 100-continue.
Bug: http://curl.haxx.se/bug/view.cgi?id=1349
Reported-by: JimS
Daniel Stenberg [Mon, 24 Mar 2014 22:21:10 +0000 (23:21 +0100)]
ftp: in passive data connect wait for happy eyeballs sockets
When doing passive FTP, the multi state function needs to extract and
use the happy eyeballs sockets to wait for to check for completion!
Bug: http://curl.haxx.se/mail/lib-2014-02/0135.html (ruined)
Reported-by: Alan
Daniel Stenberg [Thu, 3 Apr 2014 15:03:02 +0000 (17:03 +0200)]
http2+openssl: fix compiler warnings in ALPN using code
Dan Fandrich [Thu, 3 Apr 2014 09:46:13 +0000 (11:46 +0200)]
tests: unified use of some keywords
Dan Fandrich [Thu, 3 Apr 2014 09:45:19 +0000 (11:45 +0200)]
tests: added some missing closing tags
Daniel Stenberg [Thu, 3 Apr 2014 09:33:41 +0000 (11:33 +0200)]
runtests: insist on a <keywords> section
Since all present tests now have <keywords> listed, this script will now
refuse to run a given test case if no such section is provided.
Hopefully this will help us make sure new test cases get keywords added
at start.
Daniel Stenberg [Thu, 3 Apr 2014 09:06:24 +0000 (11:06 +0200)]
tests: add keywords to the last 7 tests lacking them
Steve Holme [Mon, 31 Mar 2014 21:59:46 +0000 (22:59 +0100)]
smtp: Fixed login denied with a RFC-821 based server
In addition to commit
fe260b75e7 fixed the same issue for RFC-821 based
SMTP servers and allow the credientials to be given to curl even though
they are not used with the server.
Steve Holme [Sun, 30 Mar 2014 16:53:13 +0000 (17:53 +0100)]
tests: Added SMTP with credientials test when not supported by server
Daniel Stenberg [Tue, 1 Apr 2014 06:00:13 +0000 (08:00 +0200)]
urldata: spellfix comment
Reported-by: Melissa
Steve Holme [Mon, 31 Mar 2014 20:22:42 +0000 (21:22 +0100)]
RELEASE-NOTES: Synced with
dd07e79023
Steve Holme [Sun, 30 Mar 2014 16:32:12 +0000 (17:32 +0100)]
tests: Added SMTP with credentials test for RFC-821 based server
Added SMTP (RFC-821 only) based test case as a reference for the fix
provided by commit
fe260b75e7.
Daniel Stenberg [Mon, 31 Mar 2014 07:35:32 +0000 (09:35 +0200)]
ipv6: strip off zone identifiers in redirects too
Follow up to
9317eced984 makes test 1056 work again.
Dan Fandrich [Mon, 31 Mar 2014 07:02:55 +0000 (09:02 +0200)]
docs: Removed mention of -g hack when using IPv6 literals
This limitation was removed in commit
0bc4938e
Daniel Stenberg [Mon, 31 Mar 2014 07:00:58 +0000 (09:00 +0200)]
http2: let openssl mention the exact protocol negotiated
Remove a superfluous "negotiated http2" info line
Daniel Stenberg [Mon, 31 Mar 2014 06:40:24 +0000 (08:40 +0200)]
http2: remove _DRAFT09 from the NPN_HTTP2 enum
We're progressing throught drafts so there's no point in having a fixed
one in a symbol that'll survive.
Till Maas [Sat, 15 Mar 2014 21:42:50 +0000 (22:42 +0100)]
URL parser: IPv6 zone identifiers are now supported
Paul Marks [Sun, 30 Mar 2014 05:50:37 +0000 (07:50 +0200)]
curl: stop interpreting IPv6 literals as glob patterns.
This makes it possible to fetch from an IPv6 literal without specifying
the -g option. Globbing remains available elsehwere in the URL.
For example:
curl http://[::1]/file[1-3].txt
This creates no ambiguity, because there is no overlap between the
syntax of valid globs and valid IPv6 literals. Globs contain hyphens
and at most 1 colon, while IPv6 literals have no hyphens, and at least 2
colons.
The peek_ipv6() parser simply whitelists a set of characters and counts
colons, because the real validation happens later on. The character set
includes A-Z, in case someone decides to implement support for scopes
like [fe80::1%25eth0] in the future.
Signed-off-by: Paul Marks <pmarks@google.com>
Steve Holme [Sun, 30 Mar 2014 21:32:09 +0000 (22:32 +0100)]
test938: Updated to use file input for upload
As the second URL won't be passed input from stdin.
Steve Holme [Sun, 30 Mar 2014 21:25:25 +0000 (22:25 +0100)]
test836: Fixed incorrect username in expected output
Daniel Stenberg [Sun, 30 Mar 2014 21:36:57 +0000 (23:36 +0200)]
DISABLED: 836, 882 and 938 hang
Daniel Stenberg [Sun, 30 Mar 2014 21:15:15 +0000 (23:15 +0200)]
runtests: check protocol before data
When the protocol part fails, the data usually does too but the protocol
part is often more fundamental and often provide the clues you need to
fix the test case.
Steve Holme [Sun, 30 Mar 2014 18:59:36 +0000 (19:59 +0100)]
ftpserver.pl: Extended the full text reply regular expression
Extended the regex to include other valid characters such as those used
in the reply text of Test 836.
Daniel Stenberg [Sun, 30 Mar 2014 15:09:11 +0000 (17:09 +0200)]
keywords: sort case insensitive
Daniel Stenberg [Sun, 30 Mar 2014 15:05:22 +0000 (17:05 +0200)]
tests: remove trailing CRs from keywords
Daniel Stenberg [Sun, 30 Mar 2014 15:04:56 +0000 (17:04 +0200)]
keywords: sort keywords alphabetically
Daniel Stenberg [Sun, 30 Mar 2014 15:00:05 +0000 (17:00 +0200)]
keywords: don't use STDERR for good info
Steve Holme [Sun, 30 Mar 2014 13:55:27 +0000 (14:55 +0100)]
tests: Added email unit tests to verify login credential connection re-use
Steve Holme [Sun, 30 Mar 2014 11:05:38 +0000 (12:05 +0100)]
tests: Corrected "APOP" authentication keyword
Steve Holme [Sun, 30 Mar 2014 11:01:15 +0000 (12:01 +0100)]
tests: Replaced email authentication keywords with SASL based keywords
As the email protocols implement SASL authentication rather than IMAP,
POP3 and SMTP specific authentication, updated the authentication
keywords to reflect this.
Steve Holme [Sun, 30 Mar 2014 10:40:50 +0000 (11:40 +0100)]
tests: Added "Clear Text" authentication keyword
Steve Holme [Sun, 30 Mar 2014 10:20:19 +0000 (11:20 +0100)]
tests: Added "SASL" authentication keyword
Steve Holme [Sun, 30 Mar 2014 09:56:51 +0000 (10:56 +0100)]
imap-append.c: Fixed compilation errors on some platforms
In the initializer for len, there is no prototype for "strlen".
In this statement, there is no prototype for "memcpy".
Steve Holme [Sat, 29 Mar 2014 23:45:58 +0000 (23:45 +0000)]
ftpserver.pl: Removed some unused variables
Steve Holme [Sat, 29 Mar 2014 23:30:58 +0000 (23:30 +0000)]
ftpserver.pl: Reworked some variable names to be more meaningful
Steve Holme [Sat, 29 Mar 2014 23:10:48 +0000 (23:10 +0000)]
ftpserver.pl: Corrected some indentation in senddata()
Daniel Stenberg [Fri, 28 Mar 2014 14:47:18 +0000 (15:47 +0100)]
lib1513: fix callback proto to silence warning
Steve Holme [Sat, 29 Mar 2014 11:30:01 +0000 (11:30 +0000)]
ftpserver.pl: Added fallback to <data> support when using multiple URLs
Added support for falling back to <data> when <data1>, <data2>, etc...
don't exist in the <reply> section of a unit test.
Steve Holme [Sat, 29 Mar 2014 11:20:00 +0000 (11:20 +0000)]
ftpserver.pl: Updated email based get reply data code to use new method
Steve Holme [Sat, 29 Mar 2014 12:32:03 +0000 (12:32 +0000)]
ftpserver.pl: Fixed syntax error from commit
3a29ee41
Steve Holme [Sat, 29 Mar 2014 11:00:25 +0000 (11:00 +0000)]
ftpserver.pl: Updated argument code in STATUS_imap() to be more meaningful
Steve Holme [Sat, 29 Mar 2014 10:29:03 +0000 (10:29 +0000)]
ftpserver.pl: Introduced common method for getting a test's reply data