Steve Holme [Sat, 7 Jan 2012 13:42:28 +0000 (13:42 +0000)]
smtp.c: Fixed use of angled brackets in AUTH parameter.
Fixed the use of angled brackets "<>" in the optional AUTH parameter as
per RFC-2554 section 5. The address should not include them but an
empty address should be replaced by them.
Steve Holme [Wed, 5 Oct 2011 21:22:29 +0000 (22:22 +0100)]
smtp_mail: Added support to MAIL FROM for the optional AUTH parameter
Added a new CURLOPT_MAIL_AUTH option that allows the calling program to
set the optional AUTH parameter in the MAIL FROM command.
When this option is specified and an authentication mechanism is used
to communicate with the mail server then the AUTH parameter will be
included in the MAIL FROM command. This is particularly useful when the
calling program is acting as a relay in a trusted environment and
performing server to server communication, as it allows the relaying
server to specify the address of the mailbox that was used to
authenticate and send the original email.
toddouska [Tue, 27 Dec 2011 20:17:37 +0000 (12:17 -0800)]
cyassl: update to CyaSSL 2.0.x API
Modify configure.ac to test for new CyaSSL Init function and remove
default install path to system. Change to CyaSSL OpenSSL header and
proper Init in code as well.
Note that this no longer detects or works with CyaSSL before v2
Daniel Stenberg [Tue, 14 Feb 2012 18:24:03 +0000 (19:24 +0100)]
LIBCURL_VERSION_NUM: 0x071900
I accidentally left the lowest bits 01 before
Steve Holme [Tue, 14 Feb 2012 14:21:21 +0000 (14:21 +0000)]
SMTP: Fixed error when using CURLOPT_CONNECT_ONLY
Fixed incorrect behavior in smtp_done() which would cause the end of
block data to be sent to the SMTP server if libcurl was operating in
connect only mode. This would cause the server to return an error as
data would not be expected which in turn caused libcurl to return
CURLE_RECV_ERROR.
Daniel Stenberg [Mon, 13 Feb 2012 22:57:18 +0000 (23:57 +0100)]
s/7.24.1/7.25.0
We will go straight to 7.25.0 due to the new additions
Daniel Stenberg [Mon, 13 Feb 2012 22:28:26 +0000 (23:28 +0100)]
curlver.h: bumped to 7.25.0
and updated the end year in the generic copyright string
Daniel Stenberg [Mon, 13 Feb 2012 22:26:48 +0000 (23:26 +0100)]
RELEASE-NOTES: synced with
2b26eb985
9 bug fixes, 4 changes and numerous contributors
Bumped release version and option counters
Colin Hogben [Sun, 5 Feb 2012 17:44:22 +0000 (17:44 +0000)]
configure: add option disable --libcurl output
Alessandro Ghedini [Sun, 12 Feb 2012 13:49:32 +0000 (14:49 +0100)]
curl tool: allow negative numbers as option values
Fix the str2num() function to not check if the input string starts with a
digit, since strtol() supports numbers prepended with '-' (and '+') too.
This makes the --max-redirs option work as documented.
Daniel Stenberg [Fri, 10 Feb 2012 16:00:55 +0000 (17:00 +0100)]
parse_proxy: simply memory handling
... by making sure that the string is always freed after the invoke as
parse_proxy will always copy the data and this way there's a single
free() instead of multiple ones.
Daniel Stenberg [Fri, 10 Feb 2012 15:26:20 +0000 (16:26 +0100)]
parse_proxy: bail out on zero-length proxy names!
The proxy parser function strips off trailing slashes off the proxy name
which could lead to a mistaken zero length proxy name which would be
treated as no proxy at all by subsequent functions!
This is now detected and an error is returned. Verified by the new test
1329.
Reported by: Chandrakant Bagul
Bug: http://curl.haxx.se/mail/lib-2012-02/0000.html
Kamil Dudka [Wed, 8 Feb 2012 12:36:36 +0000 (13:36 +0100)]
nss: add support for the CURLSSLOPT_ALLOW_BEAST option
... and fix some typos from the 62d15f1 commit.
Rob Ward [Thu, 9 Feb 2012 14:45:22 +0000 (14:45 +0000)]
configure: don't modify LD_LIBRARY_PATH for cross compiles
Daniel Stenberg [Mon, 6 Feb 2012 21:25:04 +0000 (22:25 +0100)]
--ssl-allow-beast added
This new option tells curl to not work around a security flaw in the
SSL3 and TLS1.0 protocols. It uses the new libcurl option
CURLOPT_SSL_OPTIONS with the CURLSSLOPT_ALLOW_BEAST bit set.
Daniel Stenberg [Mon, 6 Feb 2012 21:12:06 +0000 (22:12 +0100)]
CURLOPT_SSL_OPTIONS: added
Allow an appliction to set libcurl specific SSL options. The first and
only options supported right now is CURLSSLOPT_ALLOW_BEAST.
It will make libcurl to disable any work-arounds the underlying SSL
library may have to address a known security flaw in the SSL3 and TLS1.0
protocol versions.
This is a reaction to us unconditionally removing that behavior after
this security advisory:
http://curl.haxx.se/docs/adv_20120124B.html
... it did however cause a lot of programs to fail because of old
servers not liking this work-around. Now programs can opt to decrease
the security in order to interoperate with old servers better.
Dave Reisner [Thu, 9 Feb 2012 18:04:08 +0000 (19:04 +0100)]
curl: use new library-side TCP_KEEPALIVE options
Use the new library CURLOPT_TCP_KEEPALIVE rather than disabling this via
the sockopt callback. If --keepalive-time is used, apply the value to
CURLOPT_TCP_KEEPIDLE and CURLOPT_TCP_KEEPINTVL.
Dave Reisner [Tue, 24 Jan 2012 01:28:06 +0000 (01:28 +0000)]
add library support for tuning TCP_KEEPALIVE
This adds three new options to control the behavior of TCP keepalives:
- CURLOPT_TCP_KEEPALIVE: enable/disable probes
- CURLOPT_TCP_KEEPIDLE: idle time before sending first probe
- CURLOPT_TCP_KEEPINTVL: delay between successive probes
While not all operating systems support the TCP_KEEPIDLE and
TCP_KEEPINTVL knobs, the library will still allow these options to be
set by clients, silently ignoring the values.
Daniel Stenberg [Mon, 6 Feb 2012 21:59:49 +0000 (22:59 +0100)]
curl_easy_reset: reset the referer string
When CURLOPT_REFERER has been used, curl_easy_reset() did not properly
clear it.
Verified with the new test 598
Bug: http://curl.haxx.se/bug/view.cgi?id=3481551
Reported by: Michael Day
Yang Tse [Tue, 7 Feb 2012 21:06:03 +0000 (22:06 +0100)]
curl tool: allow glob-loops to abort again upon critical errors
This prevents clobbering of non recoverable error return codes while
retaining intended functionality of commit
65103efe
Daniel Stenberg [Mon, 6 Feb 2012 09:46:25 +0000 (10:46 +0100)]
curl tool: don't abort glob-loop due to failures
We want to continue to the next URL to try even on failures returned
from libcurl. This makes -f with ranges still get subsequent URLs even
if occasional ones return error. This was a regression as it used to
work and broke in the 7.23.0 release.
Added test case 1328 to verify the fix.
Bug: http://curl.haxx.se/bug/view.cgi?id=3481223
Reported by: Juan Barreto
Daniel Stenberg [Tue, 31 Jan 2012 21:52:10 +0000 (22:52 +0100)]
CONNECT: send correct Host: with IPv6 numerical address
When the target host was given as a IPv6 numerical address, it was not
properly put within square brackets for the Host: header in the CONNECT
request. The "normal" request did fine.
Reported by: "zooloo"
Bug: http://curl.haxx.se/bug/view.cgi?id=3482093
Martin Storsjo [Thu, 26 Jan 2012 23:50:35 +0000 (00:50 +0100)]
Explicitly link to the nettle/gcrypt libraries
When support for nettle was added in
64f328c787ab, I overlooked
the fact that AC_CHECK_LIB doesn't add the tested lib to LIBS
if the check succeeded, if a custom success code block was present.
(The previous version of the check had an empty block for
successful checks, adding the lib to LIBS implicitly.)
Therefore, explicitly add either nettle or gcrypt to LIBS, after
deciding which one to use. Even if they can be linked in
transitively, it is safer to actually link explicitly to them.
This fixes building with gnutls with linkers that don't allow
linking transitively, such as for windows.
Pierre Ynard [Mon, 23 Jan 2012 09:45:24 +0000 (10:45 +0100)]
more resilient connection times among IP addresses
When connecting to a domain with multiple IP addresses, allow different,
decreasing connection timeout values. This should guarantee some
connections attempts with sufficiently long timeouts, while still
providing fallback.
Pierre Ynard [Mon, 23 Jan 2012 09:44:53 +0000 (10:44 +0100)]
remove write-only variable
Pierre Joye [Thu, 26 Jan 2012 15:39:53 +0000 (16:39 +0100)]
Merge branch 'master' of github.com:bagder/curl
Pierre Joye [Thu, 26 Jan 2012 15:39:26 +0000 (16:39 +0100)]
- fix IPV6 and IDN options
Yang Tse [Wed, 25 Jan 2012 22:34:38 +0000 (23:34 +0100)]
TODO-RELEASE: added item #308
Daniel Stenberg [Wed, 25 Jan 2012 12:52:38 +0000 (13:52 +0100)]
THANKS: imported contributors from 7.24.0 RELEASE-NOTES
Yang Tse [Wed, 25 Jan 2012 10:50:44 +0000 (11:50 +0100)]
test harness: update stunnel.pem Diffie-Hellman parameters from 512 to 1024 bit
Yang Tse [Wed, 25 Jan 2012 10:27:39 +0000 (11:27 +0100)]
version: start working on 7.24.1-DEV
Dan Fandrich [Wed, 25 Jan 2012 05:31:57 +0000 (21:31 -0800)]
curl_easy_setopt.3: Fixed SEEKDATA & CLOSESOCKETDATA descriptions
Daniel Stenberg [Tue, 24 Jan 2012 07:37:40 +0000 (08:37 +0100)]
RELEASE-NOTES: synced with
70f71bb99f7ed9
Synced and prepared for 7.24.0 release. Two security problems, one bug fix,
two more contributors.
Daniel Stenberg [Mon, 23 Jan 2012 22:53:06 +0000 (23:53 +0100)]
gnutls: enforced use of SSLv3
With advice from Nikos Mavrogiannopoulos, changed the priority string to
add "actual priorities" and favour ARCFOUR. This makes libcurl work
better when enforcing SSLv3 with GnuTLS. Both in the sense that the
libmicrohttpd test is now working again but also that it mitigates a
weakness in the older SSL/TLS protocols.
Bug: http://curl.haxx.se/mail/lib-2012-01/0225.html
Reported by: Christian Grothoff
Daniel Stenberg [Wed, 11 Jan 2012 14:46:19 +0000 (15:46 +0100)]
tests: test CRLF in URLs
Related to the security vulnerability: CVE-2012-0036
Bug: http://curl.haxx.se/docs/adv_20120124.html
Daniel Stenberg [Fri, 23 Dec 2011 12:24:16 +0000 (13:24 +0100)]
URL sanitize: reject URLs containing bad data
Protocols (IMAP, POP3 and SMTP) that use the path part of a URL in a
decoded manner now use the new Curl_urldecode() function to reject URLs
with embedded control codes (anything that is or decodes to a byte value
less than 32).
URLs containing such codes could easily otherwise be used to do harm and
allow users to do unintended actions with otherwise innocent tools and
applications. Like for example using a URL like
pop3://pop3.example.com/1%0d%0aDELE%201 when the app wants a URL to get
a mail and instead this would delete one.
This flaw is considered a security vulnerability: CVE-2012-0036
Security advisory at: http://curl.haxx.se/docs/adv_20120124.html
Reported by: Dan Fandrich
Daniel Stenberg [Thu, 19 Jan 2012 09:38:14 +0000 (10:38 +0100)]
OpenSSL: don't disable security work-around
OpenSSL added a work-around for a SSL 3.0/TLS 1.0 CBC vulnerability
(http://www.openssl.org/~bodo/tls-cbc.txt). In 0.9.6e they added a bit
to SSL_OP_ALL that _disables_ that work-around despite the fact that
SSL_OP_ALL is documented to do "rather harmless" workarounds.
The libcurl code uses the SSL_OP_ALL define and thus logically always
disables the OpenSSL fix.
In order to keep the secure work-around workding, the
SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS bit must not be set and this change
makes sure of this.
Reported by: product-security at Apple
Daniel Stenberg [Sun, 22 Jan 2012 22:44:51 +0000 (23:44 +0100)]
RELEASE-NOTES: synced with
6e2fd2c9ea
3 more bugfixes, 3 more contributors
Daniel Stenberg [Sat, 21 Jan 2012 23:00:55 +0000 (00:00 +0100)]
CURLOPT_ACCEPTTIMEOUT_MS: spellfix
Dan Fandrich [Sat, 21 Jan 2012 06:44:47 +0000 (22:44 -0800)]
examples: updated README with two new example programs
Daniel Stenberg [Fri, 20 Jan 2012 22:32:43 +0000 (23:32 +0100)]
URL parse: user name with ipv6 numerical address
Using a URL with embedded user name and password didn't work if the host
was given as a numerical IPv6 string, like ftp://user:password@[::1]/
Reported by: Brandon Wang
Bug: http://curl.haxx.se/mail/archive-2012-01/0047.html
Yang Tse [Thu, 19 Jan 2012 23:11:15 +0000 (00:11 +0100)]
telnet.c: fix OOM triggered segfault
Yang Tse [Thu, 19 Jan 2012 21:54:57 +0000 (22:54 +0100)]
testtrace.c: fix compiler warning
Yang Tse [Thu, 19 Jan 2012 21:28:04 +0000 (22:28 +0100)]
OpenSSL: follow-up for commit
a20daf90e3
avoid checking preprocessor definition official value
Pierre Joye [Thu, 19 Jan 2012 13:08:24 +0000 (14:08 +0100)]
- s, use, enable, for options name, avoiding conflicts with the names used in the makefile
Daniel Stenberg [Thu, 19 Jan 2012 12:39:25 +0000 (13:39 +0100)]
curl.1: improve --stderr wording
As is pointed out in this bug report, there can indeed be situation
where --stderr has a point even when the "real" stderr can be
redirected. Remove the superfluous and wrong comment.
bug: http://curl.haxx.se/bug/view.cgi?id=3476020
Daniel Stenberg [Wed, 18 Jan 2012 22:31:39 +0000 (23:31 +0100)]
KNOWN_BUGS: can't receive zero bytes file properly
http://curl.haxx.se/bug/view.cgi?id=3438362
Yang Tse [Wed, 18 Jan 2012 22:39:30 +0000 (23:39 +0100)]
ssl session caching: fix compiler warnings
Daniel Stenberg [Wed, 18 Jan 2012 22:19:37 +0000 (23:19 +0100)]
polarssl: show cipher suite name correctly with 1.1.0
Apparently ssl_get_ciphersuite() is needed to get the name of the used
cipher suite.
Daniel Stenberg [Wed, 18 Jan 2012 22:19:01 +0000 (23:19 +0100)]
polarssl: show error code correctly
The value was turned negative when it shouldn't have been
Daniel Stenberg [Wed, 18 Jan 2012 22:17:54 +0000 (23:17 +0100)]
polarssl: havege_rand is not present in version 1.1.0
... it is now named havege_random!
Reported by: Robert Schumann
Bug: http://curl.haxx.se/mail/lib-2012-01/0178.html
Daniel Stenberg [Wed, 18 Jan 2012 21:33:45 +0000 (22:33 +0100)]
RELEASE-NOTES: synced with
5d70a61b94604
5 more bug fixes, 1 more contributor
Colin Hogben [Wed, 18 Jan 2012 21:19:57 +0000 (22:19 +0100)]
Add two tests for telnet: URLs
Add simple telnet tests which (ab)use the http server.
The second test checks for an input file handling bug.
Colin Hogben [Wed, 4 Jan 2012 11:24:49 +0000 (11:24 +0000)]
Remove bogus optimisation of telnet upload.
Remove wrongly implemented optimisation of telnet upload, apparently
intended to allow the library to avoid manually polling for input.
Colin Hogben [Wed, 4 Jan 2012 11:21:38 +0000 (11:21 +0000)]
Use correct file descriptor for telnet upload.
Fix a bug where input was read from stdin even when a different FILE *
had been configured via CURLOPT_READDATA
Yang Tse [Wed, 18 Jan 2012 15:06:29 +0000 (16:06 +0100)]
OpenLDAP: fix LDAP connection phase memory leak
bug: http://curl.haxx.se/bug/view.cgi?id=3474308
Johannes Bauer [Wed, 18 Jan 2012 12:39:12 +0000 (13:39 +0100)]
OpenSSL: fix PKCS#12 certificate parsing related memory leak
Leak triggered when CURLOPT_SSLCERTTYPE and CURLOPT_SSLKEYTYPE set to P12
and both CURLOPT_SSLCERT and CURLOPT_SSLKEY point to the same PKCS#12 file.
Yang Tse [Wed, 18 Jan 2012 03:33:49 +0000 (04:33 +0100)]
OpenSSL: SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG option is no longer enabled
SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG option enabling allowed successfull
interoperability with web server Netscape Enterprise Server 2.0.1 released
back in 1996 more than 15 years ago.
Due to CVE-2010-4180, option SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG has
become ineffective as of OpenSSL 0.9.8q and 1.0.0c. In order to mitigate
CVE-2010-4180 when using previous OpenSSL versions we no longer enable
this option regardless of OpenSSL version and SSL_OP_ALL definition.
Yang Tse [Tue, 17 Jan 2012 20:33:17 +0000 (21:33 +0100)]
tests: enable time tracing on tests 500, 573 and 585
Yang Tse [Tue, 17 Jan 2012 20:32:05 +0000 (21:32 +0100)]
tests: testtrace.[ch] provides debug callback for libtest usage
Allows tests from the libtest subdir to generate log traces
similar to those of curl with --tracetime and --trace-ascii
options but with output going to stderr.
Yang Tse [Tue, 17 Jan 2012 11:28:28 +0000 (12:28 +0100)]
sws.c: fix proxy mode secondary connection monitoring condition
Yang Tse [Mon, 16 Jan 2012 20:14:05 +0000 (21:14 +0100)]
add LF termination to infof() trace string
Yang Tse [Mon, 16 Jan 2012 18:00:57 +0000 (19:00 +0100)]
sws.c: improve proxy mode torture testing support - followup to
18c6c8a5
Daniel Stenberg [Mon, 16 Jan 2012 13:45:00 +0000 (14:45 +0100)]
url2file: new simple example
Just showing how to download the contents of a given URL into a local
file.
Based on a suggestion and example code by Georg Potthast
Daniel Stenberg [Mon, 16 Jan 2012 12:47:51 +0000 (13:47 +0100)]
imap.c: a dead simple imap example
Just to show that IMAP is used just like other protocols
Yang Tse [Mon, 16 Jan 2012 11:30:03 +0000 (12:30 +0100)]
sws.c: improve proxy mode torture testing support - followup to
c731fc58
Yang Tse [Sun, 15 Jan 2012 19:13:32 +0000 (20:13 +0100)]
sws.c: improve proxy mode torture testing support - followup to
d4bf87dc
Yang Tse [Sun, 15 Jan 2012 18:21:55 +0000 (19:21 +0100)]
Curl_proxyCONNECT() trace known bug #39
Daniel Stenberg [Sat, 14 Jan 2012 15:34:59 +0000 (16:34 +0100)]
test: verify HTTP response code 308
This newly speced HTTP status code already works as intended in the new
spec:
http://greenbytes.de/tech/webdav/draft-reschke-http-status-308-02.html
Test 1325 is added to verify that the method is kept after the redirect
Yang Tse [Fri, 13 Jan 2012 12:34:43 +0000 (13:34 +0100)]
http_negotiate_sspi.c: fix compiler warning
Yang Tse [Fri, 13 Jan 2012 11:57:09 +0000 (12:57 +0100)]
ssh.c: fix compiler warning
Yang Tse [Fri, 13 Jan 2012 04:13:48 +0000 (05:13 +0100)]
sws.c: improve proxy mode torture testing support
Daniel Stenberg [Thu, 12 Jan 2012 22:30:19 +0000 (23:30 +0100)]
RELEASE-NOTES: synced with
9f20379fe4
5 bug fixes, 3 more contributors
Daniel Stenberg [Thu, 12 Jan 2012 22:13:19 +0000 (23:13 +0100)]
hostip: avoid getaddrinfo when c-ares is used
Some functions using getaddrinfo and gethostbyname were still
mistakingly being used/linked even if c-ares was selected as resolver
backend.
Reported by: Arthur Murray
Bug: http://curl.haxx.se/mail/lib-2012-01/0160.html
Yang Tse [Mon, 9 Jan 2012 21:49:28 +0000 (22:49 +0100)]
sws.c: replace sleep() usage with wait_ms()
gsengun [Sat, 7 Jan 2012 21:13:57 +0000 (23:13 +0200)]
FTP: CURLE_PARTIAL_FILE should not cause control connection to be closed
Test 161 updated accordingly
Yang Tse [Sun, 8 Jan 2012 18:28:46 +0000 (19:28 +0100)]
sws.c: some compiler warning fixes
Yang Tse [Sun, 8 Jan 2012 01:32:51 +0000 (02:32 +0100)]
lib/setup.h: portable symbolic names for Winsock shutdown() mode flags
Yang Tse [Fri, 6 Jan 2012 00:52:45 +0000 (01:52 +0100)]
sws.c:
812fa73057 follow-up
Yang Tse [Thu, 5 Jan 2012 19:51:23 +0000 (20:51 +0100)]
sws.c: some IPv6 proxy mode peparatory adjustments
Daniel Stenberg [Thu, 5 Jan 2012 18:57:39 +0000 (19:57 +0100)]
curl.h: provide backwards compatible symbols
In commit
c834213ad52 we re-used some obsolete error codes, and here are
two defines that makes sure existing source codes that happen to use any
of these deprecated ones will still compile.
As usual, define CURL_NO_OLDIES to avoid getting these "precaution
defines".
Daniel Stenberg [Tue, 3 Jan 2012 15:22:50 +0000 (16:22 +0100)]
win32-threaded-resolver: stop using a dummy socket
Previously the code would create a dummy socket while resolving just to
have curl_multi_fdset() return something but the non-win32 version
doesn't do it this way and the creation and use of a socket that isn't
made with the common create-socket callback can be confusing to apps
using the multi_socket API etc.
This change removes the dummy socket and thus will cause
curl_multi_fdset() to return with maxfd == -1 more often.
Peter Sylvester [Wed, 4 Jan 2012 22:02:36 +0000 (23:02 +0100)]
OpenSSL: remove reference to openssl internal struct
With this change, curl compiles with the new OPENSSL_NO_SSL_INTERN
cflag. This flag might become the default in some distant future.
Yang Tse [Wed, 4 Jan 2012 18:34:52 +0000 (19:34 +0100)]
test1320 test1321: avoid User-Agent comparison
Yang Tse [Wed, 4 Jan 2012 18:28:22 +0000 (19:28 +0100)]
httpserver.pl: reorder sws command line options
make 'pidfile' and 'logfile' options appear first on command line in order
to ensure that processing of other options which write to logfile do this
to intended file and not the default one.
Yang Tse [Wed, 4 Jan 2012 18:14:19 +0000 (19:14 +0100)]
sws.c: fix proxy mode segfault
Yang Tse [Mon, 2 Jan 2012 18:31:02 +0000 (19:31 +0100)]
tool_formparse.c: fix compiler warning: enumerated type mixed with another type
Yang Tse [Mon, 2 Jan 2012 18:18:53 +0000 (19:18 +0100)]
krb5.c: fix compiler warning: variable set but not used
Daniel Stenberg [Wed, 4 Jan 2012 15:33:33 +0000 (16:33 +0100)]
KNOWN_BUGS: #77 CURLOPT_FORBID_REUSE kills NTLM
Steve Holme [Tue, 3 Jan 2012 23:17:08 +0000 (23:17 +0000)]
Fixed use of CURLUSESSL_TRY for POP3 and IMAP based connections.
Fixed a problem in POP3 and IMAP where a connection would fail when
CURLUSESSL_TRY was specified for a server that didn't support
SSL/TLS connections rather than continuing.
Steve Holme [Tue, 3 Jan 2012 23:01:51 +0000 (23:01 +0000)]
Fixed incorrect error code being returned in STARTTLS
The STARTTLS response code in SMTP, POP3 and IMAP would return
CURLE_LOGIN_DENIED rather than CURLE_USE_SSL_FAILED when SSL/TLS
was not available on the server.
Reported by: Gokhan Sengun
Bug: http://curl.haxx.se/mail/lib-2012-01/0018.html
Daniel Stenberg [Tue, 3 Jan 2012 22:39:22 +0000 (23:39 +0100)]
curl_easy_setopt: refer to the most recent URI RFC
Daniel Stenberg [Tue, 3 Jan 2012 22:33:52 +0000 (23:33 +0100)]
RELEASE-NOTES: synced with
2f4a487a68
Two bugfixes, two more contributors
Daniel Stenberg [Tue, 3 Jan 2012 15:12:58 +0000 (16:12 +0100)]
tests: test IMAP, POP3 and SMTP over HTTP proxy tunnel
Daniel Stenberg [Sat, 17 Dec 2011 22:47:22 +0000 (23:47 +0100)]
test proxy supports CONNECT
There's a new 'http-proxy' server for tests that runs on a separate port
and lets clients do HTTP CONNECT to other ports on the same host to
allow us to test HTTP "tunneling" properly.
Test cases now have a <proxy> section in <verify> to check that the
proxy protocol part matches correctly.
Test case 80, 83, 95, 275, 503 and 1078 have been converted. Test 1316
was added.
Daniel Stenberg [Mon, 2 Jan 2012 14:59:59 +0000 (15:59 +0100)]
curl_easy_strerror.3: minor synopsis edit of the look
Yang Tse [Mon, 2 Jan 2012 12:44:56 +0000 (13:44 +0100)]
hostip.c: fix potential write past the end of string buffer
Yang Tse [Mon, 2 Jan 2012 12:41:09 +0000 (13:41 +0100)]
hostip.c: fix Curl_loadhostpairs() OOM handling
Yang Tse [Mon, 2 Jan 2012 12:40:12 +0000 (13:40 +0100)]
runtests.pl: on test failure, don't show trace log files of other tests
Daniel Stenberg [Sun, 1 Jan 2012 21:36:32 +0000 (22:36 +0100)]
Curl_input_negotiate: use the correct buffer for input
Unfortunately we have no test cases for this and I have no SSPI build or
server to verify this with. The change seems simple enough though.
Bug: http://curl.haxx.se/bug/view.cgi?id=3466497
Reported by: Patrice Guerin