5 \___|\___/|_| \_\_____|
9 Version 7.32.0 (11 Aug 2013)
11 Daniel Stenberg (11 Aug 2013)
12 - THANKS: added contributors from the 7.32.0 release notes
14 - [Fabian Keil brought this change]
16 test1228: add 'HTTP proxy' to the keywords
18 - [Fabian Keil brought this change]
20 tests: add keywords for a couple of FILE tests
22 - [Fabian Keil brought this change]
24 tests: add 'FAILURE' keywords to tests 1409 and 1410
26 - [Fabian Keil brought this change]
28 tests: add keywords for a couple of HTTP tests
30 - [Fabian Keil brought this change]
32 tests: add keywords for a couple of FTP tests
34 - [Fabian Keil brought this change]
36 test1511: consistently terminate headers with CRLF
38 - DISABLED: shut of test 1512 for now
40 It shows intermittent failures and I haven't been able to track them
41 down yet. Disable this test for now.
43 - curl_multi_add_handle.3: ... that timer callback is for event-based
45 - comments: remove old and wrong multi/easy interface statements
47 - curl_multi_add_handle.3: mention the CURLMOPT_TIMERFUNCTION use
49 - [John E. Malmberg brought this change]
51 KNOWN_BUGS: 22 and 57 have been fixed and committed
53 - RELEASE-NOTES: synced with d20def20462e7
55 - global dns cache: fix memory leak
57 The take down of the global dns cache didn't take CURLOPT_RESOLVE names
60 - global dns cache: didn't work [regression]
62 CURLOPT_DNS_USE_GLOBAL_CACHE broke in commit c43127414d89ccb (been
63 broken since the libcurl 7.29.0 release). While this option has been
64 documented as deprecated for almost a decade and nobody even reported
65 this bug, it should remain functional.
67 Added test case 1512 to verify
70 - [John Malmberg brought this change]
72 packages/vms: update VMS build files
74 VMS modified files either missing from a previous commit and changes
75 to remove references to CVS repositories.
77 Daniel Stenberg (8 Aug 2013)
78 - FTP: renamed several local functions
80 The previous naming scheme ftp_state_post_XXXX() wasn't really helpful
81 as it wasn't always immediately after 'xxxx' and it wasn't easy to
82 understand what it does based on such a name.
84 This new one is instead ftp_state_yyyy() where yyyy describes what it
87 - mk-ca-bundle.1: don't install on make install
89 Since the mk-ca-bundle tool itself isn't installed with make install,
90 there's no point in installing its documentation.
92 Bug: http://curl.haxx.se/mail/lib-2013-08/0057.html
93 Reported-by: Guenter Knauf
96 - packages/vms/Makefile.am: add latest file additions to EXTRA_DIST
98 - [John Malmberg brought this change]
100 Building_vms_pcsi_kit
102 These are the files needed to build VMS distribution packages known as
105 Also minor update to the existing files, mainly to the documentation and
108 Daniel Stenberg (6 Aug 2013)
109 - LIBCURL-STRUCTS: new document
111 This is the first version of this new document, detailing the seven
112 perhaps most important internal structs in libcurl source code:
122 - CONTRIBUTE: minor language polish
124 - FTP: when EPSV gets a 229 but fails to connect, retry with PASV
126 This is a regression as this logic used to work. It isn't clear when it
127 broke, but I'm assuming in 7.28.0 when we went all-multi internally.
129 This likely never worked with the multi interface. As the failed
130 connection is detected once the multi state has reached DO_MORE, the
131 Curl_do_more() function was now expanded somewhat so that the
132 ftp_do_more() function can request to go "back" to the previous state
133 when it makes another attempt - using PASV.
135 Added test case 1233 to verify this fix. It has the little issue that it
136 assumes no service is listening/accepting connections on port 1...
138 Reported-by: byte_bucket in the #curl IRC channel
140 Nick Zitzmann (5 Aug 2013)
141 - md5: remove use of CommonCrypto-to-OpenSSL macros for the benefit of Leopard
143 For some reason, OS X 10.5's GCC suddenly stopped working correctly with
144 macros that change MD5_Init etc. in the code to CC_MD5_Init etc., so I
145 worked around this by removing use of the macros and inserting static
146 functions that just call CommonCrypto's implementations of the functions
149 Guenter Knauf (5 Aug 2013)
150 - Simplify check for trusted certificates.
152 This changes the previous check for untrusted certs to a check for
153 certs explicitely marked as trusted.
154 The change is backward-compatible (tested with certdata.txt v1.80).
156 Daniel Stenberg (5 Aug 2013)
157 - configure: warn on bad env variable use, don't error
159 Use XC_CHECK_BUILD_FLAGS instead XC_CHECK_USER_FLAGS.
161 - Revert "configure: don't error out on variable confusions, just warn"
163 This reverts commit 6b27703b5f525eccdc0a8409f51de8595c75132a.
165 - formadd: wrong pointer for file name when CURLFORM_BUFFERPTR used
167 The internal function that's used to detect known file extensions for
168 the default Content-Type got the the wrong pointer passed in when
169 CURLFORM_BUFFER + CURLFORM_BUFFERPTR were used. This had the effect that
170 strlen() would be used which could lead to an out-of-bounds read (and
171 thus segfault). In most cases it would only lead to it not finding or
172 using the correct default content-type.
174 It also showed that test 554 and test 587 were testing for the
175 previous/wrong behavior and now they're updated as well.
177 Bug: http://curl.haxx.se/bug/view.cgi?id=1262
178 Reported-by: Konstantin Isakov
180 Guenter Knauf (4 Aug 2013)
181 - Skip more untrusted certificates.
183 Christian Heimes brought to our attention that the certdata.txt
184 format has recently changed [1], causing ca-bundle.crt created
185 with mk-ca-bundle.[pl|vbs] to include untrusted certs.
187 [1] http://lists.debian.org/debian-release/2012/11/msg00411.html
189 Daniel Stenberg (4 Aug 2013)
190 - configure: don't error out on variable confusions, just warn
192 - configure: rephrase the notice in _XC_CHECK_VAR_*
194 Instead of claiming it is an error, we call it a "note" to reduce the
195 severity level. But the following text now says the [variable] "*should*
196 only be used to specify"... instead of previously having said "may".
198 - multi: remove data->state.current_conn struct field
202 - multi: remove the one_easy struct field
204 Since the merge of SessionHandle with Curl_one_easy, this indirection
207 - multi: rename all Curl_one_easy to SessionHandle
209 - multi: remove the multi_pos struct field
211 Since Curl_one_easy is really a SessionHandle now, this indirection
212 doesn't exist anymore.
214 - multi: remove easy_handle struct field
216 It isn't needed anymore
218 - multi: remove 'Curl_one_easy' struct, phase 1
220 The motivation for having a separate struct that keep track of an easy
221 handle when using the multi handle was removed when we switched to
222 always using the multi interface internally. Now they were just two
223 separate struct that was always allocated for each easy handle.
225 This first step just moves the Curl_one_easy struct members into the
226 SessionHandle struct and hides this somehow (== keeps the source code
227 changes to a minimum) by defining Curl_one_easy to SessionHandle
229 The biggest changes in this commit are:
231 1 - the linked list of easy handles had to be changed somewhat due
232 to the new struct layout. This made the main linked list pointer
233 get renamed to 'easyp' and there's also a new pointer to the last
234 node, called easylp. It is no longer circular but ends with ->next
235 pointing to NULL. New nodes are still added last.
237 2 - easy->state is now called easy->mstate to avoid name collision
239 Steve Holme (2 Aug 2013)
240 - Revert "DOCS: Added IMAP URL example for listing new messages"
242 This reverts commit 82ab5f1b0c7c3f as this was the wrong place to
243 document the complexity of IMAP URLs and Custom Requests.
245 - DOCS: Added IMAP URL example for listing new messages
247 In addition to listing the folder contents, in the URL examples, added
248 an example to list the new messages waiting in the user's inbox.
250 Yang Tse (1 Aug 2013)
251 - packages/vms/Makefile.am: add latest file additions to EXTRA_DIST
253 - [John Malmberg brought this change]
255 Add in the files needed to build libcurl shared images on VMS.
257 Update the packages/vms/readme file to be current.
259 Also some files for the GNV based build were either missing or needed an
262 curl_crtl_init.c is a special file that is run before main() to
263 set up the proper C runtime behavior.
265 generate_vax_transfer.com generates the VAX transfer vector modules from
266 the gnv_libcurl_symbols.opt file.
268 gnv_conftest.c_first is a helper file needed for configure scripts to
269 come up with the expected answers on VMS.
271 gnv_libcurl_symbols.opt is the public symbols for the libcurl shared
274 gnv_link_curl.com builds the shared libcurl image and rebuilds other
277 macro32_exactcase.patch is a hack to make a local copy of the VMS Macro32
278 assembler case sensitive, which is needed to build the VAX transfer modules.
280 report_openssl_version.c is a tool for help verify that the libcurl
281 shared image is being built for a minium version of openssl.
283 - curl: second follow-up for commit 5af2bfb9
285 Display progress-bar unconditionally on first call
287 - curl: follow-up for commit 5af2bfb9
289 Use tvnow() and tvdiff() to avoid introducing new linkage issues
291 Daniel Stenberg (31 Jul 2013)
292 - curl: --progress-bar max update frequency now at 5Hz
294 - curl: make --progress-bar update the line less frequently
296 Also, use memset() instead of a lame loop.
298 The previous logic that tried to avoid too many updates were very
299 ineffective for really fast transfers, as then it could easily end up
300 doing hundreds of updates per second that would make a significant
301 impact in transfer performance!
303 Bug: http://curl.haxx.se/mail/archive-2013-07/0031.html
304 Reported-by: Marc Doughty
306 Nick Zitzmann (30 Jul 2013)
307 - darwinssl: added LFs to some strings passed into infof()
309 (This doesn't need to appear in the release notes.) I noticed a few places
310 where infof() was called, and there should've been an LF at the end of the
311 string, but there wasn't.
313 - darwinssl: fix build error in crypto authentication under Snow Leopard
315 It turns out Snow Leopard not only has SecItemCopyMatching() defined in
316 a header not included by the omnibus header, but it won't work for our
317 purposes, because searching for SecIdentityRef objects wasn't added
318 to that API until Lion. So we now use the old SecKeychainSearch API
319 instead if the user is building under, or running under, Snow Leopard.
321 Bug: http://sourceforge.net/p/curl/bugs/1255/
322 Reported by: Edward Rudd
324 - md5 & metalink: use better build macros on Apple operating systems
326 Previously we used __MAC_10_X and __IPHONE_X to mark digest-generating
327 code that was specific to OS X and iOS. Now we use
328 __MAC_OS_X_VERSION_MAX_ALLOWED and __IPHONE_OS_VERSION_MAX_ALLOWED
329 instead of those macros.
331 Bug: http://sourceforge.net/p/curl/bugs/1255/
332 Reported by: Edward Rudd
334 Yang Tse (29 Jul 2013)
335 - tool_operhlp.c: fix add_file_name_to_url() OOM handling
337 - tool_operate.c: fix brace placement for vi/emacs delimiter matching
339 - tool_operate.c: move <fabdef.h> header inclusion location
341 Daniel Stenberg (29 Jul 2013)
342 - RELEASE-NOTES: synced with b5478a0e033e7
344 - curl_easy_pause: on unpause, trigger mulit-socket handling
346 When the multi-socket API is used, we need the handle to be checked
347 again when it gets unpaused.
349 Bug: http://curl.haxx.se/mail/lib-2013-07/0239.html
350 Reported-by: Justin Karneges
352 - [John E. Malmberg brought this change]
354 curl_formadd: fix file upload on VMS
356 For the standard VMS text file formats, VMS needs to read the file to
357 get the actual file size.
359 For the standard VMS binary file formats, VMS needs a special format of
360 fopen() call so that it stops reading at the logical end of file instead
361 of at the end of the blocks allocated to the file.
363 I structured the patch this way as I was not sure about changing the
364 structures or parameters to the routines, but would prefer to only call
365 the stat() function once and pass the information to where the fopen()
368 Bug: https://sourceforge.net/p/curl/bugs/758/
370 - formadd: CURLFORM_FILECONTENT wrongly rejected some option combos
372 The code for CURLFORM_FILECONTENT had its check for duplicate options
373 wrong so that it would reject CURLFORM_PTRNAME if used in combination
374 with it (but not CURLFORM_COPYNAME)! The flags field used for this
375 purpose cannot be interpreted that broadly.
377 Bug: http://curl.haxx.se/mail/lib-2013-07/0258.html
378 Reported-by: Byrial Jensen
380 Yang Tse (25 Jul 2013)
381 - packages/vms/Makefile.am: add latest file additions to EXTRA_DIST
383 - [John E. Malmberg brought this change]
385 VMS: intial set of files to allow building using GNV toolkit.
387 - string formatting: fix too many arguments for format
389 - string formatting: fix zero-length printf format string
391 - easy.c: curl_easy_getinfo() fix va_start/va_end matching
393 - imap.c: imap_sendf() fix va_start/va_end matching
395 - string formatting: fix 15+ printf-style format strings
397 Patrick Monnerat (24 Jul 2013)
398 - OS400: sync ILE/RPG binding with current curl.h
400 Yang Tse (24 Jul 2013)
401 - string formatting: fix 25+ printf-style format strings
403 Daniel Stenberg (23 Jul 2013)
404 - Makefile.am: use LDFLAGS as well when linking libcurl
406 Linking on Solaris 10 x86 with Sun Studio 12 failed when we upgraded
407 automake for the release builds.
409 Bug: http://curl.haxx.se/bug/view.cgi?id=1217
410 Reported-by: Dagobert Michelsen
412 - [Fabian Keil brought this change]
414 url.c: Fix dot file path cleanup when using an HTTP proxy
416 Previously the path was cleaned, but the URL wasn't properly updated.
418 - [Fabian Keil brought this change]
420 tests: test1232 verifies dotdot removal from path with proxy
422 - [Fabian Keil brought this change]
424 dotdot.c: Fix a RFC section number in a comment for Curl_dedotdotify()
426 - [John E. Malmberg brought this change]
428 build_vms.com: fix debug and float options
430 In the reorganization of the build_vms.com the debug and float options
431 were not fixed up correctly.
433 - [John E. Malmberg brought this change]
435 curl: fix upload of a zip file in OpenVMS
439 1. Force output file format to be stream-lf so that partial downloads
442 This should have minor impact as if the file does not exist, it was
443 created with stream-lf format. The only time this was an issue is if
444 there was already an existing file with a different format.
446 2. Fix file uploads are now fixed.
448 a. VMS binary files such as ZIP archives are now uploaded
451 b. VMS text files are read once to get the correct size
452 and then converted to line-feed terminated records as
453 they are read into curl.
455 The default VMS text formats do not contain either line-feed or
456 carriage-return terminated records. Those delimiters are added by the
457 operating system file read calls if the application requests them.
459 Bug: http://curl.haxx.se/bug/view.cgi?id=496
461 Yang Tse (22 Jul 2013)
462 - libtest: fix data type of some *_setopt() 'long' arguments
464 - curl: fix symbolic names for CURL_NETRC_* enum in --libcurl output
466 - curl: fix symbolic names for CURLUSESSL_* enum in --libcurl output
468 - tool_operate.c: fix passing curl_easy_setopt long arg on some x64 ABIs
470 We no longer pass our 'bool' data type variables nor constants as
471 an argument to my_setopt(), instead we use proper 1L or 0L values.
473 This also fixes macro used to pass string argument for CURLOPT_SSLCERT,
474 CURLOPT_SSLKEY and CURLOPT_EGDSOCKET using my_setopt_str() instead of
477 This also casts enum or int argument data types to long when passed to
480 Daniel Stenberg (21 Jul 2013)
481 - curl_multi_wait: fix revents
483 Commit 6d30f8ebed34e7276 didn't work properly. First, it used the wrong
484 array index, but this fix also:
486 1 - only does the copying if indeed there was any activity
488 2 - makes sure to properly translate between internal and external
489 bitfields, which are not guaranteed to match
491 Reported-by: Evgeny Turnaev
493 - RELEASE-NOTES: synced with d529f3882b9bca
495 - curl_easy_perform: gradually increase the delay time
497 Instead of going 50,100,150 etc millisecond delay time when nothing has
498 been found to do or wait for, we now start lower and double each loop as
501 This lowers the minimum wait without sacrifizing the longer wait too
502 much with unnecessary CPU cycles burnt.
504 Bug: http://curl.haxx.se/mail/lib-2013-07/0103.html
505 Reported-by: Andreas Malzahn
507 - ftp_do_more: consider DO_MORE complete when server connects back
509 In the case of an active connection when ftp_do_more() detects that the
510 server has connected back, it must make sure to mark it as complete so
511 that the multi_runsingle() function will detect this and move on to the
514 Bug: http://curl.haxx.se/mail/lib-2013-07/0115.html
515 Reported-by: Clemens Gruber
517 Yang Tse (19 Jul 2013)
518 - Makefile.b32: Borland makefile adjustments. Tested with BCC 5.5.1
520 - WIN32 MemoryTracking: require UNICODE for wide strdup code support
522 Daniel Stenberg (18 Jul 2013)
523 - CURLOPT_XFERINFOFUNCTION: introducing a new progress callback
525 CURLOPT_XFERINFOFUNCTION is now the preferred progress callback function
526 and CURLOPT_PROGRESSFUNCTION is considered deprecated.
528 This new callback uses pure 'curl_off_t' arguments to pass on full
529 resolution sizes. It otherwise retains the same characteristics: the
530 same call rate, the same meanings for the arguments and the return code
531 is used the same way.
533 The progressfunc.c example is updated to show how to use the new
534 callback for newer libcurls while supporting the older one if built with
535 an older libcurl or even built with a newer libcurl while running with
538 Yang Tse (18 Jul 2013)
539 - Reinstate "WIN32 MemoryTracking: track wcsdup() _wcsdup() and _tcsdup() usage".
541 This reverts commit 7ed25cc, reinstating commit 8ec2cb5.
543 As of 18-jul-2013 we still do have code in libcurl that makes use of these
544 memory functions. Commit 8ec2cb5 comment still applies and is yet valid.
546 These memory functions are solely used in Windows builds, so all related
547 code is protected with '#ifdef WIN32' preprocessor conditional compilation
550 Specifically, wcsdup() _wcsdup() are used when building a Windows target with
551 UNICODE and USE_WINDOWS_SSPI preprocessor symbols defined. This is the case
552 when building a Windows UNICODE target with Windows native SSL/TLS support
555 Realizing that wcsdup() _wcsdup() are used is a bit tricky given that usage
556 of these is hidden behind _tcsdup() which is MS way of dealing with code
557 that must tolerate UNICODE and non-UNICODE compilation. Additionally, MS
558 header files and those compatible from other compilers use this preprocessor
559 conditional compilation directive in order to select at compilation time
560 whether 'wide' or 'ansi' MS API functions are used.
562 Without this code, Windows build targets with Windows native SSL/TLS support
563 enabled and MemoryTracking support enabled misbehave in tracking memory usage,
564 regardless of being a UNICODE enabled build or not.
566 - xc-am-iface.m4: comments refinement
568 - configure: fix 'subdir-objects' distclean related issue
570 See XC_AMEND_DISTCLEAN comments for details.
572 Daniel Stenberg (18 Jul 2013)
573 - [Evgeny Turnaev brought this change]
575 curl_multi_wait: set revents for extra fds
577 Pass back the revents that happened for the user-provided file
580 - [Ben Greear brought this change]
582 asyn-ares: Don't blank ares servers if none configured.
584 Best to just let c-ares use it's defaults if none are configured
587 Signed-off-by: Ben Greear <greearb@candelatech.com>
589 - [Sergei Nikulov brought this change]
591 cmake: Fix for MSVC2010 project generation
593 Fixed issue with static build for MSVC2010.
595 After some investigation I've discovered known issue
596 http://public.kitware.com/Bug/view.php?id=11240 When .rc file is linked
597 to static lib it fails with following linker error
599 LINK : warning LNK4068: /MACHINE not specified; defaulting to X86
600 file.obj : fatal error LNK1112: module machine type 'x64' conflicts with
601 target machine type 'X86'
603 Fix add target property /MACHINE: for MSVC generation.
605 Also removed old workarounds - it caused errors during msvc build.
607 Bug: http://curl.haxx.se/mail/lib-2013-07/0046.html
609 - mk-ca-bundle.1: point out certdata.txt format docs
611 Yang Tse (16 Jul 2013)
612 - slist.c: Curl_slist_append_nodup() OOM handling fix
614 Daniel Stenberg (16 Jul 2013)
615 - test1414: FTP PORT download without SIZE support
617 Yang Tse (16 Jul 2013)
618 - tests/Makefile.am: add configurehelp.pm to DISTCLEANFILES
620 Patrick Monnerat (15 Jul 2013)
621 - curl_slist_append(): fix error detection
623 - slist.c: fix indentation
625 - OS400: new SSL backend GSKit
627 - OS400: add slist and certinfo EBCDIC support
629 - config-os400.h: enable system strdup(), strcmpi(), etc.
631 - x509asn1.c,x509asn1.h: new module to support ASN.1/X509 parsing & info extract
632 Use from qssl backend
634 - ssluse.c,sslgen.c,sslgen.h: move certinfo support to generic SSL
636 - Merge branch 'master' of github.com:bagder/curl
640 - slist.c, slist.h, cookie.c: new internal procedure Curl_slist_append_nodup()
642 Yang Tse (15 Jul 2013)
643 - sslgen.c: fix Curl_rand() compiler warning
645 Use simple seeding method upon RANDOM_FILE seeding method failure.
647 - sslgen.c: fix unreleased Curl_rand() infinite recursion
649 Daniel Stenberg (14 Jul 2013)
650 - [Dave Reisner brought this change]
652 src/tool: allow timeouts to accept decimal values
654 Implement wrappers around strtod to convert the user argument to a
655 double with sane error checking. Use this to allow --max-time and
656 --connect-timeout to accept decimal values instead of strictly integers.
658 The manpage is updated to make mention of this feature and,
659 additionally, forewarn that the actual timeout of the operation can
660 vary in its precision (particularly as the value increases in its
663 - [Dave Reisner brought this change]
665 curl.1: fix long line, found by checksrc.pl
667 - [Dave Reisner brought this change]
669 src/tool_paramhlp: try harder to catch negatives
671 strto* functions happily chomp off leading whitespace, so simply
672 checking for str[0] can lead to false negatives. Do the full parse and
673 check the out value instead.
675 - [John E. Malmberg brought this change]
677 build_vms.com: detect and use zlib shared image
679 Update the build_vms.com to detect and use zlib shared image installed
680 by the ZLIB kit produced by Jean-Francois Pieronne, and the also the
681 future ZLIB 1.2.8 kit in addition to the older ZLIB kits.
683 Also fix the indentation to match one of the common standards used for
684 VMS DCL command files and removed the hard tab characters.
686 Tested on OpenVMS 8.4 Alpha and IA64, and OpenVMS 7.3 VAX.
688 Yang Tse (14 Jul 2013)
689 - url.c: fix parse_url_login() OOM handling
691 - http_digest.c: SIGSEGV and OOM handling fixes
693 - url.c: fix parse_login_details() OOM handling
695 - [John E. Malmberg brought this change]
697 setup-vms.h: sk_pop symbol tweak
699 Newer versions of curl are referencing a sk_pop symbol while the HP
700 OpenSSL library has the symbol in uppercase only.
702 - getinfo.c: fix enumerated type mixed with another type
704 - test 1511: fix enumerated type mixed with another type
708 - dotdot.c: fix global declaration shadowing
710 - easy.c: fix global declaration shadowing
712 Kamil Dudka (9 Jul 2013)
713 - Revert "curl.1: document the --time-cond option in the man page"
715 This reverts commit 3a0e931fc715a80004958794a96b12cf90503f99 because
716 the documentation of --time-cond was duplicated by mistake.
718 Reported by: Dave Reisner
720 - curl.1: document the --sasl-ir option in the man page
722 - curl.1: document the --post303 option in the man page
724 - curl.1: document the --time-cond option in the man page
726 Yang Tse (9 Jul 2013)
727 - configure: automake 1.14 compatibility tweak (use XC_AUTOMAKE)
729 - xc-am-iface.m4: provide XC_AUTOMAKE macro
731 Guenter Knauf (8 Jul 2013)
732 - Added winssl-zlib target to VC builds.
734 - Synced Makefile.vc6 with recent changes.
736 Issue posted to the list by malinowsky AT FTW DOT at.
738 - Added libmetalink URL; added Android versions.
740 Dan Fandrich (3 Jul 2013)
741 - examples: Moved usercertinmem.c to COMPLICATED_EXAMPLES
743 This prevents it from being built during a "make check" since it
746 Nick Zitzmann (2 Jul 2013)
747 - Merge branch 'master' of https://github.com/bagder/curl
749 - darwinssl: SSLv2 connections are aborted if unsupported by the OS
751 I just noticed that OS X no longer supports SSLv2. Other TLS engines return
752 an error if the requested protocol isn't supported by the underlying
753 engine, so we do that now for SSLv2 if the framework returns an error
754 when trying to turn on SSLv2 support. (Note: As always, SSLv2 support is
755 only enabled in curl when starting the app with the -2 argument; it's off
756 by default. SSLv2 is really old and insecure.)
758 Marc Hoersken (1 Jul 2013)
759 - lib506.c: Fixed possible use of uninitialized variables
761 Kamil Dudka (30 Jun 2013)
762 - url: restore the functionality of 'curl -u :'
764 This commit fixes a regression introduced in
765 fddb7b44a79d78e05043e1c97e069308b6b85f79.
767 Reported by: Markus Moeller
768 Bug: http://curl.haxx.se/mail/archive-2013-06/0052.html
770 Daniel Stenberg (25 Jun 2013)
771 - digest: append the timer to the random for the nonce
773 - digest: improve nonce generation
775 Use the new improved Curl_rand() to generate better random nonce for
778 - curl.1: fix typo in --xattr description
780 Bug: http://curl.haxx.se/bug/view.cgi?id=1252
781 Reported-by: Jean-Noël Rouvignac
783 - RELEASE-NOTES: synced with 365c5ba39591
785 The 10 first bug fixes for the pending release...
787 - formpost: better random boundaries
789 When doing multi-part formposts, libcurl used a pseudo-random value that
790 was seeded with time(). This turns out to be bad for users who formpost
791 data that is provided with users who then can guess how the boundary
792 string will look like and then they can forge a different formpost part
793 and trick the receiver.
795 My advice to such implementors is (still even after this change) to not
796 rely on the boundary strings being cryptographically strong. Fix your
797 code and logic to not depend on them that much!
799 I moved the Curl_rand() function into the sslgen.c source file now to be
800 able to take advantage of the SSL library's random function if it
801 provides one. If not, try to use the RANDOM_FILE for seeding and as a
802 last resort keep the old logic, just modified to also add microseconds
803 which makes it harder to properly guess the exact seed.
805 The formboundary() function in formdata.c is now using 64 bit entropy
806 for the boundary and therefore the string of dashes was reduced by 4
807 letters and there are 16 hex digits following it. The total length is
810 Bug: http://curl.haxx.se/bug/view.cgi?id=1251
811 Reported-by: "Floris"
813 - printf: make sure %x are treated unsigned
815 When using %x, the number must be treated as unsigned as otherwise it
816 would get sign-extended on for example 64bit machines and do wrong
817 output. This problem showed when doing printf("%08x", 0xffeeddcc) on a
820 - tests: add test1395 to the tarball
822 - SIGPIPE: don't use 'data' in sigpipe restore
824 Follow-up fix from 7d80ed64e43515.
826 The SessionHandle may not be around to use when we restore the sigpipe
827 sighandler so we store the no_signal boolean in the local struct to know
830 - TODO: 1.8 Modified buffer size approach
832 Thoughts around buffer sizes and what might be possible to do...
834 - c-ares: improve error message on failed resolve
836 When the c-ares based resolver backend failed to resolve a name, it
837 tried to show the name that failed from existing structs. This caused
838 the wrong output and shown hostname when for example --interface
839 [hostname] was used and that name resolving failed.
841 Now we use the hostname used in the actual resolve attempt in the error
844 Bug: http://curl.haxx.se/bug/view.cgi?id=1191
845 Reported-by: Kim Vandry
847 - ossl_recv: check for an OpenSSL error, don't assume
849 When we recently started to treat a zero return code from SSL_read() as
850 an error we also got false positives - which primarily looks to be
851 because the OpenSSL documentation is wrong and a zero return code is not
852 at all an error case in many situations.
854 Now ossl_recv() will check with ERR_get_error() to see if there is a
855 stored error and only then consider it to be a true error if SSL_read()
858 Bug: http://curl.haxx.se/bug/view.cgi?id=1249
859 Reported-by: Nach M. S.
862 Nick Zitzmann (22 Jun 2013)
863 - Merge branch 'master' of https://github.com/bagder/curl
865 - darwinssl: fix crash that started happening in Lion
867 Something (a recent security update maybe?) changed in Lion, and now it
868 has changed SSLCopyPeerTrust such that it may return noErr but also give
869 us a null trust, which caught us off guard and caused an eventual crash.
871 Daniel Stenberg (22 Jun 2013)
872 - SIGPIPE: ignored while inside the library
874 ... and restore the ordinary handling again when it returns. This is
875 done for curl_easy_perform() and curl_easy_cleanup() only for now - and
876 only when built to use OpenSSL as backend as this is the known culprit
877 for the spurious SIGPIPEs people have received.
879 Bug: http://curl.haxx.se/bug/view.cgi?id=1180
880 Reported by: LluÃs Batlle i Rossell
882 - KNOWN_BUGS: #83 unable to load non-default openssl engines
884 - test1396: invoke the correct test tool!
886 This erroneously run unit test 1310 instead of 1396!
888 Kamil Dudka (22 Jun 2013)
889 - test1230: avoid using hard-wired port number
891 ... to prevent failure when a non-default -b option is given
893 - curl-config.in: replace tabs by spaces
895 Nick Zitzmann (22 Jun 2013)
896 - darwinssl: reform OS-specific #defines
898 This doesn't need to be in the release notes. I cleaned up a lot of the #if
899 lines in the code to use MAC_OS_X_VERSION_MIN_REQUIRED and
900 MAC_OS_X_VERSION_MAX_ALLOWED instead of checking for whether things like
901 __MAC_10_6 or whatever were defined, because for some SDKs Apple has released
902 they were defined out of place.
904 Daniel Stenberg (22 Jun 2013)
905 - [Alessandro Ghedini brought this change]
907 docs: fix typo in curl_easy_getinfo manpage
909 - dotdot: introducing dot file path cleanup
911 RFC3986 details how a path part passed in as part of a URI should be
912 "cleaned" from dot sequences before getting used. The described
913 algorithm is now implemented in lib/dotdot.c with the accompanied test
916 Bug: http://curl.haxx.se/bug/view.cgi?id=1200
917 Reported-by: Alex Vinnik
919 - bump: start working towards what most likely will become 7.32.0
921 - THANKS: added 24 new contributors from the 7.31.0 release
923 Version 7.31.0 (22 Jun 2013)
925 Daniel Stenberg (22 Jun 2013)
926 - RELEASE-NOTES: synced with 0de7249bb39a2 - 7.31.0
928 - unit1396: unit tests to verify curl_easy_(un)escape
930 - Curl_urldecode: no peeking beyond end of input buffer
932 Security problem: CVE-2013-2174
934 If a program would give a string like "%FF" to curl_easy_unescape() but
935 ask for it to decode only the first byte, it would still parse and
936 decode the full hex sequence. The function then not only read beyond the
937 allowed buffer but it would also deduct the *unsigned* counter variable
938 for how many more bytes there's left to read in the buffer by two,
939 making the counter wrap. Continuing this, the function would go on
940 reading beyond the buffer and soon writing beyond the allocated target
943 Bug: http://curl.haxx.se/docs/adv_20130622.html
944 Reported-by: Timo Sirainen
946 Guenter Knauf (20 Jun 2013)
947 - Use opened body.out file and write content to it.
949 Daniel Stenberg (20 Jun 2013)
950 - multi_socket: react on socket close immediately
952 As a remedy to the problem when a socket gets closed and a new one is
953 opened with the same file descriptor number and as a result
954 multi.c:singlesocket() doesn't detect the difference, the new function
955 Curl_multi_closed() gets told when a socket is closed so that it can be
956 removed from the socket hash. When the old one has been removed, a new
957 socket should be detected fine by the singlesocket() on next invoke.
959 Bug: http://curl.haxx.se/bug/view.cgi?id=1248
960 Reported-by: Erik Johansson
962 - RELEASE-NOTES: synced with e305f5ec715f
964 - TODO: mention the DANE patch from March
966 - CURLOPT_COOKIELIST: take cookie share lock
968 When performing COOKIELIST operations the cookie lock needs to be taken
969 for the cases where the cookies are shared among multiple handles!
971 Verified by Benjamin Gilbert's updated test 506
973 Bug: http://curl.haxx.se/bug/view.cgi?id=1215
974 Reported-by: Benjamin Gilbert
976 - [Benjamin Gilbert brought this change]
978 test506: verify that CURLOPT_COOKIELIST takes share lock
980 It doesn't right now: http://curl.haxx.se/bug/view.cgi?id=1215
982 - TODO: HTTP2/SPDY support
984 - curl_easy_setopt.3: clarify CURLOPT_PROGRESSFUNCTION frequency
986 Make it clearer that the CURLOPT_PROGRESSFUNCTION callback will be
987 called more frequently than once per second when things are happening.
989 - RELEASE-NOTES: synced with 9c3e098259b82
991 Mention 7 recent bug fixes and their associated contributors
993 - curl_multi_wait.3: clarify the numfds counter
995 - curl_easy_perform: avoid busy-looping
997 When curl_multi_wait() finds no file descriptor to wait for, it returns
998 instantly and this must be handled gracefully within curl_easy_perform()
999 or cause a busy-loop. Starting now, repeated fast returns without any
1000 file descriptors is detected and a gradually increasing sleep will be
1001 used (up to a max of 1000 milliseconds) before continuing the loop.
1003 Bug: http://curl.haxx.se/bug/view.cgi?id=1238
1004 Reported-by: Miguel Angel
1006 - [YAMADA Yasuharu brought this change]
1008 cookies: follow-up fix for path checking
1010 The initial fix to only compare full path names were done in commit
1011 04f52e9b4db0 but found out to be incomplete. This takes should make the
1012 change more complete and there's now two additional tests to verify
1015 - [Sergei Nikulov brought this change]
1017 lib1900: use tutil_tvnow instead of gettimeofday
1019 Makes it build on windows
1021 - [Eric Hu brought this change]
1023 axtls: now done non-blocking
1025 - [Eric Hu brought this change]
1027 test2033: requires NTLM support
1029 - KNOWN_BUGS: #82 failed build with Borland compiler
1031 - Curl_output_digest: support auth-int for empty entity body
1033 By always returning the md5 for an empty body when auth-int is asked
1034 for, libcurl now at least sometimes does the right thing.
1036 Bug: http://curl.haxx.se/bug/view.cgi?id=1235
1037 Patched-by: Nach M. S.
1039 - multi_socket: reduce timeout inaccuracy margin
1041 Allow less room for "triggered too early" mistakes by applications /
1042 timers on non-windows platforms. Starting now, we assume that a timeout
1043 call is never made earlier than 3 milliseconds before the actual
1044 timeout. This greatly improves timeout accuracy on Linux.
1046 Bug: http://curl.haxx.se/bug/view.cgi?id=1228
1047 Reported-by: Hang Su
1049 - cert_stuff: avoid double free in the PKCS12 code
1051 In the pkcs12 code, we get a list of x509 records returned from
1052 PKCS12_parse but when iterating over the list and passing each to
1053 SSL_CTX_add_extra_chain_cert() we didn't also properly remove them from
1054 the "stack", which made them get freed twice (both in sk_X509_pop_free()
1055 and then later in SSL_CTX_free).
1057 This isn't really documented anywhere...
1059 Bug: http://curl.haxx.se/bug/view.cgi?id=1236
1062 - cert_stuff: remove code duplication in the pkcs12 logic
1064 - [Aleksey Tulinov brought this change]
1066 axtls: honor disabled VERIFYHOST
1068 When VERIFYHOST == 0, libcurl should let invalid certificates to pass.
1070 - [Peter Gal brought this change]
1072 curl_easy_setopt.3: HTTP header with no content
1074 Update the documentation on how to specify a HTTP header with no
1077 - RELEASE-NOTES: synced with 87cf677eca55
1079 Added 11 bugs and 7 contributors
1081 - lib1500: remove bad check
1083 After curl_multi_wait() returns, this test checked that we got exactly
1084 one file descriptor told to read from, but we cannot be sure that is
1085 true. curl_multi_wait() will sometimes return earlier without any file
1086 descriptor to handle, just just because it is a suitable time to call
1089 This problem showed up with commit 29bf0598.
1091 Bug: http://curl.haxx.se/mail/lib-2013-06/0029.html
1092 Reported-by: Fabian Keil
1094 - tests/Makefile: typo in the perlcheck target
1096 Bug: http://curl.haxx.se/bug/view.cgi?id=1239
1097 Reported-by: Christian Weisgerber
1099 - test1230: verify CONNECT to a numerical ipv6-address
1101 - sws: support extracting test number from CONNECT ipv6-address!
1103 If an ipv6-address is provided to CONNECT, the last hexadecimal group in
1104 the address will be used as the test number! For example the address
1105 "[1234::ff]" would be treated as test case 255.
1107 - curl_multi_wait: only use internal timer if not -1
1109 commit 29bf0598aad5 introduced a problem when the "internal" timeout is
1110 prefered to the given if shorter, as it didn't consider the case where
1111 -1 was returned. Now the internal timeout is only considered if not -1.
1113 Reported-by: Tor Arntsen
1114 Bug: http://curl.haxx.se/mail/lib-2013-06/0015.html
1116 Dan Fandrich (3 Jun 2013)
1117 - libcurl-tutorial.3: added a section on IPv6
1119 Also added a (correctly-escaped) backslash to the autoexec.bat
1120 example file and a new Windows character device name with
1121 a colon as examples of other characters that are special
1122 and potentially dangerous (this reverts and reworks commit
1125 Daniel Stenberg (3 Jun 2013)
1126 - curl_multi_wait: reduce timeout if the multi handle wants to
1128 If the multi handle's pending timeout is less than what is passed into
1129 this function, it will now opt to use the shorter time anyway since it
1130 is a very good hint that the handle wants to process something in a
1131 shorter time than what otherwise would happen.
1133 curl_multi_wait.3 was updated accordingly to clarify
1135 This is the reason for bug #1224
1137 Bug: http://curl.haxx.se/bug/view.cgi?id=1224
1138 Reported-by: Andrii Moiseiev
1140 - multi_runsingle: switch an if() condition for readability
1142 ... because there's an identical check right next to it so using the
1143 operators in the check in the same order increases readability.
1145 Marc Hoersken (2 Jun 2013)
1146 - curl_schannel.c: Removed variable unused since 35874298e4
1148 - curl_setup.h: Fixed redefinition warning using mingw-w64
1150 Daniel Stenberg (30 May 2013)
1151 - multi_runsingle: add braces to clarify the code
1153 - libcurl-tutorial.3: remove incorrect backslash
1155 A single backslash in the content is not legal nroff syntax.
1157 Reported and fixed by: Eric S. Raymond
1158 Bug: http://curl.haxx.se/bug/view.cgi?id=1234
1160 - curl_formadd.3: fixed wrong "end-marker" syntax
1162 Reported and fixed by: Eric S. Raymond
1163 Bug: http://curl.haxx.se/bug/view.cgi?id=1233
1165 - curl.1: clarify that --silent still outputs data
1167 - Digest auth: escape user names with \ or " in them
1169 When sending the HTTP Authorization: header for digest, the user name
1170 needs to be escaped if it contains a double-quote or backslash.
1172 Test 1229 was added to verify
1174 Reported and fixed by: Nach M. S
1175 Bug: http://curl.haxx.se/bug/view.cgi?id=1230
1177 - [Mike Giancola brought this change]
1179 ossl_recv: SSL_read() returning 0 is an error too
1181 SSL_read can return 0 for "not successful", according to the open SSL
1182 documentation: http://www.openssl.org/docs/ssl/SSL_read.html
1184 - [Mike Giancola brought this change]
1186 ossl_send: SSL_write() returning 0 is an error too
1188 We found that in specific cases if the connection is abruptly closed,
1189 the underlying socket is listed in a close_wait state. We continue to
1190 call the curl_multi_perform, curl_mutli_fdset etc. None of these APIs
1191 report the socket closed / connection finished. Since we have cases
1192 where the multi connection is only used once, this can pose a problem
1193 for us. I've read that if another connection was to come in, curl would
1194 see the socket as bad and attempt to close it at that time -
1195 unfortunately, this does not work for us.
1197 I found that in specific situations, if SSL_write returns 0, curl did
1198 not recognize the socket as closed (or errored out) and did not report
1199 it to the application. I believe we need to change the code slightly, to
1200 check if ssl_write returns 0. If so, treat it as an error - the same as
1201 a negative return code.
1203 For OpenSSL - the ssl_write documentation is here:
1204 http://www.openssl.org/docs/ssl/SSL_write.html
1206 - KNOWN_BUGS: curl -OJC- fails to resume
1208 Bug: http://curl.haxx.se/bug/view.cgi?id=1169
1210 - Curl_cookie_add: handle IPv6 hosts
1212 1 - don't skip host names with a colon in them in an attempt to bail out
1213 on HTTP headers in the cookie file parser. It was only a shortcut anyway
1214 and trying to parse a file with HTTP headers will still be handled, only
1217 2 - don't skip domain names based on number of dots. The original
1218 netscape cookie spec had this oddity mentioned and while our code
1219 decreased the check to only check for two, the existing cookie spec has
1220 no such dot counting required.
1222 Bug: http://curl.haxx.se/bug/view.cgi?id=1221
1223 Reported-by: Stefan Neis
1225 - curl_easy_setopt.3: expand the PROGRESSFUNCTION section
1227 Explain the callback and its arguments better and with more descriptive
1230 - tests: add test1394 file to the tarball
1232 - tarball: include the xmlstream example
1234 - [David Strauss brought this change]
1236 xmlstream: XML stream parsing example source code
1238 Add an XML stream parsing example using Expat. Add missing ignore for
1239 the binary from an unrelated example.
1241 - [YAMADA Yasuharu brought this change]
1243 cookies: only consider full path matches
1245 I found a bug which cURL sends cookies to the path not to aim at.
1247 - cURL sends a request to http://example.fake/hoge/
1248 - server returns cookie which with path=/hoge;
1249 the point is there is NOT the '/' end of path string.
1250 - cURL sends a request to http://example.fake/hogege/ with the cookie.
1252 The reason for this old "feature" is because that behavior is what is
1253 described in the original netscape cookie spec:
1254 http://curl.haxx.se/rfc/cookie_spec.html
1256 The current cookie spec (RFC6265) clarifies the situation:
1257 http://tools.ietf.org/html/rfc6265#section-5.2.4
1259 - [Eric Hu brought this change]
1261 axtls: prevent memleaks on SSL handshake failures
1263 - Revert "WIN32 MemoryTracking: track wcsdup() _wcsdup() and _tcsdup() usage"
1265 This reverts commit 8ec2cb5544b86306b702484ea785b6b9596562ab.
1267 We don't have any code anywhere in libcurl (or the curl tool) that use
1268 wcsdup so there's no such memory use to track. It seems to cause mild
1269 problems with the Borland compiler though that we may avoid by reverting
1272 Bug: http://curl.haxx.se/mail/lib-2013-05/0070.html
1274 - RELEASE-NOTES: synced with ae26ee3489588f0
1276 Guenter Knauf (11 May 2013)
1277 - Updated zlib version in build files.
1279 Daniel Stenberg (9 May 2013)
1280 - [Renaud Guillard brought this change]
1282 OS X framework: fix invalid symbolic link
1284 Kamil Dudka (9 May 2013)
1285 - [Daniel Stenberg brought this change]
1287 nss: give PR_INTERVAL_NO_WAIT instead of -1 to PR_Recv/PR_Send
1289 Reported by: David Strauss
1290 Bug: http://curl.haxx.se/mail/lib-2013-05/0088.html
1292 Daniel Stenberg (8 May 2013)
1293 - libtest: gitignore more binary files
1295 - servercert: allow empty subject
1297 Bug: http://curl.haxx.se/bug/view.cgi?id=1220
1298 Patch by: John Gardiner Myers
1300 - [Steve Holme brought this change]
1302 tests: Added new SMTP tests to verify commit 99b40451836d
1304 - runtests.pl: support nonewline="yes" in client/stdin sections
1306 - build: fixed unit1394 for debug and metlink builds
1308 Kamil Dudka (6 May 2013)
1309 - unit1394.c: plug the curl tool unit test in
1311 - [Jared Jennings brought this change]
1313 unit1394.c: basis of a unit test for parse_cert_parameter()
1315 - src/Makefile.am: build static lib for unit tests if enabled
1317 - tool_getparam: ensure string termination in parse_cert_parameter()
1319 - tool_getparam: fix memleak in handling the -E option
1321 - tool_getparam: describe what parse_cert_parameter() does
1323 ... and de-duplicate the code initializing *passphrase
1325 - curl.1: document escape sequences recognized by -E
1327 - [Jared Jennings brought this change]
1329 curl -E: allow to escape ':' in cert nickname
1331 Marc Hoersken (5 May 2013)
1332 - curl_schannel.c: Fixed invalid memory access during SSL shutdown
1334 Steve Holme (4 May 2013)
1335 - smtp: Fix trailing whitespace warning
1337 - smtp: Fix compilation warning
1339 comparison between signed and unsigned integer expressions
1341 - RELEASE-NOTES: synced with 92ef5f19c801
1343 - smtp: Updated RFC-2821 references to RFC-5321
1345 - smtp: Fixed sending of double CRLF caused by first in EOB
1347 If the mail sent during the transfer contains a terminating <CRLF> then
1348 we should not send the first <CRLF> of the EOB as specified in RFC-5321.
1350 Additionally don't send the <CRLF> if there is "no mail data" as the
1351 DATA command already includes it.
1353 - tests: Corrected MAIL SIZE for CRLF line endings
1355 ... which was missed in commit: f5c3d9538452
1357 - tests: Corrected infilesize for CRLF line endings
1359 ... which was missed in commit: f5c3d9538452
1361 - tests: Corrected test1406 to be RFC2821 compliant
1363 - tests: Corrected test1320 to be RFC2821 compliant
1365 - tests: Corrected typo in test909
1367 Introduced in commit: 514817669e9e
1369 - tests: Corrected test909 to be RFC2821 compliant
1371 - tests: Updated test references to 909 from 1411
1373 ...and removed references to libcurl and test1406.
1375 - tests: Renamed test1411 to test909 as this is a main SMTP test
1377 Daniel Stenberg (1 May 2013)
1378 - [Lars Johannesen brought this change]
1380 bindlocal: move brace out of #ifdef
1382 The code within #ifdef HAVE_SOCKADDR_IN6_SIN6_SCOPE_ID wrongly had two
1383 closing braces when it should only have one, so builds without that
1386 Bug: http://curl.haxx.se/mail/lib-2013-05/0000.html
1388 Steve Holme (30 Apr 2013)
1389 - smtp: Tidy up to move the eob counter to the per-request structure
1391 Move the eob counter from the smtp_conn structure to the SMTP structure
1392 as it is associated with a SMTP payload on a per-request basis.
1394 - TODO: Updated following the addition of CURLOPT_SASL_IR
1396 - smtp: Fixed unknown percentage complete in progress bar
1398 The curl command line utility would display the the completed progress
1399 bar with a percentage of zero as the progress routines didn't know the
1400 size of the transfer.
1402 Daniel Stenberg (29 Apr 2013)
1403 - ftpserver: silence warnings
1405 Fix regressions in commit b56e3d43e5d. Make @data local and filter off
1406 non-numerical digits from $testno in STATUS_imap.
1408 Steve Holme (29 Apr 2013)
1409 - ftpserver.pl: Corrected the imap LOGIN response
1411 ...to be more realistic and consistent with the other imap responses.
1413 - tests: Added imap STATUS command test
1415 - tests: Corrected the SMTP tests to be RFC2821 compliant
1417 The emails that are sent to the server during these tests were
1418 incorrectly formatted as they contained one or more LF terminated lines
1419 rather than being CRLF terminated as per Section 2.3.7 of RFC-2821.
1421 This wasn't a problem for the test suite as the <stdin> data matched the
1422 <upload> data but anyone using these tests as reference would be sending
1423 incorrect data to a server.
1425 - email: Tidy up of *_perform_authenticate()
1427 Removed the hard returns from imap and pop3 by using the same style for
1428 sending the authentication string as smtp. Moved the "Other mechanisms
1429 not supported" check in smtp to match that of imap and pop3 to provide
1430 consistency between the three email protocols.
1432 - smtp: Updated limit check to be more readable like the check in pop3
1434 - pop3: Added 255 octet limit check when sending initial response
1436 Added 255 octet limit check as per Section 4. Paragraph 8 of RFC-5034.
1438 - DOCS: Corrected line length of recent Secure Transport changes
1440 Nick Zitzmann (27 Apr 2013)
1441 - darwinssl: add TLS crypto authentication
1443 Users using the Secure Transport (darwinssl) back-end can now use a
1444 certificate and private key to authenticate with a site using TLS. Because
1445 Apple's security system is based around the keychain and does not have any
1446 non-public function to create a SecIdentityRef data structure from data
1447 loaded outside of the Keychain, the certificate and private key have to be
1448 loaded into the Keychain first (using the certtool command line tool or
1449 the Security framework's C API) before we can find it and use it.
1451 Steve Holme (27 Apr 2013)
1452 - Corrected version numbers after bump
1454 Daniel Stenberg (27 Apr 2013)
1457 Since we're adding new stuff, the next release will bump the minor
1458 version and we're looking forward to 7.31.0
1460 Steve Holme (27 Apr 2013)
1461 - RELEASE-NOTES: synced with f4e6e201b146
1463 - DOCS: Updated following the addition of CURLOPT_SASL_IR
1465 Documented the the option in curl_easy_setopt() and added it to
1466 symbols-in-versions.
1468 - tests: Corrected command line arguments in test907 and test908
1470 - tests: Added SMTP AUTH with initial response tests
1472 - tests: Updated SMTP tests to decouple client initial response
1474 Updated test903 and test904 following the addition of CURLOPT_SASL_IR
1475 as the default behaviour of SMTP AUTH responses is now to not include
1476 the initial response. New tests with --sasl-ir support to follow.
1478 - imap: Added support for overriding the SASL initial response
1480 In addition to checking for the SASL-IR capability the user can override
1481 the sending of the client's initial response in the AUTHENTICATION
1482 command with the use of CURLOPT_SASL_IR should the server erroneously
1483 not report SASL-IR when it does support it.
1485 - smtp: Added support for disabling the SASL initial response
1487 Updated the default behaviour of sending the client's initial response in the AUTH
1488 command to not send it and added support for CURLOPT_SASL_IR to allow the user to
1489 specify including the response.
1491 Related Bug: http://curl.haxx.se/mail/lib-2012-03/0114.html
1492 Reported-by: Gokhan Sengun
1494 - pop3: Added support for enabling the SASL initial response
1496 Allowed the user to specify whether to send the client's intial response
1497 in the AUTH command via CURLOPT_SASL_IR.
1499 - sasl-ir: Added --sasl-ir option to curl command line tool
1501 - sasl-ir: Added CURLOPT_SASL_IR to enable/disable the SASL initial response
1503 Daniel Stenberg (26 Apr 2013)
1504 - curl_easy_init: use less mallocs
1506 By introducing an internal alternative to curl_multi_init() that accepts
1507 parameters to set the hash sizes, easy handles will now use tiny socket
1508 and connection hash tables since it will only ever add a single easy
1509 handle to that multi handle.
1511 This decreased the number mallocs in test 40 (which is a rather simple
1512 and typical easy interface use case) from 1142 to 138. The maximum
1513 amount of memory allocated used went down from 118969 to 78805.
1515 Steve Holme (26 Apr 2013)
1516 - ftpserver.pl: Fixed imap logout confirmation data
1518 An IMAP server should response with the BYE continuation response before
1519 confirming the LOGOUT command was successful.
1521 Daniel Stenberg (26 Apr 2013)
1522 - ftp_state_pasv_resp: connect through proxy also when set by env
1524 When connecting back to an FTP server after having sent PASV/EPSV,
1525 libcurl sometimes didn't use the proxy properly even though the proxy
1526 was used for the initial connect.
1528 The function wrongly checked for the CURLOPT_PROXY variable to be set,
1529 which made it act wrongly if the proxy information was set with an
1530 environment variable.
1532 Added test case 711 to verify (based on 707 which uses --socks5). Also
1533 added test712 to verify another variation of setting the proxy: with
1536 Bug: http://curl.haxx.se/bug/view.cgi?id=1218
1537 Reported-by: Zekun Ni
1539 Kamil Dudka (26 Apr 2013)
1540 - [Zdenek Pavlas brought this change]
1542 url: initialize speed-check data for file:// protocol
1544 ... in order to prevent an artificial timeout event based on stale
1545 speed-check data from a previous network transfer. This commit fixes
1546 a regression caused by 9dd85bced56f6951107f69e581c872c1e7e3e58e.
1548 Bug: https://bugzilla.redhat.com/906031
1550 Daniel Stenberg (25 Apr 2013)
1551 - test709: clarify the test in the name
1553 - sshserver: disable StrictHostKeyChecking
1555 I couldn't figure out why the host key logic isn't working, but having
1556 it set to yes prevents my SSH-based test cases to run. I also don't see
1557 a strong need to use strict host key checking on this test server.
1561 - runtests: log more commands in verbose mode
1563 ... to aid tracking down failures
1565 Steve Holme (25 Apr 2013)
1566 - TODO: Corrected copy/paste typo
1568 - TODO: Added new ideas for future SMTP, POP3 and IMAP features
1570 - TODO: Updated following the addition of ;auth=<MECH> support
1572 - DOCS: Minor rewording / clarification of host name protocol detection
1574 - RELEASE-NOTES: synced with a8c92cb60890
1576 - DOCS: Added reference to IETF draft for SMTP URL Interface
1578 ...when mentioning login options. Additional minor clarification of
1579 "Windows builds" to be "Windows builds with SSPI"as a way of enabling
1580 NTLM as Windows builds may be built with OpenSSL to enable NTLM or
1581 without NTLM support altogether.
1583 Linus Nielsen Feltzing (23 Apr 2013)
1584 - HISTORY: Fix spelling error.
1586 Steve Holme (23 Apr 2013)
1587 - DOCS: Reworked the scheme calculation explanation under CURLOPT_URL
1589 - url: Added smtp and pop3 hostnames to the protocol detection list
1591 Daniel Stenberg (23 Apr 2013)
1592 - HISTORY: correct some years/dates
1594 Thanks to archive.org's wayback machine I updated this document with
1595 some facts from the early httpget/urlget web page:
1597 http://web.archive.org/web/19980216125115/http://www.inf.ufrgs.br/~sagula/urlget.html
1599 - [Alessandro Ghedini brought this change]
1601 tests: add test1511 to check timecond clean-up
1603 Verifies the timecond fix in commit c49ed0b6c0f
1605 - [Alessandro Ghedini brought this change]
1607 getinfo.c: reset timecond when clearing session-info variables
1609 Bug: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=705783
1610 Reported-by: Ludovico Cavedon <cavedon@debian.org>
1612 Steve Holme (22 Apr 2013)
1613 - DOCS: Added information about login options to CURLOPT_USERPWD
1615 - DOCS: Added information about login options in the URL
1617 - url: Fixed missing length check in parse_proxy()
1619 Commit 11332577b3cb removed the length check that was performed by the
1622 - url: Fixed crash when no username or password supplied for proxy
1624 Fixed an issue in parse_proxy(), introduced in commit 11332577b3cb,
1625 where an empty username or password (For example: http://:@example.com)
1626 would cause a crash.
1628 - url: Removed unused text length constants
1630 - url: Updated proxy URL parsing to use parse_login_details()
1632 - url: Tidy up of setstropt_userpwd() parameters
1634 Updated the naming convention of the login parameters to match those of
1637 - url: Tidy up of code and comments following recent changes
1639 Tidy up of variable names and comments in setstropt_userpwd() and
1640 parse_login_details().
1642 - url: Simplified setstropt_userpwd() following recent changes
1644 There is no need to perform separate clearing of data if a NULL option
1645 pointer is passed in. Instead this operation can be performed by simply
1646 not calling parse_login_details() and letting the rest of the code do
1649 - url: Correction to scope of if statements when setting data
1651 - url: Fixed memory leak in setstropt_userpwd()
1653 setstropt_userpwd() was calling setstropt() in commit fddb7b44a79d to
1654 set each of the login details which would duplicate the strings and
1655 subsequently cause a memory leak.
1657 - RELEASE-NOTES: synced with d535c4a2e1f7
1659 - url: Added overriding of URL login options from CURLOPT_USERPWD
1661 - tool_paramhlp: Fixed options being included in username
1663 Fix to prevent the options from being displayed when curl requests the
1664 user's password if the following command line is specified:
1666 --user username;options
1668 - url: Added support for parsing login options from the CURLOPT_USERPWD
1670 In addition to parsing the optional login options from the URL, added
1671 support for parsing them from CURLOPT_USERPWD, to allow the following
1672 supported command line:
1674 --user username:password;options
1676 - url: Added bounds checking to parse_login_details()
1678 Added bounds checking when searching for the separator characters within
1679 the login string as this string may not be NULL terminated (For example
1680 it is the login part of a URL). We do this in preference to allocating a
1681 new string to copy the login details into which could then be passed to
1682 parse_login_details() for performance reasons.
1684 - url: Added size_t cast to pointer based length calculations
1686 - url: Corrected minor typo in comment
1688 Daniel Stenberg (18 Apr 2013)
1689 - CURL_CHECK_CA_BUNDLE: don't check for paths when cross-compiling
1691 When cross-compiling we can't scan and detect existing files or paths.
1693 Bug: http://curl.haxx.se/mail/lib-2013-04/0294.html
1695 - [Ishan SinghLevett brought this change]
1697 usercertinmem.c: add example showing user cert in memory
1699 Relies on CURLOPT_SSL_CTX_FUNCTION, which is OpenSSL specific
1701 Steve Holme (18 Apr 2013)
1702 - url: Fix chksrc longer than 79 columns warning
1704 - url: Fix incorrect variable type for result code
1706 - url: Fix compiler warning
1708 signed and unsigned type in conditional expression
1710 - url: Moved parsing of login details out of parse_url_login()
1712 Separated the parsing of login details from the processing of them in
1713 parse_url_login() ready for use by setstropt_userpwd().
1715 - url: Re-factored set_userpass() and parse_url_userpass()
1717 Re-factored these functions to reflect their new behaviour following the
1718 addition of login options.
1720 - url: Reworked URL parsing to allow overriding by CURLOPT_USERPWD
1722 Daniel Stenberg (18 Apr 2013)
1723 - maketgz: make bzip2 creation work with Parallel BZIP2 too
1725 Apparently the previous usage didn't work with that implementation,
1726 while this updated version works with at least both Parallel BZIP2
1727 v1.1.8 and regular bzip "Version 1.0.6, 6-Sept-2010".
1729 Linus Nielsen Feltzing (18 Apr 2013)
1730 - Add tests/http_pipe.py to the tarball build
1732 Steve Holme (16 Apr 2013)
1733 - smtp: Re-factored all perform based functions
1735 Standardised the naming of all perform based functions to be in the form
1736 smtp_perform_something().
1738 - smtp: Added description comments to all perform based functions
1740 - smtp: Moved smtp_quit() to be with the other perform functions
1742 - smtp: Moved smtp_rcpt_to() to be with the other perform functions
1744 - smtp: Moved smtp_mail() to be with the other perform functions
1746 Daniel Stenberg (16 Apr 2013)
1747 - [Wouter Van Rooy brought this change]
1749 curl-config: don't output static libs when they are disabled
1751 Curl-config outputs static libraries even when they are disabled in
1754 This causes problems with the build of pycurl.
1756 - [Dave Reisner brought this change]
1758 docs/libcurl: fix formatting in manpage
1760 Commit c3ea3eb6 introduced some minor cosmetic errors in
1761 curl_mutli_socket_action(3).
1763 - [Paul Howarth brought this change]
1765 Add extra libs for lib1900 and lib2033 test programs
1767 These are needed in cases where clock_gettime is used, from librt.
1769 Dan Fandrich (15 Apr 2013)
1770 - FAQ: mention that the network connection can be monitored
1772 Also note the prohibition on sharing handles across threads.
1774 Steve Holme (15 Apr 2013)
1775 - pop3: Added missing comment for pop3_state_apop_resp()
1777 - smtp: Updated the coding style of smtp_state_servergreet_resp()
1779 Updated the coding style, in this function, to be consistant with other
1780 response functions rather then performing a hard return on failure.
1782 - pop3: Updated the coding style of pop3_state_servergreet_resp()
1784 Updated the coding style, in this function, to be consistent with other
1785 response functions rather then performing a hard return on failure.
1787 - pop3: Re-factored all perform based functions
1789 Standardised the naming of all perform based functions to be in the form
1790 pop3_perform_something() following the changes made to IMAP.
1792 - pop3: Added description comments to all perform based functions
1794 - pop3: Moved pop3_quit() to be with the other perform functions
1796 - pop3: Moved pop3_command() to be with the other perform functions
1798 Started to apply the same tidy up to the POP3 code as applied to the
1799 IMAP code in the 7.30.0 release.
1801 - RELEASE-NOTES: Removed erroneous spaces
1803 - RELEASE-NOTES: synced with 8723cade21fb
1805 - smtp: Added support for ;auth=<mech> in the URL
1807 Added support for specifying the preferred authentication mechanism in
1808 the URL as per Internet-Draft 'draft-earhart-url-smtp-00'.
1810 - pop3: Reworked authentication type constants
1812 ... to use left-shifted values, like those defined in curl.h, rather
1813 than 16-bit hexadecimal values.
1815 - pop3: Small consistency tidy up
1817 - pop3: Added support for ;auth=<mech> in the URL
1819 Added support for specifying the preferred authentication type and SASL
1820 mechanism in the URL as per RFC-2384.
1822 - imap: Added support for ;auth=<mech> in the URL
1824 Added support for specifying the preferred authentication mechanism in
1825 the URL as per RFC-5092.
1827 - sasl: Reworked SASL mechanism constants
1829 ... to use left-shifted values, like those defined in curl.h, rather
1830 than 16-bit hexadecimal values.
1832 - sasl: Added predefined preferred mechanism values
1834 In preparation for the upcoming changes to IMAP, POP3 and SMTP added
1835 preferred mechanism values.
1837 - url: Added support for parsing login options from the URL
1839 As well as parsing the username and password from the URL, added support
1840 for parsing the optional options part from the login details, to allow
1841 the following supported URL format:
1843 schema://username:password;options@example.com/path?q=foobar
1845 This will only be used by IMAP, POP3 and SMTP at present but any
1846 protocol that may be given login options in the URL will be able to
1847 add support for them.
1849 - smtp: Fix compiler warning
1851 warning: unused variable 'smtp' introduced in commit 73cbd21b5ee6.
1853 - smtp: Moved parsing of url path into separate function
1855 Daniel Stenberg (12 Apr 2013)
1856 - FTP: handle a 230 welcome response
1858 ...instead of the 220 we otherwise expect.
1860 Made the ftpserver.pl support sending a custom "welcome" and then
1861 created test 1219 to verify this fix with such a 230 welcome.
1863 Bug: http://curl.haxx.se/mail/lib-2013-02/0102.html
1864 Reported by: Anders Havn
1866 - configure: try pthread_create without -lpthread
1868 For libc variants without a spearate pthread lib (like bionic), try
1869 using pthreads without the pthreads lib first and only if that fails try
1870 the -lpthread linker flag.
1872 Bug: http://curl.haxx.se/bug/view.cgi?id=1216
1875 - FTP: access files in root dir correctly
1877 Accessing a file with an absolute path in the root dir but with no
1878 directory specified was not handled correctly. This fix comes with four
1879 new test cases that verify it.
1881 Bug: http://curl.haxx.se/mail/lib-2013-04/0142.html
1882 Reported by: Sam Deane
1884 Steve Holme (12 Apr 2013)
1885 - pop3: Reworked the function description for Curl_pop3_write()
1887 - pop3: Added function description to pop3_parse_custom_request()
1889 - pop3: Moved utility functions to end of pop3.c
1891 Nick Zitzmann (12 Apr 2013)
1892 - darwinssl: add TLS session resumption
1894 This ought to speed up additional TLS handshakes, at least in theory.
1896 Steve Holme (12 Apr 2013)
1897 - imap: Added function description to imap_parse_custom_request()
1899 - imap: Moved utility functions to end of imap.c (Part 3/3)
1901 Moved imap_is_bchar() be with the other utility based functions.
1903 - imap: Moved utility functions to end of imap.c (Part 2/3)
1905 Moved imap_parse_url_path() and imap_parse_custom_request() to the end of the
1906 file allowing all utility functions to be grouped together.
1908 - imap: Moved utility functions to end of imap.c (Part 1/3)
1910 Moved imap_atom() and imap_sendf() to the end of the file allowing all
1911 utility functions to be grouped together.
1913 - imap: Corrected function description for imap_connect()
1915 Kamil Dudka (12 Apr 2013)
1916 - tests: prevent test206, test1060, and test1061 from failing
1918 ... in case runtests.pl is invoked with non-default -b option
1920 Fixes a regression caused by 1e29d275c643ef6aab7948f0f55a7a9397e56b42.
1922 Daniel Stenberg (12 Apr 2013)
1923 - [David Strauss brought this change]
1925 libcurl-share.3: update what it does and does not share.
1927 Update sharing interface documentation to provide exhaustive list of
1928 what it does and does not share.
1930 - THANKS: remove duplicated names
1932 - bump: start working towards next release
1934 - THANKS: added people from the 7.30.0 RELEASE-NOTES
1936 Version 7.30.0 (12 Apr 2013)
1938 Daniel Stenberg (12 Apr 2013)
1939 - RELEASE-NOTES: cleaned up for 7.30 (synced with 5c5e1a1cd20)
1941 Most notable the security advisory:
1942 http://curl.haxx.se/docs/adv_20130412.html
1944 - test1218: another cookie tailmatch test
1946 ... and make 1216 also verify it with a file input
1948 These tests verify commit 3604fde3d3c9b0d, the fix for the "cookie
1949 domain tailmatch" vulnerability. See
1950 http://curl.haxx.se/docs/adv_20130412.html
1952 - [YAMADA Yasuharu brought this change]
1954 cookie: fix tailmatching to prevent cross-domain leakage
1956 Cookies set for 'example.com' could accidentaly also be sent by libcurl
1957 to the 'bexample.com' (ie with a prefix to the first domain name).
1959 This is a security vulnerabilty, CVE-2013-1944.
1961 Bug: http://curl.haxx.se/docs/adv_20130412.html
1963 Guenter Knauf (11 Apr 2013)
1964 - Enabled MinGW sync resolver builds.
1966 Yang Tse (10 Apr 2013)
1967 - if2ip.c: fix compiler warning
1969 Guenter Knauf (10 Apr 2013)
1970 - Fixed lost OpenSSL output with "-t" - followup.
1972 The previously applied patch didnt work on Windows; we cant rely
1973 on shell commands like 'echo' since they act diffently on each
1974 platform and each shell.
1975 In order to keep this script platform-independent the code must
1978 Daniel Stenberg (9 Apr 2013)
1979 - test1217: verify parsing 257 responses with "rubbish" before path
1981 Test 1217 verifies commit e0fb2d86c9f78, and without that change this
1984 - [Bill Middlecamp brought this change]
1986 FTP: handle "rubbish" in front of directory name in 257 responses
1988 When doing PWD, there's a 257 response which apparently some servers
1989 prefix with a comment before the path instead of after it as is
1992 Failing to parse this, several otherwise legitimate use cases break.
1994 Bug: http://curl.haxx.se/mail/lib-2013-04/0113.html
1996 Guenter Knauf (9 Apr 2013)
1997 - Fixed ares-enabled builds with static makefiles.
1999 - Fixed lost OpenSSL output with "-t".
2001 The OpenSSL pipe wrote to the final CA bundle file, but the encoded PEM
2002 output wrote to a temporary file. Consequently, the OpenSSL output was
2003 lost when the temp file was renamed to the final file at script finish
2004 (overwriting the final file written earlier by openssl).
2005 Patch posted to the list by Richard Michael (rmichael edgeofthenet org).
2007 Daniel Stenberg (9 Apr 2013)
2008 - test1216: test tailmatching cookie domains
2010 This test is an attempt to repeat the problem YAMADA Yasuharu reported
2011 at http://curl.haxx.se/mail/lib-2013-04/0108.html
2013 - RELEASe-NOTES: synced with 29fdb2700f797
2015 added "tcpkeepalive on Mac OS X"
2017 Nick Zitzmann (8 Apr 2013)
2018 - darwinssl: disable insecure ciphers by default
2020 I noticed that aria2's SecureTransport code disables insecure ciphers such
2021 as NULL, anonymous, IDEA, and weak-key ciphers used by SSLv3 and later.
2022 That's a good idea, and now we do the same thing in order to prevent curl
2023 from accessing a "secure" site that only negotiates insecure ciphersuites.
2025 Daniel Stenberg (8 Apr 2013)
2026 - [Robert Wruck brought this change]
2028 tcpkeepalive: Support CURLOPT_TCP_KEEPIDLE on OSX
2030 MacOS X doesn't have TCP_KEEPIDLE/TCP_KEEPINTVL but only a single
2032 http://developer.apple.com/library/mac/#DOCUMENTATION/Darwin/Reference/ManPages/man4/tcp.4.html).
2033 Here is a patch for CURLOPT_TCP_KEEPIDLE on OSX platforms.
2035 - configure: remove CURL_CHECK_FUNC_RECVFROM
2037 1 - We don't use the results from the test and we never did. recvfrom()
2038 is only used by the TFTP code and it has not caused any problems.
2040 2 - the CURL_CHECK_FUNC_RECVFROM function is extremely slow
2042 Steve Holme (8 Apr 2013)
2043 - RELEASE-NOTES: Corrected duplicate NTLM memory leaks
2045 - RELEASE-NOTES: Removed trailing full stop
2047 Daniel Stenberg (8 Apr 2013)
2048 - [Fabian Keil brought this change]
2050 proxy: make ConnectionExists() check credential of proxyconnections too
2052 Previously it only compared credentials if the requested needle
2053 connection wasn't using a proxy. This caused NTLM authentication
2054 failures when using proxies as the authentication code wasn't send on
2055 the connection where the challenge arrived.
2057 Added test 1215 to verify: NTLM server authentication through a proxy
2058 (This is a modified copy of test 67)
2060 - RELEASE-NOTES: sync with 704a5dfca9
2062 - TODO-RELEASE: cleaned up, not really maintained lately
2064 Marc Hoersken (7 Apr 2013)
2065 - if2ip.c: Fixed another warning: unused parameter 'remote_scope'
2067 Daniel Stenberg (7 Apr 2013)
2068 - [Marc Hoersken brought this change]
2070 cookie.c: Made cookie sort function more deterministic
2072 Since qsort implementations vary with regards to handling the order
2073 of similiar elements, this change makes the internal sort function
2074 more deterministic by comparing path length first, then domain length
2075 and finally the cookie name. Spotted with testcase 62 on Windows.
2077 Marc Hoersken (7 Apr 2013)
2078 - curl_schannel.c: Follow up on memory leak fix ae4558d
2080 - Revert "getpart.pm: Strip carriage returns to fix Windows support"
2082 This reverts commit e51b23c925a2721cf7c29b2b376d3d8903cfb067.
2083 As discussed on the mailinglist, this was not the correct approach.
2085 - http_negotiate.c: Fixed passing argument from incompatible pointer type
2087 - ftp.c: Added missing brackets around ABOR command logic
2089 - sockfilt.c: Fixed detection of client-side connection close
2092 Since FD_CLOSE is only signaled once, it may trigger at the same
2093 time as FD_READ. Data actually being available makes it impossible
2094 to detect that the connection was closed by checking that recv returns
2095 zero. Another recv attempt could block the connection if it was
2096 not closed. This workaround abuses exceptfds in conjunction with
2097 readfds to signal that the connection has actually closed.
2099 - curl_schannel.c: Fixed memory leak if connection was not successful
2101 - if2ip.c: Fixed warning: unused parameter 'remote_scope'
2103 - runtests.pl: Fixed --verbose parameter passed to http_pipe.py
2105 - sockfilt.c: Reduce CPU load while running under a Windows PIPE
2107 - tftpd.c: Apply sread timeout to the whole data transfer session
2109 - getpart.pm: Strip carriage returns to fix Windows support
2111 Daniel Stenberg (6 Apr 2013)
2112 - ftp tests: libcurl returns CURLE_FTP_ACCEPT_FAILED better now
2114 Since commit 57aeabcc1a20f, it handles errors on the control connection
2115 while waiting for the data connection better.
2117 Test 591 and 592 are updated accordingly.
2119 - FTP: wait on both connections during active STOR state
2121 When doing PORT and upload (STOR), this function needs to extract the
2122 file descriptor for both connections so that it will respond immediately
2123 when the server eventually connects back.
2125 This flaw caused active connections to become unnecessary slow but they
2126 would still often work due to the normal polling on a timeout. The bug
2127 also would not occur if the server connected back very fast, like when
2128 testing on local networks.
2130 Bug: http://curl.haxx.se/bug/view.cgi?id=1183
2131 Reported by: Daniel Theron
2133 Marc Hoersken (6 Apr 2013)
2134 - tftpd.c: Follow up cleanup and restore of previous sockopt
2136 Daniel Stenberg (6 Apr 2013)
2137 - [Kim Vandry brought this change]
2139 connect: treat an interface bindlocal() problem as a non-fatal error
2141 I am using curl_easy_setopt(CURLOPT_INTERFACE, "if!something") to force
2142 transfers to use a particular interface but the transfer fails with
2143 CURLE_INTERFACE_FAILED, "Failed binding local connection end" if the
2144 interface I specify has no IPv6 address. The cause is as follows:
2146 The remote hostname resolves successfully and has an IPv6 address and an
2149 cURL attempts to connect to the IPv6 address first.
2151 bindlocal (in lib/connect.c) fails because Curl_if2ip cannot find an
2152 IPv6 address on the interface.
2154 This is a fatal error in singleipconnect()
2156 This change will make cURL try the next IP address in the list.
2158 Also included are two changes related to IPv6 address scope:
2160 - Filter the choice of address in Curl_if2ip to only consider addresses
2161 with the same scope ID as the connection address (mismatched scope for
2162 local and remote address does not result in a working connection).
2164 - bindlocal was ignoring the scope ID of addresses returned by
2165 Curl_if2ip . Now it uses them.
2167 Bug: http://curl.haxx.se/bug/view.cgi?id=1189
2169 Marc Hoersken (6 Apr 2013)
2170 - tftpd.c: Fixed sread timeout on Windows by setting it manually
2172 - ftp.pm: Added tskill to support Windows XP Home
2174 - runtests.pl: Modularization of MinGW/Msys compatibility functions
2176 - ftp.pm: Made Perl testsuite able to handle Windows processes
2178 - util.c: Revert workaround eeefcdf, 6eb56e7 and e3787e8
2180 - ftp.pm: Made Perl testsuite able to kill Windows processes
2182 - util.c: Follow up cleanup on eeefcdf
2184 Daniel Stenberg (6 Apr 2013)
2185 - cpp: use #ifdef __MINGW32__ to avoid compiler complaints
2187 ... instead of just #if
2189 Marc Hoersken (6 Apr 2013)
2190 - util.c: Made write_pidfile write the correct PID on MinGW/Msys
2192 This workaround fixes an issue on MinGW/Msys regarding the Perl
2193 testsuite scripts not being able to signal or control the server
2194 processes. The MinGW Perl runtime only sees the Msys processes and
2195 their corresponding PIDs, but sockfilt (and other servers) wrote the
2196 Windows PID into their PID-files. Since this PID is useless to the
2197 testsuite, the write_pidfile function was changed to search for the
2198 Msys PID and write that into the PID-file.
2200 Daniel Stenberg (5 Apr 2013)
2201 - RELEASE-NOTES: synced with 5e722b2d09087
2203 3 more bug fixes, 6 more contributors
2205 Marc Hoersken (5 Apr 2013)
2206 - sockfilt.c: Fixed handling of multiple fds being signaled
2208 Kamil Dudka (5 Apr 2013)
2209 - curl_global_init.3: improve description of CURL_GLOBAL_ALL
2211 Reported by: Tomas Mlcoch
2213 - examples/multi-single.c: fix the order of destructions
2215 ... so that it adheres to the API documentation.
2217 Reported by: Tomas Mlcoch
2219 Daniel Stenberg (5 Apr 2013)
2220 - Curl_open: restore default MAXCONNECTS to 5
2222 At some point recently we lost the default value for the easy handle's
2223 connection cache, and this change puts it back to 5 - which is the
2224 former default value and it is documented in the curl_easy_setopt.3 man
2227 Marc Hoersken (4 Apr 2013)
2228 - sockfilt.c: Added wrapper functions to fix Windows console issues
2230 The new read and write wrapper functions support reading from stdin
2231 and writing to stdout/stderr on Windows by using the appropriate
2232 Windows API functions and data types.
2234 Yang Tse (4 Apr 2013)
2235 - lib1509.c: fix compiler warnings
2237 - easy.c: fix compiler warning
2239 Daniel Stenberg (4 Apr 2013)
2240 - --engine: spellfix the help message
2242 Reported by: Fredrik Thulin
2244 Yang Tse (4 Apr 2013)
2245 - http_negotiate.c: follow-up for commit 3dcc1a9c
2247 Linus Nielsen Feltzing (4 Apr 2013)
2248 - easy: Fix the broken CURLOPT_MAXCONNECTS option
2250 Copy the CURLOPT_MAXCONNECTS option to CURLMOPT_MAXCONNECTS in
2251 curl_easy_perform().
2253 Bug: http://curl.haxx.se/bug/view.cgi?id=1212
2254 Reported-by: Steven Gu
2256 Guenter Knauf (4 Apr 2013)
2257 - Updated copyright date.
2259 - Another small output fix for --help and --version.
2261 Yang Tse (4 Apr 2013)
2262 - http_negotiate.c: fix several SPNEGO memory handling issues
2264 Guenter Knauf (4 Apr 2013)
2265 - Added a cont to specify base64 line wrap.
2267 - Fixed version output.
2269 - Added support for --help and --version options.
2271 - Added option to specify length of base64 output.
2273 Based on a patch posted to the list by Richard Michael.
2275 Daniel Stenberg (3 Apr 2013)
2276 - curl_easy_setopt.3: CURLOPT_HTTPGET disables CURLOPT_UPLOAD
2278 - [Yasuharu Yamada brought this change]
2280 Curl_cookie_add: only increase numcookies for new cookies
2282 Count up numcookies in Curl_cookie_add() only when cookie is new one
2284 - SO_SNDBUF: don't set SNDBUF for win32 versions vista or later
2286 The Microsoft knowledge-base article
2287 http://support.microsoft.com/kb/823764 describes how to use SNDBUF to
2288 overcome a performance shortcoming in winsock, but it doesn't apply to
2289 Windows Vista and later versions. If the described SNDBUF magic is
2290 applied when running on those more recent Windows versions, it seems to
2291 instead have the reversed effect in many cases and thus make libcurl
2292 perform less good on those systems.
2294 This fix thus adds a run-time version-check that does the SNDBUF magic
2295 conditionally depending if it is deemed necessary or not.
2297 Bug: http://curl.haxx.se/bug/view.cgi?id=1188
2298 Reported by: Andrew Kurushin
2299 Tested by: Christian Hägele
2301 Nick Zitzmann (1 Apr 2013)
2302 - darwinssl: additional descriptive messages of SSL handshake errors
2304 (This doesn't need to appear in the release notes.)
2306 Guenter Knauf (1 Apr 2013)
2307 - Added dns and connect time to output.
2309 Daniel Stenberg (1 Apr 2013)
2310 - RELEASE-NOTES: synced with 0614b902136
2314 - tcpkeepalive: support TCP_KEEPIDLE/TCP_KEEPINTVL on win32
2316 Patch by: Robert Wruck
2317 Bug: http://curl.haxx.se/bug/view.cgi?id=1209
2319 - BINDINGS: BBHTTP is a cocoa binding, Julia has a binding
2321 - ftp_sendquote: use PPSENDF, not FTPSENDF
2323 The last remaining code piece that still used FTPSENDF now uses PPSENDF.
2324 In the problematic case, a PREQUOTE series was done on a re-used
2325 connection when Curl_pp_init() hadn't been called so it had messed up
2326 pointers. The init call is done properly from Curl_pp_sendf() so this
2327 change fixes this particular crash.
2329 Bug: http://curl.haxx.se/mail/lib-2013-03/0319.html
2330 Reported by: Sam Deane
2332 Steve Holme (27 Mar 2013)
2333 - RELEASE-NOTES: Corrected typo
2335 Daniel Stenberg (27 Mar 2013)
2336 - [Clemens Gruber brought this change]
2338 multi-uv.c: remove unused variable
2340 - RELEASE-NOTES: add two references
2342 - test1509: verify proxy header response headers count
2344 Modified sws to support and use custom CONNECT responses instead of the
2345 previously naive hard-coded version. Made the HTTP test server able to
2346 extract test case number from the host name in a CONNECT request by
2347 finding the number after the last dot. It makes 'machine.moo.123' use
2350 Adapted a larger amount of tests to the new <connect> style.
2352 Bug: http://curl.haxx.se/bug/view.cgi?id=1204
2353 Reported by: Martin Jansen
2355 - [Clemens Gruber brought this change]
2357 Added libuv example multi-uv.c
2359 Yang Tse (25 Mar 2013)
2360 - NTLM: fix several NTLM code paths memory leaks
2362 - WIN32 MemoryTracking: track wcsdup() _wcsdup() and _tcsdup() usage
2364 As of 25-mar-2013 wcsdup() _wcsdup() and _tcsdup() are only used in
2365 WIN32 specific code, so tracking of these has not been extended for
2366 other build targets. Without this fix, memory tracking system on
2367 WIN32 builds, when using these functions, would provide misleading
2370 In order to properly extend this support for all targets curl.h
2371 would have to define curl_wcsdup_callback prototype and consequently
2372 wchar_t should be visible before that in curl.h. IOW curl_wchar_t
2373 defined in curlbuild.h and this pulling whatever system header is
2374 required to get wchar_t definition.
2376 Additionally a new curl_global_init_mem() function that also receives
2377 user defined wcsdup() callback would be required.
2379 - curl_ntlm_msgs.c: revert commit 463082bea4
2381 reverts unreleased invalid memory leak fix
2383 Daniel Stenberg (23 Mar 2013)
2384 - RELEASE-NOTES: synced with bc6037ed3ec02
2386 More changes, bugfixes and contributors!
2388 - [Martin Jansen brought this change]
2390 Curl_proxyCONNECT: count received headers
2392 Proxy servers tend to add their own headers at the beginning of
2393 responses. The size of these headers was not taken into account by
2394 CURLINFO_HEADER_SIZE before this change.
2396 Bug: http://curl.haxx.se/bug/view.cgi?id=1204
2398 Steve Holme (21 Mar 2013)
2399 - sasl: Corrected a few violations of the curl coding standards
2401 Corrected some incorrectly positioned pointer variable declarations to
2402 be "char *" rather than "char* ".
2404 - multi.c: Corrected a couple of violations of the curl coding standards
2406 Corrected some incorrectly positioned pointer variable declarations to
2407 be "type *" rather than "type* ".
2409 - imap-tests: Added CRLF to reply data to be compliant with RFC-822
2411 Updated the reply data in tests: 800, 801, 802, 804 and 1321 to possess
2412 the CRLF as per RFC-822.
2414 - multi.c: Fix compilation warning
2416 warning: an enumerated type is mixed with another type
2418 - multi.c: fix compilation error
2420 warning: conversion from enumeration type to different enumeration type
2422 - lib1900.c: fix compilation warning
2424 warning: declaration of 'time' shadows a global declaration
2426 Yang Tse (20 Mar 2013)
2427 - [John E. Malmberg brought this change]
2429 build_vms.com: use existing curlbuild.h and parsing fix
2431 This patch removes building curlbuild.h from the build_vms.com procedure
2432 and uses the one in the daily or release tarball instead.
2434 packages/vms/build_curlbuild_h.com is obsolete with this change.
2436 Accessing the library module name "tool_main" needs different handling
2437 when the optional extended parsing is enabled.
2439 Tested on IA64/VMS 8.4 and VAX/VMS 7.3
2441 Nick Zitzmann (19 Mar 2013)
2442 - darwinssl: disable ECC ciphers under Mountain Lion by default
2444 I found out that ECC doesn't work as of OS X 10.8.3, so those ciphers are
2445 turned off until the next point release of OS X.
2447 Steve Holme (18 Mar 2013)
2448 - FEATURES: Small tidy up for constancy and grammar
2450 Daniel Stenberg (18 Mar 2013)
2451 - [Oliver Schindler brought this change]
2453 Curl_proxyCONNECT: clear 'rewindaftersend' on success
2455 After having done a POST over a CONNECT request, the 'rewindaftersend'
2456 boolean could be holding the previous value which could lead to badness.
2458 This should be tested for in a new test case!
2460 Bug: https://groups.google.com/d/msg/msysgit/B31LNftR4BI/KhRTz0iuGmUJ
2462 Steve Holme (18 Mar 2013)
2463 - TODO: Reordered the protocol and security sections
2465 Moved SMTP, POP3, IMAP and New Protocol sections to be listed after the
2466 other protocols (FTP, HTTP and TELNET) and SASL to be after SSL and
2467 GnuTLS as these are all security related.
2469 Additionally fixed numbering of the SSL and GnuTLS sections as they
2470 weren't consecutive.
2472 Yang Tse (18 Mar 2013)
2473 - tests: specify 'text' mode for some output files in verify section
2475 Steve Holme (17 Mar 2013)
2476 - imap: Fixed incorrect initial response generation for SASL AUTHENTICATE
2478 Fixed incorrect initial response generation for the NTLM and LOGIN SASL
2479 authentication mechanisms when the SASL-IR was detected.
2481 Introduced in commit: 6da7dc026c14.
2483 - FEATURES: Expanded the supported enhanced IMAP command list
2485 - TODO: Corrected typo in TOC
2487 - TODO: Added IMAP section and removed unused Other protocols section
2489 - TODO: Added graceful base64 decoding failure to SMTP and POP3
2491 - TODO: Corrected typo on section 10.2 heading
2493 Yang Tse (16 Mar 2013)
2494 - tests: 96, 558, 1330: strip build subdirectory dependent leading path
2496 Steve Holme (15 Mar 2013)
2497 - TODO: Added section 10.2 Initial response to POP3 to do list
2499 - imap-tests: Corrected copy/paste error in test808 reply data
2501 Yang Tse (15 Mar 2013)
2502 - unit1330.c: fix date
2504 - tests: add #96 #558 and #1330
2506 These verfy that the 'memory tracking' subsystem is actually doing its
2507 job when using curl tool (#96), a test in libtest (#558) and also a unit
2508 test (#1330), in order to prevent regressions in this functionallity.
2510 Steve Holme (15 Mar 2013)
2511 - imap-tests: Added test808 for custom EXAMINE command
2513 Daniel Stenberg (15 Mar 2013)
2514 - HTTP proxy: insert slash in URL if missing
2516 curl has been accepting URLs using slightly wrong syntax for a long
2517 time, such as when completely missing as slash "http://example.org" or
2518 missing a slash when a query part is given
2519 "http://example.org?q=foobar".
2521 curl would translate these into a legitimate HTTP request to servers,
2522 although as was shown in bug #1206 it was not adjusted properly in the
2523 cases where a HTTP proxy was used.
2525 Test 1213 and 1214 were added to the test suite to verify this fix.
2527 The test HTTP server was adjusted to allow us to specify test number in
2528 the host name only without using any slashes in a given URL.
2530 Bug: http://curl.haxx.se/bug/view.cgi?id=1206
2531 Reported by: ScottJi
2533 Steve Holme (14 Mar 2013)
2534 - ftpserver.pl: Added EXAMINE_imap() for IMAP EXAMINE commands
2536 Used hard coded data from RFC-3501 section 6.3.2.
2538 Yang Tse (14 Mar 2013)
2539 - curl_memory.h: introduce CURLX_NO_MEMORY_CALLBACKS usage possibility
2541 This commit alone does not fix anything nor modifies existing
2542 interfaces or behaviors, although it is a prerequisite for other
2545 - Makefile.vc6: add missing files
2547 Linus Nielsen Feltzing (14 Mar 2013)
2548 - pipelining: Remove dead code.
2550 - Multiple pipelines and limiting the number of connections.
2552 Introducing a number of options to the multi interface that
2553 allows for multiple pipelines to the same host, in order to
2554 optimize the balance between the penalty for opening new
2555 connections and the potential pipelining latency.
2557 Two new options for limiting the number of connections:
2559 CURLMOPT_MAX_HOST_CONNECTIONS - Limits the number of running connections
2560 to the same host. When adding a handle that exceeds this limit,
2561 that handle will be put in a pending state until another handle is
2562 finished, so we can reuse the connection.
2564 CURLMOPT_MAX_TOTAL_CONNECTIONS - Limits the number of connections in total.
2565 When adding a handle that exceeds this limit,
2566 that handle will be put in a pending state until another handle is
2567 finished. The free connection will then be reused, if possible, or
2568 closed if the pending handle can't reuse it.
2570 Several new options for pipelining:
2572 CURLMOPT_MAX_PIPELINE_LENGTH - Limits the pipeling length. If a
2573 pipeline is "full" when a connection is to be reused, a new connection
2574 will be opened if the CURLMOPT_MAX_xxx_CONNECTIONS limits allow it.
2575 If not, the handle will be put in a pending state until a connection is
2576 ready (either free or a pipe got shorter).
2578 CURLMOPT_CONTENT_LENGTH_PENALTY_SIZE - A pipelined connection will not
2579 be reused if it is currently processing a transfer with a content
2580 length that is larger than this.
2582 CURLMOPT_CHUNK_LENGTH_PENALTY_SIZE - A pipelined connection will not
2583 be reused if it is currently processing a chunk larger than this.
2585 CURLMOPT_PIPELINING_SITE_BL - A blacklist of hosts that don't allow
2588 CURLMOPT_PIPELINING_SERVER_BL - A blacklist of server types that don't allow
2591 See the curl_multi_setopt() man page for details.
2593 Yang Tse (13 Mar 2013)
2594 - tool_main.c: remove redundant vms_show storage-class specifier
2596 vms_show 'extern' storage-class specifier removed from tool_main.c due to...
2598 - Advice from Tor Arntsen: http://curl.haxx.se/mail/lib-2013-03/0164.html
2600 - HP OpenVMS docs stating that 'Extern is the default storage class for
2601 variables declared outside a function.'
2602 http://h71000.www7.hp.com/commercial/c/docs/dec_c_help_5.html
2603 (Storage_Classes section)
2605 - test509: libcurl initialization with memory callbacks and actual usage
2607 Steve Holme (13 Mar 2013)
2608 - pop3: Removed unnecessary transfer cancellation
2610 Following commit e450f66a02d8 and the changes in the multi interface
2611 being used internally, from 7.29.0, the transfer cancellation in
2612 pop3_dophase_done() is no longer required.
2614 Yang Tse (13 Mar 2013)
2615 - Makefile.am: add VMS files not being included in tarball
2617 - [Tom Grace brought this change]
2619 build_vms.com: VMS build fixes
2621 Added missing slash in cc_full_list.
2622 Removed unwanted extra quotes inside symbol tool_main
2623 for non-VAX architectures that triggered link failure.
2624 Replaced curl_sys_inc with sys_inc.
2626 - [Tom Grace brought this change]
2628 tool_main.c: fix VMS global variable storage-class specifier
2630 An extern submits a psect and a global reference to the linker to point
2631 to it. Using "extern int vms_show = 0" also creates a globaldef.
2633 The use of the extern by itself does declare a psect but does not declare
2634 a globalsymbol. It does declare a globalref. But the linker needs one and
2635 only one globaldef or there is an error.
2637 Patrick Monnerat (12 Mar 2013)
2638 - OS400: synchronize RPG binding
2640 Steve Holme (12 Mar 2013)
2641 - pop3: Fixed continuous wait when using --ftp-list
2643 Don't initiate a transfer when using --ftp-list.
2645 Kamil Dudka (12 Mar 2013)
2646 - [Zdenek Pavlas brought this change]
2648 curl_global_init: accept the CURL_GLOBAL_ACK_EINTR flag
2650 The flag can be used in pycurl-based applications where using the multi
2651 interface would not be acceptable because of the performance lost caused
2652 by implementing the select() loop in python.
2654 Bug: http://curl.haxx.se/bug/view.cgi?id=1168
2655 Downstream Bug: https://bugzilla.redhat.com/919127
2657 - easy: do not ignore poll() failures other than EINTR
2659 Yang Tse (12 Mar 2013)
2660 - curl.h: stricter CURL_EXTERN linkage decorations logic
2662 No API change involved.
2664 Info: http://curl.haxx.se/mail/lib-2013-02/0234.html
2666 Daniel Stenberg (11 Mar 2013)
2667 - THANKS: Latin-1'ified Jiri's name
2669 Steve Holme (11 Mar 2013)
2670 - test806: Added CRLF to reply data to be compliant with RFC-822
2672 Daniel Stenberg (11 Mar 2013)
2673 - test805: added crlf newlines to make data size match
2675 since mails sent are supposed to have CRLF line endings I added them and
2676 now the data size after (\Seen) matches again properly
2678 - test: fix newline for the data check of 807
2680 Yang Tse (11 Mar 2013)
2681 - test801 to test807: fix protocol section line endings
2683 Steve Holme (10 Mar 2013)
2684 - Makefile.am: Corrected a couple of spurious tab characters
2686 Corrected a couple of tab characters between test702 and test703, and
2687 between test900 and test901 which should be spaces.
2689 - [Jiri Hruska brought this change]
2691 imap: Added test807 for custom request functionality (STORE)
2693 - [Jiri Hruska brought this change]
2695 imap: Added test806 for IMAP (folder) LIST command
2697 - [Jiri Hruska brought this change]
2699 imap: Added test805 for APPEND functionality
2701 - [Jiri Hruska brought this change]
2703 imap: Added test804 for skipping SELECT if in the same mailbox
2705 - [Jiri Hruska brought this change]
2707 imap: Added test802 and test803 for UIDVALIDITY verification
2709 Added one test for a request with matching UIDVALIDITY and one which is
2710 a mismatched request that will fail.
2712 - [Jiri Hruska brought this change]
2714 imap: Added test801 for UID and SECTION URL parameters
2716 - [Jiri Hruska brought this change]
2718 imap-tests: Accept quoted parameters in ftpserver.pl
2720 Any IMAP parameter can come in escaped and in double quotes. Added a
2721 simple function to unquote the command parameters and applied it to
2722 the IMAP command handlers.
2724 - [Jiri Hruska brought this change]
2726 tests: Fix ftpserver.pl indentation
2728 The whole of FETCH_imap() had one extra space of indentation, whilst
2729 APPEND_imap() used indentation of 2 instead of 4 in places.
2731 - Makefile.am: Corrected end of line filler character
2733 The majority of lines, that specify a test file for inclusion, end with
2734 a tab character before the slash whilst some end with a space. Corrected
2735 those that end with a space to end with a tab character as well.
2737 - email-tests: Updated the test data that corresponds to the test number
2739 Finished segregating the email protocol tests, into their own protocol
2740 based ranges, in preparation of adding more e-mail related tests to the
2743 - email-tests: Renamed the IMAP test to be 800
2745 Continued segregating the email protocol tests, into their own protocol
2746 based ranges, in preparation of adding more e-mail related tests to the
2749 - email-tests: Renamed the SMTP tests to be in the range 900-906
2751 Continued segregating the email protocol tests, into their own protocol
2752 based ranges, in preparation of adding more e-mail related tests to the
2755 - email-tests: Renamed the POP3 tests to be in the range 850-857
2757 Started segregating the email protocol tests, into their own protocol
2758 based ranges, in preparation of adding more e-mail related tests to the
2761 Daniel Stenberg (10 Mar 2013)
2762 - hiperfifo: updated to use current libevent API
2764 Patch by: Myk Taylor
2766 Steve Holme (10 Mar 2013)
2767 - imap: Reworked some function descriptions
2769 - imap: Added some missing comments to imap_sendf()
2771 - email: Removed hard returns from init functions
2773 Daniel Stenberg (9 Mar 2013)
2774 - curl_multi_wait: avoid second loop if nothing to do
2776 ... hopefully this will also make clang-analyzer stop warning on
2777 potentional NULL dereferences (which were false positives anyway).
2779 - multi_runsingle: avoid NULL dereference
2781 When Curl_do() returns failure, the connection pointer could be NULL so
2782 the code path following needs to that that into account.
2784 Bug: http://curl.haxx.se/mail/lib-2013-03/0062.html
2785 Reported by: Eric Hu
2787 Steve Holme (9 Mar 2013)
2788 - imap: Re-factored all perform based functions
2790 Standardised the naming of all perform based functions to be in the form
2791 imap_perform_something().
2793 Daniel Stenberg (9 Mar 2013)
2794 - [Cédric Deltheil brought this change]
2796 examples/getinmemory.c: abort the transfer if not enough memory
2798 No more use exit(3) but instead tell libcurl that no byte has been
2799 written to let it return a `CURLE_WRITE_ERROR`. In addition, check
2800 curl easy handle return code.
2802 - RELEASE-NOTES: synced with ca3c0ed3a9c
2804 8 more bugfixes, one change and a bunch of contributors
2806 Yang Tse (9 Mar 2013)
2807 - Makefile.am: empty AM_LDFLAGS definition for automake 1.7 compatibility
2809 Steve Holme (9 Mar 2013)
2810 - imap: Added description comments to all perform based functions
2812 - imap: Removed the need for separate custom request functions
2814 Moved the custom request processing into the LIST command as the logic
2817 - imap: Corrected typo in comment
2819 Yang Tse (9 Mar 2013)
2820 - Makefile.am: empty AM_LDFLAGS definition for automake 1.7 compatibility
2822 Steve Holme (9 Mar 2013)
2823 - imap: Moved imap_logout() to be grouped with the other perform functions
2825 - email: Updated the function descriptions for the logout / quit functions
2827 Updated the function description comments following commit 4838d196fdbf.
2829 - email: Simplified the logout / quit functions
2831 Moved the blocking state machine to the disconnect functions so that the
2832 logout / quit functions are only responsible for sending the actual
2833 command needed to logout or quit.
2835 Additionally removed the hard return on failure.
2837 - email: Tidied up the *_regular_transfer() functions
2839 Added comments and simplified convoluted dophase_done comparison.
2841 - email: Simplified nesting of if statements in *_doing() functions
2843 Daniel Stenberg (8 Mar 2013)
2844 - RELEASE-NOTES: mention that krb4 is up for consideration
2846 Steve Holme (8 Mar 2013)
2847 - imap: Fixed handling of untagged responses for the STORE custom command
2849 Added an exception, for the STORE command, to the untagged response
2850 processor in imap_endofresp() as servers will back respones containing
2851 the FETCH keyword instead.
2853 Yang Tse (8 Mar 2013)
2854 - curlbuild.h.dist: enhance non-configure GCC ABI detection logic
2856 GCC specific adjustments:
2858 - check __ILP32__ before 32 and 64bit processor architectures in
2859 order to detect ILP32 programming model on 64 bit processors
2860 which, of course, also support LP64 programming model, when using
2863 - keep 32bit processor architecture checks in order to support gcc
2864 versions older than 4.7 which don't define __ILP32__
2866 - check __LP64__ for gcc 3.3 and newer, while keeping 64bit processor
2867 architecture checks for older versions which don't define __LP64__
2869 - curlbuild.h.dist: fix GCC build on ARM systems without configure script
2871 Bug: http://curl.haxx.se/bug/view.cgi?id=1205
2872 Reported by: technion
2874 - [Gisle Vanem brought this change]
2876 polarssl.c: fix header filename typo
2878 - configure: use XC_LIBTOOL for portability across libtool versions
2880 - xc-lt-iface.m4: provide XC_LIBTOOL macro
2882 Steve Holme (7 Mar 2013)
2883 - imap: Fixed SELECT not being performed for custom requests
2885 - email: Minor code tidy up following recent changes
2887 Removed unwanted braces and added variable initialisation.
2889 - DOCS: Corrected the IMAP URL grammar of the UIDVALIDITY parameter
2891 - FEATURES: Provided a little clarity in some IMAP features
2893 - email: Optimised block_statemach() functions
2895 Optimised the result test in each of the block_statemach() functions.
2897 - DOCS: Added the list command to the IMAP URL section
2899 Added examples of the list command and clarified existing example URLs
2900 following recent changes.
2902 - FEATURES: Updated for recent imap additions
2904 Updated the imap features list, corrected a typo in the smtp features
2905 and clarified a pop3 feature.
2907 Daniel Stenberg (7 Mar 2013)
2908 - version bump: the next release will be 7.30.0
2910 - checksrc: ban unsafe functions
2912 The list of unsafe functions currently consists of sprintf, vsprintf,
2913 strcat, strncat and gets.
2915 Subsequently, some existing code needed updating to avoid warnings on
2918 Steve Holme (7 Mar 2013)
2919 - RELEASE-NOTES: Added missing imap fixes and additions
2921 With all the recent imap changes it wasn't clear what new features and
2922 fixes should be included in the release notes.
2924 Nick Zitzmann (6 Mar 2013)
2925 - RELEASE-NOTES: brought this up-to-date with the latest changes
2927 Steve Holme (6 Mar 2013)
2928 - [Jiri Hruska brought this change]
2930 imap: Fixed test801 and test1321 to specify a message UID
2932 Just a folder list would be retrieved if UID was not specified now.
2934 - [Jiri Hruska brought this change]
2936 imap: Fixed ftpserver.pl to allow verification even through LIST command
2938 Commit 198012ee inadvertently broke LIST_imap().
2940 - imap: Tidied up the APPEND and final APPEND response functions
2942 Removed unnecessary state changes on failure and setting of result codes
2945 - imap: Tidied up the final FETCH response function
2947 Removed unnecessary state change on failure and setting of result code on
2950 - imap: Tidied up the LIST response function
2952 Reworked comments as they referenced custom commands, removed
2953 unnecessary state change on failure and setting of result code on
2956 - imap: Removed the custom request response function
2958 Removed imap_state_custom_resp() as imap_state_list_resp() provides the
2961 - [Jiri Hruska brought this change]
2963 imap: Updated ftpserver.pl to be more compliant, added new commands
2965 Enriched IMAP capabilities of ftpserver.pl in order to be able to
2966 add tests for the new IMAP features.
2968 * Added support for APPEND - Saves uploaded data to log/upload.$testno
2969 * Added support for LIST - Returns the contents of <reply/> section in
2970 the current test, like e.g FETCH.
2971 * Added support for STORE - Returns hardcoded updated flags
2972 * Changed handling of SELECT - Returns much more information in the
2973 usual set of untagged responses; uses hardcoded data from an example
2975 * Changed handling of FETCH - Fixed response format
2977 - imap: Added check for empty UID in FETCH command
2979 As the UID has to be specified by the user for the FETCH command to work
2980 correctly, added a check to imap_fetch(), although strictly speaking it
2981 is protected by the call from imap_perform().
2983 Kamil Dudka (6 Mar 2013)
2984 - nss: fix misplaced code enabling non-blocking socket mode
2986 The option needs to be set on the SSL socket. Setting it on the model
2987 takes no effect. Note that the non-blocking mode is still not enabled
2988 for the handshake because the code is not yet ready for that.
2990 Daniel Stenberg (6 Mar 2013)
2991 - imap: fix compiler warning
2993 imap.c:694:21: error: unused variable 'imapc' [-Werror=unused-variable]
2995 Steve Holme (5 Mar 2013)
2996 - imap: Added support for list command
2998 - imap: Added list perform and response handler functions
3000 - imap: Introduced IMAP_LIST state
3002 - imap: Small tidy up of imap_select() to match imap_append()
3004 Updated the style of imap_select() before adding the LIST command.
3006 - imap: Moved mailbox check from the imap_do() function
3008 In preparation for the addition of the LIST command, moved the mailbox
3009 check from imap_do() to imap_select() and imap_append().
3011 - curl_setup.h: Added S_IRDIR() macro for compilers that don't support it
3013 Commit 26eaa8383001 introduces the use of S_ISDIR() yet some compilers,
3014 such as MSVC don't support it, so we must define a substitute using
3015 file flags and mask.
3017 Daniel Stenberg (4 Mar 2013)
3018 - AddFormData: prevent only directories from being posted
3020 Commit f4cc54cb4746ae5a6d (shipped as part of the 7.29.0 release) was a
3021 bug fix that introduced a regression in that while trying to avoid
3022 allowing directory names, it also forbade "special" files like character
3023 devices and more. like "/dev/null" as was used by Oliver who reported
3026 Reported by: Oliver Gondža
3027 Bug: http://curl.haxx.se/mail/archive-2013-02/0040.html
3029 Nick Zitzmann (3 Mar 2013)
3030 - darwinssl: fix infinite loop if server disconnected abruptly
3032 If the server hung up the connection without sending a closure alert,
3033 then we'd keep probing the socket for data even though it's dead. Now
3034 we're ready for this situation.
3036 Bug: http://curl.haxx.se/mail/lib-2013-03/0014.html
3037 Reported by: Aki Koskinen
3039 Steve Holme (3 Mar 2013)
3040 - imap: Added comments to imap_append()
3042 - [Jiri Hruska brought this change]
3044 imap: Added required mailbox check for FETCH and APPEND commands
3046 - pingpong.c: Fix enumerated type mixed with another type
3048 - smtp: Updated the coding style for state changes after a send operation
3050 Some state changes would be performed after a failure test that
3051 performed a hard return, whilst others would be performed within a test
3052 for success. Updated the code, for consistency, so all instances are
3053 performed within a success test.
3055 - pop3: Updated the coding style for state changes after a send operation
3057 Some state changes would be performed after a failure test that
3058 performed a hard return, whilst others would be performed within a test
3059 for success. Updated the code, for consistency, so all instances are
3060 performed within a success test.
3062 - imap: Fixed typo in variable assignment
3064 - [Jiri Hruska brought this change]
3066 imap: Fixed custom request handling in imap_done()
3068 Fixed imap_done() so that neither the FINAL states are not entered when
3069 a custom command has been performed.
3071 - [Jiri Hruska brought this change]
3073 imap: Enabled custom requests in imap_select_resp()
3075 Changed imap_select_resp() to invoke imap_custom() instead of
3076 imap_fetch() after the mailbox has been selected if a custom
3077 command has been set.
3079 - [Jiri Hruska brought this change]
3081 imap: Enabled custom requests in imap_perform()
3083 Modified imap_perform() to start with the custom command instead of
3084 SELECT when a custom command is to be performed and no mailbox has
3087 - [Jiri Hruska brought this change]
3089 imap: Added custom request perform and response handler functions
3091 Added imap_custom(), which initiates the custom command processing,
3092 and an associated response handler imap_state_custom_resp(), which
3093 handles any responses by sending them to the client as body data.
3095 All untagged responses with the same name as the first word of the
3096 custom request string are accepted, with the exception of SELECT and
3097 EXAMINE which have responses that cannot be easily identified. An
3098 extra check has been provided for them so that any untagged responses
3099 are accepted for them.
3101 - pop3: Fixed unnecessary parent structure reference
3103 Updated pop3 code following recent imap changes.
3105 - [Jiri Hruska brought this change]
3107 imap: Added custom request parsing
3109 Added imap_parse_custom_request() for parsing the CURLOPT_CUSTOMREQUEST
3110 parameter which URL decodes the value and separates the request from
3111 any parameters - This makes it easier to filter untagged responses
3112 by the request command.
3114 - [Jiri Hruska brought this change]
3116 imap: Introduced custom request parameters
3118 Added custom request parameters to the per-request structure.
3120 - [Jiri Hruska brought this change]
3122 imap: Introduced IMAP_CUSTOM state
3124 - imap: Minor code tidy up
3126 Minor tidy up of code layout and comments following recent changes.
3128 - imap: Simplified the imap_state_append_resp() function
3130 Introduced the result code variable to simplify the state changes and
3131 remove the hard returns.
3133 - imap: Changed successful response logic in imap_state_append_resp()
3135 For consistency changed the logic of the imap_state_append_resp()
3136 function to test for an unsucessful continuation response rather than a
3139 - imap: Standardised imapcode condition tests
3141 For consistency changed two if(constant != imapcode) tests to be
3142 if(imapcode != constant).
3144 - imap: Moved imap_append() to be with the other perform functions
3146 - [Jiri Hruska brought this change]
3148 imap: Enabled APPEND support in imap_perform()
3150 Added logic in imap_perform() to perform an APPEND rather than SELECT
3151 and FETCH if an upload has been specified.
3153 - [Jiri Hruska brought this change]
3155 imap: Implemented APPEND final processing
3157 The APPEND operation needs to be performed in several steps:
3158 1) We send "<tag> APPEND <mailbox> <flags> {<size>}\r\n"
3159 2) Server responds with continuation respose "+ ...\r\n"
3160 3) We start the transfer and send <size> bytes of data
3161 4) Only now we end the request command line by sending "\r\n"
3162 5) Server responds with "<tag> OK ...\r\n"
3164 This commit performs steps 4 and 5, in the DONE phase, as more
3165 processing is required after the transfer.
3167 - [Jiri Hruska brought this change]
3169 imap: Added APPEND perform and response handler functions
3171 Added imap_append() function to initiate upload and imap_append_resp()
3172 to handle the continuation response and start the transfer.
3174 - [Jiri Hruska brought this change]
3176 imap: Introduced IMAP_APPEND and IMAP_APPEND_FINAL states
3178 - [Jiri Hruska brought this change]
3180 imap: Updated setting of transfer variables in imap_state_fetch_resp()
3182 Add number of bytes retrieved from the PP cache to req.bytecount and set
3183 req.maxdownload only when starting a proper download.
3185 - [Jiri Hruska brought this change]
3187 imap: Improved FETCH response parsing
3189 Added safer parsing of the untagged FETCH response line and the size of
3192 - imap: Fixed accidentally lossing the result code
3194 Accidentally lost the result code in imap_state_capability() and
3195 imap_state_login() with commit b06a78622609.
3197 - imap: Another minor comment addition / tidy up
3199 - imap: Updated the coding style for state changes after a send operation
3201 Some state changes would be performed after a failure test that
3202 performed a hard return, whilst others would be performed within a test
3203 for success. Updated the code, for consistency, so all instances are
3204 performed within a success test.
3206 - pop3 / smtp: Small comment tidy up
3208 Small tidy up to keep some comments consistant across each of the email
3211 - [Jiri Hruska brought this change]
3213 imap: FETCH response handler cleanup before further changes
3215 Removed superfluous NULL assignment after Curl_safefree() and rewrote
3216 some comments and logging messages.
3218 - pop3: Small tidy up of function arguments
3220 - imap: Small tidy up of function arguments
3222 - smtp: Corrected debug message for POP3_AUTH_FINAL constant
3224 Following commit ad3177da24b8 corrected the debug message in state()
3225 from AUTH to AUTH_FINAL.
3227 - pop3: Corrected debug message for POP3_AUTH_FINAL constant
3229 Following commit afad1ce753a1 corrected the debug message in state()
3230 from AUTH to AUTH_FINAL.
3232 - imap: Corrected debug message for IMAP_AUTHENTICATE_FINAL constant
3234 Following commit 13006f3de9ec corrected the debug message in state()
3235 from AUTHENTICATE to AUTHENTICATE_FINAL.
3237 - [Jiri Hruska brought this change]
3239 imap: Fixed error code returned for invalid FETCH response
3241 If the FETCH command does not result in an untagged response the the
3242 UID is probably invalid. As such do not return CURLE_OK.
3244 - [Jiri Hruska brought this change]
3246 imap: Added processing of the final FETCH responses
3248 Not processing the final FETCH responses was not optimal, not only
3249 because the response code would be ignored but it would also leave data
3250 unread on the socket which would prohibit connection reuse.
3252 - [Jiri Hruska brought this change]
3254 imap: Introduced FETCH_FINAL state for processing final fetch responses
3256 A typical FETCH response can be broken down into four parts:
3258 1) "* <uid> FETCH (<what> {<size>}\r\n", using continuation syntax
3259 2) <size> bytes of the actual message
3260 3) ")\r\n", finishing the untagged response
3261 4) "<tag> OK ...", finishing the command
3263 Part 1 is read in imap_fetch_resp(), part 2 is consumed in the PERFORM
3264 phase by the transfer subsystem, parts 3 and 4 are currently ignored.
3266 - imap: fix autobuild warning
3268 Removed whitespace from imap_perform()
3270 - imap: fix compiler warning
3272 error: declaration of 'imap' shadows a previous local
3274 - smtp: Re-factored the final SMTP_AUTH constant
3276 Changed the final SMTP_AUTH constant to SMTP_AUTH_FINAL for consistency
3277 with the response function.
3279 - pop3: Re-factored the final POP3_AUTH constant
3281 Changed the final POP3_AUTH constant to POP3_AUTH_FINAL for consistency
3282 with the response function.
3284 - imap: Re-factored final IMAP_AUTHENTICATE constant
3286 Changed the final IMAP_AUTHENTICATE constant to IMAP_AUTHENTICATE_FINAL
3287 for consistency with the response function.
3289 - imap: Updated the coding style of imap_state_servergreet_resp()
3291 Updated the coding style, in this function, to be consistant with other
3292 response functions rather then performing a hard return on failure.
3294 - imap: Reversed the logic of the (un)successful tagged SELECT response
3296 Reversed the logic of the unsuccessful vs successful tagged SELECT
3297 response in imap_state_select_resp() to be more logical to read.
3299 - imap: Reversed the logic of the (un)successful tagged CAPABILITY response
3301 Reversed the logic of the unsuccessful vs successful tagged CAPABILITY
3302 response in imap_state_capability_resp() to be more logical to read.
3304 - imap: Corrected char* references with char *
3306 Corrected char* references made in commit: 709b3506cd9b.
3308 - [Jiri Hruska brought this change]
3310 imap: Added processing of more than one response when sent in same packet
3312 Added a loop to imap_statemach_act() in which Curl_pp_readresp() is
3313 called until the cache is drained. Without this multiple responses
3314 received in a single packet could result in a hang or delay.
3316 - [Jiri Hruska brought this change]
3318 imap: Added skipping of SELECT command if already in the same mailbox
3320 Added storage and checking of the last mailbox userd to prevent
3321 unnecessary switching.
3323 - [Jiri Hruska brought this change]
3325 imap: Introduced the mailbox variable
3327 Added the mailbox variable to the per-connection structure in
3328 preparation for checking for an already selected mailbox.
3330 - email: Slight reordering of connection based variables
3332 Reordered the state and ssl_done variables in order to provide more
3333 consistency between the email protocols as well as for for an upcoming
3336 - imap: Tidied up comments for connection based variables
3338 - DOCS: Added the IMAP UIDVALIDITY property to the CURLOPT_URL section
3340 - [Jiri Hruska brought this change]
3342 imap: Added verification of UIDVALIDITY mailbox attribute
3344 Added support for checking the UIDVALIDITY, and aborting the request, if
3345 it has been specified in the URL and the server response is different.
3347 - [Jiri Hruska brought this change]
3349 imap: Added support for parsing the UIDVALIDITY property
3351 Added support for parsing the UIDVALIDITY property from the SELECT
3352 response and storing it in the per-connection structure.
3354 - [Jiri Hruska brought this change]
3356 imap: Introduced the mailbox_uidvalidity variable
3358 Added the mailbox_uidvalidity variable to the per-connection structure
3359 in preparation for checking the UIDVALIDITY mailbox attribute.
3361 - imap: Corrected comment in imap_endofresp()
3363 - imap: Corrected whitespace
3365 - [Jiri Hruska brought this change]
3367 imap: Added filtering of CAPABILITY and FETCH untagged responses
3369 Only responses that contain "CAPABILITY" and "FETCH", respectively,
3370 will be sent to their response handler.
3372 - [Jiri Hruska brought this change]
3374 imap: Added a helper function for upcoming untagged response filtering
3376 RFC 3501 states that "the client MUST be prepared to accept any response
3377 at all times" yet we assume anything received with "* " at the beginning
3378 is the untagged response we want.
3380 Introduced a helper function that checks whether the input looks like a
3381 response to specified command, so that we may filter the ones we are
3382 interested in according to the current state.
3384 - [Jiri Hruska brought this change]
3386 imap: Moved CAPABILITY response handling to imap_state_capability_resp()
3388 Introduced similar handling to the FETCH responses, where even the
3389 untagged data responses are handled by the response handler of the
3392 Linus Nielsen Feltzing (26 Feb 2013)
3393 - Remove unused variable in smtp_state_data_resp()
3395 Steve Holme (25 Feb 2013)
3396 - email: Small tidy up following recent changes
3398 - smtp: Removed bytecountp from the per-request structure
3400 Removed this pointer to a downloaded bytes counter because it was set in
3401 smtp_init() to point to the same variable the transfer functions keep
3402 the count in (k->bytecount), effectively making the code in transfer.c
3403 "*k->bytecountp = k->bytecount" a no-op.
3405 - pop3: Removed bytecountp from the per-request structure
3407 Removed this pointer to a downloaded bytes counter because it was set in
3408 pop3_init() to point to the same variable the transfer functions keep
3409 the count in (k->bytecount), effectively making the code in transfer.c
3410 "*k->bytecountp = k->bytecount" a no-op.
3412 - [Jiri Hruska brought this change]
3414 imap: Removed bytecountp from the per-request structure
3416 Removed this pointer to a downloaded bytes counter because it was set in
3417 imap_init() to point to the same variable the transfer functions keep
3418 the count in (k->bytecount), effectively making the code in transfer.c
3419 "*k->bytecountp = k->bytecount" a no-op.
3421 - [Jiri Hruska brought this change]
3423 imap: Adjusted SELECT and FETCH function order
3425 Moved imap_select() and imap_fetch() to be grouped with the other
3428 - [Jiri Hruska brought this change]
3430 imap: Adjusted SELECT and FETCH state order in imap_statemach_act()
3432 Exchanged the position of these states in the switch statements to
3433 match the state enum, execution and function order.
3435 - imap: Minor tidy up of comments in imap_parse_url_path()
3437 Tidy up of comments before next round of imap changes.
3439 - imap: Fixed incorrect comparison for STARTTLS in imap_endofresp()
3441 Corrected the comparison type in addition to commit 1dac29fa83a9.
3443 - DOCS: Corrected IMAP URL examples according to RFC5092
3445 URL examples that included the UID weren't technically correct although
3446 would pass the curl parser.
3448 Nick Zitzmann (24 Feb 2013)
3449 - darwinssl: fix undefined $ssllib warning in runtests.pl
3451 I also added --with-darwinssl to the list of SSL options in configure.
3453 Steve Holme (24 Feb 2013)
3454 - imap: Added check for new internal imap response code
3456 - imap: Changed the order of the response types in imap_endofresp()
3458 From a maintenance point of view the code reads better to view tagged
3459 responses, then untagged followed by continuation responses.
3461 Additionally, this matches the order of responses in POP3.
3463 - [Jiri Hruska brought this change]
3465 imap: Added stricter parsing of continuation responses
3467 Enhanced the parsing to only allow continuation responses in some
3470 - imap: Simplified memcmp() in tagged response parsing
3472 - [Jiri Hruska brought this change]
3474 imap: Reworked the logic of untagged command responses
3476 - imap: Corrected spacing of trailing brace
3478 - [Jiri Hruska brought this change]
3480 imap: Added stricter parsing of tagged command responses
3482 Enhanced the parsing of tagged responses which must start with "OK",
3485 - [Jiri Hruska brought this change]
3487 imap: Simplified command response test in imap_endofresp()
3489 - [Jiri Hruska brought this change]
3491 imap: Corrected comment in imap_endofresp()
3493 - DOCS: Corrected layout of POP3 and IMAP URL examples
3495 Corrected layout issues with the POP3 and IMAP URL examples introduced
3496 in commit cb3ae6894fb2.
3498 - DOCS: Updated CURLOPT_URL section following recent POP3 and IMAP changes
3500 Updated the POP3 sub-section to refer to message ID rather than mailbox.
3502 Added an IMAP sub-section with example URLs depicting the specification
3503 of mailbox, uid and section.
3505 - pop3: Refactored the mailbox variable as it didn't reflect it's purpose
3507 Updated the mailbox variable to correctly reflect it's purpose. The
3508 name mailbox was a leftover from when IMAP and POP3 support was
3509 initially added to curl.
3511 - FEATURES: Updated following recent IMAP changes
3513 - [Jiri Hruska brought this change]
3515 imap: Added the ability to FETCH a specific UID and SECTION
3517 Updated the FETCH command to send the UID and SECTION parsed from the
3518 URL. By default the BODY specifier doesn't include a section, BODY[] is
3519 now sent whereas BODY[TEXT] was previously sent. In my opinion
3520 retrieving just the message text is rarely useful when dealing with
3521 emails, as the headers are required for example, so that functionality
3522 is not retained. In can however be simulated by adding SECTION=TEXT to
3525 Also updated test801 and test1321 due to the BODY change.
3527 - email: Additional tidy up of comments following recent changes
3529 - smtp: Removed some FTP heritage leftovers
3531 Removed user and passwd from the SMTP struct as these cannot be set on
3532 a per-request basis and are leftover from legacy FTP code.
3534 Changed some comments still using FTP terminology.
3536 - smtp: Moved the per-request variables to the per-request data structure
3538 Moved the rcpt variable from the per-connection struct smtp_conn to the
3539 new per-request struct and fixed references accordingly.
3541 - pop3: Introduced a custom SMTP structure for per-request data
3543 Created a new SMTP structure and changed the type of the smtp proto
3544 variable in connectdata from FTP* to SMTP*.
3546 unknown (23 Feb 2013)
3547 - [Steve Holme brought this change]
3549 imap: Minor correction of comments for max line length
3551 Daniel Stenberg (23 Feb 2013)
3552 - strcasestr: remove check for this unused function
3554 - pop3: fix compiler warning
3556 error: declaration of 'pop3' shadows a previous local
3558 Steve Holme (23 Feb 2013)
3559 - [Jiri Hruska brought this change]
3561 imap: Added URL parsing of new variables
3563 Updated the imap_parse_url_path() function to parse uidvalidity, uid and
3564 section parameters based on RFC-5092.
3566 - [Jiri Hruska brought this change]
3568 imap: Introduced imap_is_bchar() function
3570 Added imap_is_bchar() for testing if a given character is a valid bchar
3573 - [Jiri Hruska brought this change]
3575 imap: Introduced new per-request veriables
3577 Added uidvalidity, uid and section variables to the per-request IMAP
3578 structure in preparation for upcoming URL parsing.
3580 - pingpong: Renamed curl_ftptransfer to curl_pp_transfer
3582 - pop3: Removed some FTP heritage leftovers
3584 Removed user and passwd from the POP3 struct as these cannot be set on
3585 a per-request basis and are leftover from legacy FTP code.
3587 Changed some comments still using FTP terminology.
3589 - pop3: Moved the per-request variables to the per-request data structure
3591 Moved the mailbox and custom request variables from the per-connection
3592 struct pop3_conn to the new per-request struct and fixed references
3595 - pop3: Introduced a custom POP3 structure for per-request data
3597 Created a new POP3 structure and changed the type of the pop3 proto
3598 variable in connectdata from FTP* to POP*.
3600 - [Jiri Hruska brought this change]
3602 imap: Fixed escaping of mailbox names
3604 Used imap_atom() to escape mailbox names in imap_select().
3606 - pingpong: Moved curl_ftptransfer definition to pingpong.h
3608 Moved the ftp transfer structure into pingpong.h so other protocols that
3609 require it don't have to include ftp.h.
3611 - urldata.h: Fixed comment for opt_no_body variable
3613 Corrected comment for opt_no_body variable to CURLOPT_NOBODY.
3615 - email: Minor tidy up following IMAP changes
3617 - [Jiri Hruska brought this change]
3619 imap: Removed more FTP leftovers
3621 Changed some variables and comments still using FTP terminology.
3623 - [Jiri Hruska brought this change]
3625 imap: Removed some FTP heritage leftovers
3627 Removed user and passwd from the IMAP struct as these cannot be set on
3628 a per-request basis and are leftover from legacy FTP code.
3630 - [Jiri Hruska brought this change]
3632 imap: Introduced a custom IMAP structure for per-request data
3634 Created a new IMAP structure and changed the type of the imap proto
3635 variable in connectdata from FTP* to the new IMAP*.
3637 Moved the mailbox variable from the per-connection struct imap_conn to
3638 the new per-request struct and fixed references accordingly.
3640 - pop3: Updated do phrase clean-up comment
3642 Following commit 65644b833532 for the IMAP module updated the clean-up
3645 - imap: Fixed memory leak when performing multiple selects
3647 Moved the clean-up of the mailbox variable from imap_disconnect() to
3648 imap_done() as this variable is allocated in the do phase, yet would
3649 have only been freed only once if multiple selects where preformed
3650 on a single connection.
3652 Daniel Stenberg (22 Feb 2013)
3653 - [Alexander Klauer brought this change]
3655 Documentation: Typo in docs/CONTRIBUTE
3657 Fixes a typo get → git in docs/CONTRIBUTE.
3659 - [Alexander Klauer brought this change]
3661 repository: ignore patch files generated by git
3663 Ignores the patch files generated by the 'git format-patch' command.
3665 - [Alexander Klauer brought this change]
3667 libcurl documentation: clarifications and typos
3669 * Elaborates on default values of some curl_easy_setopt() options.
3670 * Reminds the user to cast variadic arguments to curl_easy_setopt() to
3671 'void *' where curl internally interprets them as such.
3672 * Clarifies the working of the CURLOPT_SEEKFUNCTION option for
3674 * Fixes typo 'forth' → 'fourth'.
3675 * Elaborates on CURL_SOCKET_TIMEOUT.
3676 * Adds some missing periods.
3677 * Notes that the return value of curl_version() must not be passed to
3680 - [Alexander Klauer brought this change]
3682 lib/url.c: Generic read/write data pointers
3684 Always interprets the pointer passed with the CURLOPT_WRITEDATA or
3685 CURLOPT_READDATA options of curl_easy_setopt() as a void pointer in
3686 order to avoid problems in environments where FILE and void pointers
3687 have non-trivial conversion.
3689 - [Alexander Klauer brought this change]
3691 libcurl documentation: updates HTML index
3693 * Adds several links to documentation of library functions which were
3695 * Marks documentation of deprecated library functions "(deprecated)".
3696 * Removes spurious .html suffixes.
3698 - ossl_seed: avoid recursive seeding!
3700 Steve Holme (22 Feb 2013)
3701 - [Jiri Hruska brought this change]
3703 Fixed checking the socket if there is data waiting in the cache
3705 Use Curl_pp_moredata() in Curl_pp_multi_statemach() to check if there is
3706 more data to be received, rather than the socket state, as a task could
3707 hang waiting for more data from the socket itself.
3709 - imap.c: Fixed an incorrect variable reference
3711 Fixed an incorrect variable reference which was introduced in commit
3712 a1701eea289f as a result of a copy and paste from SMTP/POP3.
3714 - [Jiri Hruska brought this change]
3716 pingpong: Introduce Curl_pp_moredata()
3718 A simple function to test whether the PP is not sending and there are
3719 still more data in its receiver cache. This will be later utilized to:
3721 1) Change Curl_pp_multi_statemach() and Curl_pp_easy_statemach() to
3722 not test socket state and just call user's statemach_act() function
3723 when there are more data to process, because otherwise the task would
3724 just hang, waiting for more data from the socket.
3726 2) Allow PP users to read multiple responses by looping as long as there
3727 are more data available and current phase is not finished.
3728 (Currently needed for correct processing of IMAP SELECT responses.)
3730 Nick Zitzmann (19 Feb 2013)
3731 - FEATURES: why yes, we do support metalink
3733 I just noticed Metalink support wasn't listed as a feature of the tool.
3735 - metalink: fix improbable crash parsing metalink filename
3737 The this_url pointer wasn't being initialized, so if strdup() would return
3738 null when copying the filename in a metalink file, then hilarity would
3739 ensue during the cleanup phase. This change was brought to you by clang,
3740 which noticed this and raised a warning.
3742 Yang Tse (19 Feb 2013)
3743 - smtp.c: fix enumerated type mixed with another type
3745 - polarssl threadlock cleanup
3747 Nick Zitzmann (18 Feb 2013)
3748 - docs: schannel and darwinssl documentation improvements
3750 Schannel and darwinssl use the certificates built into the
3751 OS to do vert verification instead of bundles. darwinssl
3752 is thread-safe. Corrected typos in the NSS docs.
3754 Daniel Stenberg (18 Feb 2013)
3755 - resolver_error: remove wrong error message output
3757 The attempt to use gai_strerror() or alternative function didn't work as
3758 the 'sock_error' field didn't contain the proper error code. But since
3759 this hasn't been reported and thus isn't really a big deal I decided to
3760 just scrap the whole attempt to output the detailed resolver error and
3761 instead remain with just stating that the resolving of the name failed.
3763 - [Kim Vandry brought this change]
3765 Curl_resolver_is_resolved: show proper host name on failed resolve
3767 - Curl_resolver_is_resolved: fix compiler warning
3769 conversion to 'int' from 'long int' may alter its value
3771 - compiler warning fix
3773 follow-up to commit ed7174c6f66, rename 'wait' to 'block'
3775 - compiler warning fix: declaration of 'wait' shadows a global declaration
3777 It seems older gcc installations (at least) will cause warnings if we
3778 name a variable 'wait'. Now changed to 'block' instead.
3780 Reported by: Jiřà Hruška
3781 Bug: http://curl.haxx.se/mail/lib-2013-02/0247.html
3783 Nick Zitzmann (17 Feb 2013)
3784 - MacOSX-Framework: Make script work in Xcode 4.0 and later
3786 Apple made a number of changes to Xcode 4. The SDKs were moved, the entire
3787 Developer folder was moved, and PowerPC support was removed. The script
3788 will now adapt to those changes and should be future-proofed against
3789 additional changes in case Apple moves the Developer folder ever again.
3790 Also, the minimum OS X version compiler option was removed, so that the
3791 framework can be built against the latest SDK but still run in older cats.
3793 Daniel Stenberg (17 Feb 2013)
3794 - docs: refer to CURLOPT_ACCEPT_ENCODING instead of the old name
3796 Steve Holme (16 Feb 2013)
3797 - email: Tidied up result code variables
3799 Tidied up result variables to be consistent in name, declaration order
3802 Nick Zitzmann (16 Feb 2013)
3803 - ntlm_core: fix compiler warning when building with clang
3805 Fixed a 64-to-32 compiler warning raised when building with
3806 clang and the --with-darwinssl option.
3808 Daniel Stenberg (16 Feb 2013)
3809 - Guile-curl: a new libcurl binding
3811 - polarsslthreadlock: #include the proper memory and debug includes
3813 Pointed out by Steve Holme
3815 Steve Holme (16 Feb 2013)
3816 - email: Removed unnecessary forward declaration
3818 Due to the reordering of functions in commit 586f5d361474 the forward
3819 declaration to state_upgrade_tls() are no longer required.
3821 - pop3.c: Added reference to RFC-5034
3823 Daniel Stenberg (15 Feb 2013)
3824 - [Willem Sparreboom brought this change]
3826 PolarSSL: Change to cURL coding style
3828 Repaired all curl/lib/checksrc.pl warnings in the previous four patches
3830 - [Willem Sparreboom brought this change]
3832 PolarSSL: WIN32 threading support for entropy
3834 Added WIN32 threading support for PolarSSL entropy if
3835 --enable-threaded-resolver config flag is set and process.h can be found.
3837 - [Willem Sparreboom brought this change]
3839 PolarSSL: pthread support for entropy
3841 Added pthread support for polarssl entropy if --enable-threaded-resolver
3842 config flag is set and pthread.h can be found.
3844 - [Willem Sparreboom brought this change]
3846 PolarSSL: changes to entropy/ctr_drbg/HAVEGE_RANDOM
3848 Add non-threaded entropy and ctr_drbg and removed HAVEGE_RANDOM define
3850 - [Willem Sparreboom brought this change]
3852 PolarSSL: added human readable error strings
3854 Print out human readable error strings for PolarSSL related errors
3856 Steve Holme (15 Feb 2013)
3857 - pop3: Removed unnecessary state changes on failure
3859 - imap: Removed unnecessary state change on failure
3861 Daniel Stenberg (15 Feb 2013)
3862 - metalink_cleanup: yet another follow-up fix
3864 - metalink_cleanup: define it without argument
3866 Since the function takes no argument, the macro shouldn't take one as
3867 some compilers will error out on that.
3869 - rename "easy" statemachines: call them block instead
3871 ... since they're not used by the easy interface really, I wanted to
3872 remove the association. Also, I unified the pingpong statemachine driver
3873 into a single function with a 'wait' argument: Curl_pp_statemach.
3875 Yang Tse (15 Feb 2013)
3876 - [Gisle Vanem brought this change]
3878 curl_setup_once.h: definition of HAVE_CLOSE_S defines sclose() to close_s()
3880 - [Gisle Vanem brought this change]
3882 config-dos.h: define HAVE_CLOSE_S for MSDOS/Watt-32
3884 - [Gisle Vanem brought this change]
3886 config-dos.h: define strerror() to strerror_s_() for High-C
3888 - [Gisle Vanem brought this change]
3890 config-dos.h: define HAVE_TERMIOS_H only for djgpp
3892 Steve Holme (14 Feb 2013)
3893 - smtp.c: Fixed a trailing whitespace
3895 Remove tailing whitespace introduced in commit 7ed689d24a4e.
3897 - pop3: Fixed blocking SSL connect when connecting via POP3S
3899 A call to Curl_ssl_connect() was accidentally left in when the SSL/TLS
3900 connection layer was reworked in 7.29. Not only would this cause the
3901 connection to block but had the additional overhead of calling the
3902 non-blocking connect a little bit later.
3904 - smtp: Refactored the smtp_state_auth_resp() function
3906 Renamed smtp_state_auth_resp() function to match the implementations in
3909 Daniel Stenberg (14 Feb 2013)
3912 Clarify the code by reducing ifdefs
3914 - strlcat: remove function
3916 This function was only used twice, both in places where performance
3917 isn't crucial (socks + if2ip). Removing the use of this function removes
3918 the need to have our private version for systems without it == reduced
3921 Also, in the SOCKS case it is clearly better to fail gracefully rather
3922 than to truncate the results.
3924 This work was triggered by a bug report on the strcal prototype in
3927 strlcat was added in commit db70cd28 in February 2001!
3929 Bug: http://curl.haxx.se/bug/view.cgi?id=1192
3930 Reported by: Jeremy Huddleston
3932 - Curl_FormBoundary: made static
3934 As Curl_FormBoundary() is no longer used outside of this file (since
3935 commit ad7291c1a9d), it is now renamed to formboundary() and is made
3938 - ossl_seed: fix the last resort PRNG seeding
3940 Instead of just abusing the pseudo-randomizer from Curl_FormBoundary(),
3941 this now uses Curl_ossl_random() to get entropy.
3943 Steve Holme (13 Feb 2013)
3944 - email: Tidy up before additional IMAP work
3946 Replaced two explicit comparisons of CURLE_OK with boolean alternatives.
3948 General tidy up of comments.
3950 - smtp: Removed duplicate pingpong structure initialisation
3952 The smtp_connect() function was setting the member variables of the
3953 pingpong structure twice, once before calling Curl_pp_init() and once
3956 Yang Tse (13 Feb 2013)
3957 - move msvc IDE related files to 'vs' directory tree
3959 Use 'vs' directory tree given that 'vc' intended one clashes
3960 with an already existing build target in file Makefile.dist.
3962 Daniel Stenberg (13 Feb 2013)
3963 - install-sh: updated to support multiple source files as arguments
3965 Version 7.29.0 uses Makefiles generated with a newer version of the
3966 autotools than the previous 7.28.1. These Makefiles try to install
3967 e.g. header files by calling install-sh with multiple source files as
3968 arguments. The bundled install-sh is to old and does not support this.
3970 The problem only occurs, if install-sh is actually being used, ie. the
3971 platform install executable is to old or not usable. Example: Solaris
3974 The files install-sh and mkinstalldirs are now updated with the automake
3975 1.11.3 versions. A better fix might be to completely remove them from
3976 git and force the files to be added/created during buildconf.
3978 Bug: http://curl.haxx.se/bug/view.cgi?id=1195
3979 Reported by: Rainer Jung
3981 Yang Tse (13 Feb 2013)
3982 - move msvc IDE related files to 'vc' directory tree
3984 - msvc IDE 'vc' directory tree preparation
3986 Steve Holme (12 Feb 2013)
3987 - imap: Corrected a whitespace issue from previous commit
3989 Fixed a small whitespace issue that crept in there in commit
3992 - email: Another post optimisation of endofresp() tidy up
3994 - sasl: Fixed null pointer reference when decoding empty digest challenge
3996 Fixed a null pointer reference when an empty challenge is passed to the
3997 Curl_sasl_create_digest_md5_message() function.
3999 Bug: http://sourceforge.net/p/curl/bugs/1193/
4000 Reported by: Saran Neti
4002 - email: Post optimisation of endofresp() tidy up
4004 Removed unnecessary end of line check and return.
4006 Nick Zitzmann (12 Feb 2013)
4007 - darwinssl: Fix send glitchiness with data > 32 or so KB
4009 An ambiguity in the SSLWrite() documentation lead to a bad inference in the
4010 code where we assumed SSLWrite() returned the amount of bytes written to
4011 the socket, when that is not actually true; it returns the amount of data
4012 that is buffered for writing to the socket if it returns errSSLWouldBlock.
4013 Now darwinssl_send() returns CURLE_AGAIN if data is buffered but not written.
4015 Reference URL: http://curl.haxx.se/mail/lib-2013-02/0145.html
4017 Steve Holme (12 Feb 2013)
4018 - pingpong.h: Fixed line length over 78 characters from b56c9eb48e3c
4020 - pingpong: Optimised the endofresp() function
4022 Reworked the pp->endofresp() function so that the conndata, line and
4023 line length are passed down to it just as with Curl_client_write()
4024 rather than each implementation of the function having to query
4027 Additionally changed the int return type to bool as this is more
4028 representative of the function's usage.
4030 - email: Post STARTLS capability code tidy up (Part Three)
4032 Corrected the order of the upgrade_tls() functions and moved the handler
4033 upgrade and getsock() functions out from the middle of the state related
4036 - email: Post STARTLS capability code tidy up (Part Two)
4038 Corrected the order of the pop3_state_capa() / imap_state_capability()
4039 and the pop3_state_capa_resp() / imap_state_capability_resp() functions
4040 to match the execution order.
4042 Daniel Stenberg (11 Feb 2013)
4043 - [ulion brought this change]
4045 SOCKS: fix socks proxy when noproxy matched
4047 Test 1212 added to verify
4049 Bug: http://curl.haxx.se/bug/view.cgi?id=1190
4051 Steve Holme (11 Feb 2013)
4052 - ntlm: Updated comments for the addition of SASL support to IMAP in v7.29
4054 - RELEASE-NOTES: Updated following the recent imap/pop3/smtp changes
4056 Linus Nielsen Feltzing (10 Feb 2013)
4057 - Fix NULL pointer reference when closing an unused multi handle.
4059 Steve Holme (10 Feb 2013)
4060 - email: Post STARTLS capability code tidy up (Part One)
4062 Corrected the order of the CAPA / CAPABILITY state machine constants to
4063 match the execution order.
4065 - imap: Fixed memory leak following commit f6010d9a0359
4067 - smtp: Added support for the STARTTLS capability (Part Two)
4069 Added honoring of the tls_supported flag when starting a TLS upgrade
4070 rather than unconditionally attempting it. If the use_ssl flag is set
4071 to CURLUSESSL_TRY and the server doesn't support TLS upgrades then the
4072 connection will continue to authenticate. If this flag is set to
4073 CURLUSESSL_ALL then the connection will complete with a failure as it
4076 - pop3: Added support for the STLS capability (Part Three)
4078 Added honoring of the tls_supported flag when starting a TLS upgrade
4079 rather than unconditionally attempting it. If the use_ssl flag is set
4080 to CURLUSESSL_TRY and the server doesn't support TLS upgrades then the
4081 connection will continue to authenticate. If this flag is set to
4082 CURLUSESSL_ALL then the connection will complete with a failure as it
4085 - imap: Added support for the STARTTLS capability (Part Three)
4087 Added honoring of the tls_supported flag when starting a TLS upgrade
4088 rather than unconditionally attempting it. If the use_ssl flag is set
4089 to CURLUSESSL_TRY and the server doesn't support TLS upgrades then the
4090 connection will continue to authenticate. If this flag is set to
4091 CURLUSESSL_ALL then the connection will complete with a failure as it
4094 Daniel Stenberg (10 Feb 2013)
4095 - [Alessandro Ghedini brought this change]
4097 htmltitle: fix suggested build command
4099 Steve Holme (10 Feb 2013)
4100 - pop3: Added support for the STLS capability (Part Two)
4102 Added sending of initial CAPA command before STLS is sent. This allows
4103 for the detection of the capability before trying to upgrade the
4106 - imap: Added support for the STARTTLS capability (Part Two)
4108 Added sending of initial CAPABILITY command before STARTTLS is sent.
4109 This allows for the detection of the capability before trying to
4110 upgrade the connection.
4112 - smtp: Added support for the STLS capability (Part One)
4114 Introduced detection of the STARTTLS capability, in order to add support
4115 for TLS upgrades without unconditionally sending the STARTTLS command.
4117 - pop3: Added support for the STLS capability (Part One)
4119 Introduced detection of the STLS capability, in order to add support
4120 for TLS upgrades without unconditionally sending the STLS command.
4122 - imap: Added support for the STARTTLS capability (Part One)
4124 Introduced detection of the STARTTLS capability, in order to add support
4125 for TLS upgrades without unconditionally sending the STARTTLS command.
4127 - RELEASE-NOTES: synced with 92f7606f29b704
4129 - smtp: Fixed an issue when processing EHLO failure responses (Part 3)
4131 Follow up fix to commit 62bd21746443 to cater for servers that don't
4132 respond with a 250 in their EHLO responses. Additionally updated the
4133 SMTP tests to respond with a 250 response code as per RFC5321.
4135 - pop3: Fixed SASL authentication capability detection
4137 Fixed the SASL capability detection to include the space character
4138 before the authentication mechanism list. Otherwise a capability such
4139 as SASLSOMETHING would be interpreted as enabling SASL and potentially
4140 trying to identify SOMETHING as a mechanism.
4142 - pop3: Fixed incorrect return value from pop3_endofresp()
4144 Corrected an incorrect return value when -ERR is received from the
4145 server - introduced in commit b5bb61ee697b (June 2012).
4147 - smtp: Fixed an issue when processing EHLO failure responses (Part 2)
4149 Follow up fix to commit 23d17190ee32 as EHLO capabilities can exist
4150 within a positive response line.
4152 - smtp: Fixed an issue with missing capabilities after the AUTH line
4154 Follow up to commit 40f9bb787f05 to fix missing capabilities after an
4157 Nick Zitzmann (8 Feb 2013)
4158 - darwinssl: Make certificate errors less techy
4160 Previously if a problem was found with one of the server's certificates,
4161 we'd log an OSStatus for the end user to look up. Now we explain what
4162 was wrong with the site's certificate chain. Also un-did part of the
4163 previous commit where the code wouldn't catch errSSLServerAuthCompleted
4164 if built under Leopard.
4166 Guenter Knauf (9 Feb 2013)
4167 - Updated dependency libs.
4169 Steve Holme (9 Feb 2013)
4170 - imap: Corrected some comments
4172 - smtp: Fixed an issue when processing EHLO failure responses
4174 Fixed a small issue where smtp_endofresp() would look for capabilities
4175 in the description part of a failure response. In theory a server
4176 shouldn't respond with SIZE or AUTH in an EHLO command's failure
4177 response but if it did then capabilities would be unnecessarily set
4178 before eventually failing.
4180 - pop3: Reworked pop3_endofresp() to simplify it little
4182 Reworked pop3_endofresp() to simplify it and provide consistency between
4185 - imap: Renamed state variables in imap_authenticate()
4187 Renamed the authstate1 and authstate2 variables in imap_authenticate()
4188 as the old name was a left over from when there was only one state
4189 variable which was named due to a clash with the state() function.
4191 Additionally this provides consistency with the smtp module.
4193 - smtp: Reworked smtp_endofresp() to allow for extra capability detection
4195 - smtp: Renamed smtp_state_auth_passwd_resp() function
4197 Renamed the login password response function to better describe it's
4198 purpose as well as for consistency with the imap and pop3 modules.
4200 Daniel Stenberg (8 Feb 2013)
4201 - [Gisle Vanem brought this change]
4203 ntlm: fix memory leak
4205 Running tests\libtest\libntlmconnect.exe reveals a 1 byte (!) leak in
4206 ./lib/curl_ntlm_msgs.c:
4208 perl ..\memanalyze.pl c:memdebug.curl
4209 Leak detected: memory still allocated: 1 bytes
4210 At 9771e8, there's 1 bytes.
4211 allocated by curl_ntlm_msgs.c:399
4213 Snippet from curl_ntlm_msgs.c:
4214 /* setup ntlm identity's domain and length */
4215 dup_domain.tchar_ptr = malloc(sizeof(TCHAR) * (domlen + 1));
4219 'dup_domain.tbyte_ptr' looks to be freed in Curl_ntlm_sspi_cleanup() via
4220 'ntlm->identity.Domain'. But I see no freeing of 'dup_domain.tchar_ptr'.
4222 - DONE: consider callback-aborted transfers premature
4224 This bug report properly identified that when doing SMTP and aborting
4225 the transfer with a callback, it must be considered aborted prematurely
4226 by the code to avoid QUIT etc to be attempted as that would cause a
4229 The new test case 1507 verifies this behavior.
4231 Reported by: Patricia Muscalu
4232 Bug: http://curl.haxx.se/bug/view.cgi?id=1184
4234 - FAQ: refreshed some phrases
4236 Nick Zitzmann (7 Feb 2013)
4237 - darwinssl: Fix build under Leopard
4239 It turns out that Leopard (OS X 10.5) doesn't have constants for the ECDH
4240 ciphers in its headers, so the cases for them have been taken out of the
4241 build when building under Leopard. Also added a standard function for
4242 getting a string description of a SecCertificateRef.
4244 Steve Holme (7 Feb 2013)
4245 - RELEASE-NOTES: Added new imap features
4247 - imap: Added support for SASL-IR extension (Part 2)
4249 Modified imap_authenticate() to add support for sending the initial
4250 response with the AUTHENTICATE command, as per RFC4959.
4252 - smtp: Updated SMTP_AUTH_PASSWD state constant
4254 Changed the SMTP_AUTH_PASSWD state constant to SMTP_AUTH_LOGIN_PASSWD to
4255 better describe the state as the second part of an AUTH LOGIN command,
4256 as well as for consistency with the imap and pop3 modules.
4258 - imap: Added support for SASL-IR extension (Part 1)
4260 Introduced detection of the SASL-IR capability, in order to add support
4261 for sending the initial response with the AUTHENTICATE command, as per
4264 Daniel Stenberg (7 Feb 2013)
4265 - Revert "vc: remove explicit MSVC6 IDE project file and documentation"
4267 This reverts commit 0e66d5878edc3d7ffc445116d194b58bbc7504b9.
4269 Steve Holme (7 Feb 2013)
4270 - imap: Changed response tag generation to be completely unique
4272 Updated the automatic response tag generation to follow the examples
4273 given in RC3501, which list a 4 character string such as A001, A002,
4276 As a unique identifier should be generated for each command the string
4277 generation is based on the connection id and the incrementing command
4280 Dan Fandrich (6 Feb 2013)
4281 - Tweak the Android.mk file for its new location
4283 This is untested, but ought to be enough to still allow it
4284 to work automatically when the entire curl source tree is
4285 dropped into a full Android source tree.
4287 Daniel Stenberg (6 Feb 2013)
4288 - vc: remove explicit MSVC6 IDE project file and documentation
4290 VC6 is _very_ old and we provide working makefiles even for that
4291 compiler. Users who build with the IDE never use that method and project
4292 file anyway and it was just lingering in the root dir.
4294 Steve Holme (6 Feb 2013)
4295 - imap: Small variable rename in preparation for upcoming change
4297 Renamed a couple of variables and updated some comments in
4298 preparation for upcoming command id / response tag change.
4300 Daniel Stenberg (6 Feb 2013)
4301 - msvc: move Makefile.msvc.names into winbuild/
4303 In an attempt to clear up misc files from the root dir
4305 - build: move Android.mk to packages/Android/
4307 - emacs files: remove from git and dist
4309 We don't need them and I doubt many people used them. We also don't have
4310 any configs for other editors and we wouldn't want that.
4312 Steve Holme (6 Feb 2013)
4313 - email: Moved starttls code in separate functions
4315 To help maintain the readability of the code in imap.c, pop3.c and
4316 smtp.c moved the starttls code into state_starttls() functions.
4318 - [Nick Zitzmann brought this change]
4320 FEATURES: More NTLM and SSL changes, added two others, fixed typo
4322 Added IDN and HTTP data compression as they were left out of the
4325 Added notes for qssl, schannel and Secure Transport supporting SSLv2,
4326 Secure Transport supports NTLM, and axTLS does not support SSLv3.
4328 There was also a typo; "AUTH TSL" should be "AUTH TLS".
4330 Kamil Dudka (6 Feb 2013)
4331 - curl-config.in: do not randomly mix tabs and spaces
4333 Daniel Stenberg (6 Feb 2013)
4336 - THANKS: 12 contributors from 7.29.0
4338 Version 7.29.0 (6 Feb 2013)
4340 Daniel Stenberg (6 Feb 2013)
4341 - vms: config-vms.h is removed, no use trying to distribute it
4343 - RELEASE-NOTES: mention the SASL buffer overflow
4345 - [Eldar Zaitov brought this change]
4347 Curl_sasl_create_digest_md5_message: fix buffer overflow
4349 When negotiating SASL DIGEST-MD5 authentication, the function
4350 Curl_sasl_create_digest_md5_message() uses the data provided from the
4351 server without doing the proper length checks and that data is then
4352 appended to a local fixed-size buffer on the stack.
4354 This vulnerability can be exploited by someone who is in control of a
4355 server that a libcurl based program is accessing with POP3, SMTP or
4356 IMAP. For applications that accept user provided URLs, it is also
4357 thinkable that a malicious user would feed an application with a URL to
4358 a server hosting code targetting this flaw.
4360 Bug: http://curl.haxx.se/docs/adv_20130206.html
4362 Steve Holme (6 Feb 2013)
4363 - FEATURES: Removed erroneous whitespace
4365 Removed whitespace introduced in commit 5f8f20f5e65b that caused
4366 formatting issues when generating the website docs.
4368 Yang Tse (6 Feb 2013)
4369 - setup-vms.h: post VMS patch cleanup - III
4371 - rename post-config-vms.h to setup-vms.h
4372 - move its inclusion into proper location in curl_setup.h
4374 - vms_show: post VMS patch cleanup - II
4376 - remove multiple declarations of vms_show and add comments
4378 - tool_main.c: post VMS patch cleanup - I
4380 - remove header inclusion already done in curl_setup_once.h
4382 Steve Holme (6 Feb 2013)
4383 - FEATURES: Added SSPI to list of NTLM libraries
4385 - FEATURES: Added Secure Transport and qssl to list of SSL libraries
4387 - FEATURES: Added email feature set
4389 Added SMTP, SMTPS, POP3, POP3S, IMAP and IMAPS features.
4391 - imap.h: Corrected incorrect comment clarification
4393 Corrected comment clarification made in commit 167717b8069a.
4395 - COPYING: Updated copyright year to include 2013
4397 Daniel Stenberg (5 Feb 2013)
4398 - RELEASE-NOTES: synced with 25f351424b3538
4400 8 more bug fixes mentioned
4402 - [John E. Malmberg brought this change]
4404 VMS: fix and generate the VMS build config
4406 config_h.com is a new file that generates a config.h file based on the
4407 curl_config.h.in file and a quick scan of the configure script. This is
4408 actually a generic procedure that is shared with other VMS packages.
4410 The existing pre-built config-vms.h had over 100 entries that were not
4411 correct and in some cases conflicted with the build options available in
4414 generate_config_vms_h_curl.com is a helper procedure to the
4415 config_h.com. It covers the cases that the generic config_h.com is not
4416 able to figure out, and accepts input from the build_vms.com procedure.
4418 build_curlbuild_h.com is a new file to generate the curlbuild.h file
4419 that Curl is now using when it is using a curl_config.h file.
4421 post-config-vms.h is a new file that is needed to provide VMS specific
4422 definitions, and most of them need to be set before the system header
4425 The VMS build procedure is fixed:
4427 1. Fixed to link in the correct HP ssl library.
4428 2. Fixed to detect if HP Kerberos is installed.
4429 3. Fixed to detect if HP LDAP is installed.
4430 4. Fixed to detect if gnv$libzshr is installed.
4431 5. Simplified the input parameter parsing to not use a loop.
4432 6. Warn that 64 bit pointer option support is not complete
4434 7. Default to IEEE floating if platform supports it so
4435 resulting libcurl will be compatible with other
4436 open source projects on VMS.
4437 8. Default to LARGEFILE if platform supports it.
4438 9. Default to enable SSL, LDAP, Kerberos, libz
4439 if the libraries are present.
4440 10. Build with exact case global symbols for libcurl.
4441 11. Generate linker option file needed.
4442 12. Compiler list option only commonly needed items.
4443 13. fulllist option for those who really want it.
4444 14. Create debug symbol file on Alpha, IA64.
4446 - Curl_proxyCONNECT: return once CONNECT is sent
4448 By doing this unconditionally, we infer a simpler and more defined
4449 behavior. This also has the upside that test 1021 no longer fails for me
4450 even if I run with valgrind.
4452 Also fixed some wrong comments.
4454 Steve Holme (5 Feb 2013)
4455 - email: Reworked comments in the endofresp() functions
4457 Tidied up the comments in the endofresp() functions to be more
4458 meaningful prior to release.
4460 Marc Hoersken (5 Feb 2013)
4461 - schannel: Removed extended error connection setup flag
4463 According KB975858 this flag may cause problems on Windows 7 and
4464 Windows Server 2008 R2 systems. Extended error information is not
4465 currently used by libcurl and therefore not a requirement.
4467 The flag may improve the SSL-connection shutdown in case of an
4468 error. This means it might be a good improvement in the future.
4470 Fixes bug/issue #1187 - thanks for the report
4472 Daniel Stenberg (5 Feb 2013)
4473 - [Tor Arntsen brought this change]
4475 singleipconnect: Update *sockp for all CURLE_OK
4477 The 56b7c87c7 change left a case where a good sockfd was not copied to
4478 *sockp before returning with CURLE_OK
4480 - curl_easy_perform: Value stored to 'mcode' is never read
4482 pointed out by clang-analyzer
4484 - singleipconnect: remove dead assignment
4486 pointed out by clang-analyzer
4488 Linus Nielsen Feltzing (5 Feb 2013)
4489 - CURLMOPT_MAXCONNECTS: restore functionality
4491 When a connection is no longer used, it is kept in the cache. If the
4492 cache is full, the oldest idle connection is closed. If no connection is
4493 idle, the current one is closed instead.
4495 Steve Holme (5 Feb 2013)
4496 - RELEASE-NOTES: Updated following recent changes to the email protocols
4498 Added recent additions and fixes following the changes to imap, pop3
4499 and smtp. Additionally added another contributor that helped to test
4500 the imap sasl changes.
4502 - email: Provided extra comments following recent pop3/imap fixes
4504 Provided additional clarification about the logic of the authenticate()
4505 functions following commit 6b6bdc83bd36 and b4270a9af1d0.
4507 Daniel Stenberg (5 Feb 2013)
4508 - [Andrei Kurushin brought this change]
4510 winbuild: include version info for .dll .exe
4512 Bug: http://curl.haxx.se/bug/view.cgi?id=1186
4514 - FAQ: clarify 5.13 How do I stop an ongoing transfer
4516 Rich Gray provided good feedback and we now clarify that you can in fact
4517 stop a multi transfer at any point you like by removing the easy handle.
4519 - [Matt Arsenault brought this change]
4521 cmake: Fix mingw build
4523 - [Sergei Nikulov brought this change]
4525 cmake: updated OpenSSL build
4527 Steve Holme (4 Feb 2013)
4528 - pop3.c: Updated variable names to use shorter / more readable variant
4530 Tidied up code from commit 6b6bdc83bdUpdated where a few instances of
4531 the pop3c struct variable used the longer conndata struct rather than
4532 matching what other code in pop3_authenticate() used.
4534 Guenter Knauf (4 Feb 2013)
4535 - updated copyright years.
4537 - configure: update the copyright years for the output.
4539 Steve Holme (3 Feb 2013)
4540 - imap: Fixed no known authentication mechanism when fallback is required
4542 Fixed an issue where (lib)curl is compiled without support for a
4543 supported challenge-response based SASL authentication mechanism, such
4544 as CRAM-MD5 or NTLM, the server doesn't support the LOGIN or PLAIN
4545 mechanisms and (lib)curl doesn't fallback to Clear Text authentication.
4547 Note: In order to fallback to Clear Text authentication properly this
4548 fix adds support for the LOGINDISABLED server capability.
4549 imap: Fixed no known authentication mechanism when fallback is required
4551 Fixed an issue where (lib)curl is compiled without support for a
4552 supported challenge-response based SASL authentication mechanism, such
4553 as CRAM-MD5 or NTLM, the server doesn't support the LOGIN or PLAIN
4554 mechanisms and (lib)curl doesn't fallback to Clear Text authentication.
4556 Note: In order to fallback to Clear Text authentication properly this
4557 fix adds support for the LOGINDISABLED server capability.
4559 Related bug: http://curl.haxx.se/mail/lib-2013-02/0004.html
4560 Reported by: Stanislav Ivochkin
4562 - pop3: Fixed no known authentication mechanism when fallback is required
4564 Fixed an issue where (lib)curl is compiled without support for a
4565 supported challenge-response based SASL authentication mechanism, such
4566 as CRAM-MD5 or NTLM, the server doesn't support the LOGIN or PLAIN
4567 mechanisms and (lib)curl doesn't fallback to APOP or Clear Text
4570 Bug: http://curl.haxx.se/mail/lib-2013-02/0004.html
4571 Reported by: Stanislav Ivochkin
4573 Daniel Stenberg (1 Feb 2013)
4574 - singleipconnect: simplify and clean up
4576 Remove timeout argument that's never used.
4578 Make the actual connection get detected on a single spot to reduce code
4581 Store the IPv6 state already when the connection is attempted.
4583 - Curl_perfom: removed
4585 Curl_perfom is no longer used anywhere since the always-multi commit
4586 c43127414d89ccb9, and some related functions were used only from within
4589 Guenter Knauf (30 Jan 2013)
4592 Yang Tse (30 Jan 2013)
4593 - zz40-xc-ovr.m4: fix 'wc' detection - follow-up 2
4595 - Fix a pair of single quotes to double quotes.
4597 URL: http://curl.haxx.se/mail/lib-2013-01/0355.html
4598 Reported by: Tor Arntsen
4600 - zz40-xc-ovr.m4: fix 'wc' detection - follow-up
4602 - Take into account that 'wc' may return leading spaces and/or tabs.
4604 - Set initial IFS to space, tab and newline.
4606 - zz40-xc-ovr.m4: fix 'wc' detection
4608 - Take into account that 'wc' may return leading spaces.
4610 - Set internationalization behavior variables.
4612 Tor Arntsen analyzed and reported the issue.
4614 URL: http://curl.haxx.se/mail/lib-2013-01/0351.html
4616 - zz40-xc-ovr.m4: check another three basic utilities
4618 Guenter Knauf (29 Jan 2013)
4619 - Fixed debug.c to work again unchanged.
4621 Added CURLOPT_FOLLOWLOCATION since example.com is now redirected.
4623 Daniel Stenberg (29 Jan 2013)
4624 - [Nick Zitzmann brought this change]
4626 darwinssl: Fix bug where packets were sometimes transmitted twice
4628 There was a bug where, if SSLWrite() returned errSSLWouldBlock but did
4629 succeed in transmitting at least something, then we'd incorrectly
4630 resend the packet. Now we never take errSSLWouldBlock as a sign that
4631 nothing was transferred to/from the server.
4633 Bug: http://curl.haxx.se/mail/lib-2013-01/0295.html
4634 Reported by: Bruno de Carvalho
4636 - [Nick Zitzmann brought this change]
4638 FAQ: "Darwinssl" is AKA "Secure Transport" and supports NTLM
4640 - RELEASE-NOTES: only list Nick once
4642 Even though he's a fine dude, once is enough for this time!
4644 Yang Tse (28 Jan 2013)
4645 - zz40-xc-ovr.m4: 1.0 interface stabilization
4647 - Stabilization results in 4 public interface m4 macros:
4648 XC_CONFIGURE_PREAMBLE
4649 XC_CONFIGURE_PREAMBLE_VER_MAJOR
4650 XC_CONFIGURE_PREAMBLE_VER_MINOR
4651 XC_CHECK_PATH_SEPARATOR
4652 - Avoid one level of internal indirection
4654 - Drop XC_OVR_ZZ40 macro
4656 Kamil Dudka (28 Jan 2013)
4657 - docs: fix typos in man pages
4659 Reported by: Jiri Jaburek
4660 Bug: https://bugzilla.redhat.com/896544
4662 - docs: update the comments about loading CA certs with NSS
4664 Bug: https://bugzilla.redhat.com/696783
4666 Guenter Knauf (28 Jan 2013)
4667 - Updated dependency libs.
4669 - Fixed simple.c to work again unchanged.
4671 Added CURLOPT_FOLLOWLOCATION since example.com is now redirected.
4673 Steve Holme (27 Jan 2013)
4674 - smtp.c: Fixed unnecessary state change if starttls fails
4676 The state machine should only be changed to SMTP_STARTTLS when the
4677 STARTTLS command has been successfully sent to the server.
4679 - pop3.c: Fixed unnecessary state change if starttls fails
4681 The state machine should only be changed to POP3_STARTTLS when the
4682 STLS command has been successfully sent to the server.
4684 - imap.c: Fixed unnecessary state change if starttls fails
4686 The state machine should only be changed to IMAP_STARTTLS when the
4687 STARTTLS command has been successfully sent to the server.
4689 - email: Updated comment regarding ssldone usage
4691 Updated the ssldone comment as multi mode is always used internally now.
4693 Yang Tse (26 Jan 2013)
4694 - zz40-xc-ovr.m4: emit witness message in configure BODY
4696 This avoids witness message in output when running configure --help,
4697 while sending the message to config.log for other configure runs.
4699 Steve Holme (25 Jan 2013)
4700 - smtp.c: Added comments to smtp_endofresp()
4702 Minor code tidy up to add comments similar to those used in the pop3
4703 and imap end of resp functions, in order to assist anyone reading the
4704 code and highlight the similarities between each of these protocols.
4706 Yang Tse (25 Jan 2013)
4707 - zz40-xc-ovr.m4: truly do version conditional overriding
4709 - version conditional overriding
4710 - catch unexpanded XC macros
4711 - fix double words in comments
4713 - zz40-xc-ovr.m4: fix variable assignment of subshell output bashism
4715 Tor Arntsen analyzed and reported the issue.
4717 URL: http://curl.haxx.se/mail/lib-2013-01/0306.html
4719 - zz40-xc-ovr.m4: reinstate strict AC_REQUIRE macro dependencies
4721 - zz40-xc-ovr.m4: avoid double single-quote usage
4723 - zz40-xc-ovr.m4: parentheses balancing of 'case' statements
4725 m4 quadrigraph shell comment technique allows proper autoconf
4726 parentheses balancing in shell 'case' statements. The presence
4727 of unbalanced parentheses may otherwise trigger expansion bugs.
4729 Steve Holme (24 Jan 2013)
4730 - smtp.c: Corrected RFC references
4732 The most recent version of the SMTP RFC is RFC5321 and not RFC2821 as
4733 previously documented.
4735 Added RFC1870 and re-ordered list numerically.
4737 - smtp.c: Fixed failure detection during TLS upgrade
4739 smtp_state_upgrade_tls() would attempt to incorrectly complete the
4740 upgrade to smtps and start the EHLO command if
4741 Curl_ssl_connect_nonblocking() returned a failure code and if ssldone
4742 was set to TRUE. This would only happen when a non-blocking API hadn't
4743 been provided by the SSL implementation and curlssl_connect() was
4746 - pop3.c: Fixed failure detection during TLS upgrade
4748 pop3_state_upgrade_tls() would attempt to incorrectly complete the
4749 upgrade to pop3s and start the CAPA command if
4750 Curl_ssl_connect_nonblocking() returned a failure code and if ssldone
4751 was set to TRUE. This would only happen when a non-blocking API hadn't
4752 been provided by the SSL implementation and curlssl_connect() was
4755 - imap.c: Fixed failure detection during TLS upgrade
4757 imap_state_upgrade_tls() would attempt to incorrectly complete the
4758 upgrade to imaps and start the CAPABILITY command if
4759 Curl_ssl_connect_nonblocking() returned a failure code and if ssldone
4760 was set to TRUE. This would only happen when a non-blocking API hadn't
4761 been provided by the SSL implementation and curlssl_connect() was
4764 Yang Tse (24 Jan 2013)
4765 - zz40-xc-ovr.m4: internals overhauling
4768 - Execute commands in subshells
4769 - Faster path separator check
4770 - Fix missing 'test' command
4771 - Rename private macros
4772 - Minimize AC_REQUIRE usage
4774 Steve Holme (23 Jan 2013)
4775 - email: Removed unnecessary return statements
4777 Small tidy up to remove unnecessary return statements prior to the next
4780 Yang Tse (23 Jan 2013)
4781 - zz40-xc-ovr.m4: redirect errors and warnings to stderr
4783 - zz40-xc-ovr.m4: AC_REQUIRE also XC_CONFIGURE_PREAMBLE success message
4785 - zz60-xc-ovr.m4: tighten XC_OVR_ZZ60 macro placement requirements
4787 - configure: use XC_CONFIGURE_PREAMBLE early checks
4789 Some basic checks we make were placed early enough in generated
4790 configure script when using autoconf 2.5X versions. Newer autoconf
4791 versions expand these checks much further into the configure script,
4792 rendering them useless. Using XC_CONFIGURE_PREAMBLE fixes placement
4793 of early intended checks across all our autoconf supported versions.
4795 - zz40-xc-ovr.m4: provide XC_CONFIGURE_PREAMBLE macro
4797 Daniel Stenberg (23 Jan 2013)
4798 - FAQ: update the SSL lib list and wording in question 2.2
4800 Steve Holme (22 Jan 2013)
4801 - curl_sasl.c: Corrected references to RFC
4803 The most recent version of the RFC is RFC4422 and not RFC2222 as
4804 previously documented.
4806 - email: Corrected references to SASL RFC
4808 The most recent version of the SASL RFC is RFC4422 and not RFC2222 as
4809 previously documented.
4811 Daniel Stenberg (22 Jan 2013)
4812 - [Ulion brought this change]
4814 formpost: support quotes, commas and semicolon in file names
4816 - document the double-quote and backslash need be escaped if quoting.
4817 - libcurl formdata escape double-quote in filename by backslash.
4818 - curl formparse can parse filename both contains '"' and ',' or ';'.
4819 - curl now can uploading file with ',' or ';' in filename.
4821 Bug: http://curl.haxx.se/bug/view.cgi?id=1171
4823 - memanalyze.pl: handle fopen() of file names with quotes
4825 Yang Tse (21 Jan 2013)
4826 - xc-cc-check.m4: re-evaluate exporting and AC_SUBST'ing vars
4830 When running a configure script that has nested packages (for example
4831 libcurl's configure with --enable-ares and c-ares sources embedded in
4832 curl tree) and AC_CONFIG_SUBDIRS([nested-subdir]) machinery is used to
4833 automatically run the nested configure script from within the parent
4834 configure script, it happens that the nested _shell_ script will
4835 inherit shell variables exported from the parent _shell_ script.
4837 If for example parent configure script sets and exports LDFLAGS and LIBS
4838 variables with proper values in order to link either a parent library or
4839 program with a library which will be configured and built by a nested
4840 package; It will happen that when the nested configure script runs, the
4841 nested library does not exist yet and _any_ link-test done in the nested
4842 configure will fail, such as those that autoconf macros perform in order
4843 to detect existing compiler and its characteristics, the result is that
4844 the nested configure script will fail with errors such as:
4846 configure: error: C compiler cannot create executables
4848 For now, we no longer export variables previously exported here.
4850 On the other hand, AC_SUBST'ing them is appropriate and even with nested
4851 packages each package's config.status gets its own package values.
4853 So we reinstate AC_SUBST'ing previously AC_SUBST'ed variables.
4855 Daniel Stenberg (21 Jan 2013)
4856 - FAQ: 3.22 curl -X gives me HTTP problems
4858 Yang Tse (21 Jan 2013)
4859 - xc-cc-check.m4: avoid recursive package automake'ing breakage
4861 - xc-cc-check.m4: mark earlier variables that are to be exported
4863 - configure: autotools compatibility fixes - step I
4865 Fix proper macro expansion order across autotools versions for
4866 C compiler and preprocessor program checks.
4868 Steve Holme (20 Jan 2013)
4869 - pop3.c: Fixed conditional compilation of the apop response function
4871 Extended the fix from commit 8b15c84ea91e to additionally exclude
4872 pop3_state_apop_resp() if the CURL_DISABLE_CRYPTO_AUTH flag is
4875 Yang Tse (20 Jan 2013)
4876 - Makefile.inc: fix $(top_srcdir) not allowed in _SOURCES variables
4878 Daniel Stenberg (19 Jan 2013)
4879 - formadd: reject trying to read a directory where a file is expected
4881 Bug: http://curl.haxx.se/mail/archive-2013-01/0017.html
4882 Reported by: Ulrich Doehner
4884 - curl_easy_send.3: document return codes
4886 Reported by: Craig Davison
4887 Bug: http://curl.haxx.se/mail/lib-2013-01/0234.html
4889 - curl_easy_recv.3: document return codes
4891 Reported by: Craig Davison
4892 Bug: http://curl.haxx.se/mail/lib-2013-01/0234.html
4894 Steve Holme (19 Jan 2013)
4895 - email: General code tidy up
4897 Corrected some function argument definitions to maximize the 80
4898 character line length limit and be in keeping with the curl
4901 - pop3.c: Fixed a problem with pop3s connections not connecting properly
4903 Fixed an issue where Curl_ssl_connect_nonblocking() wouldn't complete
4904 correctly and the ssldone flag wouldn't be set to true for pop3s based
4907 Bug introduced in commit: 4ffb8a6398ed.
4909 Daniel Stenberg (18 Jan 2013)
4910 - RELEASE-NOTES: add references to several bugfixes+changes
4912 Steve Holme (18 Jan 2013)
4913 - RELEASE-NOTES: Added missing imap fix
4915 Added missing imap fix as per commit 709b3506cd9b.
4917 Yang Tse (18 Jan 2013)
4918 - runtests.pl: make VPATH builds find valgrind.supp
4920 Daniel Stenberg (18 Jan 2013)
4921 - RELEASE-NOTES: synced with c43127414d89
4923 - always-multi: always use non-blocking internals
4925 Remove internal separated behavior of the easy vs multi intercace.
4926 curl_easy_perform() is now using the multi interface itself.
4928 Several minor multi interface quirks and bugs have been fixed in the
4931 Much help with debugging this has been provided by: Yang Tse
4933 Yang Tse (17 Jan 2013)
4934 - url.c: fix HTTP CONNECT tunnel establishment upon delayed response
4936 Fixes initial proxy response being processed by the tunneled protocol
4937 handler instead of the HTTP wrapper handler. This issue would trigger
4938 upon delayed CONNECT response from the proxy.
4940 Additionally fixes a multi interface code-path in which connections
4941 would not time out properly.
4943 This does not fix known bug #39.
4945 URL: http://curl.haxx.se/mail/lib-2013-01/0191.html
4947 Daniel Stenberg (16 Jan 2013)
4948 - [Yves Arrouye brought this change]
4950 --libcurl: fix for non-zero default options
4952 If the default value for an option taking a long as its value is non
4953 zero, and it is set by zero by a command line option, then that command
4954 line option is not reflected in --libcurl's output. This is because line
4955 520-521 of tool_setopt.c look like:
4960 An example of a command-line option doing so is the -k option that sets
4961 CURLOPT_SLL_VERIFYPEER and CURLOPT_SSL_VERIFYHOST to 0L, when the
4962 defaults are non-zero.
4964 - FTP: reject illegal port numbers in EPSV 229 responses
4966 Yang Tse (15 Jan 2013)
4967 - commit bc682cbd follow-up
4969 - build: use per-target '_CPPFLAGS' for those currently using default
4971 Automake documents that doing this will make it choose a different name
4972 for intermediate object files even when sharing source files across
4973 targets of same Makefile.am.
4975 Up to automake 1.13.1 target's intermediate object files were placed
4976 in the build subdirectory of the target. We depended on this, probably
4977 undocumented behavior, to achieve same behavior as if a per-target flag
4978 had been specified when building targets that actually belong to
4979 different Makefile.am files.
4981 It seems automake 1.13.2 is going to break behavior mentioned above.
4983 So, lets use a documented behavior in order to achieve same purpose,
4984 across automake versions, no matter where automake wishes to place
4985 intermediate object files.
4987 Our build targets that already were using a per-target '_CFLAGS' or
4988 '_CPPFLAGS' need no 'fixing', these were already 'fixed'. The only
4989 Makefile.am or Makefile.in files in libcurl's source tree touched by
4990 this 'fix' are tests/libtest/Makefile.inc and tests/unit/Makefile.inc.
4992 - tests/libtest/Makefile.inc: sort build targets
4994 - tests/Makefile.am: remove wildcard usage in EXTRA_DIST
4996 Kamil Dudka (15 Jan 2013)
4997 - nss: fix error messages for CURLE_SSL_{CACERT,CRL}_BADFILE
4999 Do not use the error messages from NSS for errors not occurring in NSS.
5001 Steve Holme (14 Jan 2013)
5002 - TODO: Updated following IMAP SASL additions
5004 Yang Tse (14 Jan 2013)
5005 - configure: fix automake 1.13 compatibility
5009 buildconf: autoconf version 2.69
5010 buildconf: autom4te version 2.69
5011 buildconf: autoheader version 2.69
5012 buildconf: automake version 1.13.1
5013 buildconf: aclocal version 1.13.1
5014 buildconf: libtool version 2.4
5015 buildconf: GNU m4 version 1.4.16
5017 Daniel Stenberg (13 Jan 2013)
5018 - BUGS: update bug tracker URL
5020 ... and refresh number of lines of code
5022 - Curl_resolver_getsock: fix the function description comment
5024 It referred to it by the wrong name and said it returned the wrong value.
5026 Reported by: Gisle Vanem
5028 Kamil Dudka (11 Jan 2013)
5029 - nss: clear session cache if a client cert from file is used
5031 This commit fixes a regression introduced in 052a08ff.
5033 NSS caches certs/keys returned by the SSL_GetClientAuthDataHook callback
5034 and if we connect second time to the same server, the cached cert/key
5035 pair is used. If we use multiple client certificates for different
5036 paths on the same server, we need to clear the session cache to force
5037 NSS to call the hook again. The commit 052a08ff prevented the session
5038 cache from being cleared if a client certificate from file was used.
5040 The condition is now fixed to cover both cases: consssl->client_nickname
5041 is not NULL if a client certificate from the NSS database is used and
5042 connssl->obj_clicert is not NULL if a client certificate from file is
5045 Review by: Kai Engert
5047 Yang Tse (11 Jan 2013)
5048 - sockfilt.c: log file descriptor number on read/write error
5050 - [Gisle Vanem brought this change]
5052 packages/DOS/common.dj: remove COFF debug info generation
5054 gcc on DOS hasn't really supported COFF-debug (-gcoff) on djgpp for a
5057 "Sounds like the COFF debug info generation has bit-rotted in GCC.
5058 Nothing new here, no other platform uses COFF AFAIK."
5060 So lets drop it too.
5062 URL: http://curl.haxx.se/mail/lib-2013-01/0130.html
5064 - curl: ignore SIGPIPE - compilation fix - follow-up
5066 - test servers: handle W32/W64 SIGBREAK with exit_signal_handler
5068 - test servers: fix errno, ERRNO and SOCKERRNO usage for W32/W64
5070 - sockfilt.c: fix some W64 compiler warnings
5072 Daniel Stenberg (9 Jan 2013)
5073 - [Nick Zitzmann brought this change]
5075 docs: the --with-darwinssl option is available on Apple OSes
5077 Yang Tse (9 Jan 2013)
5078 - curl: ignore SIGPIPE - compilation fix
5080 - build: fix circular header inclusion with other packages
5082 This commit renames lib/setup.h to lib/curl_setup.h and
5083 renames lib/setup_once.h to lib/curl_setup_once.h.
5085 Removes the need and usage of a header inclusion guard foreign
5088 Removes the need and presence of an alarming notice we carried
5089 in old setup_once.h [2]
5091 ----------------------------------------
5093 1 - lib/setup_once.h used __SETUP_ONCE_H macro as header inclusion guard
5094 up to commit ec691ca3 which changed this to HEADER_CURL_SETUP_ONCE_H,
5095 this single inclusion guard is enough to ensure that inclusion of
5096 lib/setup_once.h done from lib/setup.h is only done once.
5098 Additionally lib/setup.h has always used __SETUP_ONCE_H macro to
5099 protect inclusion of setup_once.h even after commit ec691ca3, this
5100 was to avoid a circular header inclusion triggered when building a
5101 c-ares enabled version with c-ares sources available which also has
5102 a setup_once.h header. Commit ec691ca3 exposes the real nature of
5103 __SETUP_ONCE_H usage in lib/setup.h, it is a header inclusion guard
5104 foreign to libcurl belonging to c-ares's setup_once.h
5106 The renaming this commit does, fixes the circular header inclusion,
5107 and as such removes the need and usage of a header inclusion guard
5108 foreign to libcurl. Macro __SETUP_ONCE_H no longer used in libcurl.
5110 2 - Due to the circular interdependency of old lib/setup_once.h and the
5111 c-ares setup_once.h header, old file lib/setup_once.h has carried
5112 back from 2006 up to now days an alarming and prominent notice about
5113 the need of keeping libcurl's and c-ares's setup_once.h in sync.
5115 Given that this commit fixes the circular interdependency, the need
5116 and presence of mentioned notice is removed.
5118 All mentioned interdependencies come back from now old days when
5119 the c-ares project lived inside a curl subdirectory. This commit
5120 removes last traces of such fact.
5122 Daniel Stenberg (8 Jan 2013)
5123 - curl: ignore SIGPIPE
5125 This is a work-around for bug #1180 which is really libcurl's inability
5126 to ignore SIGPIPE in a few cases. With this work-around at least curl
5127 won't suffer from it!
5129 Bug: http://curl.haxx.se/bug/view.cgi?id=1180
5130 Reported by: LluÃs Batlle i Rossell
5132 Yang Tse (8 Jan 2013)
5133 - sockfilt.c: fix some compiler warnings
5135 Daniel Stenberg (8 Jan 2013)
5136 - Revert "configure: update req to 2.59"
5138 This reverts commit 7a6d8b1b1a8fcc184c36d6b6e741e32250b4bacb.
5140 URL: http://curl.haxx.se/mail/lib-2013-01/0103.html
5142 Steve Holme (8 Jan 2013)
5143 - pop3: Added support for non-blocking SSL upgrade
5145 Added support for asynchronous SSL upgrade when using the
5148 Daniel Stenberg (8 Jan 2013)
5149 - configure: update req to 2.59
5151 I ran the 2.59 version of autoupdate that updates obsoleted configure.ac
5152 constructs to the 2.59 standard. With a little hands-on fiddling I
5153 prevented it from ruining the quoting in AS_HELP_STRING() uses.
5155 I subsequently also bumped the required autoconf version to 2.59
5156 (released in December 2003) as I don't have an older autoconf version
5157 around to test with and I can't be bothered to install one either...
5159 Inspired by: Björn Stenberg
5160 Related blog post: http://cazfi.livejournal.com/195108.html
5162 Steve Holme (7 Jan 2013)
5163 - imap.c: Small tidy up to add missing comment
5165 - imap: Added support for sasl digest-md5 authentication
5167 - imap: Added support for sasl cram-md5 authentication
5169 Marc Hoersken (7 Jan 2013)
5170 - tests/server/sockfilt.c: Fixed integer comparison warning
5172 - tests/server/sockfilt.c: Include required Win32 headers
5174 Steve Holme (7 Jan 2013)
5175 - imap: Added support for sasl ntlm authentication
5177 - imap: Added support for sasl login authentication
5179 - pop3.c: Fixed default authentication detection
5181 Fixed an issue where a server may positively respond to the CAPA command
5182 but not list clear text as a valid authentication type.
5184 - curl_sasl.c: Small code tidy up following imap changes
5186 - smtp.c: Small code tidy up following imap changes
5188 - pop3.c: Small code tidy up following imap changes
5190 - imap: Added support for sasl plain text authentication
5192 Marc Hoersken (6 Jan 2013)
5193 - tests/server/sockfilt.c: Fixed support for listening sockets
5195 This commit fixes support for sockets that are ready to accept
5196 a new connection and have previously been put into listening mode.
5198 It also includes changes which are the result of investigation
5199 regarding Windows STDIN. These changes are the preparation for further
5200 improvements regarding support for reading data from STDIN on Windows.
5202 Open issue: WaitForMultipleObjectsEx does not support PIPE handles
5203 which are returned by GetStdHandle while running without a GUI.
5205 - tests/server/sockfilt.c: Set Windows Console to binary mode
5207 - tests/server/sockfilt.c: Improved log error messages
5209 Include error code and parameters in error messages.
5211 Steve Holme (6 Jan 2013)
5212 - imap: Introduced the continue response in imap_endofresp()
5214 - imap: Added support for SASL based authentication mechanism detection
5216 Added support for detecting the supported SASL authentication mechanisms
5217 via the CAPABILITY command.
5219 Yang Tse (6 Jan 2013)
5220 - Revert changes relative to lib/*.[ch] recent renaming
5222 This reverts renaming and usage of lib/*.h header files done
5223 28-12-2012, reverting 2 commits:
5225 f871de0... build: make use of 76 lib/*.h renamed files
5226 ffd8e12... build: rename 76 lib/*.h files
5228 This also reverts removal of redundant include guard (redundant thanks
5229 to changes in above commits) done 2-12-2013, reverting 1 commit:
5231 c087374... curl_setup.h: remove redundant include guard
5233 This also reverts renaming and usage of lib/*.c source files done
5234 3-12-2013, reverting 3 commits:
5236 13606bb... build: make use of 93 lib/*.c renamed files
5237 5b6e792... build: rename 93 lib/*.c files
5238 7d83dff... build: commit 13606bbfde follow-up 1
5240 Start of related discussion thread:
5242 http://curl.haxx.se/mail/lib-2013-01/0012.html
5244 Asking for confirmation on pushing this revertion commit:
5246 http://curl.haxx.se/mail/lib-2013-01/0048.html
5248 Confirmation summary:
5250 http://curl.haxx.se/mail/lib-2013-01/0079.html
5252 NOTICE: The list of 2 files that have been modified by other
5253 intermixed commits, while renamed, and also by at least one
5254 of the 6 commits this one reverts follows below. These 2 files
5255 will exhibit a hole in history unless git's '--follow' option
5256 is used when viewing logs.
5261 Daniel Stenberg (6 Jan 2013)
5262 - mk-ca-bundle.1: convert syntax to what's used elsewhere
5264 ... mostly to make sure roffit works better on it, but also to make our
5265 man pages use a more unified style.
5267 - mk-ca-bundle.1: mention new -f, fix outputfile output
5269 also edited a few sentences to become more verbose
5271 - mk-ca-bundle: add -f, support passing to stdout and more
5273 1. When the downloaded data file from Mozilla is current, but the output
5274 bundle does not exist: continue processing to create the bundle. The
5275 goal is to have the output file - not just download the latest input.
5277 2. added -f option to force re-processing the file. Useful for
5278 debugging/testing the process.
5280 3. added support for output to '-' (stdout), allowing the output to be
5283 4. All progress and error messages go to STDERR rather than STDOUT (3)
5285 5. The script opened and closed the output file many times
5286 unnecessarily. It now opens it once, does the output and closes it.
5288 6. Backup of the input files happens after successful processing, not
5291 7. The output is written to a temporary file, and renamed to the
5292 requested name after backup - this greatly reduces the window where the
5293 file can be seen partially written.
5295 8. all die calls have a \n at the end to suppress perl's traceback - the
5296 traceback isn't useful to end users.
5298 Patch: http://curl.haxx.se/mail/lib-2013-01/0045.html
5300 Yang Tse (5 Jan 2013)
5301 - imap test server: fix typo in name of SELECT_imap() sub definition
5303 IMAP test server breaking typo introduced with commit b708a522a1
5305 Steve Holme (4 Jan 2013)
5306 - imap test server: Added support for the CAPABILITY command
5308 Added support for the CAPABILITY command in preparation of upcoming
5311 Daniel Stenberg (3 Jan 2013)
5312 - writeout: -w now supports remote_ip/port and local_ip/port
5314 Added mention to the curl.1 man page.
5316 Test case 1223 verifies remote_ip/port.
5318 Yang Tse (3 Jan 2013)
5319 - test 1222: 8 chars object name generation && test 1221: adjustments
5321 Daniel Stenberg (3 Jan 2013)
5322 - INTERNALS: remove "footnote" never used
5324 Yang Tse (3 Jan 2013)
5325 - build: commit 13606bbfde follow-up 1
5327 Daniel Stenberg (3 Jan 2013)
5328 - FAQ: Can I write a server with libcurl?
5330 Yang Tse (3 Jan 2013)
5331 - build: rename 93 lib/*.c files
5333 93 lib/*.c source files renamed to use our standard naming scheme.
5335 This commit only does the file renaming.
5337 ----------------------------------------
5339 renamed: lib/amigaos.c -> lib/curl_amigaos.c
5340 renamed: lib/asyn-ares.c -> lib/curl_asyn_ares.c
5341 renamed: lib/asyn-thread.c -> lib/curl_asyn_thread.c
5342 renamed: lib/axtls.c -> lib/curl_axtls.c
5343 renamed: lib/base64.c -> lib/curl_base64.c
5344 renamed: lib/bundles.c -> lib/curl_bundles.c
5345 renamed: lib/conncache.c -> lib/curl_conncache.c
5346 renamed: lib/connect.c -> lib/curl_connect.c
5347 renamed: lib/content_encoding.c -> lib/curl_content_encoding.c
5348 renamed: lib/cookie.c -> lib/curl_cookie.c
5349 renamed: lib/cyassl.c -> lib/curl_cyassl.c
5350 renamed: lib/dict.c -> lib/curl_dict.c
5351 renamed: lib/easy.c -> lib/curl_easy.c
5352 renamed: lib/escape.c -> lib/curl_escape.c
5353 renamed: lib/file.c -> lib/curl_file.c
5354 renamed: lib/fileinfo.c -> lib/curl_fileinfo.c
5355 renamed: lib/formdata.c -> lib/curl_formdata.c
5356 renamed: lib/ftp.c -> lib/curl_ftp.c
5357 renamed: lib/ftplistparser.c -> lib/curl_ftplistparser.c
5358 renamed: lib/getenv.c -> lib/curl_getenv.c
5359 renamed: lib/getinfo.c -> lib/curl_getinfo.c
5360 renamed: lib/gopher.c -> lib/curl_gopher.c
5361 renamed: lib/gtls.c -> lib/curl_gtls.c
5362 renamed: lib/hash.c -> lib/curl_hash.c
5363 renamed: lib/hmac.c -> lib/curl_hmac.c
5364 renamed: lib/hostasyn.c -> lib/curl_hostasyn.c
5365 renamed: lib/hostcheck.c -> lib/curl_hostcheck.c
5366 renamed: lib/hostip.c -> lib/curl_hostip.c
5367 renamed: lib/hostip4.c -> lib/curl_hostip4.c
5368 renamed: lib/hostip6.c -> lib/curl_hostip6.c
5369 renamed: lib/hostsyn.c -> lib/curl_hostsyn.c
5370 renamed: lib/http.c -> lib/curl_http.c
5371 renamed: lib/http_chunks.c -> lib/curl_http_chunks.c
5372 renamed: lib/http_digest.c -> lib/curl_http_digest.c
5373 renamed: lib/http_negotiate.c -> lib/curl_http_negotiate.c
5374 renamed: lib/http_negotiate_sspi.c -> lib/curl_http_negotiate_sspi.c
5375 renamed: lib/http_proxy.c -> lib/curl_http_proxy.c
5376 renamed: lib/idn_win32.c -> lib/curl_idn_win32.c
5377 renamed: lib/if2ip.c -> lib/curl_if2ip.c
5378 renamed: lib/imap.c -> lib/curl_imap.c
5379 renamed: lib/inet_ntop.c -> lib/curl_inet_ntop.c
5380 renamed: lib/inet_pton.c -> lib/curl_inet_pton.c
5381 renamed: lib/krb4.c -> lib/curl_krb4.c
5382 renamed: lib/krb5.c -> lib/curl_krb5.c
5383 renamed: lib/ldap.c -> lib/curl_ldap.c
5384 renamed: lib/llist.c -> lib/curl_llist.c
5385 renamed: lib/md4.c -> lib/curl_md4.c
5386 renamed: lib/md5.c -> lib/curl_md5.c
5387 renamed: lib/memdebug.c -> lib/curl_memdebug.c
5388 renamed: lib/mprintf.c -> lib/curl_mprintf.c
5389 renamed: lib/multi.c -> lib/curl_multi.c
5390 renamed: lib/netrc.c -> lib/curl_netrc.c
5391 renamed: lib/non-ascii.c -> lib/curl_non_ascii.c
5392 renamed: lib/curl_non-ascii.h -> lib/curl_non_ascii.h
5393 renamed: lib/nonblock.c -> lib/curl_nonblock.c
5394 renamed: lib/nss.c -> lib/curl_nss.c
5395 renamed: lib/nwlib.c -> lib/curl_nwlib.c
5396 renamed: lib/nwos.c -> lib/curl_nwos.c
5397 renamed: lib/openldap.c -> lib/curl_openldap.c
5398 renamed: lib/parsedate.c -> lib/curl_parsedate.c
5399 renamed: lib/pingpong.c -> lib/curl_pingpong.c
5400 renamed: lib/polarssl.c -> lib/curl_polarssl.c
5401 renamed: lib/pop3.c -> lib/curl_pop3.c
5402 renamed: lib/progress.c -> lib/curl_progress.c
5403 renamed: lib/qssl.c -> lib/curl_qssl.c
5404 renamed: lib/rawstr.c -> lib/curl_rawstr.c
5405 renamed: lib/rtsp.c -> lib/curl_rtsp.c
5406 renamed: lib/security.c -> lib/curl_security.c
5407 renamed: lib/select.c -> lib/curl_select.c
5408 renamed: lib/sendf.c -> lib/curl_sendf.c
5409 renamed: lib/share.c -> lib/curl_share.c
5410 renamed: lib/slist.c -> lib/curl_slist.c
5411 renamed: lib/smtp.c -> lib/curl_smtp.c
5412 renamed: lib/socks.c -> lib/curl_socks.c
5413 renamed: lib/socks_gssapi.c -> lib/curl_socks_gssapi.c
5414 renamed: lib/socks_sspi.c -> lib/curl_socks_sspi.c
5415 renamed: lib/speedcheck.c -> lib/curl_speedcheck.c
5416 renamed: lib/splay.c -> lib/curl_splay.c
5417 renamed: lib/ssh.c -> lib/curl_ssh.c
5418 renamed: lib/sslgen.c -> lib/curl_sslgen.c
5419 renamed: lib/ssluse.c -> lib/curl_ssluse.c
5420 renamed: lib/strdup.c -> lib/curl_strdup.c
5421 renamed: lib/strequal.c -> lib/curl_strequal.c
5422 renamed: lib/strerror.c -> lib/curl_strerror.c
5423 renamed: lib/strtok.c -> lib/curl_strtok.c
5424 renamed: lib/strtoofft.c -> lib/curl_strtoofft.c
5425 renamed: lib/telnet.c -> lib/curl_telnet.c
5426 renamed: lib/tftp.c -> lib/curl_tftp.c
5427 renamed: lib/timeval.c -> lib/curl_timeval.c
5428 renamed: lib/transfer.c -> lib/curl_transfer.c
5429 renamed: lib/url.c -> lib/curl_url.c
5430 renamed: lib/version.c -> lib/curl_version.c
5431 renamed: lib/warnless.c -> lib/curl_warnless.c
5432 renamed: lib/wildcard.c -> lib/curl_wildcard.c
5434 ----------------------------------------
5436 - build: make use of 93 lib/*.c renamed files
5438 93 *.c source files renamed to use our standard naming scheme.
5440 This change affects 77 files in libcurl's source tree.
5442 Daniel Stenberg (3 Jan 2013)
5443 - INSTALL: unify the SSL library texts
5445 Make them smaller and more similar for each separate SSL library
5446 supported by the configure build
5448 Yang Tse (2 Jan 2013)
5449 - curl_setup.h: remove redundant include guard
5451 - build and tests: curl_10char_object_name() shell function
5453 lib/objnames.inc provides definition of curl_10char_object_name() shell
5454 function. The intended purpose of this function is to transliterate a
5455 (*.c) source file name that may be longer than 10 characters, or not,
5456 into a string with at most 10 characters which may be used as an OS/400
5459 Test case 1221 does unit testng of this function and also verifies
5460 that it is possible to generate distinct short object names for all
5461 curl and libcurl *.c source file names.
5463 lib/objnames-test.sh is the shell script used for test case 1221.
5465 tests/runtests.pl modified to accept shell script test cases.
5467 More details inside lib/objnames.inc and lib/objnames-test.sh
5469 - configure.ac: replace AM_CONFIG_HEADER with AC_CONFIG_HEADERS
5471 automake 1.13 errors if AM_CONFIG_HEADER is used in configure script.
5472 automake 1.13 no longer autoupdates AM_CONFIG_HEADER to
5473 AC_CONFIG_HEADERS, thing which automake has been doing since automake
5476 Given that our first automake supported version is automake 1.7,
5477 simply replacing AM_CONFIG_HEADER usage with AC_CONFIG_HEADERS seems
5478 enough to yet support same automake versions.
5480 Dave Reisner reported issue with 1.13 and provided patch.
5482 http://curl.haxx.se/mail/lib-2012-12/0246.html
5484 - curl-override.m4: provide AC_CONFIG_MACRO_DIR definition conditionally
5486 Provide a 'traceable' AC_CONFIG_MACRO_DIR definition only when using
5487 an autoconf version that does not provide it, instead of what we were
5488 doing up to now of providing and overriding AC_CONFIG_MACRO_DIR for
5489 all autoconf versions.
5491 Steve Holme (30 Dec 2012)
5492 - imap.c: Minor follow up tidy up
5494 - imap: Code tidy up prior to adding support for the CAPABILITY command
5496 * Changing the order of the state machine to represent the order in
5497 which commands are sent to the server.
5499 * Reworking the imap_endofresp() function as the FETCH response doesn't
5500 include the command id and shouldn't be part of the length comparison
5501 that takes into account the id string.
5503 - pop3_doing: Applied debug info message when function fails
5505 Applied the same debug message as used in smtp_doing() and imap_doing()
5506 when pop3_multi_statemach() fails.
5508 - imap_doing: don't call imap_dophase_done() if already failed
5510 Applied the POP3 fix from commit 2897ce7dc2e1 so imap_dophase_done()
5511 isn't called if imap_multi_statemach() fails.
5513 - smtp_doing: don't call smtp_dophase_done() if already failed
5515 Applied the POP3 fix from commit 2897ce7dc2e1 so smtp_dophase_done()
5516 isn't called if smtp_multi_statemach() fails.
5518 Yang Tse (29 Dec 2012)
5519 - examples/certinfo.c: fix compiler warning
5521 Steve Holme (29 Dec 2012)
5522 - pop3.c: Removed unnecessary POP3_STOP state changes
5524 Removed unnecessary state changes in pop3_state_starttls_resp()
5525 following previous fix in IMAP module.
5527 - smtp.c: Added extra comments around SMTP_STOP state change
5529 Provided extra comments in the SMTP module following previous IMAP fix.
5531 - imap.c: Fixed bad state error when logging in with invalid credentials
5533 Fixed a problem with the state machine when attempting to log in with
5534 invalid credentials. The server would report login failure but libcurl
5535 would not read the response due to inappropriate IMAP_STOP states being
5536 set after the login was sent.
5538 Yang Tse (29 Dec 2012)
5539 - imap.c: remove trailing whitespace
5541 Steve Holme (28 Dec 2012)
5542 - imap.c: Code tidy up - Part 2
5544 - imap.c: Code tidy up - Part 1
5546 Applied some of the comment and layout changes that had already been
5547 applied to the pop3 and smtp code over the last 6 to 9 months.
5549 This is in preparation of adding SASL based authentication.
5551 - pop3.c: Minor code tidy up
5553 Minor tidy up of comments and layout prior to next part of imap work.
5555 - smtp: Minor code tidy up
5557 Minor tidy up of comments and layout prior to next part of imap work.
5559 - curl_imap.h: Tidy up of comments to be more readable
5561 - imap.c: Code tidy up renaming imapsendf() to imap_sendf()
5563 Renamed imapsendf() to imap_sendf() to be more in keeping with the
5564 other imap functions as well as Curl_pp_sendf() that it replaces.
5566 Yang Tse (28 Dec 2012)
5567 - build: rename 76 lib/*.h files
5569 76 private header files renamed to use our standard naming scheme.
5571 This commit only does the file renaming.
5573 ----------------------------------------
5575 renamed: amigaos.h -> curl_amigaos.h
5576 renamed: arpa_telnet.h -> curl_arpa_telnet.h
5577 renamed: asyn.h -> curl_asyn.h
5578 renamed: axtls.h -> curl_axtls.h
5579 renamed: bundles.h -> curl_bundles.h
5580 renamed: conncache.h -> curl_conncache.h
5581 renamed: connect.h -> curl_connect.h
5582 renamed: content_encoding.h -> curl_content_encoding.h
5583 renamed: cookie.h -> curl_cookie.h
5584 renamed: cyassl.h -> curl_cyassl.h
5585 renamed: dict.h -> curl_dict.h
5586 renamed: easyif.h -> curl_easyif.h
5587 renamed: escape.h -> curl_escape.h
5588 renamed: file.h -> curl_file.h
5589 renamed: fileinfo.h -> curl_fileinfo.h
5590 renamed: formdata.h -> curl_formdata.h
5591 renamed: ftp.h -> curl_ftp.h
5592 renamed: ftplistparser.h -> curl_ftplistparser.h
5593 renamed: getinfo.h -> curl_getinfo.h
5594 renamed: gopher.h -> curl_gopher.h
5595 renamed: gtls.h -> curl_gtls.h
5596 renamed: hash.h -> curl_hash.h
5597 renamed: hostcheck.h -> curl_hostcheck.h
5598 renamed: hostip.h -> curl_hostip.h
5599 renamed: http.h -> curl_http.h
5600 renamed: http_chunks.h -> curl_http_chunks.h
5601 renamed: http_digest.h -> curl_http_digest.h
5602 renamed: http_negotiate.h -> curl_http_negotiate.h
5603 renamed: http_proxy.h -> curl_http_proxy.h
5604 renamed: if2ip.h -> curl_if2ip.h
5605 renamed: imap.h -> curl_imap.h
5606 renamed: inet_ntop.h -> curl_inet_ntop.h
5607 renamed: inet_pton.h -> curl_inet_pton.h
5608 renamed: krb4.h -> curl_krb4.h
5609 renamed: llist.h -> curl_llist.h
5610 renamed: memdebug.h -> curl_memdebug.h
5611 renamed: multiif.h -> curl_multiif.h
5612 renamed: netrc.h -> curl_netrc.h
5613 renamed: non-ascii.h -> curl_non-ascii.h
5614 renamed: nonblock.h -> curl_nonblock.h
5615 renamed: nssg.h -> curl_nssg.h
5616 renamed: parsedate.h -> curl_parsedate.h
5617 renamed: pingpong.h -> curl_pingpong.h
5618 renamed: polarssl.h -> curl_polarssl.h
5619 renamed: pop3.h -> curl_pop3.h
5620 renamed: progress.h -> curl_progress.h
5621 renamed: qssl.h -> curl_qssl.h
5622 renamed: rawstr.h -> curl_rawstr.h
5623 renamed: rtsp.h -> curl_rtsp.h
5624 renamed: select.h -> curl_select.h
5625 renamed: sendf.h -> curl_sendf.h
5626 renamed: setup.h -> curl_setup.h
5627 renamed: setup_once.h -> curl_setup_once.h
5628 renamed: share.h -> curl_share.h
5629 renamed: slist.h -> curl_slist.h
5630 renamed: smtp.h -> curl_smtp.h
5631 renamed: sockaddr.h -> curl_sockaddr.h
5632 renamed: socks.h -> curl_socks.h
5633 renamed: speedcheck.h -> curl_speedcheck.h
5634 renamed: splay.h -> curl_splay.h
5635 renamed: ssh.h -> curl_ssh.h
5636 renamed: sslgen.h -> curl_sslgen.h
5637 renamed: ssluse.h -> curl_ssluse.h
5638 renamed: strdup.h -> curl_strdup.h
5639 renamed: strequal.h -> curl_strequal.h
5640 renamed: strerror.h -> curl_strerror.h
5641 renamed: strtok.h -> curl_strtok.h
5642 renamed: strtoofft.h -> curl_strtoofft.h
5643 renamed: telnet.h -> curl_telnet.h
5644 renamed: tftp.h -> curl_tftp.h
5645 renamed: timeval.h -> curl_timeval.h
5646 renamed: transfer.h -> curl_transfer.h
5647 renamed: url.h -> curl_url.h
5648 renamed: urldata.h -> curl_urldata.h
5649 renamed: warnless.h -> curl_warnless.h
5650 renamed: wildcard.h -> curl_wildcard.h
5652 ----------------------------------------
5654 - build: make use of 76 lib/*.h renamed files
5656 76 private header files renamed to use our standard naming scheme.
5658 This change affects 322 files in libcurl's source tree.
5660 - lib/*.h: use our standard naming scheme for header inclusion guards
5662 Steve Holme (28 Dec 2012)
5663 - imsp.c: Fixed usernames and passwords that contain escape characters
5665 Fixed a problem with sending usernames and passwords that contain
5666 backslash, quotation mark and space characters.
5668 Daniel Stenberg (27 Dec 2012)
5669 - curl.1: extend the -X, --request description
5671 - RELEASE-NOTES: synced with e3ed2b82e6
5673 - [Nick Zitzmann brought this change]
5675 darwinssl: Fixed inability to disable peer verification
5677 ... on Snow Leopard and Lion
5679 Snow Leopard introduced the SSLSetSessionOption() function, but it
5680 doesn't disable peer verification as expected on Snow Leopard or
5681 Lion (it works as expected in Mountain Lion). So we now use sysctl()
5682 to detect whether or not the user is using Snow Leopard or Lion,
5683 and if that's the case, then we now use the deprecated
5684 SSLSetEnableCertVerify() function instead to disable peer verification.
5686 Yang Tse (26 Dec 2012)
5687 - curl tool: rename hugehelp files to tool_hugehelp
5689 - curl tool: renaming hugehelp files to tool_hugehelp
5691 - sockfilt.c: commit b44da5a82a follow-up 2
5693 - sockfilt.c: commit b44da5a82a follow-up
5695 - sockfilt.c: fix some compiler warnings
5697 - curl_multi_remove_handle: commit 0aabfd9963 follow-up
5699 Daniel Stenberg (25 Dec 2012)
5700 - lib556: enable VERBOSE to ease debugging on failures
5702 Marc Hoersken (25 Dec 2012)
5703 - socklift.c: Quick fix to re-add missing code
5705 - socklift.c: Added select_ws function to support Windows
5707 WinSock select() does not support standard file descriptors,
5708 it can only check SOCKETs. The following function is an attempt
5709 to create a select() function with support for other handles.
5711 Yang Tse (25 Dec 2012)
5712 - Enable tests 1503, 1504 and 1505
5714 - curl_multi_remove_handle: fix memory leak triggered with CURLOPT_RESOLVE
5716 - Curl_hash_clean: OOM handling fix
5718 - test 1504 and 1505: same as 1502 but with different cleanup sequences
5720 Daniel Stenberg (24 Dec 2012)
5721 - Curl_conncache_foreach: allow callback to break loop
5723 ... and have it take a proper 'struct connectdata *' as first argument
5725 - pop3_doing: don't call pop3_dophase_done() if already failed
5727 ... it also clobbered the 'result' return value so that it wouldn't
5728 return the error back to the parent function properly, which broke test
5729 809 when run with 'multi-always'.
5731 Yang Tse (23 Dec 2012)
5732 - test 1503: same as 1502 but with a different cleanup sequence
5734 - test 1502: OOM handling fixes
5736 - curl_multi_wait: OOM handling fix
5738 - [Daniel Stenberg brought this change]
5740 curl_multi_wait: avoid an unnecessary memory allocation
5742 - runtests.pl: prepend $srcdir to HTTPTLS server config files path
5744 - multi.c: OOM handling fix
5746 - lib543.c: OOM handling fixes
5748 - configure: add internal sanity check (warn only) on vars for makefiles
5750 Daniel Stenberg (21 Dec 2012)
5751 - SCP: relative path didn't work
5753 When prefixing a path with /~/ it is supposed to be used relative to the
5754 user's home directory but it didn't work. Now we cut off the entire
5755 three byte sequenct "/~/" which seems to be how OpenSSH does it.
5757 Bug: http://curl.haxx.se/bug/view.cgi?id=1173
5758 Reported by: Balaji Parasuram
5760 Yang Tse (21 Dec 2012)
5761 - configure: LIBMETALINK_CFLAGS actually is LIBMETALINK_CPPFLAGS
5763 - configure: add minimal sanity check on user provided CFLAGS and CPPFLAGS
5765 - bundles connection caching: some out of memory handling fixes
5767 - libntlmconnect.c: fix compiler warnings and OOM handling
5769 - configure.ac: clear local test intended variables before use
5771 - VC6 IDE: link with advapi32.lib when using WIN32 crypto API (md5.c)
5773 - curl-functions.m4: improve gethostname arg 2 data type check
5775 - setup_once.h: HP-UX specific 'bool', 'false' and 'true' definitions.
5777 Also reverts commit f254c59dc7
5779 - configure: check if compiler halts on function prototype mismatch
5781 - warnless.c: fix compiler warnings
5783 - curl-functions.m4: add gethostname arg 2 data type check and definition
5785 Daniel Stenberg (14 Dec 2012)
5786 - [Nick Zitzmann brought this change]
5788 darwinssl: Fix implicit conversion compiler warnings
5790 The Clang compiler found a few implicit conversion problems that have
5793 Yang Tse (14 Dec 2012)
5794 - setup_once.h: HP-UX <sys/socket.h> issue workaround
5796 Issue: When building a 32bit target with large file support HP-UX
5797 <sys/socket.h> header file may simultaneously provide two different
5798 sets of declarations for sendfile and sendpath functions, one with
5799 static and another with external linkage. Given that we do not use
5800 mentioned functions we really don't care which linkage is the
5801 appropriate one, but on the other hand, the double declaration emmits
5802 warnings when using the HP-UX compiler and errors when using modern
5803 gcc versions resulting in fatal compilation errors.
5805 Mentioned issue is now fixed as long as we don't use sendfile nor
5808 - setup_once.h: refactor inclusion of <unistd.h> and <sys/socket.h>
5810 Inclusion of top two most included header files now done in setup_once.h
5812 - setup_once.h: HP-UX specific TRUE and FALSE definitions
5814 Some HP-UX system headers require TRUE defined to 1 and FALSE to 0.
5816 Daniel Stenberg (12 Dec 2012)
5817 - gopher: #include cleanup
5819 Remove all system file includes from this file as they're not needed
5821 Reported by: Dan Fandrich
5823 Yang Tse (11 Dec 2012)
5824 - examples/simplessl.c: fix compiler warning
5826 - examples/externalsocket.c: fix SunPro compilation issue
5828 - examples/simplessl.c: fix compiler warning
5830 - build: add bundles and conncache files to other build systems
5832 - conncache: fix enumerated type mixed with another type
5834 - examples/anyauthput.c: fix Tru64 compilation issue
5836 Daniel Stenberg (8 Dec 2012)
5837 - [Colin Watson brought this change]
5839 configure: fix cross pkg-config detection
5841 When cross-compiling, CURL_CHECK_PKGCONFIG was checking for the cross
5842 pkg-config using ${host}-pkg-config.
5844 The gold standard for doing this correctly is pkg-config's own macro,
5845 PKG_PROG_PKG_CONFIG. However, on the assumption that you have a good
5846 reason not to use that directly (reduced dependencies for maintainer
5847 builds?), the behaviour of cURL's version should at least match.
5848 PKG_PROG_PKG_CONFIG uses AC_PATH_TOOL, which ultimately ends up trying
5849 ${host_alias}-pkg-config; this is not quite the same as what cURL does,
5850 and may differ because ${host} has been run through config.sub. For
5851 instance, when cross-building to the armhf architecture on Ubuntu,
5852 ${host_alias} is arm-linux-gnueabihf while ${host} is
5853 arm-unknown-linux-gnueabihf. This may also have been the cause of the
5854 problem reported at http://curl.haxx.se/mail/lib-2012-04/0224.html.
5856 AC_PATH_TOOL is significantly simpler than cURL's current code, and
5857 dates back to well before the current minimum of Autoconf 2.57, so let's
5860 - [Linus Nielsen Feltzing brought this change]
5862 Introducing a new persistent connection caching system using "bundles".
5864 A bundle is a list of all persistent connections to the same host.
5865 The connection cache consists of a hash of bundles, with the
5866 hostname as the key.
5867 The benefits may not be obvious, but they are two:
5869 1) Faster search for connections to reuse, since the hash
5870 lookup only finds connections to the host in question.
5871 2) It lays out the groundworks for an upcoming patch,
5872 which will introduce multiple HTTP pipelines.
5874 This patch also removes the awkward list of "closure handles",
5875 which were needed to send QUIT commands to the FTP server
5876 when closing a connection.
5877 Now we allocate a separate closure handle and use that
5878 one to close all connections.
5880 This has been tested in a live system for a few weeks, and of
5881 course passes the test suite.
5883 - [Fabian Keil brought this change]
5885 runtests and friends: Do not add undefined values to @INC
5887 On FreeBSD this fixes the warning:
5888 Use of uninitialized value $p in string eq at /usr/local/lib/perl5/5.14.2/BSDPAN/BSDPAN.pm line 36.
5890 Steve Holme (5 Dec 2012)
5891 - Merge pull request #52 from isn-/master
5893 small compilation fix