Newer
Older
_ _ ____ _
___| | | | _ \| |
/ __| | | | |_) | |
| (__| |_| | _ <| |___
\___|\___/|_| \_\_____|
Daniel (26 October)
- James Bursa found out that curl_msnprintf() could write the trailing
zero-byte outside its given buffer size. This could happen if you generated
a very long error message as then libcurl would overwrite the ERRORBUFFER
with one byte. Using a non-existing very long local file:// name is one case
that could make this occur.
- David Hull filed bug report #829827. It identified a problem with -C - if
the full file already was downloaded and thus the server responded with a
416. libcurl would then wrongly use the Content-Length: header and expect
that size to get transfer, causing a "hang" until the server closed the
connection and then an error 18 ("still N bytes data left of the transfer").
Now we don't return any error at all, but I think libcurl should perhaps
return some kind of info since the requested range was out of the size of
the document.
- Based on David Hull's fix in bug report #804599, we now check for solaris and
gcc in configure and set the -mimpure-text link flag for linking the lib
better.
- I've introduced a -t option to the runtests.pl script. With that option set,
the script runs special "memory torture" tests. For each test command line
in that section, the script first runs the command line and counts the total
amount of allocations made. It then runs the exact same command line again,
forcing allocation number N to fail. It will try every N from 1 to the total
number of amounts made. For every invoke, it checks that no memory was
leaked as that would indicate a bad cleanup somewhere in the code.
This is just beginning to work, and I've already made some corrections in
libcurl code. When this code works somewhat fine, I'll make sure 'make test'
in the root dir will run these tests as well.
Daniel (23 October)
- Georg Horn fixed how the CA verification is made. Verifications can now be
made while at the same time the result of it can be ignored. This also
affects the curl tool as -k can now be used together with --cacert or
--capath.
Daniel (22 October)
- Gisle Vanem found out --disable-eprt didn't work and patched it.
- Test case 91 was modified and could now repeat the problem Kevin Roth has
reported, and the bug was fixed.
- Dylan Ellicott added vc-libcurl-ssl-dll as a target to the root makefile
to build a static libcurl that links with a shared OpenSSL using MSVC.
Daniel (21 October)
- Andrés García updated the mingw32 makefiles.
Version 7.10.8-pre5 (21 October 2003)
Daniel (19 October)
- Georg Horn made libcurl output more info on SSL failures when receiving
data.
- Dominick Meglio implemented CURLOPT_MAXFILESIZE and --max-filesize.
- Made libcurl show verbose info about what auth type and user name that is
being sent in its HTTP request-headers.
Daniel (16 October)
- Removed support for CURLOPT_PASSWDFUNCTION and CURLOPT_PASSWDDATA. libcurl
no longer prompt for passwords under any circumstances. Password prompting
was instead moved to curl, which now prompts for password if -u or -U lack
it. This solves the problem Kevin Roth reported when curl prompted for
password twice when doing NTLM authentication.
- I rewrote the SSL subjectAltName check to avoid having to rely on OpenLDAP-
licensed derivate code.
Daniel (15 October)
- Avoid doing getsockopt() on Windows to verify connects. It seems that this
hogs Windows machines when libcurl is being used multi-threaded (with > ~50
threads). Andrew Fuller helped us verify and test this.
Daniel (14 October)
- Kimmo Kinnunen fixed a crash with duphandle() when CURLDEBUG is set.
- Gisle Vanem made libcurl build and work with IPv6 on Windows.
- Giuseppe Attardi reported yet another segfault with ares and the multi
interface. Me fixed.
- Domenico Andreoli removed the extra LDFLAGS assignment in lib/Makefile.am
that was reported about in the debian bug report #212086.
Domenico also fixed two makefiles where we used 'gnroff' instead of the more
portable $(NROFF).
Daniel (12 October)
- Dirk Manske made the share locking around DNS lookups slightly different to
allow the share system's DNS lookups to run somewhat more
independent/faster.
- Lachlan O'Dea fixed a resume problem: "If I set CURLOPT_RESUME_FROM, perform
an HTTP download, then reset CURLOPT_RESUME_FROM to 0, the next download
still has a Range header with a garbage value." bug report #820502
- Dominick Meglio made the inet_pton.c file build fine using MSVC.
- The 'sws' test suite web server now #include setup.h from the lib directory.
This makes it more portable easier.
Daniel Stenberg
committed
Daniel (8 October)
- Frank Ticheler provided a patch that fixes how libcurl connects to multiple
addresses, if one of them fails (ipv4-code).
- Neil Dunbar provided a patch that now makes libcurl check SSL
subjectAltNames when matching certs. This is apparently detailed in RFC2818
as the right thing to do. I had to add configure checks for inet_pton() and
our own (strictly speaking, code from BIND written by Paul Vixie) provided
code for the function for platforms that miss it.
- HTTP POST using the read callback didn't work, as Florian Schoppmann
reported.
Daniel (5 October)
- Shared provided a few fixes to make libcurl build on BeOS
out-of-the-box. New code for BeOS-style non-blocking sockets, provided by
Shard and Jeremy Friesner. Modified the autoconf check for non-blocking
sockets to check for this kind too.
Daniel Stenberg
committed
- Vincent Bronner pointed out that if you set CURLOPT_COOKIE for a transfer
and then set it to NULL in a subsequent one, the previous cookie was still
sent off!
- Jon Turner fixed a problem libcurl had when it failed on an FTP transfer due
to a bad path, it would cause the next transfer to use a bad path as well.
- Siddhartha Prakash Jain provided a patch with a fix for libcurl with ares,
when working on IP-only names as we then could return "wait" status when the
name in fact already was resolved. I edited the patch slightly to not expose
async details to non-ares aware source code.
Daniel (3 October)
- Neil Spring posted the debian bug report #213180, and pointed out that using
the name 'access' in a function prototype is not very wise as some compilers
complain.
- Peter Sylvester provided his and Jean-Paul Merlin's curlx.c example source
code that shows how they use ssl and callbacks.
Daniel (2 October)
Daniel (26 September)
- My daughter was born!
Daniel (23 September)
- Added support for -4/--ipv4 and -6/--ipv6 to force names to resolve to that
particular IP version. They only work for IPv6-enabled libcurls.
- curl -V now outputs 'SPNEGO' as a feature in case libcurl was built to
support that.
Daniel (22 September)
- Giuseppe Attardi found a segfault in libcurl when using the multi interface
with ares and doing repeated operations against a non-resolving host name.
Daniel (19 September)
- Added the CURLOPT_IPRESOLVE option, that allows an application to select
what kind of IP addresses he wants to use when resolving host names. This
is only interesting when using host names that resolve addresses using more
than one version of IP.
- Applied Markus Moeller's patch that introduces SPNEGO support if libcurl
is built with the FBopenssl libraries. curl_version_info() now returns
info on SPNEGO availability. The patch also made the GSSAPI stuff work fine
with the MIT GSS-library (the Heimdal one still works too).
Daniel (16 September)
- Doing PUT with --digest failed, as reported in bug report #805853.
- Using --anyauth that picked NTLM, and then a redirect closed the connection
and took curl to a second NTLM page made curl fail. Bug report #806328
identified the problem, test case 90 was added to verify the fix.
Loading full blame...