CHANGES.0

Daniel (22 Apr)
- Peter Sylvester pointed out that curl_easy_setopt() will always (wrongly)
  return CURLE_OK no matter what happens.

- Dan Fandrich fixed some gzip decompression bugs and flaws.

Daniel (16 Apr)
- Fixed minor typo in man page, reported in the Debian bug tracker.

Daniel (15 Apr)
- Fixed some FTP tests in the test suite that failed on my Solaris host, due
  to the config.h not being included before the system headers. When done that
  way, it did get a mixed sense of if big files are supported or not and then
  stat() and fstat() (as used in test case 505) got confused and failed to
  return a proper file size.

- Formposting a file using a .html suffix is now properly set to Content-Type:    text/html.

Daniel (14 Apr)
- Fixed the SSL error handling to return proper SSL error messages again, they
  broke in 7.10.4. I also attempt to track down CA cert problems and then
  return the CURLE_SSL_CACERT error code.

- The curl tool now intercepts the CURLE_SSL_CACERT error code and displays
  a fairly big and explanatory error message. Kevin Roth helped me out with
  the wording.

Daniel (11 Apr)
- Nic Hines provided a second patch for gzip decompression, and fixed a bug
  when deflate or gzip contents were downloaded using chunked encoding.

- Dan Fandrich made libcurl support automatic decompression of gzip contents
  (as an addition to the previous deflate support).

- I made the CWD command during FTP session consider all 2xy codes to be OK
  responses.

Daniel (10 Apr)
- Vlad Krupin fixed a URL parsing issue. URLs that were not using a slash
  after the host name, but still had "?" and parameters appended, as in
  "http://hostname.com?foobar=moo", were not properly parsed by libcurl.

Daniel (9 Apr)
- Made CURLOPT_TIMECONDITION work for FTP transfers, using the same syntax as
  for HTTP. This then made -z work for ftp transfers too. Added test case 139
  and 140 for verifying this.

- Getting the file date of an ftp file used the wrong time zone when
  displayed. It is supposedly always GMT. Added test case 141 for this.

- Made the test suite's FTP server support MDTM.

- The default DEBUGFUNCTION, as enabled with CURLOPT_VERBOSE now outputs
  CURLINFO_HEADER_IN data as well. The most notable effect from this is that
  using curl -v, you get to see the incoming "headers" as well. This is
  perhaps most useful when doing ftp.

Daniel (8 Apr)
- James Bursa fixed a flaw in the Content-Type extraction code, which missed
  the first letter if no space followed the colon.

- Magnus Nilsson pointed out that share.c was missing in the MSVC project
  file.

Daniel (6 Apr)
- Ryan Weaver provided a patch that makes the CA cert bundle not get installed
  anymore when 'configure --without-ssl' has been used.

Daniel (4 Apr)
- Martijn Broenland found another cases where a server application didn't
  like the boundary string used by curl when doing a multi-part/formpost. We
  modified the boundary string to look like the one IE uses, as this is
  probably gonna make curl work with more applications.

Daniel (3 Apr)
- Kevin Roth reported that a bunch of tests fails on cygwin. One set fails
  when using perl 5.8 (and they run fine with perl 5.6), and another set
  failed because of an artifact in the test suite's FTP server that I
  corrected. It turned out the FTP server code was still having a file opened
  while the main test script removed it and invoked the HTTP server that
  attempted to create the same file name of the file the FTP server kept open.
  This operation works fine on unix, but not on cygwin.

Version 7.10.4 (2 Apr 2003)

Daniel (1 Apr)
- Added test case 505 to exercise FTP upload with rename done with libcurl,
  and for that I had to extend the test suite's FTP server to deal with the
  RNFR and RNTO commands.

Daniel (31 Mar)
- Even more SSL config check modifications after Richard's testing.

Version 7.10.4-pre6 (31 Mar 2003)

Daniel (31 Mar)
- More fixes for the SSL session ID cache checks when SSL configs are changed
  between connections. Based on tests and talks with Richard Bramante.

- Guillaume Cottenceau provided a patch that added CURLOPT_UNRESTRICTED_AUTH.
  When enabled, it will prevent libcurl from limiting to which host it sends
  user+password to when following locations. By default, libcurl only sends
  name and password to the original host used in the first URL, but with this
  option set it will send the auth info to all hosts it follows location
  headers to. The new tool command line option for this is named
  "--location-trusted".

- Frankie Fong reported a problem with libcurl if you re-used an easy handle
  with a proxy, and you first made a https:// connection to a host and then
  switched to a http:// one to the same host. libcurl would then wrongly re-use
  the same connection for it and fail to get the second URL properly

Daniel (29 Mar)
- Dan Shearer's fix that makes curl complain if invoked with nothing but "curl
  -O" was applied.

Daniel (26 Mar)
- Bryan Kemp was friendly enough to lend me an account on his Redhat 9 box and
  I could fix the configure problems on redhat 8.1 and 9 in no time thanks to
  this. Thanks a bunch Bryan!

Daniel (25 Mar)
- Renamed configure.in to configure.ac

Version 7.10.4-pre5 (25 Mar 2003)

Daniel (25 Mar)
- Richard Bramante provided a fix for a handle re-use problem seen when you
  change options on an SSL-enabled connection between requests. Previously,
  changing peer verification or host verification and similar things was not
  taken into account when a connection were checked for re-use and thus
  enabling stricter check between requests on a re-used connection made no
  difference and the connection would thus be used erroneously.

Daniel (24 Mar)
- Götz Babin-Ebell pointed out that the ca-bundle.crt file contained a
  certificate from Trustcenter that was a demo certificate only that was never
  intended to be part of a CA bundle.

Daniel (21 Mar)
- Life is a mystery. Within a time period of 17 hours, Tim Pope and Michael
  Churchill filed one bug report each, both identifying problems with a second
  transfer when doing persistent transfers re-using a connection. Tim's one is
  #706624, labeled "Multiple uploads per handle fail" and Michael's #707003
  "Does not send Authorization: header when reusing connection". I could track
  both down to the same piece of logic and it turned out libcurl was not using
  new settings properly when re-using an existing connection. This concerned
  both uploading and downloading and involved exactly those pieces these two
  reports identified. This code has been this faulty since the day I
  introduced persistent connection support in libcurl, more than 2 years ago.

Daniel (20 Mar 2003)
- Five year anniversary. Today five years ago, the first ever curl release saw
  the light of day.

Daniel (17 Mar)
- Andy Cedilnik corrected flaws in some libcurl example-usage sources.

Daniel (16 Mar)
- Juan F. Codagnone reported that the fix from March 2nd was incomplete.

- Added code to the configure.in to check for select() argument types. I've
  not made any code use the results just yet though.

Daniel (15 Mar)
- Gisle Vanem provided two patches to build better on Windows.

- Adjusted the test suite code to better make sure that the server(s) required
  for a specific test is properly started before the test case is attempted.
  Many tests now run a lot faster than before.

Daniel (14 Mar)
- Another configure.in adjustment made the configure detect functions properly
  on HPUX now.

Daniel (13 Mar)
- Philippe Raoult fixed pre4-compile quirks for FreeBSD.

Version 7.10.4-pre4 (13 Mar 2003)

Daniel (13 Mar)
- Added a backup-check for functions that aren't found by AC_CHECK_FUNCS()
  as I believe some checks on HPUX need this. At least some of the info given
  to us by Rick Jones seemed to indicate this.

Daniel (12 Mar)
- Thomas Tonino found out that if you used the curl tool to do PUT operations
  as in 'curl www.foo.com/dir/ -T file' and the file name included for example
  space or other characters that don't belong in URLs, curl did not properly
  URL encode them before using them in the URL.

- Added an option to configure called --enable-libgcc that simply adds -lgcc
  to the LIBS variable, as this seems to be a common problem.

- I modified the configure.in file, so that the headers are now checked in an
  order of "viality". We must also make sure to use the "default headers"
  parameter to AC_CHECK_HEADERS() so that headers are checked with the proper
  prerequisites included (i.e all the major and generally important header
  files are included there by default). This might be what we need for various
  Sun, HP, AIX and Tru64 systems to behave good again on the header check
  front.

- Rick Jones pointed out a few compiler warnings on HP-UX that I addressed.

- I made the configure --help output nicer by using AC_HELP_STRING() a lot
  more.

Daniel (11 Mar)
- Christophe Demory fixed the socket sending code to work better on HP-UX
  when sending data to a socket that would block. It then returns EAGAIN, not
  EWOULDBLOCK.

- Richard Gorton improved the seeding function for systems without a good
  and reliable random source.

- Richard Gorton fixed a few warnings that popped up when you built curl
  using the Sun compiler on a 64bit SPARC platform.

- Martin C. Martin fixed a case where a connect failure using the multi
  interface didn't produce a human readable error string.

Daniel (10 Mar)
- Reverted ltmain.sh back to libtool 1.4.2 status again, as the 1.4.3 version
  broke the build on numerous platforms. It seems that libtool 1.4.3 puts some
  requirements on what versions of the other tools (autoconf + automake) that
  I am not familiar with and thus I couldn't fulfill at this point.

  Yes, this is more than mildly frustrating.

Daniel (7 Mar)
- Run libtoolize version 1.4.3.

Version 7.10.4-pre3 (4 Mar 2003)

Daniel (3 Mar)
- Added share.obj to the VC6 and Borland libcurl makefiles.

- Troels Walsted Hansen found and investigated a problem with libcurl on AIX,
  presumably only on 4.3 or later. gethostbyname_r() is not returning data
  that is possible to "keep" and cache the way libcurl does. But instead these
  versions of AIX uses a gethostbyname() that works thread-safely we can
  instead use the ordinary gethostbyname() and our pack_hostent() approach to
  achieve what we want. The configure script now attempts to detect AIX 4.3 or
  later to adjust for this.

Daniel (2 Mar)
- Juan F. Codagnone found a problem introduced in 7.10.3 when you first did a
  POST and then back to a GET using the same easy handle.

Daniel (28 Feb)
- Removed the strequal and strnequal defines from curl/curl.h header. They
  were never meant for the public header anyway. Philippe Raoult brought it
  up.

- James Bursa fixed the RISC OS build.

Daniel (27 Feb)
- Avery Fay pointed out the very misleading curl_multi_info_read man page, and
  I updated it to become more accurate.

- Salvatore Sorrentino found a problem with FTP downloading that turned out to
  be his FTP server returning size zero (0 bytes) when SIZE was used on a file
  while being in BINARY mode. We now make a second check for the actual size
  by scanning the RETR reply anyway, even if the SIZE command returned 0.

Daniel (26 Feb)
- Kyle Sallee reported a case where he would do a transfer that didn't update
  the progress meter properly. It turned out to be a case where libcurl would
  loop a little too eagerly in the transfer loop, which isn't really good for
  the APIs, especially not the multi API.

Version 7.10.4-pre2 (24 Feb 2003)

Daniel (24 Feb)
- Kjetil Jacobsen found out that setting CURLOPT_MAXCONNECTS to a value higher
  than 5 could cause a segfault.

- I believe I fixed the 'Expect: 100-continue' behavior that has been broken
  for a while (I think since my change dated Dec 10 2002). When this header is
  used, libcurl should wait for a HTTP 100 (or timeout) before sending the
  post/put data.

Daniel (14 Feb)
- Matthew Clarke provided some info what to modify to make curl build
  flawlessly on AIX 3.2.5.

- Martin C. Martin found and fixed a problem in the multi interface when
  running on Windows and trying to connect to a port without a listener.

Daniel (13 Feb)
- Christopher R. Palmer fixed Curl_base64_encode() to deal with zeroes in the
  data to encode.

Daniel (4 Feb)
- Jean-Philippe added the first code that enables the 'share' system. This
  should now enable sharing of DNS data between two curl easy handles.

- Incorporated Nico Baggus' fixes to again compile flawlessly on VMS.

- James Bursa corrected a bad comment in the public include file curl/multi.h

- Peter Forret reported one of those error:00000000 cases in libcurl again
  when connecting to a HTTPS site, and this time I did discover some oddities
  in how curl reports SSL errors back. It could miss showing the actual error.

Version 7.10.4-pre1 (3 Feb 2003)

Daniel (3 Feb)
- Removed things in the docs saying capath doesn't work on Windows, as Julian
  Noble told us it works fine.

Daniel (31 Jan)
- Kevin Roth fixed the zlib build stuff in the Mingw32 makefile.

Daniel (30 Jan)
- Kevin Roth found out that curl on Windows always checked for the CA cert
  bundle using the environment variable and the path scan, even though
  -k/--insecure was used.

- Hamish Mackenzie pointed out that curl only did strict host name verifying
  if capath or cainfo was used. Now it'll always do it unless -k / --insecure
  is used!

- Pavel Cenek pointed out that the Content-Type extraction was done wrongly
  as the full string was not fetched. Added test case 57 to verify that curl
  does it right now.

Daniel (29 Jan)
- Jamie Wilkinson provided a patch that now makes curl attempt to clear out
  "sensitive" command line arguments so that they don't appear in ps outputs
  (only on platforms that allow writing to argv[]).

- John McGowan found out that the DEBUGFUNCTION could be called with bad
  arguments and thus cause the --trace outputs to go wrong.

- Removed all the emacs local variables from all files. Mats Lidell provided
  the new sample.emacs file (for a sample of what to include in your .emacs)
  and the curl-style.el that sets a better c-style for editing curl sources.

- Dave Halbakken found a problem with FTP downloads that could accidently
  return CURLE_PARTIAL_FILE when curl_easy_perform() was called with NOBODY
  set TRUE.

Daniel (27 Jan)
- The fopen.c example was flawed as Nick Humfrey noticed, and I fixed it to
  work again.

Daniel (24 Jan)
- Bertrand Demiddelaer found and fixed a memory leak (the content-type string)
  when following locations.

Daniel (22 Jan 2003)
- Ian Wilkes and Legoff Vincent both independently provided fixes for making
  curl/multi.h work properly when compiled with a C++ compiler.

Daniel (20 Jan 2003)
- Fixed 'buildconf' to check version number of the required tools before
  they're actually used.

- Wrote 'testcurl.sh', a script targeted for automatic and distributed curl
  tests on various platforms.

- David Thiel pointed out that the .netrc file was not being dealt with
  properly anymore. I broke this in the password prompting "fix".

- Markus F.X.J. Oberhumer patched libcurl to allocate the scratch buffer only
  on demand and thus we save 32KB in each curl handle that don't use that
  buffer. This need appeared when some people started using thousands of
  simultaneous curl handles... :-)

Daniel (16 Jan 2003)
- Markus Oberhumer fixed curl-config --cflags when the includedir was not
  /usr/include.

- Markus Oberhumer fixed CURLINFO_PRIVATE to properly return NULL if it was
  set to NULL!

Version 7.10.3 (14 Jan 2003)

Daniel (10 Jan 2003)
- Steve Oliphant pointed out that test case 105 did not work anymore and this
  was due to a missing fix for the password prompting.

Version 7.10.3-pre6 (10 Jan 2003)

Daniel (9 Jan 2003)
- Bryan Kemp pointed out that curl -u could not provide a blank password
  without prompting the user. It can now. -u username: makes the password
  empty, while -u username makes curl prompt the user for a password.

- Kjetil Jacobsen found a remaining connect problem in the multi interface on
  ipv4 systems (Linux only?), that I fixed and Kjetil verified that it fixed
  his problems.

- memanalyze.pl now reads a file name from the command line, and no longer
  takes the data on stdin as before.

Version 7.10.3-pre5 (9 Jan 2003)

Daniel (9 Jan 2003)
- Fixed tests/memanalyze.pl to work with file names that contain colons (as on
  Windows).
  
- Kjetil Jacobsen quickly pointed out that lib/share.h was missing...

Version 7.10.3-pre4 (9 Jan 2003)

Daniel (9 Jan 2003)
- Updated lib/share.c quite a bit to match the design document at
  http://curl.haxx.se/dev/sharing.txt a lot more.

  I'll try to update the document soonish. share.c is still not actually used
  by libcurl, but the API is slowly getting there and we can start
  implementing code that takes advantage of this system.

Daniel (8 Jan 2003)
- Updated share stuff in curl/curl.h, including data types, structs and
  function prototypes. The corresponding files in lib/ were also modified
  of course to remain compilable. Based on input from Jean-Philippe and also
  to make it more in line with the design document.

- Jean-Philippe Barrette-LaPierre patched a very trivial memory leak in
  curl_escape() that would happen when realloc() returns NULL...

- Matthew Blain provided feedback to make the --create-dirs stuff build
  properly on Windows.

- Fixed the #include in tests/libtest/first.c as Legoff Vincent pointed out.

Daniel (7 Jan 2003)
- Philippe Raoult provided a patch that now makes libcurl properly support
  wildcard checks for certificate names.

- Simon Liu added CURLOPT_HTTP200ALIASES, to let an application set other
  strings recognized as "HTTP 200" to allow http-like protocols to get
  downloaded fine by curl.

- Now using autoconf 2.57 and automake 1.7.2

- Doing "curl -I ftp://domain/non-existing-file" still outputed a date!
  Wayne Haigh reported.

- The error message is now written properly with a newline in the --trace
  file.

Daniel (6 Jan 2003)
- Sterling Hughes fixed a possible bug: previously, if you called
  curl_easy_perform and then set the global dns cache, the global cache
  wouldn't be used. Pointed out by Jean-Philippe Barrette-LaPierre.

- Matthew Blain's fixed the VC6 libcurl makefile to include better debug data
  on debug builds.
Daniel (27 Dec 2002)
- Philippe Raoult reported a bug with HTTPS connections which I evidently
  added in my 19 dec fix. I corrected it.

Daniel (20 Dec)
- Idea from the Debian latest patch: use AM_MAINTAINER_MODE in the configure
  script to make the default makefile less confusing "to the casual
  installer".

Version 7.10.3-pre3 (20 Dec)

Daniel (19 Dec)
- Matthew Blain patched the Curl_base64_decode() function.

- Evan Jordan reported in bug report #653022 that the SSL_read() usage was
  wrong, and it certainly was. It could lead to curl using too much CPU due to
  a stupid loop.

Daniel (18 Dec)
- As suggested by Margus Freudenthal, CURLE_HTTP_NOT_FOUND was renamed to
  CURLE_HTTP_RETURNED_ERROR since it is returned on any >= 400 code when
  CURLOPT_FAILONERROR is set.

Daniel (17 Dec)
- Bug reported #651464, reported by Christopher Palmer, provided an example
  source code using the multi interface that hang when trying to connect to a
  proxy on a localhost port where no proxy was listening. This bug was not
  repeatable on libcurls that were IPv6-enabled.

Daniel (16 Dec)
- Christopher Palmer also noticed what Vojtech Janota already was
  experiencing: The attempted name resolve fix for glibc 2.2.93 caused libcurl
  to crash when used on some older glibc versions. The problem is of course
  the silliness of the 2.2.93. I committed a fix that hopefully should make
  the binary run fine on either one of the versions, even though the solution
  is not as nice as I'd like it to be.

Daniel (13 Dec)
- Bug report #651460 by Christopher R. Palmer showed that when using libcurl
  to for example go over a proxy on localhost, it would attempt to connect
  through the proxy TWICE.

  I added test case 503 with which I managed to repeat this problem and I
  fixed the code to not re-attempt any connects (which also made it a nicer
  fix for the #650941 bug mentioned below).

  The sws server was extended to deal with CONNECT in order to make test
  case 503 do good.

- Evan Jordan posted bug report #650989 about a memory leak in the public key
  retrieving code. He provided a suggested fix and I merely applied it!

- Bug report #650941, posted by Christopher R. Palmer identified a problem
  with the multi interface and getting file:// URLs. This was now fixed and
  test case 502 was added to verify this.

Daniel (12 Dec)
- Test case 500 and 501 are the first ever libcurl test cases that run.

- Made "configure --enable-debug" cut off all -O* options to the compiler

- Finally fixed the test suite's ftp server so that test case 402 doesn't
  cause the following test case to fail anymore!

Daniel (11 Dec)
- CURL_MAX_WRITE_SIZE is now decreased to 16KB since it makes the Windows
  version perform uploads much faster!!! RBramante did lots of research on
  this topic.

- Fixed the #include in curl/curl.h to include the other files outside the
  extern "C" scope.

Daniel (10 Dec)
- Moved around and added more logic:

  First, POST data is never sent as part of the request headers in the http.c
  code. It is always sent the "normal" read callback then send() way. This now
  enables a plain HTTP POST to be sent chunked if we want to. This also
  reduces the risk of having very big POSTs causing problems.

  Further, sending off the initial HTTP request is not done using a loop
  anymore. If it wasn't all sent off in the first send(), the rest of the
  request is sent off in the normal transfer select() loop. This makes several
  things possible, but mainly it makes libcurl block less when used from the
  multi interface and it also reduces the risk of problems with issuing very
  large requests.

Daniel (9 Dec)
- Moved the read callback pointer and data within the structs to a more
  suitable place. This in preparation for a better HTTP-request sending code
  without (a silly) loop.

- The Dodds fix seems not to work.

- Vojtech Janota tests proved that the resolve fix from oct 21st is not good
  enough since obviously older glibcs might return EAGAIN without this meaning
  that the buffer was too small.

- [the other day] Made libcurl loop on recv() and send() now until done, and
  then get back to select(). Previously it went back to select() more often
  which really was a slight overhead. This was due to the reported performance
  problems on HTTP PUT on Windows. I couldn't see any notable difference on
  Linux...

Version 7.10.3-pre2 (4 Dec 2002)

Daniel (4 Dec 2002)
- Lots of work with Malcolm Dodds made me add a temporary code fix that now
  shortens the timeout waiting for the 226 or 250 line after a completed
  FTP transfer.

  If no data is received within 60 seconds, this is taken as a sign of a dead
  control connection and we bail out.

Daniel (3 Dec 2002)
- Ralph's bug report #644841 identified a problem in which curl returned a
  timeout error code when in fact the problem was not a timeout. The proper
  error should now be propagated better when they're detected in the FTP
  response reading function.

- Updated the Borland Makefiles.

Daniel (2 Dec 2002)
- Nicolas Berloquin provided a patch that introduced --create-dirs to the
  command line tool. When used in combination with -o, it lets curl create
  [non-existing] directories used in -o, suitably used with #-combinations
  such as:

     curl "www.images.com/{flowers,cities,parks,mountains}/pic_[1-100].jpg \
       -o "dir_#1/pic#2.jpg" --create-dirs

Version 7.10.3-pre1

Daniel (28 Nov 2002)
- I visited Lars Nordgren and had a go with his problem, which lead me to
  implement this fix. If libcurl detects the added custom header
  "Transfer-Encoding: chunked", it will now enable a chunked transfer.

  Also, chunked transfer didn't quite work before but seems to do so now.

- Kjetil Jacobsen pointed out that ./configure --disable-ipv6 --without-zlib
  didn't work on any platform...

Daniel (26 Nov 2002)
- Fixed a bad addrinfo free in the hostip.c code, hardly exposed anywhere

- Dan Becker found and fixed a minor memory leak on persistent connnections
  using CURLOPT_USERPWD.

Daniel (22 Nov 2002)
- Based on Ralph Mitchell's excellent analysis I found a bug in the test suite
  web server (sws) which now lets test case 306 run fine even in combination
  with the other test cases.

- Juan Ignacio Hervás found a crash in the verbose connect message that is
  used on persistent connections. This bug was added in 7.10.2 due to the
  rearranged name resolve code.

Daniel (20 Nov 2002)
- Kjetil Jacobsen provided a patch that introduces:

   CURLOPT_PRIVATE stores a private pointer in the curl handle.

   CURLINFO_PRIVATE retrieves the private pointer from the curl handle.

- Karol Pietrzak pointed out how curl-config --cflags didn't output a good
  include dir so I've removed that for now.

Version 7.10.2 (18 Nov 2002)

Daniel (11 Nov 2002)
- Dave Halbakken added curl_version_info to lib/libcurl.def to make libcurl
  properly build with MSVC on Windows.

Daniel (8 Nov 2002)
- Doing HTTP PUT without a specified file size now makes libcurl use
  Transfer-Encoding: chunked.

Daniel (7 Nov 2002)
- Bug report #634625 identified how curl returned timeout immediately when
  CURLOPT_CONNECTTIMEOUT was used and provided a fix.

Version 7.10.2-pre4 (6 Nov 2002)

Daniel (5 Nov 2002)
- Lehel Bernadt found out and fixed. libcurl sent error message to the debug
  output when it stored the error message.

- Avery Fay found some problems with the DNS cache (when the cache time was
  set to 0 we got a memory leak, but when the leak was fixed he got a crash
  when he used the CURLOPT_INTERFACE with that) that had me do some real
  restructuring so that we now have a reference counter in the dns cache
  entries to prevent an entry to get flushed while still actually in use.

  I also detected that we previously didn't update the time stamp when we
  extracted an entry from the cache so that must've been a reason for some
  very weird dns cache bugs.

Version 7.10.2-pre3

Daniel (31 Oct 2002)
- Downgraded automake to 1.6.3 in an attempt to fix cygwin problems. (It
  turned out this didn't help though.)

- Disable the DNS cache (by setting the timeout to 0) made libcurl leak
  memory. Avery Fay brought the example code that proved this.

Version 7.10.2-pre2

Daniel (28 Oct 2002)
- Upgraded to autoconf 2.54 and automake 1.7 on the release-build host.

- Kevin Roth made the command line tool check for a CURL_CA_BUNDLE environment
  variable (if --cacert isn't used) and if not set, the Windows version will
  check for a file named "curl-ca-bundle.crt" in the current directory or the
  directory where curl is located. That file is then used as CA root cert
  bundle.

- Avery Fay pointed out that curl's configure scrip didn't get right if you
  used autoconf newer than 2.52. This was due to some badly quoted code.

Version 7.10.2-pre1

Daniel (23 Oct 2002)
- Emiliano Ida confirmed that we now build properly with the Borland C++
  compiler too. We needed yet another fix for the ISO cpp check in the curl.h
  header file.

- Yet another fix was needed to get the HTTP download without headers to work.
  This time it was needed if the first "believed header" was read all in the
  first read. Test 306 has not run properly since the 11th october fix.

Daniel (21 Oct 2002)
- Zvi Har'El pointed out a problem with curl's name resolving on Redhat 8
  machines (running IPv6 disabled). Mats Lidell let me use an account on his
  machine and I could verify that gethostbyname_r() has been changed to return
  EAGAIN instead of ERANGE when the given buffer size is too small. This is
  glibc 2.2.93.

- Albert Chin helped me get the -no-undefined option corrected in
  lib/Makefile.am since Cygwin builds want it there while Solaris builds don't
  want it present. Kevin Roth helped me try it out on cygwin.
  
- Nikita Schmidt provided a bug fix for a FOLLOWLOCATION bug introduced when
  the ../ support got in (7.10.1).

Daniel (18 Oct 2002)
- Fabrizio Ammollo pointed out a remaining problem with FOLLOWLOCATION in
  the multi interface.

Daniel (17 Oct 2002)
- Richard Cooper's experimenting proved that -j (CURLOPT_COOKIESESSION) didn't
  work quite as supposed. You needed to set it *before* you use
  CURLOPT_COOKIEFILE, and we dont' want that kind of dependencies.

Daniel (15 Oct 2002)
- Andrés García provided corrections for erratas in four libcurl man pages.

Daniel (13 Oct 2002)
- Starting now, we generate and include PDF versions of all the docs in the
  release archives.

Daniel (12 Oct 2002)
- Trying to connect to a host on a bad port number caused the multi interface
  to never return failure and it appeared to keep on trying forever (it just
  didn't do anything).

Daniel (11 Oct 2002)
- Downloading HTTP without headers didn't work 100%, some of the initial data
  got written twice. Kevin Roth reported.

- Kevin Roth found out the "config file" parser in the client code could
  segfault, like if DOS newlines were used.

Version 7.10.1 (11 Oct 2002)

Daniel (10 Oct 2002)
- Jeff Lawson fixed a few problems with connection re-use that remained when
  you set CURLOPT_PROXY to "".

Daniel (9 Oct 2002)
- Craig Davison found a terrible flaw and Cris Bailiff helped out in the
  search. Getting HTTP data from servers when the headers are split up in
  multiple reads, could cause junk data to get inserted among the saved
  headers. This only concerns HTTP(S) headers.

Daniel (8 Oct 2002)
- Vincent Penquerc'h gave us the good suggestion that when the ERRRORBUFFER
  is set internally, the error text is sent to the debug function as well.

- I fixed the telnet code to timeout properly as the option tells it to. On
  non-windows platforms.

Daniel (7 Oct 2002)
- John Crow pointed out that libcurl-the-guide wasn't included in the release
  tarball!

- Kevin Roth pointed out that make install didn't do right if build outside
  the source tree (ca-bundle wise).

- FOLLOWLOCATION bugfix for the multi interface

Daniel (4 Oct 2002)
- Kevin Roth got problems with his cygwin build with -no-undefined was not
  present in lib/Makefile.am so I put it back in there again. The poor one who
  needs to remove it again must write a configure script to detect that need.

- Ralph Mitchell pointed out that curl was a bit naive and didn't deal with ./
  or ../ stuff in the string passed back in a Location: header when following
  locations.

- Albert Chin helped me to work out a better configure.in check for zlib, and
  both --without-zlib and -with-zlib seem to work rather well right now.

- Zvi Har'El improvied the OpenSSL ENGINE check in the configure script to
  become more accurate.

Daniel (1 Oct 2002)
- Detlef Schmier pointed out the lack of a --without-libz option to configure,
  so I added one.

Version 7.10 (1 Oct 2002)

Daniel (30 Sep 2002)
- Modified the curl_version_info() proto and returned struct once again, and
  updated the man page accordingly.

- Cris Bailiff found out that the pre-releases crashed on name lookups on
  names such as "a:" or "baz:" (on Linux versions not being ipv6-enabled) due
  to some weird return codes from gethostbyname_r(). I'll blame the complete
  lack of docs in that department. Cris provided a fix, which I modified only
  slightly.

Daniel (27 Sep 2002)
- After a suggestion from Christian Kurz to Debian curl package maintainer
  Domenico Andreoli, I made it possible to override the proxy environment
  variables better. Now, by setting -x "" you can explicitly tell libcurl to
  not use a proxy, no matter whan the environment variables say.

Version 7.10-pre4

Daniel (26 Sep 2002)
- Extended curl_version_info() more and wrote a man page for it.

Daniel (25 Sep 2002)
- libcurl could leak memory when downloading multiple files using http ranges,
  reported and fixed by Jean-Luc Guevel.

- Walter J. Mack provided code and docs for the new curl_free() function that
  shall be used to free memory that is allocated by libcurl and returned back
  to the application, as curl_escape() and curl_unescape() do.

- Yarram Sunil pointed out a flaw in the multi interface where a failed
  connection didn't close down properly and thus a second transfer using the
  same handle failed.

- Andrés García fixed a flaw that made (among other things) dict-fetches
  return a random value.

Daniel (24 Sep 2002)
- Wez Furlong brought his initial patch that introduced curl_version_info().
  We might need to tweak it somewhat before release.

Daniel (20 Sep 2002)
- Craig Markwardt fixed another Tru64 IP resolve problem.

Daniel (19 Sep 2002)
- Dolbneff A.V and Spiridonoff A.V made the file:// code work with resumes
  in the same style other code does.

- Ilguiz Latypov fixed a flaw in the client code when fetching multiple URLs
  and -C - was used. The first file's resume position was then accidentally
  reused on all the other files too.

Daniel (18 Sep 2002)
- The curl_easy_setopt.3 man page was greatly modified and the options have
  now been grouped in logical groups so that it should be somewhat easier to
  read it and find things you search for.

Daniel (13 Sep 2002)
- Kevin Roth pinpointed a scary flaw in libcurl, when the HTTP server doesn't
  send any headers back, only raw content. Right, that is a violation of the
  standard but still happens at times and we need to deal with it. Test case
  306 was added to verify that we do right now.

Version 7.10-pre3

Daniel (11 Sep 2002)
- Lukasz Czekierda found out that curl didn't send a correct HTTP Host: header
  when you specified the URL with an IPv6 IP-address.

Daniel (4 Sep 2002)
- Sven Neuhaus made --silent being acknowledged even when multiple URLs
  were used. It used to output "[1/2]: http://host/a.html.de --> a.html.d" etc
  even when told to shut up.

Daniel (3 Sep 2002)
- Updated all source code headers to use MIT-license references only, and
  point to the COPYING file and the http://curl.haxx.se/docs/copyright.html
  URL. I've cut out all references to MPL that I could find.

- Corected the makefiles to not always use -lz when linking

Version 7.10-pre2

Daniel (2 Sep 2002)
- James Gallagher added Content-Encoding support to libcurl so now curl and
  libcurl-using apps can request compressed contents using the 'deflate'
  method. See the special file lib/README.encoding for details.

  curl --compressed is now used to request compressed contents.

  curl-config --feature will include 'libz' if this feature was around when
  the library was built.

Daniel (30 Aug 2002)
- Applied an anonymous SOCKS5-proxy patch. Not properly working in all
  situations though, as all getaddrinfo()-using libcurls will fail on this.
  This is because of the somewhat naive way the current code tries to extract
  the IP address of the proxy.

- Fixed up the SSL cert fixes from the other day even more after more inputs
  from Cris. Added three new SSL error codes to make the
  CURLE_SSL_CONNECT_ERROR slightly less overloaded.

Daniel (27 Aug 2002)
- After lots of talk with Tom Zerucha, Nick Gimbrone and Cris Bailiff I
  decided to talk the bold path and I now made libcurl do CA certificate
  verification by default. Thus library users need to explicitly turn this off
  if you want to connect to sites without proper checking. We also install a
  CA cert bundle on 'make install' now.

  The curl tool now requires the -k/--insecure option in order to allow
  connections and operations on SSL sites that aren't properly verified with
  -cafile or --capath.

  curl-config --ca displays the built-in path to the CA cert bundle.

Daniel (26 Aug 2002)
- Andrew Francis cleaned up some code that now compiles fine without the need
  for ugly MSVC pragmas.

- Keith MacDonald found a minor bug in src/main.c that made it close stdin
  instead of the actual file handle. It shouldn't have resulted in much
  trouble as most operating systems close all file handles on process exit
  anyway.

Daniel (22 Aug 2002)
- Markus Oberhumer provided some documentation for his previously provided
  CURLOPT_NOSIGNAL fix.

- Patched the lib/Makefile.am to hopefully no longer complain on undefined
  symbols that seemed to occur on builds with shared OpenSSL libraries on
  Solaris lately...

Daniel (20 Aug 2002)
- Fixed compiler warnings on MSCV++ compiles. We're looking for help here:
  remove the pragmas from lib/config-win32.h and adjust the sources where
  the warnings occur. Hiding them with pragmas like this is not the correct
  way of dealing with compiler warnings.

Daniel (13 Aug 2002)
- Ulrich Zadow made the global include files in curl/* include themselves
  using "curl.h" instead of <curl/curl.h> which thus allows people to more
  freely decide how to include curl and how to setup their include paths.

- Sterling Hughes added the curl_share* interface, somewhat as discussed
  previously.

- Jörn Hartroth pointed out that poll() was used in the pre1 source code and
  it isn't very portable, so now I check for it in the configure script and
  work around it.

Version 7.9.9-pre1

Daniel (12 Aug 2002)
- Applied my initial take on making the multi stuff more asynchronous. Connects
  should now return back without "hanging" until it has connected for real.
  This should also be the case for FTP-PASV connects.

Daniel (9 Aug 2002)
- Applied Markus F.X.J. Oberhumer's patch that introduces CURLOPT_NOSIGNAL,
  which effectively prevents libcurl from doing anything that may cause
  signals to get sent. This is basicly for multi-threaded applications that
  now can use timeouts properly, without risking any signals to burst in and
  ruin the party.
  
Daniel (5 Aug 2002)
- Lukasz Czekierda reported that RFC2732-style literal IPv6 addresses didn't
  work. When did that code vanish? Anyway, it's back again now and seems to
  work!

- Jonatan Lander found out that POSTing an empty string didn't work with the
  command line tool.

Daniel (3 Aug 2002)
- Jörn Hartroth fixed the libcurl.def file to build the windows DLL with
  the multi interface enabled.

Daniel (1 Aug 2002)
- The ftp PORT command now uses a better default IP address, as it will
  extract and use the local IP address used by the control connection.

- Modified the #include lines in curl/multi.h to work better on more
  platforms.

Daniel (31 Jul 2002)
- Attempted a fix for Ray DeGennaro's reported HP-UX host name resolve
  problems.

Daniel (30 Jul 2002)
- Priya Ramakrishnan and Ryan Jones compiles curl/curl.h with a C++ compiler
  and don't get __STDC__ defined, which required us to extend the preprocessor
  check for the ## operator usage.

- Correct the description for CURLOPT_PASSWDFUNCTION, if set to NULL the
  internal default function will be put back.

- danfuzz at milk.com found out that libcurl badly assumed a space after
  'Set-Cookie:' so if it wasn't present, it caused the first letter of the
  cookie name to fall off!

Daniel (29 Jul 2002)
- The password prompt asking for user password used stdout and now uses
  stderr instead to better allow redirecting. It also leaked a fopen() file
  handle that is now fixed.

Daniel (28 Jul 2002)
- HAVE_SETVBUF was left out from src/main.c which made -N not work. Found out
  by M T.

Daniel (26 Jun 2002)
- Glen Nakamura solved a crash in the name resolving function for IP-only
  addresses on Alpha Linux (at least).

- T. Bharath corrected the high resolution timer introduced in 7.9.8.

Daniel (22 Jun 2002)
- Andrés García pointed out man page errors in curl_formadd.3. I fixed.

Daniel (19 Jun 2002)
- Chris Combes pointed out a flaw in curl_escape(). I fixed. We no longer
  tries to generate nor parse '+' in URLs. Spaces become %20, and only %-codes
  are translated by curl_unescape().

Daniel (15 Jun 2002)
- Added --limit-rate to the curl tool. Allows the user to set a maxmimum