- Martin Drasar provided the CURLOPT_POSTREDIR patch. It renames (18110b51) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP curl

CHANGES

+8 −0

Original line number	Diff line number	Diff line
		@@ -7,6 +7,14 @@
		Changelog

		Daniel Stenberg (5 Sep 2008)
		- Martin Drasar provided the CURLOPT_POSTREDIR patch. It renames
		CURLOPT_POST301 (but adds a define for backwards compatibility for you who
		don't define CURL_NO_OLDIES). This option allows you to now also change the
		libcurl behavior for a HTTP response 302 after a POST to not use GET in the
		subsequent request (when CURLOPT_FOLLOWLOCATION is enabled). I edited the
		patch somewhat before commit. The curl tool got a matching --post302
		option. Test case 1076 was added to verify this.

		- Introducing CURLOPT_CERTINFO and the corresponding CURLINFO_CERTINFO. By
		enabling this feature with CURLOPT_CERTINFO for a request using SSL (HTTPS
		or FTPS), libcurl will gather lots of server certificate info and that info

+3 −2

Original line number	Diff line number	Diff line
		Curl and libcurl 7.19.1

		Public curl releases: 107
		Command line options: 127
		Command line options: 128
		curl_easy_setopt() options: 154
		Public functions in libcurl: 58
		Known libcurl bindings: 36
		@@ -11,6 +11,7 @@ This release includes the following changes:

		o pkg-config can now show supported_protocols and supported_features
		o Added CURLOPT_CERTINFO and CURLINFO_CERTINFO
		o Added CURLOPT_POSTREDIR

		This release includes the following bugfixes:

		@@ -30,6 +31,6 @@ This release would not have looked like this without help, code, reports and
		advice from friends like these:

		Keith Mok, Yang Tse, Daniel Fandrich, Guenter Knauf, Dmitriy Sergeyev,
		Linus Nielsen Feltzing
		Linus Nielsen Feltzing, Martin Drasar

		Thanks! (and sorry if I forgot to mention someone)

+7 −0

Original line number	Diff line number	Diff line
		@@ -870,6 +870,13 @@ in web browsers, so curl does the conversion by default to maintain
		consistency. However, a server may requires a POST to remain a POST after such
		a redirection. This option is meaningful only when using \fI-L/--location\fP
		(Added in 7.17.1)
		.IP "--post302"
		Tells curl to respect RFC 2616/10.3.2 and not convert POST requests into GET
		requests when following a 302 redirection. The non-RFC behaviour is ubiquitous
		in web browsers, so curl does the conversion by default to maintain
		consistency. However, a server may requires a POST to remain a POST after such
		a redirection. This option is meaningful only when using \fI-L/--location\fP
		(Added in 7.19.1)
		.IP "--proxy-anyauth"
		Tells curl to pick a suitable authentication method when communicating with
		the given proxy. This might cause an extra request/response round-trip. (Added

+16 −2

Original line number	Diff line number	Diff line
		@@ -1103,8 +1103,9 @@ typedef enum {
		CINIT(NEW_FILE_PERMS, LONG, 159),
		CINIT(NEW_DIRECTORY_PERMS, LONG, 160),

		/* Obey RFC 2616/10.3.2 and keep POSTs as POSTs after a 301 */
		CINIT(POST301, LONG, 161),
		/* Set the behaviour of POST when redirecting. Values must be set to one
		of CURL_REDIR* defines below. This used to be called CURLOPT_POST301 */
		CINIT(POSTREDIR, LONG, 161),

		/* used by scp/sftp to verify the host's public key */
		CINIT(SSH_HOST_PUBLIC_KEY_MD5, OBJECTPOINT, 162),
		@@ -1147,6 +1148,11 @@ typedef enum {
		the obsolete stuff removed! */

		/* Backwards compatibility with older names */
		/* These are scheduled to disappear by 2011 */

		/* This was added in version 7.19.1 */
		#define CURLOPT_POST301 CURLOPT_POSTREDIR

		/* These are scheduled to disappear by 2009 */

		/* The following were added in 7.17.0 */
		@@ -1211,6 +1217,14 @@ enum {
		CURL_SSLVERSION_LAST /* never use, keep last */
		};

		/* symbols to use with CURLOPT_POSTREDIR.
		CURL_REDIR_POST_301 and CURL_REDIR_POST_302 can be bitwise ORed so that
		CURL_REDIR_POST_301 \| CURL_REDIR_POST_302 == CURL_REDIR_POST_ALL */

		#define CURL_REDIR_GET_ALL 0
		#define CURL_REDIR_POST_301 1
		#define CURL_REDIR_POST_302 2
		#define CURL_REDIR_POST_ALL (CURL_REDIR_POST_301\|CURL_REDIR_POST_302)

		typedef enum {
		CURL_TIMECOND_NONE,

+12 −1

Original line number	Diff line number	Diff line
		@@ -2286,7 +2286,7 @@ CURLcode Curl_follow(struct SessionHandle *data,
		* libcurl gets the page that most user agents would get, libcurl has to
		* force GET.
		*
		* This behaviour can be overridden with CURLOPT_POST301.
		* This behaviour can be overridden with CURLOPT_POSTREDIR.
		*/
		if( (data->set.httpreq == HTTPREQ_POST
		\|\| data->set.httpreq == HTTPREQ_POST_FORM)
		@@ -2313,7 +2313,18 @@ CURLcode Curl_follow(struct SessionHandle *data,
		status. When interoperability with such clients is a concern, the
		302 status code may be used instead, since most user agents react
		to a 302 response as described here for 303.

		This behaviour can be overriden with CURLOPT_POSTREDIR
		*/
		if( (data->set.httpreq == HTTPREQ_POST
		\|\| data->set.httpreq == HTTPREQ_POST_FORM)
		&& !data->set.post302) {
		infof(data,
		"Violate RFC 2616/10.3.3 and switch from POST to GET\n");
		data->set.httpreq = HTTPREQ_GET;
		}
		break;

		case 303: /* See Other */
		/* Disable both types of POSTs, since doing a second POST when
		* following isn't what anyone would want! */