Commit 29dc39fc authored Sep 11, 2006 by Daniel Stenberg

- Fixed my breakage from earlier today so that doing curl_easy_cleanup() on a

  handle that is part of a multi handle first removes the handle from the
  stack.

- Added CURLOPT_SSL_SESSIONID_CACHE and --no-sessionid to disable SSL
  session-ID re-use on demand since there obviously are broken servers out
  there that misbehave with session-IDs used.

parent 5c184cfc

CHANGES

+8 −0

Original line number	Diff line number	Diff line
		@@ -7,6 +7,14 @@
		Changelog

		Daniel (11 September 2006)
		- Fixed my breakage from earlier today so that doing curl_easy_cleanup() on a
		handle that is part of a multi handle first removes the handle from the
		stack.

		- Added CURLOPT_SSL_SESSIONID_CACHE and --no-sessionid to disable SSL
		session-ID re-use on demand since there obviously are broken servers out
		there that misbehave with session-IDs used.

		- Jeff Pohlmeyer presented a *multi_socket()-using program that exposed a
		problem with it (SIGSEGV-style). It clearly showed that the existing
		socket-state and state-difference function wasn't good enough so I rewrote

RELEASE-NOTES

+1 −0

Original line number	Diff line number	Diff line
		@@ -11,6 +11,7 @@ Curl and libcurl 7.16.0

		This release includes the following changes:

		o CURLOPT_SSL_SESSIONID_CACHE and --no-sessionid added
		o CURLMOPT_PIPELINING added for enabling pipelined transfers
		o Added support for other MS-DOS compilers (besides djgpp)
		o CURLOPT_SOCKOPTFUNCTION and CURLOPT_SOCKOPTDATA were added

docs/curl.1

+9 −0

Original line number	Diff line number	Diff line
		@@ -705,6 +705,15 @@ will output the data in chunks, not necessarily exactly when the data arrives.
		Using this option will disable that buffering.

		If this option is used twice, the second will again switch on buffering.
		.IP "--no-sessionid"
		(SSL) Disable curl's use of SSL session-ID caching. By default all transfers
		are done using the cache. Note that while nothing ever should get hurt by
		attempting to reuse SSL session-IDs, there seem to be broken SSL
		implementations in the wild that may require you to disable this in order for
		you to succeed. (Added in 7.16.0)

		If this option is used twice, the second will again switch on use of the
		session cache.
		.IP "--ntlm"
		(HTTP) Enables NTLM authentication. The NTLM authentication method was
		designed by Microsoft and is used by IIS web servers. It is a proprietary

docs/libcurl/curl_easy_setopt.3

+6 −0

Original line number	Diff line number	Diff line
		@@ -1302,6 +1302,12 @@ compile OpenSSL.

		You'll find more details about cipher lists on this URL:
		\fIhttp://www.openssl.org/docs/apps/ciphers.html\fP
		.IP CURLOPT_SSL_SESSIONID_CACHE
		Pass a long set to 0 to disable libcurl's use of SSL session-ID caching. Set
		this to 1 to enable it. By default all transfers are done using the
		cache. Note that while nothing ever should get hurt by attempting to reuse SSL
		session-IDs, there seem to be broken SSL implementations in the wild that may
		require you to disable this in order for you to succeed. (Added in 7.16.0)
		.IP CURLOPT_KRB4LEVEL
		Pass a char * as parameter. Set the krb4 security level, this also enables
		krb4 awareness. This is a string, 'clear', 'safe', 'confidential' or

include/curl/curl.h

+4 −0

Original line number	Diff line number	Diff line
		@@ -1037,6 +1037,10 @@ typedef enum {
		CINIT(SOCKOPTFUNCTION, FUNCTIONPOINT, 148),
		CINIT(SOCKOPTDATA, OBJECTPOINT, 149),

		/* set to 0 to disable session ID re-use for this transfer, default is
		enabled (== 1) */
		CINIT(SSL_SESSIONID_CACHE, LONG, 150),

		CURLOPT_LASTENTRY /* the last unused */
		} CURLoption;