Loading CHANGES +3 −0 Original line number Diff line number Diff line Loading @@ -8,6 +8,9 @@ Daniel Stenberg (6 Jun 2008) - Axel Tillequin and Arnaud Ebalard added support for CURLOPT_CRLFILE, for OpenSSL, NSS and GnuTLS-built libcurls. - Added CURLINFO_PRIMARY_IP as a new information retrievable with curl_easy_getinfo. It returns a pointer to a string with the most recently used IP address. Modified test case 500 to also verify this feature. The Loading RELEASE-NOTES +3 −2 Original line number Diff line number Diff line Loading @@ -2,7 +2,7 @@ Curl and libcurl 7.18.3 Public curl releases: 106 Command line options: 126 curl_easy_setopt() options: 150 curl_easy_setopt() options: 151 Public functions in libcurl: 58 Public web site mirrors: 37 Known libcurl bindings: 36 Loading @@ -11,6 +11,7 @@ Curl and libcurl 7.18.3 This release includes the following changes: o Added CURLINFO_PRIMARY_IP o Added CURLOPT_CRLFILE This release includes the following bugfixes: Loading @@ -31,6 +32,6 @@ New curl mirrors: This release would not have looked like this without help, code, reports and advice from friends like these: Lenny Rachitsky Lenny Rachitsky, Axel Tillequin, Arnaud Ebalard Thanks! (and sorry if I forgot to mention someone) TODO-RELEASE +0 −3 Original line number Diff line number Diff line Loading @@ -5,9 +5,6 @@ To be addressed before 7.18.3 (planned release: August 2008) 140 - Arnaud Ebalard and Axel Tillequin's CRL support and issuer check patches 141 - The sponsored feature CURLINFO_PRIMARY_IP that returns the IP address as a string for the most recently used connection. 144 - Help apps use 64bit/LFS libcurl! 145 - Loading docs/libcurl/curl_easy_setopt.3 +18 −0 Original line number Diff line number Diff line Loading @@ -1452,6 +1452,24 @@ in combination with the \fICURLOPT_SSL_VERIFYPEER\fP option. If indicate an accessible path. The \fICURLOPT_CAPATH\fP function apparently does not work in Windows due to some limitation in openssl. This option is OpenSSL-specific and does nothing if libcurl is built to use GnuTLS. .IP CURLOPT_CRLFILE Pass a char * to a zero terminated string naming a file with the concatenation of CRL (in PEM format) to use in the certificate validation that occurs during the SSL exchange. When curl is built to use NSS or GnuTLS, there is no way to influence the use of CRL passed to help in the verification process. When libcurl is built with OpenSSL support, X509_V_FLAG_CRL_CHECK and X509_V_FLAG_CRL_CHECK_ALL are both set, requiring CRL check against all the elements of the certificate chain if a CRL file is passed. This option makes sense only when used in combination with the \fICURLOPT_SSL_VERIFYPEER\fP option. A specific error code (CURLE_SSL_CRL_BADFILE) is defined with the option. It is returned when the SSL exchange fails because the CRL file cannot be loaded. Note that a failure in certificate verification due to a revocation information found in the CRL does not trigger this specific error. .IP CURLOPT_RANDOM_FILE Pass a char * to a zero terminated file name. The file will be used to read from to seed the random engine for SSL. The more random the specified file is, Loading docs/libcurl/libcurl-errors.3 +2 −0 Original line number Diff line number Diff line Loading @@ -212,6 +212,8 @@ Failed to shut down the SSL connection Socket is not ready for send/recv wait till it's ready and try again. This return code is only returned from \fIcurl_easy_recv(3)\fP and \fIcurl_easy_send(3)\fP (Added in 7.18.2) .IP "CURLE_SSL_CRL_BADFILE (82)" Failed to load CRL file (Added in 7.18.3) .IP "CURLE_OBSOLETE*" These error codes will never be returned. They used to be used in an old libcurl version and are currently unused. Loading Loading
CHANGES +3 −0 Original line number Diff line number Diff line Loading @@ -8,6 +8,9 @@ Daniel Stenberg (6 Jun 2008) - Axel Tillequin and Arnaud Ebalard added support for CURLOPT_CRLFILE, for OpenSSL, NSS and GnuTLS-built libcurls. - Added CURLINFO_PRIMARY_IP as a new information retrievable with curl_easy_getinfo. It returns a pointer to a string with the most recently used IP address. Modified test case 500 to also verify this feature. The Loading
RELEASE-NOTES +3 −2 Original line number Diff line number Diff line Loading @@ -2,7 +2,7 @@ Curl and libcurl 7.18.3 Public curl releases: 106 Command line options: 126 curl_easy_setopt() options: 150 curl_easy_setopt() options: 151 Public functions in libcurl: 58 Public web site mirrors: 37 Known libcurl bindings: 36 Loading @@ -11,6 +11,7 @@ Curl and libcurl 7.18.3 This release includes the following changes: o Added CURLINFO_PRIMARY_IP o Added CURLOPT_CRLFILE This release includes the following bugfixes: Loading @@ -31,6 +32,6 @@ New curl mirrors: This release would not have looked like this without help, code, reports and advice from friends like these: Lenny Rachitsky Lenny Rachitsky, Axel Tillequin, Arnaud Ebalard Thanks! (and sorry if I forgot to mention someone)
TODO-RELEASE +0 −3 Original line number Diff line number Diff line Loading @@ -5,9 +5,6 @@ To be addressed before 7.18.3 (planned release: August 2008) 140 - Arnaud Ebalard and Axel Tillequin's CRL support and issuer check patches 141 - The sponsored feature CURLINFO_PRIMARY_IP that returns the IP address as a string for the most recently used connection. 144 - Help apps use 64bit/LFS libcurl! 145 - Loading
docs/libcurl/curl_easy_setopt.3 +18 −0 Original line number Diff line number Diff line Loading @@ -1452,6 +1452,24 @@ in combination with the \fICURLOPT_SSL_VERIFYPEER\fP option. If indicate an accessible path. The \fICURLOPT_CAPATH\fP function apparently does not work in Windows due to some limitation in openssl. This option is OpenSSL-specific and does nothing if libcurl is built to use GnuTLS. .IP CURLOPT_CRLFILE Pass a char * to a zero terminated string naming a file with the concatenation of CRL (in PEM format) to use in the certificate validation that occurs during the SSL exchange. When curl is built to use NSS or GnuTLS, there is no way to influence the use of CRL passed to help in the verification process. When libcurl is built with OpenSSL support, X509_V_FLAG_CRL_CHECK and X509_V_FLAG_CRL_CHECK_ALL are both set, requiring CRL check against all the elements of the certificate chain if a CRL file is passed. This option makes sense only when used in combination with the \fICURLOPT_SSL_VERIFYPEER\fP option. A specific error code (CURLE_SSL_CRL_BADFILE) is defined with the option. It is returned when the SSL exchange fails because the CRL file cannot be loaded. Note that a failure in certificate verification due to a revocation information found in the CRL does not trigger this specific error. .IP CURLOPT_RANDOM_FILE Pass a char * to a zero terminated file name. The file will be used to read from to seed the random engine for SSL. The more random the specified file is, Loading
docs/libcurl/libcurl-errors.3 +2 −0 Original line number Diff line number Diff line Loading @@ -212,6 +212,8 @@ Failed to shut down the SSL connection Socket is not ready for send/recv wait till it's ready and try again. This return code is only returned from \fIcurl_easy_recv(3)\fP and \fIcurl_easy_send(3)\fP (Added in 7.18.2) .IP "CURLE_SSL_CRL_BADFILE (82)" Failed to load CRL file (Added in 7.18.3) .IP "CURLE_OBSOLETE*" These error codes will never be returned. They used to be used in an old libcurl version and are currently unused. Loading
