Olaf Stueben provided a patch that I edited slightly. It fixes the notorious

                                  Changelog

Daniel (3 November 2006)

- Olaf Stueben provided a patch that I edited slightly. It fixes the notorious

  KNOWN_BUGS #25, which happens when a proxy closes the connection when

  libcurl has sent CONNECT, as part of an authentication negotiation. Starting

  now, libcurl will re-connect accordingly and continue the authentication as

  it should.

Daniel (2 November 2006)

- James Housley brought support for SCP transfers, based on the libssh2 library

  for the actual network protocol stuff.

This release includes the following bugfixes:

 o 

 o proxy close during CONNECT authentication is now dealt with nicely

Other curl-related news:

  "system context" will make it use wrong(?) user name - at least when compared

  to what winhttp does. See http://curl.haxx.se/bug/view.cgi?id=1281867

25. When doing a CONNECT request with curl it doesn't properly handle if the

  proxy closes the connection within the authentication "negotiation phase".

  Like if you do HTTPS or similar over a proxy and you use perhaps

  --proxy-anyauth.

23. We don't support SOCKS for IPv6. We don't support FTPS over a SOCKS proxy.

  We don't have any test cases for SOCKS proxy. We probably have even more

  bugs and lack of features when a SOCKS proxy is used. And there seem to be a

  curl_socket_t tunnelsocket = conn->sock[sockindex];

  send_buffer *req_buffer;

  curl_off_t cl=0;

  bool closeConnection = FALSE;

#define SELECT_OK      0

#define SELECT_ERROR   1

  int error = SELECT_OK;

  infof(data, "Establish HTTP proxy tunnel to %s:%d\n", hostname, remote_port);

  conn->bits.proxy_connect_closed = FALSE;

  do {

    if(data->reqdata.newurl) {

                cl = curlx_strtoofft(line_start + strlen("Content-Length:"),

                                     NULL, 10);

              }

              else if(Curl_compareheader(line_start,

                                         "Connection:", "close"))

                closeConnection = TRUE;

              else if(2 == sscanf(line_start, "HTTP/1.%d %d",

                                  &subversion,

                                  &k->httpcode)) {

         headers. 'newurl' is set to a new URL if we must loop. */

      Curl_http_auth_act(conn);

    if (closeConnection && data->reqdata.newurl) {

      /* Connection closed by server. Don't use it anymore */

      sclose(conn->sock[sockindex]);

      conn->sock[sockindex] = CURL_SOCKET_BAD;

      break;

    }

  } while(data->reqdata.newurl);

  if(200 != k->httpcode) {

    failf(data, "Received HTTP code %d from proxy after CONNECT",

          k->httpcode);

    if (closeConnection && data->reqdata.newurl)

      conn->bits.proxy_connect_closed = TRUE;

    return CURLE_RECV_ERROR;

  }

    /* it has started, possibly even completed but that knowledge isn't stored

       in this bit! */

    if (!result)

      conn->bits.protoconnstart = TRUE;

  }

  data->state.crlf_conversions = 0; /* reset CRLF conversion counter */

#endif /* CURL_DO_LINEEND_CONV */

  for(;;) {

    /* loop for CURL_SERVER_CLOSED_CONNECTION */

    if(CURL_SOCKET_BAD == conn->sock[FIRSTSOCKET]) {

      bool connected = FALSE;

      else

        conn->bits.tcpconnect = FALSE;

      /* if the connection was closed by the server while exchanging

         authentication informations, retry with the new set

         authentication information */

      if(conn->bits.proxy_connect_closed)

        continue;

      if(CURLE_OK != result)

        return result;

      if(data->set.verbose)

        verboseconnect(conn);

    }

    /* Stop the loop now */

    break;

  }

  conn->now = Curl_tvnow(); /* time this *after* the connect is done, we

                               set this here perhaps a second time */