Skip to content
  1. Jan 14, 2013
  2. Jan 13, 2013
  3. Jan 12, 2013
  4. Jan 11, 2013
    • Kamil Dudka's avatar
      nss: clear session cache if a client cert from file is used · b36f1d26
      Kamil Dudka authored
      This commit fixes a regression introduced in 052a08ff.
      
      NSS caches certs/keys returned by the SSL_GetClientAuthDataHook callback
      and if we connect second time to the same server, the cached cert/key
      pair is used.  If we use multiple client certificates for different
      paths on the same server, we need to clear the session cache to force
      NSS to call the hook again.  The commit 052a08ff prevented the session
      cache from being cleared if a client certificate from file was used.
      
      The condition is now fixed to cover both cases: consssl->client_nickname
      is not NULL if a client certificate from the NSS database is used and
      connssl->obj_clicert is not NULL if a client certificate from file is
      used.
      
      Review by: Kai Engert
      b36f1d26
  5. Jan 10, 2013
  6. Jan 09, 2013
  7. Jan 08, 2013
    • Yang Tse's avatar
      build: fix circular header inclusion with other packages · 5a053ffe
      Yang Tse authored
      This commit renames lib/setup.h to lib/curl_setup.h and
      renames lib/setup_once.h to lib/curl_setup_once.h.
      
      Removes the need and usage of a header inclusion guard foreign
      to libcurl. [1]
      
      Removes the need and presence of an alarming notice we carried
      in old setup_once.h [2]
      
      ----------------------------------------
      
      1 - lib/setup_once.h used __SETUP_ONCE_H macro as header inclusion guard
          up to commit ec691ca3 which changed this to HEADER_CURL_SETUP_ONCE_H,
          this single inclusion guard is enough to ensure that inclusion of
          lib/setup_once.h done from lib/setup.h is only done once.
      
          Additionally lib/setup.h has always used __SETUP_ONCE_H macro to
          protect inclusion of setup_once.h even after commit ec691ca3, this
          was to avoid a circular header inclusion triggered when building a
          c-ares enabled version with c-ares sources available which also has
          a setup_once.h header. Commit ec691ca3 exposes the real nature of
          __SETUP_ONCE_H usage in lib/setup.h, it is a header inclusion guard
          foreign to libcurl belonging to c-ares's setup_once.h
      
          The renaming this commit does, fixes the circular header inclusion,
          and as such removes the need and usage of a header inclusion guard
          foreign to libcurl. Macro __SETUP_ONCE_H no longer used in libcurl.
      
      2 - Due to the circular interdependency of old lib/setup_once.h and the
          c-ares setup_once.h header, old file lib/setup_once.h has carried
          back from 2006 up to now days an alarming and prominent notice about
          the need of keeping libcurl's and c-ares's setup_once.h in sync.
      
          Given that this commit fixes the circular interdependency, the need
          and presence of mentioned notice is removed.
      
          All mentioned interdependencies come back from now old days when
          the c-ares project lived inside a curl subdirectory. This commit
          removes last traces of such fact.
      5a053ffe
    • Daniel Stenberg's avatar
      curl: ignore SIGPIPE · e2bcd2ab
      Daniel Stenberg authored
      This is a work-around for bug #1180 which is really libcurl's inability
      to ignore SIGPIPE in a few cases. With this work-around at least curl
      won't suffer from it!
      
      Bug: http://curl.haxx.se/bug/view.cgi?id=1180
      Reported by: Lluís Batlle i Rossell
      e2bcd2ab
    • Yang Tse's avatar
      sockfilt.c: fix some compiler warnings · fea3a3d5
      Yang Tse authored
      fea3a3d5
    • Daniel Stenberg's avatar
      75fa3542
    • Steve Holme's avatar
      pop3: Added support for non-blocking SSL upgrade · 4ffb8a63
      Steve Holme authored
      Added support for asynchronous SSL upgrade when using the
      multi-interface.
      4ffb8a63
    • Daniel Stenberg's avatar
      configure: update req to 2.59 · 7a6d8b1b
      Daniel Stenberg authored
      I ran the 2.59 version of autoupdate that updates obsoleted configure.ac
      constructs to the 2.59 standard. With a little hands-on fiddling I
      prevented it from ruining the quoting in AS_HELP_STRING() uses.
      
      I subsequently also bumped the required autoconf version to 2.59
      (released in December 2003) as I don't have an older autoconf version
      around to test with and I can't be bothered to install one either...
      
      Inspired by: Björn Stenberg
      Related blog post: http://cazfi.livejournal.com/195108.html
      7a6d8b1b
  8. Jan 07, 2013
  9. Jan 06, 2013
  10. Jan 05, 2013
    • Daniel Stenberg's avatar
      mk-ca-bundle.1: convert syntax to what's used elsewhere · e0ba958e
      Daniel Stenberg authored
      ... mostly to make sure roffit works better on it, but also to make our
      man pages use a more unified style.
      e0ba958e
    • Daniel Stenberg's avatar
      mk-ca-bundle.1: mention new -f, fix outputfile output · 8f80f412
      Daniel Stenberg authored
      also edited a few sentences to become more verbose
      8f80f412
    • Daniel Stenberg's avatar
      mk-ca-bundle: add -f, support passing to stdout and more · cc4ac82b
      Daniel Stenberg authored
      1. When the downloaded data file from Mozilla is current, but the output
      bundle does not exist: continue processing to create the bundle.  The
      goal is to have the output file - not just download the latest input.
      
      2. added -f option to force re-processing the file.  Useful for
      debugging/testing the process.
      
      3. added support for output to '-' (stdout), allowing the output to be
      piped.
      
      4. All progress and error messages go to STDERR rather than STDOUT (3)
      
      5. The script opened and closed the output file many times
      unnecessarily.  It now opens it once, does the output and closes it.
      
      6. Backup of the input files happens after successful processing, not
      before.
      
      7. The output is written to a temporary file, and renamed to the
      requested name after backup - this greatly reduces the window where the
      file can be seen partially written.
      
      8. all die calls have a \n at the end to suppress perl's traceback - the
      traceback isn't useful to end users.
      
      Patch: http://curl.haxx.se/mail/lib-2013-01/0045.html
      cc4ac82b