Commits · 18e7c14f307c7a19af3db0762a250ad51844ebf0 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP curl

11 Jan, 2013 1 commit

nss: clear session cache if a client cert from file is used · b36f1d26

Kamil Dudka authored Jan 11, 2013

This commit fixes a regression introduced in 052a08ff.

NSS caches certs/keys returned by the SSL_GetClientAuthDataHook callback
and if we connect second time to the same server, the cached cert/key
pair is used.  If we use multiple client certificates for different
paths on the same server, we need to clear the session cache to force
NSS to call the hook again.  The commit 052a08ff prevented the session
cache from being cleared if a client certificate from file was used.

The condition is now fixed to cover both cases: consssl->client_nickname
is not NULL if a client certificate from the NSS database is used and
connssl->obj_clicert is not NULL if a client certificate from file is
used.

Review by: Kai Engert

b36f1d26

27 Dec, 2012 1 commit
- RELEASE-NOTES: synced with e3ed2b82 · 431ead1c
  Daniel Stenberg authored Dec 27, 2012
  
  431ead1c
03 Dec, 2012 1 commit

nss: prevent NSS from crashing on client auth hook failure · 68d2830e

Kamil Dudka authored Dec 03, 2012

Although it is not explicitly stated in the documentation, NSS uses
*pRetCert and *pRetKey even if the client authentication hook returns
a failure.  Namely, if we destroy *pRetCert without clearing *pRetCert
afterwards, NSS destroys the certificate once again, which causes a
double free.

Reported by: Bob Relyea

68d2830e

20 Nov, 2012 2 commits
- bump: start working on 7.28.2 · ba476bb6
  Daniel Stenberg authored Nov 20, 2012
  
  ba476bb6
- RELEASE-NOTES: synced with 52af6e69 / 7.28.1 · b9fdb721
  Daniel Stenberg authored Nov 19, 2012
  
  curl-7_28_1
  
  b9fdb721
19 Nov, 2012 2 commits
- RELEASE-NOTES: NSS can be used for metalink hashing · c830115c
  Anthony Bryan authored Nov 20, 2012
  
  c830115c
- test2032: spurious failure caused by premature termination · 32be348a
  Kamil Dudka authored Oct 15, 2012
```
Bug: http://curl.haxx.se/mail/lib-2012-11/0095.html
```
  32be348a
17 Nov, 2012 1 commit
- RELEASE-NOTES: synced with ee588fe0 · dd75cba3
  Daniel Stenberg authored Nov 17, 2012
```
4 more bug fixes and 4 more contributors
```
  dd75cba3
14 Nov, 2012 1 commit
- RELEASE-NOTES: synced with fa1ae0ab · 53c83ee3
  Daniel Stenberg authored Nov 14, 2012
  
  53c83ee3
13 Nov, 2012 1 commit
- RELEASE-NOTES: synced with 7c0cbcf2 · 6a4bdb02
  Daniel Stenberg authored Nov 13, 2012
  
  6a4bdb02
09 Nov, 2012 1 commit
- tool_metalink: allow to use hash algorithms provided by NSS · 49c37e6c
  Kamil Dudka authored Oct 30, 2012
```
Fixes bug #3578163:
http://sourceforge.net/tracker/?func=detail&atid=100976&aid=3578163&group_id=976
```
  49c37e6c
07 Nov, 2012 1 commit
- RELEASE-NOTES: synced with 487538e8 · 9096f4f4
  Daniel Stenberg authored Nov 07, 2012
```
6 new bugfixes and 3 more contributors...
```
  9096f4f4
06 Nov, 2012 1 commit
- RELEASE-NOTES: synced with fa6d7882 · 0da6c113
  Daniel Stenberg authored Nov 06, 2012
  
  0da6c113
10 Oct, 2012 2 commits
- version-bump: towards 7.28.1! · ff32546d
  Daniel Stenberg authored Oct 10, 2012
  
  ff32546d
- RELEASE-NOTES: synced with 8373ca36 · 33c02d47
  Daniel Stenberg authored Oct 10, 2012
```
One bug, one contributor. Getting ready for release.
```
  curl-7_28_0
  
  33c02d47
02 Oct, 2012 1 commit
- RELEASE-NOTES: synced with 971f5bce · 6b18f18b
  Daniel Stenberg authored Oct 02, 2012
```
9 new bug fixes, 5 changes, 6 more contributors
```
  6b18f18b
12 Sep, 2012 1 commit
- ssh: do not crash if MD5 fingerprint is not provided by libssh2 · f05e5136
  Kamil Dudka authored Sep 12, 2012
```
The MD5 fingerprint cannot be computed when running in FIPS mode.
```
  f05e5136
09 Sep, 2012 1 commit
- RELEASE-NOTES: synced with 6c6f1f64 · a4926320
  Daniel Stenberg authored Sep 09, 2012
```
6 bug fixes to mention, 5 contributors
```
  a4926320
03 Sep, 2012 1 commit
- RELEASE-NOTES: synced with abb0da91 · cb2feb9d
  Daniel Stenberg authored Sep 03, 2012
  
  cb2feb9d
09 Aug, 2012 1 commit
- nss: do not print misleading NSS error codes · 52b6eda4
  Kamil Dudka authored Aug 09, 2012
  
  52b6eda4
08 Aug, 2012 2 commits
- RELEASE-NOTES: synced with 0774386b · 73342f0e
  Daniel Stenberg authored Aug 08, 2012
```
5 more bug fixes, one change, 6 contributors
```
  73342f0e
- RELEASE-NOTES: added missing link · 4dd44d9c
  Daniel Stenberg authored Aug 08, 2012
  
  4dd44d9c
07 Aug, 2012 1 commit
- RELEASE-NOTES: synced with b4a55804 · 77f72aa6
  Daniel Stenberg authored Aug 07, 2012
  
  77f72aa6
27 Jul, 2012 1 commit
- version bump: start towards next release · dd4699c1
  Daniel Stenberg authored Jul 27, 2012
```
Let's call it 7.27.1 for now, but it it probably going to become 7.28.0
when released.
```
  dd4699c1
26 Jul, 2012 2 commits
- RELEASE-NOTES: remove mentioned of bug never in a release · 7f9f94a1
  Daniel Stenberg authored Jul 27, 2012
```
The --silent bug came with 7561a0fc which was never in a release.
Pointed out by Kamil Dudka
```
  7f9f94a1
- RELEASE-NOTES: synced with 33b815e8 · 3b4d430c
  Daniel Stenberg authored Jul 27, 2012
```
4 more bugfixes, 3 more contributors
```
  3b4d430c
22 Jul, 2012 1 commit
- http: print reason phrase from HTTP status line on error · d317ca50
  Kamil Dudka authored Jul 20, 2012
```
Bug: https://bugzilla.redhat.com/676596
```
  d317ca50
20 Jul, 2012 1 commit
- Fixed some typos in documentation · cb787b70
  Dan Fandrich authored Jul 20, 2012
  
  cb787b70
15 Jul, 2012 1 commit
- RELEASE-NOTES: synced with 9d117169 · 82767917
  Daniel Stenberg authored Jul 15, 2012
```
Fixed 6 bugs, added 3 contributors
```
  82767917
09 Jul, 2012 2 commits
- docs: switch to proper UTF-8 for text file encoding · e5843470
  Daniel Stenberg authored Jul 09, 2012
  
  e5843470
- RELEASE-NOTES: added a URL reference to cookie docs · 329be28d
  Daniel Stenberg authored Jul 09, 2012
  
  329be28d
07 Jul, 2012 1 commit
- RELEASE-NOTES: synced with 5a99bce0 · 68e6b56a
  Daniel Stenberg authored Jul 07, 2012
  
  68e6b56a
25 Jun, 2012 2 commits
- RELEASE-NOTES: link to more metalink info · 07e3ea7f
  Daniel Stenberg authored Jun 25, 2012
  
  07e3ea7f
- RELEASE-NOTES: synced with d025af9b · 4afc33db
  Daniel Stenberg authored Jun 25, 2012
  
  4afc33db
13 Jun, 2012 1 commit

schannel: remove version number and identify its use with 'schannel' literal · 819afe46

Yang Tse authored Jun 13, 2012

Version number is removed in order to make this info consistent with
how we do it with other MS and Linux system libraries for which we don't
provide this info.

Identifier changed from 'WinSSPI' to 'schannel' given that this is the
actual provider of the SSL/TLS support. libcurl can still be built with
SSPI and without SCHANNEL support.

819afe46

11 Jun, 2012 1 commit
- sspi: Updated RELEASE-NOTES, FEATURES and THANKS · 0c86ccc6
  Marc Hoersken authored Jun 10, 2012
  
  0c86ccc6
09 Jun, 2012 1 commit
- pop3: Added support for apop authentication · c09c621a
  Steve Holme authored Jun 09, 2012
  
  c09c621a
08 Jun, 2012 1 commit
- ssl: fix duplicated SSL handshake with multi interface and proxy · 68857e40
  Kamil Dudka authored Jun 08, 2012
```
Bug: https://bugzilla.redhat.com/788526
Reported by: Enrico Scholz
```
  68857e40
04 Jun, 2012 1 commit
- pop3: Added support for sasl digest-md5 authentication · 7759d10f
  Steve Holme authored Jun 04, 2012
  
  7759d10f
03 Jun, 2012 1 commit
- RELEASE-NOTES: Added missing addition of sasl login support · 79c2af30
  Steve Holme authored Jun 03, 2012
  
  79c2af30