Commits · 1a6e7da13d1bf14c09cb0509c114ba9bd3cac79f · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP curl

Apr 08, 2011

nss: allow to use multiple client certificates for a single host · 1a6e7da1

Kamil Dudka authored Apr 01, 2011

In case a client certificate is used, invalidate SSL session cache
at the end of a session.  This forces NSS to ask for a new client
certificate when connecting second time to the same host.

Bug: https://bugzilla.redhat.com/689031

1a6e7da1

Apr 05, 2011
- RELEASE-NOTES: synced with db59b620 · 8e9e19b0
  Daniel Stenberg authored Apr 05, 2011
  
  8e9e19b0
Mar 25, 2011
- RELEASE-NOTES: synced with 11c2db2a · 40256ec4
  Daniel Stenberg authored Mar 25, 2011
  
  40256ec4
Mar 18, 2011
- RELEASE-NOTES: synced with 0c05ee3a · 92774ac1
  Daniel Stenberg authored Mar 18, 2011
  
  92774ac1
Mar 15, 2011

nss: do not ignore value of CURLOPT_SSL_VERIFYPEER · 806dbb02

Kamil Dudka authored Mar 15, 2011

When NSS-powered libcurl connected to a SSL server with
CURLOPT_SSL_VERIFYPEER equal to zero, NSS remembered that the peer
certificate was accepted by libcurl and did not ask the second time when
connecting to the same server with CURLOPT_SSL_VERIFYPEER equal to one.

This patch turns off the SSL session cache for the particular SSL socket
if peer verification is disabled.  In order to avoid any performance
impact, the peer verification is completely skipped in that case, which
makes it even faster than before.

Bug: https://bugzilla.redhat.com/678580

806dbb02

Mar 13, 2011
- RELEASE-NOTES: synced with e649a7ba · 176092d7
  Daniel Stenberg authored Mar 13, 2011
  
  176092d7
Feb 23, 2011
- RELEASE-NOTES: synced with 2345c1dd · 386afdf6
  Daniel Stenberg authored Feb 23, 2011
  
  386afdf6
Feb 22, 2011

nss: do not ignore failure of SSL handshake · 7aa2d10e

Kamil Dudka authored Feb 22, 2011

Flaw introduced in fc77790b and present in curl-7.21.4.
Bug: https://bugzilla.redhat.com/669702#c16

7aa2d10e

Feb 17, 2011
- SOCKOPTFUNCTION: callback can say already-connected · 1c3c0162
  Daniel Stenberg authored Feb 09, 2011
```
Introducing a few CURL_SOCKOPT* defines for conveniance. The new
CURL_SOCKOPT_ALREADY_CONNECTED signals to libcurl that the socket is to
be treated as already connected and thus it will skip the connect()
call.
```
  1c3c0162
- nss: avoid memory leak on SSL connection failure · a40f58d2
  Kamil Dudka authored Feb 17, 2011
  
  a40f58d2
- RELEASE-NOTES: fresh start towards 7.21.5 · 66582c04
  Daniel Stenberg authored Feb 17, 2011
  
  66582c04
- RELEASE-NOTES: credits since 7.21.3 · b66eeb8b
  Daniel Stenberg authored Feb 17, 2011
```
I went through all the names mentioned as authors and in commit messages
since 7.21.3, and this list inserted now is sorted on first name.
```
  b66eeb8b
Feb 10, 2011
- RELEASE-NOTES: synced with 3bb1291f · 96ea650e
  Daniel Stenberg authored Feb 10, 2011
  
  96ea650e
Jan 18, 2011
- RELEASE-NOTES: mention contributors · ce24fdaa
  Daniel Stenberg authored Jan 18, 2011
  
  ce24fdaa
- RELEASE-NOTES: synced with 7fcbdd68 · 02c99899
  Daniel Stenberg authored Jan 18, 2011
  
  02c99899
- nss: fix a bug in handling of CURLOPT_CAPATH · fc77790b
  Kamil Dudka authored Jan 18, 2011
```
... and update the curl.1 and curl_easy_setopt.3 man pages such that
they do not suggest to use an OpenSSL utility if curl is not built
against OpenSSL.

Bug: https://bugzilla.redhat.com/669702
```
  fc77790b
Jan 04, 2011
- nss: avoid CURLE_OUT_OF_MEMORY given a file name without any slash · d8f6d1c3
  Kamil Dudka authored Jan 04, 2011
```
Bug: https://bugzilla.redhat.com/623663
```
  d8f6d1c3
Jan 03, 2011
- RELEASE-NOTES: synced with 83e9fb21 · 6cf35852
  Daniel Stenberg authored Jan 04, 2011
  
  6cf35852
Dec 15, 2010
- 7.21.4: version bump · 5e37689a
  Daniel Stenberg authored Dec 15, 2010
  
  5e37689a
- RELEASE-NOTES: synced with a865bd9f · 6d7d0eba
  Daniel Stenberg authored Dec 15, 2010
  
  curl-7_21_3
  
  6d7d0eba
Dec 09, 2010
- RELEASE-NOTES: synced with c28443c5 · 573a2900
  Daniel Stenberg authored Dec 09, 2010
  
  573a2900
Nov 19, 2010

Detect socket errors in GnuTLS on Windows · a83870ef

Matthias Bolte authored Nov 19, 2010

On Windows, translate WSAGetLastError() to errno values as GNU
TLS does it internally, too. This is necessary because send() and
recv() on Windows don't set errno when they fail but GNU TLS
expects a proper errno value.

Bug: http://curl.haxx.se/bug/view.cgi?id=3110991

a83870ef

Nov 14, 2010
- RELEASE-NOTES: synced with cbf4961b · 4d6c0bdf
  Daniel Stenberg authored Nov 15, 2010
  
  4d6c0bdf
Nov 09, 2010
- ftp: treat server's response 421 as CURLE_OPERATION_TIMEDOUT · 12b2412c
  Kamil Dudka authored Nov 09, 2010
```
Bug: https://bugzilla.redhat.com/650255
Reported by: Simon H.
```
  12b2412c
Nov 08, 2010
- RELEASE-NOTES: synced with fc6c4c10 · f96a2641
  Daniel Stenberg authored Nov 08, 2010
```
I also recounted and updated the command line and libcurl options.
```
  f96a2641
Nov 04, 2010
- RELEASE-NOTES: synced with 7b823bad · 68a485b0
  Daniel Stenberg authored Nov 04, 2010
  
  68a485b0
Oct 17, 2010
- RELEASE-NOTES: sync with 09a2d93a · 295496fa
  Daniel Stenberg authored Oct 17, 2010
  
  295496fa
Oct 12, 2010
- RELEASE-NOTES: start over towards 7.21.3 · e3df610a
  Daniel Stenberg authored Oct 13, 2010
  
  e3df610a
- RELEASE-NOTES: synced with ecd624b8 · d3714583
  Daniel Stenberg authored Oct 12, 2010
  
  curl-7_21_2
  
  d3714583
Oct 08, 2010
- RELEASE-NOTES: synced with 61f4cdb7 · 1998de99
  Daniel Stenberg authored Oct 08, 2010
  
  1998de99
Sep 30, 2010
- RELEASE-NOTES: synced up to 58840258 · 488f9545
  Daniel Stenberg authored Oct 01, 2010
  
  488f9545
Sep 28, 2010
- Changed the TPF make file to get source files from Makefile.inc · 7e1a45e2
  Dan Fandrich authored Sep 27, 2010
```
Patch was fixed and validated by David McCreedy.
```
  7e1a45e2
Sep 21, 2010
- RELEASE-NOTES: sync with 8665d4e5 and c-ares >= 1.6.0 note · e991a353
  Daniel Stenberg authored Sep 21, 2010
  
  e991a353
- RELEASE-NOTES: in sync with 19f45eaa · 0e36bb71
  Daniel Stenberg authored Sep 21, 2010
  
  0e36bb71
Sep 20, 2010
- RELEASE-NOTES: synced with 5fcc4332 · 95e230c5
  Daniel Stenberg authored Sep 21, 2010
```
Removed the duplicate entry of Kamil in the credits.
```
  95e230c5
Sep 18, 2010
- RELEASE-NOTES: sync from d2a7fd2f to HEAD · c47148f1
  Daniel Stenberg authored Sep 18, 2010
  
  c47148f1
Sep 12, 2010

Link curl and the test apps with -lrt explicitly when necessary · 8e2f16e6

Dan Fandrich authored Sep 11, 2010

When curl calls a function from that library then it needs to
explicitly link to the library instead of piggybacking on
libcurl's own dependency.  Without this, GNU ld with the
--no-add-needed flag fails when linking (which Fedora now does
by default).

Reported by: Quanah Gibson-Mount
Bug: http://curl.haxx.se/mail/lib-2010-09/0085.html

8e2f16e6

Aug 25, 2010
- RELEASE-NOTES: sync from b980c9a0 to HEAD · d2a7fd2f
  Daniel Stenberg authored Aug 25, 2010
  
  d2a7fd2f
Aug 15, 2010
- multi: two fixes done · b980c9a0
  Daniel Stenberg authored Aug 15, 2010
  
  b980c9a0
- curl -T: ignore file size of special files · 59077771
  Kamil Dudka authored Aug 12, 2010
```
original bug report at https://bugzilla.redhat.com/622520
```
  59077771