Skip to content
  1. Nov 21, 2018
    • Daniel Stenberg's avatar
      openssl: disable TLS renegotiation with BoringSSL · 59311bd3
      Daniel Stenberg authored
      Since we're close to feature freeze, this change disables this feature
      with an #ifdef. Define ALLOW_RENEG at build-time to enable.
      
      This could be converted to a bit for CURLOPT_SSL_OPTIONS to let
      applications opt-in this.
      
      Concern-raised-by: David Benjamin
      Fixes #3283
      Closes #3293
      59311bd3
  2. Nov 20, 2018
    • Romain Fliedel's avatar
      ares: remove fd from multi fd set when ares is about to close the fd · 6765e6d9
      Romain Fliedel authored
      When using c-ares for asyn dns, the dns socket fd was silently closed
      by c-ares without curl being aware. curl would then 'realize' the fd
      has been removed at next call of Curl_resolver_getsock, and only then
      notify the CURLMOPT_SOCKETFUNCTION to remove fd from its poll set with
      CURL_POLL_REMOVE. At this point the fd is already closed.
      
      By using ares socket state callback (ARES_OPT_SOCK_STATE_CB), this
      patch allows curl to be notified that the fd is not longer needed
      for neither for write nor read. At this point by calling
      Curl_multi_closed we are able to notify multi with CURL_POLL_REMOVE
      before the fd is actually closed by ares.
      
      In asyn-ares.c Curl_resolver_duphandle we can't use ares_dup anymore
      since it does not allow passing a different sock_state_cb_data
      
      Closes #3238
      6765e6d9
    • Romain Fliedel's avatar
    • pkubaj's avatar
      ntlm: Remove redundant ifdef USE_OPENSSL · 7c96f6a1
      pkubaj authored
      
      
      lib/curl_ntlm.c had code that read as follows:
      
        #ifdef USE_OPENSSL
        # ifdef USE_OPENSSL
        # else
        # ..
        # endif
        #endif
      
      Remove the redundant USE_OPENSSL along with #else (it's not possible to
      reach it anyway). The removed construction is a leftover from when the
      SSLeay support was removed.
      
      Closes #3269
      Reviewed-by: default avatarDaniel Gustafsson <daniel@yesql.se>
      Reviewed-by: default avatarDaniel Stenberg <daniel@haxx.se>
      7c96f6a1
    • Han Han's avatar
      ssl: replace all internal uses of CURLE_SSL_CACERT · 78ff4e0d
      Han Han authored
      Closes #3291
      78ff4e0d
  3. Nov 19, 2018
  4. Nov 18, 2018
    • Daniel Gustafsson's avatar
      tool_doswin: Fix uninitialized field warning · b88bf6e6
      Daniel Gustafsson authored
      The partial struct initialization in 397664a0
      
       caused
      a warning on uninitialized MODULEENTRY32 struct members:
      
        /src/tool_doswin.c:681:3: warning: missing initializer for field
        'th32ModuleID' of 'MODULEENTRY32 {aka struct tagMODULEENTRY32}'
        [-Wmissing-field-initializers]
      
      This is sort of a bogus warning as the remaining members will be set
      to zero by the compiler, as all omitted members are. Nevertheless,
      remove the warning by omitting all members and setting the dwSize
      members explicitly.
      
      Closes #3254
      Reviewed-by: default avatarMarcel Raad <Marcel.Raad@teamviewer.com>
      Reviewed-by: default avatarJay Satiro <raysatiro@yahoo.com>
      b88bf6e6
  5. Nov 17, 2018
  6. Nov 16, 2018
  7. Nov 15, 2018
  8. Nov 13, 2018
  9. Nov 12, 2018
  10. Nov 10, 2018
  11. Nov 09, 2018
  12. Nov 08, 2018
  13. Nov 07, 2018
  14. Nov 06, 2018
    • Daniel Stenberg's avatar
      url: a short host name + port is not a scheme · 9df8dc10
      Daniel Stenberg authored
      The function identifying a leading "scheme" part of the URL considered a
      few letters ending with a colon to be a scheme, making something like
      "short:80" to become an unknown scheme instead of a short host name and
      a port number.
      
      Extended test 1560 to verify.
      
      Also fixed test203 to use file_pwd to make it get the correct path on
      windows. Removed test 2070 since it was a duplicate of 203.
      
      Assisted-by: Marcel Raad
      Reported-by: Hagai Auro
      Fixes #3220
      Fixes #3233
      Closes #3223
      Closes #3235
      9df8dc10