Commits · 5b6e7927c6891d93edc16695ae786dc686274bab · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP curl

Jan 03, 2013

build: rename 93 lib/*.c files · 5b6e7927

Yang Tse authored Jan 03, 2013

93 lib/*.c source files renamed to use our standard naming scheme.

This commit only does the file renaming.

----------------------------------------

  renamed:    lib/amigaos.c -> lib/curl_amigaos.c
  renamed:    lib/asyn-ares.c -> lib/curl_asyn_ares.c
  renamed:    lib/asyn-thread.c -> lib/curl_asyn_thread.c
  renamed:    lib/axtls.c -> lib/curl_axtls.c
  renamed:    lib/base64.c -> lib/curl_base64.c
  renamed:    lib/bundles.c -> lib/curl_bundles.c
  renamed:    lib/conncache.c -> lib/curl_conncache.c
  renamed:    lib/connect.c -> lib/curl_connect.c
  renamed:    lib/content_encoding.c -> lib/curl_content_encoding.c
  renamed:    lib/cookie.c -> lib/curl_cookie.c
  renamed:    lib/cyassl.c -> lib/curl_cyassl.c
  renamed:    lib/dict.c -> lib/curl_dict.c
  renamed:    lib/easy.c -> lib/curl_easy.c
  renamed:    lib/escape.c -> lib/curl_escape.c
  renamed:    lib/file.c -> lib/curl_file.c
  renamed:    lib/fileinfo.c -> lib/curl_fileinfo.c
  renamed:    lib/formdata.c -> lib/curl_formdata.c
  renamed:    lib/ftp.c -> lib/curl_ftp.c
  renamed:    lib/ftplistparser.c -> lib/curl_ftplistparser.c
  renamed:    lib/getenv.c -> lib/curl_getenv.c
  renamed:    lib/getinfo.c -> lib/curl_getinfo.c
  renamed:    lib/gopher.c -> lib/curl_gopher.c
  renamed:    lib/gtls.c -> lib/curl_gtls.c
  renamed:    lib/hash.c -> lib/curl_hash.c
  renamed:    lib/hmac.c -> lib/curl_hmac.c
  renamed:    lib/hostasyn.c -> lib/curl_hostasyn.c
  renamed:    lib/hostcheck.c -> lib/curl_hostcheck.c
  renamed:    lib/hostip.c -> lib/curl_hostip.c
  renamed:    lib/hostip4.c -> lib/curl_hostip4.c
  renamed:    lib/hostip6.c -> lib/curl_hostip6.c
  renamed:    lib/hostsyn.c -> lib/curl_hostsyn.c
  renamed:    lib/http.c -> lib/curl_http.c
  renamed:    lib/http_chunks.c -> lib/curl_http_chunks.c
  renamed:    lib/http_digest.c -> lib/curl_http_digest.c
  renamed:    lib/http_negotiate.c -> lib/curl_http_negotiate.c
  renamed:    lib/http_negotiate_sspi.c -> lib/curl_http_negotiate_sspi.c
  renamed:    lib/http_proxy.c -> lib/curl_http_proxy.c
  renamed:    lib/idn_win32.c -> lib/curl_idn_win32.c
  renamed:    lib/if2ip.c -> lib/curl_if2ip.c
  renamed:    lib/imap.c -> lib/curl_imap.c
  renamed:    lib/inet_ntop.c -> lib/curl_inet_ntop.c
  renamed:    lib/inet_pton.c -> lib/curl_inet_pton.c
  renamed:    lib/krb4.c -> lib/curl_krb4.c
  renamed:    lib/krb5.c -> lib/curl_krb5.c
  renamed:    lib/ldap.c -> lib/curl_ldap.c
  renamed:    lib/llist.c -> lib/curl_llist.c
  renamed:    lib/md4.c -> lib/curl_md4.c
  renamed:    lib/md5.c -> lib/curl_md5.c
  renamed:    lib/memdebug.c -> lib/curl_memdebug.c
  renamed:    lib/mprintf.c -> lib/curl_mprintf.c
  renamed:    lib/multi.c -> lib/curl_multi.c
  renamed:    lib/netrc.c -> lib/curl_netrc.c
  renamed:    lib/non-ascii.c -> lib/curl_non_ascii.c
  renamed:    lib/curl_non-ascii.h -> lib/curl_non_ascii.h
  renamed:    lib/nonblock.c -> lib/curl_nonblock.c
  renamed:    lib/nss.c -> lib/curl_nss.c
  renamed:    lib/nwlib.c -> lib/curl_nwlib.c
  renamed:    lib/nwos.c -> lib/curl_nwos.c
  renamed:    lib/openldap.c -> lib/curl_openldap.c
  renamed:    lib/parsedate.c -> lib/curl_parsedate.c
  renamed:    lib/pingpong.c -> lib/curl_pingpong.c
  renamed:    lib/polarssl.c -> lib/curl_polarssl.c
  renamed:    lib/pop3.c -> lib/curl_pop3.c
  renamed:    lib/progress.c -> lib/curl_progress.c
  renamed:    lib/qssl.c -> lib/curl_qssl.c
  renamed:    lib/rawstr.c -> lib/curl_rawstr.c
  renamed:    lib/rtsp.c -> lib/curl_rtsp.c
  renamed:    lib/security.c -> lib/curl_security.c
  renamed:    lib/select.c -> lib/curl_select.c
  renamed:    lib/sendf.c -> lib/curl_sendf.c
  renamed:    lib/share.c -> lib/curl_share.c
  renamed:    lib/slist.c -> lib/curl_slist.c
  renamed:    lib/smtp.c -> lib/curl_smtp.c
  renamed:    lib/socks.c -> lib/curl_socks.c
  renamed:    lib/socks_gssapi.c -> lib/curl_socks_gssapi.c
  renamed:    lib/socks_sspi.c -> lib/curl_socks_sspi.c
  renamed:    lib/speedcheck.c -> lib/curl_speedcheck.c
  renamed:    lib/splay.c -> lib/curl_splay.c
  renamed:    lib/ssh.c -> lib/curl_ssh.c
  renamed:    lib/sslgen.c -> lib/curl_sslgen.c
  renamed:    lib/ssluse.c -> lib/curl_ssluse.c
  renamed:    lib/strdup.c -> lib/curl_strdup.c
  renamed:    lib/strequal.c -> lib/curl_strequal.c
  renamed:    lib/strerror.c -> lib/curl_strerror.c
  renamed:    lib/strtok.c -> lib/curl_strtok.c
  renamed:    lib/strtoofft.c -> lib/curl_strtoofft.c
  renamed:    lib/telnet.c -> lib/curl_telnet.c
  renamed:    lib/tftp.c -> lib/curl_tftp.c
  renamed:    lib/timeval.c -> lib/curl_timeval.c
  renamed:    lib/transfer.c -> lib/curl_transfer.c
  renamed:    lib/url.c -> lib/curl_url.c
  renamed:    lib/version.c -> lib/curl_version.c
  renamed:    lib/warnless.c -> lib/curl_warnless.c
  renamed:    lib/wildcard.c -> lib/curl_wildcard.c

----------------------------------------

5b6e7927

build: make use of 93 lib/*.c renamed files · 13606bbf

Yang Tse authored Jan 03, 2013

93 *.c source files renamed to use our standard naming scheme.

This change affects 77 files in libcurl's source tree.

13606bbf

Dec 28, 2012

build: make use of 76 lib/*.h renamed files · f871de00

Yang Tse authored Dec 28, 2012

76 private header files renamed to use our standard naming scheme.

This change affects 322 files in libcurl's source tree.

f871de00

Dec 14, 2012
- setup_once.h: refactor inclusion of <unistd.h> and <sys/socket.h> · a0b20716
  Yang Tse authored Dec 14, 2012
```
Inclusion of top two most included header files now done in setup_once.h
```
  a0b20716
Dec 03, 2012

nss: prevent NSS from crashing on client auth hook failure · 68d2830e

Kamil Dudka authored Dec 03, 2012

Although it is not explicitly stated in the documentation, NSS uses
*pRetCert and *pRetKey even if the client authentication hook returns
a failure.  Namely, if we destroy *pRetCert without clearing *pRetCert
afterwards, NSS destroys the certificate once again, which causes a
double free.

Reported by: Bob Relyea

68d2830e

Nov 06, 2012

CURLOPT_SSL_VERIFYHOST: stop supporting the 1 value · da82f59b

Daniel Stenberg authored Oct 27, 2012

After a research team wrote a document[1] that found several live source
codes out there in the wild that misused the CURLOPT_SSL_VERIFYHOST
option thinking it was a boolean, this change now bans 1 as a value and
will make libcurl return error for it.

1 was never a sensible value to use in production but was introduced
back in the days to help debugging. It was always documented clearly
this way.

1 was never supported by all SSL backends in libcurl, so this cleanup
makes the treatment of it unified.

The report's list of mistakes for this option were all PHP code and
while there's a binding layer between libcurl and PHP, the PHP team has
decided that they have an as thin layer as possible on top of libcurl so
they will not alter or specifically filter a 'TRUE' value for this
particular option. I sympathize with that position.

[1] = http://daniel.haxx.se/blog/2012/10/25/libcurl-claimed-to-be-dangerous/

da82f59b

Sep 11, 2012
- nss.c: Fixed warning: 'err' may be used uninitialized in this function · e6ba0487
  Marc Hoersken authored Sep 11, 2012
  
  e6ba0487
Aug 10, 2012
- white space fix: shorten long line · 7520f9f1
  Daniel Stenberg authored Aug 10, 2012
```
... to please checksrc.pl
```
  7520f9f1
Aug 09, 2012
- docs: update the links to cipher-suites supported by NSS · f208bf5a
  Kamil Dudka authored Aug 09, 2012
```
... and make the list of cipher-suites in nss.c readable by humans.

Bug: http://curl.haxx.se/mail/archive-2012-08/0016.html
```
  f208bf5a
- nss: do not print misleading NSS error codes · 52b6eda4
  Kamil Dudka authored Aug 09, 2012
  
  52b6eda4
Jun 28, 2012
- nss.c: #include warnless.h for curlx_uztosi and curlx_uztoui prototypes · ac6111ae
  Yang Tse authored Jun 28, 2012
  
  ac6111ae
- nss.c: Fixed size_t conversion warnings · c0f2bfb2
  Marc Hoersken authored Jun 28, 2012
  
  c0f2bfb2
Jun 26, 2012

SSL cleanup: use crypto functions through the sslgen layer · 849179ba

Daniel Stenberg authored Jun 26, 2012

curl_ntlm_msgs.c would previously use an #ifdef maze and direct
SSL-library calls instead of using the SSL layer we have for this
purpose.

849179ba

May 28, 2012
- nss: use human-readable error messages provided by NSS · 72f4b534
  Kamil Dudka authored May 21, 2012
```
Bug: http://lists.baseurl.org/pipermail/yum-devel/2012-January/009002.html
```
  72f4b534
May 25, 2012
- nss: avoid using explicit casts of code pointers · 74be9935
  Kamil Dudka authored May 21, 2012
  
  74be9935
Apr 16, 2012
- nss.c: fix compiler warning · a498daa0
  Yang Tse authored Apr 16, 2012
  
  a498daa0
Apr 13, 2012
- nss.c: fix compiler warning · c156b916
  Yang Tse authored Apr 13, 2012
  
  c156b916
- nss: provide human-readable names for NSS errors · a60edcc6
  Kamil Dudka authored Apr 11, 2012
  
  a60edcc6
- nss: use NSS_InitContext() to initialize NSS if available · 20cb12db
  Kamil Dudka authored Apr 10, 2012
```
NSS_InitContext() was introduced in NSS 3.12.5 and helps to prevent
collisions on NSS initialization/shutdown with other libraries.

Bug: https://bugzilla.redhat.com/738456
```
  20cb12db
- nss: unconditionally require PK11_CreateGenericObject() · 42aa7961
  Kamil Dudka authored Apr 06, 2012
```
This bumps the minimal supported version of NSS to 3.12.x.
```
  42aa7961
Feb 09, 2012
- nss: add support for the CURLSSLOPT_ALLOW_BEAST option · ebf31389
  Kamil Dudka authored Feb 08, 2012
```
... and fix some typos from the 62d15f15 commit.
```
  ebf31389
Oct 17, 2011
- nss: avoid a SIGSEGV with immature version of NSS · 491c5a49
  Kamil Dudka authored Sep 06, 2011
```
Bug: https://bugzilla.redhat.com/733685
```
  491c5a49
- nss: big cleanup in nss_load_cert() and cert_stuff() · 06e6755e
  Kamil Dudka authored Aug 26, 2011
  
  06e6755e
- nss: refactor fmt_nickname() -> dup_nickname() · 052a08ff
  Kamil Dudka authored Aug 26, 2011
```
Do not use artificial nicknames for certificates from files.
```
  052a08ff
- nss: select client certificates by DER · f6980bbf
  Kamil Dudka authored Aug 26, 2011
```
... instead of nicknames, which are not unique.
```
  f6980bbf
Sep 03, 2011
- fix a bunch of MSVC compiler warnings · 6b75d2c2
  Yang Tse authored Sep 03, 2011
  
  6b75d2c2
Aug 15, 2011
- nss: start with no database if the selected database is broken · d6f319fb
  Kamil Dudka authored Aug 15, 2011
```
Bug: https://bugzilla.redhat.com/728562
```
  d6f319fb
Jul 26, 2011
- stdio.h, stdlib.h, string.h, stdarg.h and ctype.h inclusion done in setup_once.h · f1586cb4
  Yang Tse authored Jul 26, 2011
  
  f1586cb4
Apr 27, 2011

source cleanup: unify look, style and indent levels · b903186f

Daniel Stenberg authored Apr 20, 2011

By the use of a the new lib/checksrc.pl script that checks that our
basic source style rules are followed.

b903186f

Apr 19, 2011

CURL_DOES_CONVERSIONS: cleanup · c828646f

Daniel Stenberg authored Apr 20, 2011

Massively reduce #ifdefs all over (23 #ifdef lines less so far)
Moved conversion-specific code to non-ascii.c

c828646f

Apr 08, 2011

nss: allow to use multiple client certificates for a single host · 1a6e7da1

Kamil Dudka authored Apr 01, 2011

In case a client certificate is used, invalidate SSL session cache
at the end of a session.  This forces NSS to ask for a new client
certificate when connecting second time to the same host.

Bug: https://bugzilla.redhat.com/689031

1a6e7da1

Apr 04, 2011

nss: fix a crash within SSL_AuthCertificate() · d3408d05

Kamil Dudka authored Apr 04, 2011

The bug was introduced in 806dbb02 (a wrong value was passed in as the
first argument to the default callback in our wrapper).

d3408d05

Mar 15, 2011

nss: do not ignore value of CURLOPT_SSL_VERIFYPEER · 806dbb02

Kamil Dudka authored Mar 15, 2011

When NSS-powered libcurl connected to a SSL server with
CURLOPT_SSL_VERIFYPEER equal to zero, NSS remembered that the peer
certificate was accepted by libcurl and did not ask the second time when
connecting to the same server with CURLOPT_SSL_VERIFYPEER equal to one.

This patch turns off the SSL session cache for the particular SSL socket
if peer verification is disabled.  In order to avoid any performance
impact, the peer verification is completely skipped in that case, which
makes it even faster than before.

Bug: https://bugzilla.redhat.com/678580

806dbb02

Feb 22, 2011

nss: do not ignore failure of SSL handshake · 7aa2d10e

Kamil Dudka authored Feb 22, 2011

Flaw introduced in fc77790b and present in curl-7.21.4.
Bug: https://bugzilla.redhat.com/669702#c16

7aa2d10e

Feb 17, 2011
- nss: avoid memory leak on SSL connection failure · a40f58d2
  Kamil Dudka authored Feb 17, 2011
  
  a40f58d2
Feb 16, 2011
- nss_load_key: fix unused variable warning · c3a6116d
  Daniel Stenberg authored Feb 16, 2011
  
  c3a6116d
Jan 27, 2011
- nss: avoid memory leaks and failure of NSS shutdown · dc0a7161
  Kamil Dudka authored Jan 27, 2011
```
... in case more than one CA is loaded.

Bug: https://bugzilla.redhat.com/670802
```
  dc0a7161
Jan 18, 2011

nss: fix a bug in handling of CURLOPT_CAPATH · fc77790b

Kamil Dudka authored Jan 18, 2011

... and update the curl.1 and curl_easy_setopt.3 man pages such that
they do not suggest to use an OpenSSL utility if curl is not built
against OpenSSL.

Bug: https://bugzilla.redhat.com/669702

fc77790b

Jan 04, 2011
- Curl_timeleft: s/conn/data in first argument · adb49ad8
  Daniel Stenberg authored Jan 04, 2011
```
As the function doesn't really use the connectdata struct but only the
SessionHanadle struct I modified what argument it wants.
```
  adb49ad8
- nss: avoid CURLE_OUT_OF_MEMORY given a file name without any slash · d8f6d1c3
  Kamil Dudka authored Jan 04, 2011
```
Bug: https://bugzilla.redhat.com/623663
```
  d8f6d1c3