Skip to content
  1. Sep 23, 2015
  2. Sep 22, 2015
    • Mike Crowe's avatar
      gnutls: Support CURLOPT_KEYPASSWD · 6b56901b
      Mike Crowe authored
      
      
      The gnutls vtls back-end was previously ignoring any password set via
      CURLOPT_KEYPASSWD. Presumably this was because
      gnutls_certificate_set_x509_key_file did not support encrypted keys.
      
      gnutls now has a gnutls_certificate_set_x509_key_file2 function that
      does support encrypted keys. Let's determine at compile time whether the
      available gnutls supports this new function. If it does then use it to
      pass the password. If it does not then emit a helpful diagnostic if a
      password is set. This is preferable to the previous behaviour of just
      failing to read the certificate without giving a reason in that case.
      
      Signed-off-by: default avatarMike Crowe <mac@mcrowe.com>
      6b56901b
    • Daniel Stenberg's avatar
      CURLINFO_TLS_SESSION: always return backend info · 7362008c
      Daniel Stenberg authored
      ... even for those that don't support providing anything in the
      'internals' struct member since it offers a convenient way for
      applications to figure this out.
      7362008c
  3. Sep 20, 2015
    • Jay Satiro's avatar
      vtls: Change designator name for server's pubkey hash · 47b7d658
      Jay Satiro authored
      - Change the designator name we use to show the base64 encoded sha256
      hash of the server's public key from 'pinnedpubkey' to
      'public key hash'.
      
      Though the server's public key hash is only shown when comparing pinned
      public key hashes, the server's hash may not match one of the pinned.
      47b7d658
  4. Sep 19, 2015
  5. Sep 18, 2015
  6. Sep 17, 2015
  7. Sep 13, 2015
  8. Sep 10, 2015
  9. Sep 08, 2015
    • Daniel Stenberg's avatar
      parse_proxy: reject illegal port numbers · 87e533ac
      Daniel Stenberg authored
      If the port number in the proxy string ended weirdly or the number is
      too large, skip it. Mostly as a means to bail out early if a "bare" IPv6
      numerical address is used without enclosing brackets.
      
      Also mention the bracket requirement for IPv6 numerical addresses to the
      man page for CURLOPT_PROXY.
      
      Closes #415
      
      Reported-by: Marcel Raad
      87e533ac
    • Daniel Stenberg's avatar
      FTP: do_more: add check for wait_data_conn in upload case · 27620171
      Daniel Stenberg authored
      In some timing-dependnt cases when a 4xx response immediately followed
      after a 150 when a STOR was issued, this function would wrongly return
      'complete == true' while 'wait_data_conn' was still set.
      
      Closes #405
      
      Reported-by: Patricia Muscalu
      27620171
  10. Sep 04, 2015
  11. Sep 03, 2015
  12. Aug 31, 2015
  13. Aug 30, 2015
  14. Aug 25, 2015
  15. Aug 24, 2015
  16. Aug 23, 2015
    • Nathaniel Waisbrot's avatar
      CURLOPT_DEFAULT_PROTOCOL: added · 9756d1da
      Nathaniel Waisbrot authored
      - Add new option CURLOPT_DEFAULT_PROTOCOL to allow specifying a default
      protocol for schemeless URLs.
      
      - Add new tool option --proto-default to expose
      CURLOPT_DEFAULT_PROTOCOL.
      
      In the case of schemeless URLs libcurl will behave in this way:
      
      When the option is used libcurl will use the supplied default.
      
      When the option is not used, libcurl will follow its usual plan of
      guessing from the hostname and falling back to 'http'.
      9756d1da
  17. Aug 22, 2015
  18. Aug 21, 2015
  19. Aug 20, 2015
  20. Aug 19, 2015
    • Marcel Raad's avatar
      inet_pton.c: Fix MSVC run-time check failure · 618dfd65
      Marcel Raad authored
      Visual Studio complains with a message box:
      
      "Run-Time Check Failure #1 - A cast to a smaller data type has caused a
      loss of data.  If this was intentional, you should mask the source of
      the cast with the appropriate bitmask.
      
      For example:
      char c = (i & 0xFF);
      
      Changing the code in this way will not affect the quality of the
      resulting optimized code."
      
      This is because only 'val' is cast to unsigned char, so the "& 0xff" has
      no effect.
      
      Closes #387
      618dfd65
  21. Aug 18, 2015
  22. Aug 11, 2015
    • Anders Bakken's avatar
      http2: discard frames with no SessionHandle · 5778e6f5
      Anders Bakken authored
      Return 0 instead of NGHTTP2_ERR_CALLBACK_FAILURE if we can't locate the
      SessionHandle. Apparently mod_h2 will sometimes send a frame for a
      stream_id we're finished with.
      
      Use nghttp2_session_get_stream_user_data and
      nghttp2_session_set_stream_user_data to identify SessionHandles instead
      of a hash.
      
      Closes #372
      5778e6f5
  23. Aug 10, 2015