Skip to content
  1. Oct 07, 2014
    • Travis Burtrum's avatar
      SSL: implement public key pinning · 93e45079
      Travis Burtrum authored
      Option --pinnedpubkey takes a path to a public key in DER format and
      only connect if it matches (currently only implemented with OpenSSL).
      
      Provides CURLOPT_PINNEDPUBLICKEY for curl_easy_setopt().
      
      Extract a public RSA key from a website like so:
      openssl s_client -connect google.com:443 2>&1 < /dev/null | \
      sed -n '/-----BEGIN/,/-----END/p' | openssl x509 -noout -pubkey \
      | openssl rsa -pubin -outform DER > google.com.der
      93e45079
    • Daniel Stenberg's avatar
      multi_runsingle: fix possible memory leak · d1b56d00
      Daniel Stenberg authored
      Coverity CID 1202837. 'newurl' can in fact be allocated even when
      Curl_retry_request() returns failure so free it if need be.
      d1b56d00
    • Daniel Stenberg's avatar
      ares::Curl_resolver_cancel: skip checking for NULL conn · 6352df87
      Daniel Stenberg authored
      Coverity CID 1243581. 'conn' will never be NULL here, and if it would be
      the subsequent statement would dereference it!
      6352df87
    • Daniel Stenberg's avatar
      parseconfig: skip a NULL check · dddb2aab
      Daniel Stenberg authored
      Coverity CID 1154198. This NULL check implies that the pointer _can_ be
      NULL at this point, which it can't. Thus it is dead code. It tricks
      static analyzers to warn about dereferencing the pointer since the code
      seems to imply it can be NULL.
      dddb2aab
    • Waldek Kozba's avatar
      multi-uv.c: call curl_multi_info_read() better · b7d3338d
      Waldek Kozba authored
      Improves it for low-latency cases (like the communication with
      localhost)
      b7d3338d
  2. Oct 06, 2014
  3. Oct 04, 2014
  4. Oct 03, 2014
  5. Oct 02, 2014
  6. Oct 01, 2014
  7. Sep 30, 2014
  8. Sep 26, 2014
  9. Sep 25, 2014
  10. Sep 23, 2014
  11. Sep 19, 2014
  12. Sep 18, 2014
  13. Sep 15, 2014