Skip to content
Snippets Groups Projects
  1. Mar 25, 2010
  2. Mar 24, 2010
  3. Jan 22, 2010
  4. Jan 21, 2010
  5. Jan 01, 2010
  6. Dec 31, 2009
  7. Dec 17, 2009
  8. Dec 12, 2009
  9. Nov 27, 2009
  10. Nov 14, 2009
    • Yang Tse's avatar
      · 90bc6ee8
      Yang Tse authored
      - Constantine Sapuntzakis provided the fix that ensures that an SSL connection
        won't be reused unless protection level for peer and host verification match.
      90bc6ee8
  11. Nov 12, 2009
  12. Oct 29, 2009
  13. Sep 26, 2009
  14. Aug 24, 2009
  15. Aug 21, 2009
  16. Jul 22, 2009
  17. Jul 20, 2009
    • Kamil Dudka's avatar
      - Claes Jakobsson improved the support for client certificates handling · 5f0cae80
      Kamil Dudka authored
        in NSS-powered libcurl. Now the client certificates can be selected
        automatically by a NSS built-in hook. Additionally pre-login to all PKCS11
        slots is no more performed. It used to cause problems with HW tokens.
      
      - Fixed reference counting for NSS client certificates. Now the PEM reader
        module should be always properly unloaded on Curl_nss_cleanup(). If the unload
        fails though, libcurl will try to reuse the already loaded instance.
      5f0cae80
  18. Jun 16, 2009
  19. Jun 08, 2009
  20. May 11, 2009
  21. Apr 24, 2009
  22. Apr 13, 2009
  23. Mar 02, 2009
    • Daniel Stenberg's avatar
      - David Kierznowski notified us about a security flaw · 042cc1f6
      Daniel Stenberg authored
        (http://curl.haxx.se/docs/adv_20090303.html also known as CVE-2009-0037) in
        which previous libcurl versions (by design) can be tricked to access an
        arbitrary local/different file instead of a remote one when
        CURLOPT_FOLLOWLOCATION is enabled. This flaw is now fixed in this release
        together this the addition of two new setopt options for controlling this
        new behavior:
      
        o CURLOPT_REDIR_PROTOCOLS controls what protocols libcurl is allowed to
        follow to when CURLOPT_FOLLOWLOCATION is enabled. By default, this option
        excludes the FILE and SCP protocols and thus you nee to explicitly allow
        them in your app if you really want that behavior.
      
        o CURLOPT_PROTOCOLS controls what protocol(s) libcurl is allowed to fetch
        using the primary URL option. This is useful if you want to allow a user or
        other outsiders control what URL to pass to libcurl and yet not allow all
        protocols libcurl may have been built to support.
      curl-7_19_4
      042cc1f6
  24. Feb 20, 2009
    • Daniel Stenberg's avatar
      - Linus Nielsen Feltzing reported and helped me repeat and fix a problem with · af91ff0e
      Daniel Stenberg authored
        FTP with the multi interface: when a transfer fails, like when aborted by a
        write callback, the control connection was wrongly closed and thus not
        re-used properly.
      
        This change is also an attempt to cleanup the code somewhat in this area, as
        now the FTP code attempts to keep (better) track on pending responses
        necessary to get read in ftp_done().
      af91ff0e
  25. Feb 17, 2009
    • Daniel Stenberg's avatar
      - CURLOPT_FTP_CREATE_MISSING_DIRS can now be set to 2 in addition to 1 for · 8f81fd6b
      Daniel Stenberg authored
        plain FTP connections, and it will then allow MKD to fail once and retry the
        CWD afterwards. This is especially useful if you're doing many simultanoes
        connections against the same server and they all have this option enabled,
        as then CWD may first fail but then another connection does MKD before this
        connection and thus MKD fails but trying CWD works! The numbers can
        (should?) now be set with the convenience enums now called
        CURLFTP_CREATE_DIR and CURLFTP_CREATE_DIR_RETRY.
      
        Tests has proven that if you're making an application that uploads a set of
        files to an ftp server, you will get a noticable gain in speed if you're
        using multiple connections and this option will be then be very useful.
      8f81fd6b
  26. Feb 11, 2009
  27. Jan 29, 2009
    • Yang Tse's avatar
      Introduced curl_sspi.c and curl_sspi.h for the implementation of functions · e813bf31
      Yang Tse authored
      Curl_sspi_global_init() and Curl_sspi_global_cleanup() which previously were
      named Curl_ntlm_global_init() and Curl_ntlm_global_cleanup() in http_ntlm.c
      Also adjusted socks_sspi.c to remove the link-time dependency on the Windows
      SSPI library using it now in the same way as it was done in http_ntlm.c.
      e813bf31
  28. Jan 28, 2009
  29. Jan 26, 2009
  30. Jan 25, 2009
  31. Jan 13, 2009
  32. Jan 07, 2009
  33. Dec 19, 2008
  34. Dec 10, 2008
    • Daniel Stenberg's avatar
      - Internet Explorer had a broken HTTP digest authentication before v7 and · 6e376532
      Daniel Stenberg authored
        there are servers "out there" that relies on the client doing this broken
        Digest authentication. Apache even comes with an option to work with such
        broken clients.
      
        The difference is only for URLs that contain a query-part (a '?'-letter and
        text to the right of it).
      
        libcurl now supports this quirk, and you enable it by setting the
        CURLAUTH_DIGEST_IE bit in the bitmask you pass to the CURLOPT_HTTPAUTH or
        CURLOPT_PROXYAUTH options. They are thus individually controlled to server
        and proxy.
      6e376532
  35. Dec 08, 2008
  36. Dec 02, 2008
  37. Nov 03, 2008
Loading