- Mar 25, 2015
-
-
Jay Satiro authored
(cyassl_connect_step1) - Use TLS 1.0-1.2 by default when available. CyaSSL/wolfSSL >= v3.3.0 supports setting a minimum protocol downgrade version. cyassl/cyassl@322f79f
-
Jay Satiro authored
-
Jay Satiro authored
-
- Mar 24, 2015
-
-
Dan Fandrich authored
-
Dan Fandrich authored
Support for notes has been in place for a while, but it required being added to the setup file manually.
-
Dan Fandrich authored
This header file must be included after all header files except memdebug.h, as it does similar memory function redefinitions and can be similarly affected by conflicting definitions in system or dependent library headers.
-
Daniel Stenberg authored
I tested with libressl git master now (v2.1.4-27-g34bf96c) and it seems to still require the work-around for stapling to work.
-
Daniel Stenberg authored
URL: http://curl.haxx.se/mail/lib-2015-03/0205.html Reported-by: Alessandro Ghedini
-
Daniel Stenberg authored
-
Jay Satiro authored
-
Viktor Szakats authored
-
Viktor Szakats authored
-
Dan Fandrich authored
This is a strange combination of options, but is allowed.
-
Patrick Monnerat authored
-
Daniel Stenberg authored
-
Daniel Stenberg authored
-
Daniel Stenberg authored
--path-as-is is the command line option Added docs in curl.1 and CURLOPT_PATH_AS_IS.3 Added test in test 1241
-
- Mar 23, 2015
-
-
Yamada Yasuharu authored
By making sure Curl_getconnectinfo() uses the correct connection cache to find the last connection.
-
Daniel Stenberg authored
... it would otherwise lead to memory leakage if we never actually do the switch.
-
Dan Fandrich authored
This conflicted with a WolfSSL typedef.
-
Dan Fandrich authored
-
- Mar 21, 2015
-
-
Dan Fandrich authored
It seems that some systems (e.g. fairly consistently in some recent Solaris autobuilds) would manage to get to the connect phase before the progress callback was called, resulting in a CURLE_COULDNT_CONNECT error. Reworked the test to point at a test server that never returns a full result so the progress callback always gets a chance to be called before the transfer can complete in some other way.
-
Nick Zitzmann authored
TLS False Start support requires iOS 7.0 or later, or OS X 10.9 or later.
-
Daniel Stenberg authored
Coverity CID 1291167 pointed out that 'rc' was received but never used when gnutls_credentials_set() was used. Added return code check now.
-
Daniel Stenberg authored
Coverity CID 1291165 pointed out 'chainp' could be dereferenced when NULL if gnutls_certificate_get_peers() had previously failed.
-
Daniel Stenberg authored
Coverity CID 1291166 pointed out that we could read this variable uninitialized.
-
Dan Fandrich authored
The certificates were missing the digitalSignature and keyAgreement usage types, of which at least digitalSignature was checked by CyaSSL. This caused the test server in test 310 (among others) to fail the startup verification and therefore run (see http://curl.haxx.se/mail/lib-2014-07/0303.html).
-
Dan Fandrich authored
The certificate generation scripts were also updated to better match the format of the certificates currently checked in.
-
Daniel Stenberg authored
-
Daniel Stenberg authored
CID 1202732 warns on the previous use, although I cannot fine any problems with it. I'm doing this change only to make the code use a more familiar approach to accomplish the same thing.
-
Dagobert Michelsen authored
-
Daniel Stenberg authored
-
Dan Fandrich authored
-
- Mar 20, 2015
-
-
Dan Fandrich authored
-
Alessandro Ghedini authored
-
Alessandro Ghedini authored
-
Alessandro Ghedini authored
This option can be used to enable/disable TLS False Start defined in the RFC draft-bmoeller-tls-falsestart.
-
Alessandro Ghedini authored
-
Alessandro Ghedini authored
-
Daniel Stenberg authored
Reported-by: Frank Gevaerts
-