Skip to content
  1. Jan 11, 2009
  2. Jan 10, 2009
    • Daniel Stenberg's avatar
      - Emil Romanus fixed: · 452e52f9
      Daniel Stenberg authored
        When using the multi interface over HTTP and the server returns a Location
        header, the running easy handle will get stuck in the CURLM_STATE_PERFORM
        state, leaving the external event loop stuck waiting for data from the
        ingoing socket (when using the curl_multi_socket_action stuff). While this
        bug was pretty hard to find, it seems to require only a one-line fix. The
        break statement on line 1374 in multi.c caused the function to skip the call
        to multistate().
      
        How to reproduce this bug? Well, that's another question.  evhiperfifo.c in
        the examples directory chokes on this bug only _sometimes_, probably
        depending on how fast the URLs are added. One way of testing the bug out is
        writing to hiper.fifo from more than one source at the same time.
      452e52f9
  3. Jan 08, 2009
  4. Jan 07, 2009
    • Daniel Stenberg's avatar
      - Rob Crittenden did once again provide an NSS update: · 3c2ad402
      Daniel Stenberg authored
        I have to jump through a few hoops now with the NSS library initialization
        since another part of an application may have already initialized NSS by the
        time Curl gets invoked. This patch is more careful to only shutdown the NSS
        library if Curl did the initialization.
      
        It also adds in a bit of code to set the default ciphers if the app that
        call NSS_Init* did not call NSS_SetDomesticPolicy() or set specific
        ciphers. One might argue that this lets other application developers get
        lazy and/or they aren't using the NSS API correctly, and you'd be right.
        But still, this will avoid terribly difficult-to-trace crashes and is
        generally helpful.
      3c2ad402
  5. Dec 31, 2008
  6. Dec 29, 2008
  7. Dec 28, 2008
  8. Dec 27, 2008
  9. Dec 22, 2008
  10. Dec 20, 2008
  11. Dec 19, 2008
  12. Dec 17, 2008
    • Daniel Stenberg's avatar
      - SCP and SFTP with the multi interface had the same flaw: the 'DONE' · 03ca98b0
      Daniel Stenberg authored
        operation didn't complete properly if the EAGAIN equivalent was returned but
        libcurl would simply continue with a half-completed close operation
        performed. This ruined persistent connection re-use and cause some
        SSH-protocol errors in general. The correction is unfortunately adding a
        blocking function - doing it entirely non-blocking should be considered for
        a better fix.
      03ca98b0
  13. Dec 15, 2008
  14. Dec 12, 2008
  15. Dec 11, 2008
  16. Dec 10, 2008
    • Daniel Stenberg's avatar
      - Internet Explorer had a broken HTTP digest authentication before v7 and · 6e376532
      Daniel Stenberg authored
        there are servers "out there" that relies on the client doing this broken
        Digest authentication. Apache even comes with an option to work with such
        broken clients.
      
        The difference is only for URLs that contain a query-part (a '?'-letter and
        text to the right of it).
      
        libcurl now supports this quirk, and you enable it by setting the
        CURLAUTH_DIGEST_IE bit in the bitmask you pass to the CURLOPT_HTTPAUTH or
        CURLOPT_PROXYAUTH options. They are thus individually controlled to server
        and proxy.
      6e376532
  17. Dec 09, 2008
  18. Dec 08, 2008
    • Daniel Stenberg's avatar
      - Fred Machado posted about a weird FTP problem on the curl-users list and when · 18371aaf
      Daniel Stenberg authored
        researching it, it turned out he got a 550 response back from a SIZE command
        and then I fell over the text in RFC3659 that says:
      
         The presence of the 550 error response to a SIZE command MUST NOT be taken
         by the client as an indication that the file cannot be transferred in the
         current MODE and TYPE.
      
        In other words: the change I did on September 30th 2008 and that has been
        included in the last two releases were a regression and a bad idea. We MUST
        NOT take a 550 response from SIZE as a hint that the file doesn't exist.
      18371aaf
    • Daniel Stenberg's avatar
      - Christian Krause filed bug #2221237 · 42365aa7
      Daniel Stenberg authored
        (http://curl.haxx.se/bug/view.cgi?id=2221237) that identified an infinite
        loop during GSS authentication given some specific conditions. With his
        patience and great feedback I managed to narrow down the problem and
        eventually fix it although I can't test any of this myself!
      42365aa7
  19. Dec 03, 2008
  20. Nov 24, 2008
    • Daniel Stenberg's avatar
      - Based on a patch by Vlad Grachov, libcurl now uses a new libssh2 0.19 · 53a8a6e5
      Daniel Stenberg authored
        function when built to support SCP and SFTP that helps the library to know
        in which direction a particular libssh2 operation would return EAGAIN so
        that libcurl knows what socket conditions to wait for before trying the
        function call again. Previously (and still when using libssh2 0.18 or
        earlier), libcurl will busy-loop in this situation when the easy interface
        is used!
      53a8a6e5
  21. Nov 19, 2008
  22. Nov 16, 2008
  23. Nov 15, 2008
  24. Nov 13, 2008
  25. Nov 11, 2008
    • Daniel Stenberg's avatar
      - Rainer Canavan filed bug #2255627 · 4cbc0f6c
      Daniel Stenberg authored
        (http://curl.haxx.se/bug/view.cgi?id=2255627) which pointed out that a
        program using libcurl's multi interface to download a HTTPS page with a
        libcurl built powered by OpenSSL, would easily get silly and instead hand
        over SSL details as data instead of the actual HTTP headers and body. This
        happened because libcurl would consider the connection handshake done too
        early. This problem was introduced at September 22nd 2008 with my fix of the
        bug #2107377
      
        The correct fix is now instead done within the GnuTLS-handling code, as both
        the OpenSSL and the NSS code already deal with this situation in similar
        fashion. I added test case 560 in an attempt to verify this fix, but
        unfortunately it didn't trigger it even before this fix!
      4cbc0f6c
    • Yang Tse's avatar
      Related with bug #2230535 (http://curl.haxx.se/bug/view.cgi?id=2230535) · 707828b7
      Yang Tse authored
      Daniel Fandrich noticed that curl_addrinfo was also missing in the build
      process of other four non-configure platforms. Added now.
      707828b7
  26. Nov 07, 2008
  27. Nov 06, 2008
  28. Nov 05, 2008