delta/curl.git/lib/vtls, branch bagder/configure-dis-https-proxy

sectransp: make it build with --disable-proxy

2020-09-30T08:32:17+00:00

Follow-up from #5466 and f3d501dc678d80
Reported-by: Javier Navarro
Fixes #6025
Closes #6026

schannel: return CURLE_PEER_FAILED_VERIFICATION for untrusted root

2020-09-28T08:41:51+00:00

This matches what is returned in other TLS backends in the same
situation.

Reviewed-by: Jay Satiro
Reviewed-by: Emil Engler
Follow-up to 5a3efb1
Reported-by: iammrtau on github
Fixes #6003
Closes #6018

vtls: deduplicate client certificates in ssl_config_data

2020-09-14T10:56:47+00:00

Closes #5629

lib: fix -Wassign-enum warnings

2020-09-08T11:53:02+00:00

configure --enable-debug now enables -Wassign-enum with clang,
identifying several enum "abuses" also fixed.

Reported-by: Gisle Vanem
Bug: https://github.com/curl/curl/commit/879007f8118771f4896334731aaca5850a154675#commitcomment-42087553

Closes #5929

openssl: consider ALERT_CERTIFICATE_EXPIRED a failed verification

2020-09-07T15:26:27+00:00

If the error reason from the lib is
SSL_R_SSLV3_ALERT_CERTIFICATE_EXPIRED, libcurl will return
CURLE_PEER_FAILED_VERIFICATION and not CURLE_SSL_CONNECT_ERROR.

This unifies the libcurl return code and makes libressl run test 313
(CRL testing) fine.

Closes #5934

openssl: avoid error conditions when importing native CA

2020-09-02T20:47:52+00:00

The code section that is OpenSSL 3+ specific now uses the same logic as
is used in the version < 3 section. It caused a compiler error without
it.

Closes #5907

vtls: make it 'struct Curl_ssl_session'

2020-09-02T20:41:59+00:00

Use uppercase C for internal symbols.

Closes #5906

schannel: make it 'struct Curl_schannel*'

2020-09-02T20:41:59+00:00

As internal global names should use captical C.

Closes #5906

llist: make it "struct Curl_llist"

2020-09-02T20:41:58+00:00

As internal global names should use captical C.

Closes #5906

tls: add CURLOPT_SSL_EC_CURVES and --curves

2020-08-30T15:24:04+00:00

Closes #5892