diff options
author | Michael Kaufmann <mail@michael-kaufmann.ch> | 2017-01-28 19:45:52 +0100 |
---|---|---|
committer | Michael Kaufmann <mail@michael-kaufmann.ch> | 2017-01-28 19:47:08 +0100 |
commit | bcca842e0d2b2a70b776cf888572739bda11dac7 (patch) | |
tree | de226b003cad332bb38080b6250212a83abc5d13 /docs/KNOWN_BUGS | |
parent | cbd4e1fa0dc77cd65ec09985e979a4be11b60096 (diff) | |
download | curl-bcca842e0d2b2a70b776cf888572739bda11dac7.tar.gz |
polarssl: fix hangs
This bugfix is similar to commit c111178bd4.
Diffstat (limited to 'docs/KNOWN_BUGS')
-rw-r--r-- | docs/KNOWN_BUGS | 22 |
1 files changed, 6 insertions, 16 deletions
diff --git a/docs/KNOWN_BUGS b/docs/KNOWN_BUGS index 80feba071..12eeedd02 100644 --- a/docs/KNOWN_BUGS +++ b/docs/KNOWN_BUGS @@ -24,10 +24,9 @@ problems may have been fixed or changed somewhat since this was written! 1.11 CURLOPT_SEEKFUNCTION not called with CURLFORM_STREAM 2. TLS - 2.1 Hangs with PolarSSL - 2.2 CURLINFO_SSL_VERIFYRESULT has limited support - 2.3 DER in keychain - 2.4 GnuTLS backend skips really long certificate fields + 2.1 CURLINFO_SSL_VERIFYRESULT has limited support + 2.2 DER in keychain + 2.3 GnuTLS backend skips really long certificate fields 3. Email protocols 3.1 IMAP SEARCH ALL truncated response @@ -207,26 +206,17 @@ problems may have been fixed or changed somewhat since this was written! 2. TLS -2.1 Hangs with PolarSSL - - "curl_easy_perform hangs with imap and PolarSSL" - https://github.com/curl/curl/issues/334 - - Most likely, a fix similar to commit c111178bd4 (for mbedTLS) is - necessary. Or if we just wait a little longer we'll rip out all support for - PolarSSL instead... - -2.2 CURLINFO_SSL_VERIFYRESULT has limited support +2.1 CURLINFO_SSL_VERIFYRESULT has limited support CURLINFO_SSL_VERIFYRESULT is only implemented for the OpenSSL and NSS backends, so relying on this information in a generic app is flaky. -2.3 DER in keychain +2.2 DER in keychain Curl doesn't recognize certificates in DER format in keychain, but it works with PEM. https://curl.haxx.se/bug/view.cgi?id=1065 -2.4 GnuTLS backend skips really long certificate fields +2.3 GnuTLS backend skips really long certificate fields libcurl calls gnutls_x509_crt_get_dn() with a fixed buffer size and if the field is too long in the cert, it'll just return an error and the field will |