summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* build: added Watcom support to build with WinSSL.Guenter Knauf2014-10-301-0/+5
|
* CURLOPT_PINNEDPUBLICKEY.3: added detailsDaniel Stenberg2014-10-301-8/+22
|
* CURLOPT_CUSTOMREQUEST.3: Fixed incomplete protocol listSteve Holme2014-10-301-1/+1
| | | | | Whilst the description included information about SMTP, the protocol list only showed "TTP, FTP, IMAP, POP3".
* CURLOPT_DIRLISTONLY.3: Added information about the usage in POP3Steve Holme2014-10-301-8/+14
|
* openssl: enable NPN separately from ALPNDaniel Stenberg2014-10-291-5/+14
| | | | | | | ... and allow building with nghttp2 but completely without NPN and ALPN, as nghttp2 can still be used for plain-text HTTP. Reported-by: Lucas Pardue
* configure.ac: remove checks for OpenSSL NPN/ALPN funcs againDaniel Stenberg2014-10-291-4/+1
| | | | | ... since the conditional in the code are now based on OpenSSL versions instead to better support non-configure builds.
* opts: added some "SEE ALSO" referencesDaniel Stenberg2014-10-292-0/+2
|
* RELEASE-NOTES: Synced with 32913182dcSteve Holme2014-10-291-2/+9
|
* vtls.c: Fixed compilation warningSteve Holme2014-10-291-1/+3
| | | | conversion from 'size_t' to 'unsigned int', possible loss of data
* sspi: Return CURLE_LOGIN_DENIED on AcquireCredentialsHandle() failureSteve Holme2014-10-292-3/+3
| | | | | | Return a more appropriate error, rather than CURLE_OUT_OF_MEMORY when acquiring the credentials handle fails. This is then consistent with the code prior to commit f7e24683c4 when log-in credentials were empty.
* sasl_sspi: Allow DIGEST-MD5 to use current windows credentialsSteve Holme2014-10-292-21/+23
| | | | | | | | | | | | Fixed the ability to use the current log-in credentials with DIGEST-MD5. I had previously disabled this functionality in commit 607883f13c as I couldn't get this to work under Windows 8, however, from testing HTTP Digest authentication through Windows SSPI and then further testing of this code I have found it works in Windows 7. Some further investigation is required to see what the differences are between Windows 7 and 8, but for now enable this functionality as the code will return an error when AcquireCredentialsHandle() fails.
* transfer: drop the code handling the ssl_connect_retry flagKamil Dudka2014-10-292-10/+4
| | | | Its last use has been removed by the previous commit.
* nss: drop the code for libcurl-level downgrade to SSLv3Kamil Dudka2014-10-291-49/+0
| | | | | This code was already deactivated by commit ec783dc142129d3860e542b443caaa78a6172d56.
* openssl: fix a line length warningKamil Dudka2014-10-291-1/+2
|
* Added NetWare support to build with nghttp2.Guenter Knauf2014-10-292-0/+32
|
* Fixed error message since we require ALPN support.Guenter Knauf2014-10-291-1/+1
|
* Check for ALPN via OpenSSL version number.Guenter Knauf2014-10-291-10/+6
| | | | This check works also with to non-configure platforms.
* sasl_sspi: Fixed typo in commentSteve Holme2014-10-281-1/+1
|
* code cleanup: We prefer 'CURLcode result'Steve Holme2014-10-284-33/+36
|
* TODO: consider supporting STATDaniel Stenberg2014-10-281-0/+9
|
* mk-ca-bundle: spell fix "version"Daniel Stenberg2014-10-281-1/+1
|
* HTTP: return larger than 3 digit response codes tooDaniel Stenberg2014-10-277-2/+307
| | | | | | | | | | | HTTP 1.1 is clearly specified to only allow three digit response codes, and libcurl used sscanf("%3d") for that purpose. This made libcurl support smaller numbers but not larger. It does now, but we will not make any specific promises nor document this further since it is going outside of what HTTP is. Bug: http://curl.haxx.se/bug/view.cgi?id=1441 Reported-by: Balaji
* src/: remove version.h.dist from gitignoreDaniel Stenberg2014-10-261-1/+0
| | | | It has not been used since commit f7bfdbab in 2011
* ntlm: We prefer 'CURLcode result'Steve Holme2014-10-261-12/+13
| | | | Continuing commit 0eb3d15ccb more return code variable name changes.
* Cosmetics: lowercase non-special subroutine names.Guenter Knauf2014-10-261-15/+15
|
* RELEASE-NOTES: Synced with 07ac29a058Steve Holme2014-10-261-6/+20
|
* http_negotiate: We prefer 'CURLcode result'Steve Holme2014-10-261-11/+11
| | | | Continuing commit 0eb3d15ccb more return code variable name changes.
* http_negotiate: Fixed missing check for USE_SPNEGOSteve Holme2014-10-261-4/+5
|
* sspi: Synchronization of cleanup code between auth mechanismsSteve Holme2014-10-262-9/+19
|
* sspi: Renamed max token length variablesSteve Holme2014-10-263-12/+12
| | | | | Code cleanup to try and synchronise code between the different SSPI based authentication mechanisms.
* sspi: Renamed expiry time stamp variablesSteve Holme2014-10-263-14/+14
| | | | | Code cleanup to try and synchronise code between the different SSPI based authentication mechanisms.
* sspi: Only call CompleteAuthToken() when complete is neededSteve Holme2014-10-262-6/+6
| | | | | | | | | Don't call CompleteAuthToken() after InitializeSecurityContext() has returned SEC_I_CONTINUE_NEEDED as this return code only indicates the function should be called again after receiving a response back from the server. This only affected the Digest and NTLM authentication code.
* Added the "flaky" keyword to a number of testsDan Fandrich2014-10-266-0/+6
| | | | | | Each shows evidence of flakiness on at least one platform on the autobuilds. Users can use this keyword to skip these tests if desired.
* ntlm: Return all errors from Curl_ntlm_core_mk_nt_hash()Steve Holme2014-10-261-6/+7
| | | | | | For consistency with other areas of the NTLM code propagate all errors from Curl_ntlm_core_mk_nt_hash() up the call stack rather than just CURLE_OUT_OF_MEMORY.
* ntlm: Return CURLcode from Curl_ntlm_core_mk_lm_hash()Steve Holme2014-10-263-8/+14
|
* ntlm: Use 'CURLcode result'Steve Holme2014-10-261-18/+19
| | | | Continuing commit 0eb3d15ccb more return code variable name changes.
* ntlm: Only define ntlm data structure when USE_NTLM is definedSteve Holme2014-10-254-12/+23
|
* ntlm: Changed handles to be dynamic like other SSPI handlesSteve Holme2014-10-252-19/+35
| | | | | Code cleanup to try and synchronise code between the different SSPI based authentication mechanisms.
* ntlm: Renamed handle variables to match other SSPI structuresSteve Holme2014-10-252-12/+12
| | | | | Code cleanup to try and synchronise code between the different SSPI based authentication mechanisms.
* ntlm: Renamed SSPI based input token variablesSteve Holme2014-10-252-7/+7
| | | | | Code cleanup to try and synchronise code between the different SSPI based authentication mechanisms.
* ntlm: We prefer 'CURLcode result'Steve Holme2014-10-251-22/+21
| | | | Continuing commit 0eb3d15ccb more return code variable name changes.
* build: Added WinIDN build configuration optionsSteve Holme2014-10-2510-0/+2876
| | | | | Added support for WinIDN build configurations to the VC8 and VC9 project files.
* darwinssl: detect possible future removal of SSLv3 from the frameworkNick Zitzmann2014-10-241-3/+16
| | | | If Apple ever drops SSLv3 support from the Security framework, we'll fail with an error if the user insists on using SSLv3.
* gskit.c: remove SSLv3 from SSL default.Patrick Monnerat2014-10-241-3/+7
|
* gskit.c: use 'CURLcode result'Patrick Monnerat2014-10-241-141/+143
|
* SSL: Remove SSLv3 from SSL default due to POODLE attackJay Satiro2014-10-246-55/+17
| | | | | | | | | - Remove SSLv3 from SSL default in darwinssl, schannel, cyassl, nss, openssl effectively making the default TLS 1.x. axTLS is not affected since it supports only TLS, and gnutls is not affected since it already defaults to TLS 1.x. - Update CURLOPT_SSLVERSION doc
* pipelining: only output "is not blacklisted" in debug buildsDaniel Stenberg2014-10-241-1/+1
|
* *.3: add/extend "SEE ALSO" sectionsDaniel Stenberg2014-10-245-1/+11
|
* curl_easy_pause.3: minor wording editDaniel Stenberg2014-10-241-3/+2
|
* curl_getdate.3: provide a "SEE ALSO" sectionDaniel Stenberg2014-10-241-1/+4
|