David Wright filed bug report #1849764

(http://curl.haxx.se/bug/view.cgi?id=1849764) with an included fix. He identified a problem for re-used connections that previously had sent Expect: 100-continue and in some situations the subsequent POST (that didn't use Expect:) still had the internal flag set for its use. David's fix (that makes the setting of the flag in every single request unconditionally) is fine and is now used!
2007-12-13 10:00:06 +00:00
parent dc24540ed1
commit 7b1a22147e
3 changed files with 23 additions and 11 deletions
--- a/3
+++ b/3
@@ -35,6 +35,7 @@ This release includes the following bugfixes:
 o no longer default-appends ;type= on FTP URLs thru proxies
 o SSL session id caching
 o POST with callback over proxy requiring NTLM or Digest
+ o Expect: 100-continue flaw on re-used connection with POSTs

 This release includes the following known bugs:

@@ -55,6 +56,6 @@ advice from friends like these:
 Dan Fandrich, Gisle Vanem, Toby Peterson, Yang Tse, Daniel Black,
 Robin Johnson, Michal Marek, Ates Goral, Andres Garcia, Rob Crittenden,
 Emil Romanus, Alessandro Vesely, Ray Pekowski, Spacen Jasset, Andrew Moise,
- Gilles Blanc
+ Gilles Blanc, David Wright
 
        Thanks! (and sorry if I forgot to mention someone)