Daniel Stenberg
697aa67d18
openssl: enable NPN separately from ALPN
...
... and allow building with nghttp2 but completely without NPN and ALPN,
as nghttp2 can still be used for plain-text HTTP.
Reported-by: Lucas Pardue
2014-10-29 22:42:46 +01:00
Daniel Stenberg
e62e77426f
configure.ac: remove checks for OpenSSL NPN/ALPN funcs again
...
... since the conditional in the code are now based on OpenSSL versions
instead to better support non-configure builds.
2014-10-29 22:38:39 +01:00
Daniel Stenberg
e102478b3d
opts: added some "SEE ALSO" references
2014-10-29 22:38:39 +01:00
Steve Holme
79a97a9d36
RELEASE-NOTES: Synced with 32913182dc
2014-10-29 21:12:48 +00:00
Steve Holme
32913182dc
vtls.c: Fixed compilation warning
...
conversion from 'size_t' to 'unsigned int', possible loss of data
2014-10-29 19:12:27 +00:00
Steve Holme
f3fc3d021d
sspi: Return CURLE_LOGIN_DENIED on AcquireCredentialsHandle() failure
...
Return a more appropriate error, rather than CURLE_OUT_OF_MEMORY when
acquiring the credentials handle fails. This is then consistent with
the code prior to commit f7e24683c4
when log-in credentials were empty.
2014-10-29 14:26:48 +00:00
Steve Holme
f7e24683c4
sasl_sspi: Allow DIGEST-MD5 to use current windows credentials
...
Fixed the ability to use the current log-in credentials with DIGEST-MD5.
I had previously disabled this functionality in commit 607883f13c
as I
couldn't get this to work under Windows 8, however, from testing HTTP
Digest authentication through Windows SSPI and then further testing of
this code I have found it works in Windows 7.
Some further investigation is required to see what the differences are
between Windows 7 and 8, but for now enable this functionality as the
code will return an error when AcquireCredentialsHandle() fails.
2014-10-29 14:24:38 +00:00
Kamil Dudka
276741af4d
transfer: drop the code handling the ssl_connect_retry flag
...
Its last use has been removed by the previous commit.
2014-10-29 14:34:46 +01:00
Kamil Dudka
3f430c9c3a
nss: drop the code for libcurl-level downgrade to SSLv3
...
This code was already deactivated by commit
ec783dc142
.
2014-10-29 14:34:46 +01:00
Kamil Dudka
07048941a4
openssl: fix a line length warning
2014-10-29 14:34:46 +01:00
Guenter Knauf
b5ed5843a4
Added NetWare support to build with nghttp2.
2014-10-29 03:31:34 +01:00
Guenter Knauf
357a15a649
Fixed error message since we require ALPN support.
2014-10-29 01:37:18 +01:00
Guenter Knauf
e42e3a4fac
Check for ALPN via OpenSSL version number.
...
This check works also with to non-configure platforms.
2014-10-29 00:59:38 +01:00
Steve Holme
2e121fda35
sasl_sspi: Fixed typo in comment
2014-10-28 23:57:46 +00:00
Steve Holme
085081fc6e
code cleanup: We prefer 'CURLcode result'
2014-10-28 22:45:32 +00:00
Daniel Stenberg
b790bdf46b
TODO: consider supporting STAT
2014-10-28 22:31:48 +01:00
Daniel Stenberg
76b2f53707
mk-ca-bundle: spell fix "version"
2014-10-28 15:21:11 +01:00
Daniel Stenberg
95765567d0
HTTP: return larger than 3 digit response codes too
...
HTTP 1.1 is clearly specified to only allow three digit response codes,
and libcurl used sscanf("%3d") for that purpose. This made libcurl
support smaller numbers but not larger. It does now, but we will not
make any specific promises nor document this further since it is going
outside of what HTTP is.
Bug: http://curl.haxx.se/bug/view.cgi?id=1441
Reported-by: Balaji
2014-10-27 16:28:10 +01:00
Daniel Stenberg
ad88a4bbba
src/: remove version.h.dist from gitignore
...
It has not been used since commit f7bfdbab
in 2011
2014-10-26 23:17:47 +01:00
Steve Holme
0811742488
ntlm: We prefer 'CURLcode result'
...
Continuing commit 0eb3d15ccb
more return code variable name changes.
2014-10-26 21:15:20 +00:00
Guenter Knauf
7be56906d6
Cosmetics: lowercase non-special subroutine names.
2014-10-26 19:07:35 +01:00
Steve Holme
a9c0cd4ab3
RELEASE-NOTES: Synced with 07ac29a058
2014-10-26 16:56:25 +00:00
Steve Holme
07ac29a058
http_negotiate: We prefer 'CURLcode result'
...
Continuing commit 0eb3d15ccb
more return code variable name changes.
2014-10-26 16:38:21 +00:00
Steve Holme
64814739d5
http_negotiate: Fixed missing check for USE_SPNEGO
2014-10-26 16:28:02 +00:00
Steve Holme
c1c16bea94
sspi: Synchronization of cleanup code between auth mechanisms
2014-10-26 14:51:58 +00:00
Steve Holme
d91d21f05b
sspi: Renamed max token length variables
...
Code cleanup to try and synchronise code between the different SSPI
based authentication mechanisms.
2014-10-26 14:43:02 +00:00
Steve Holme
c2c6805797
sspi: Renamed expiry time stamp variables
...
Code cleanup to try and synchronise code between the different SSPI
based authentication mechanisms.
2014-10-26 14:34:06 +00:00
Steve Holme
9c613ade7a
sspi: Only call CompleteAuthToken() when complete is needed
...
Don't call CompleteAuthToken() after InitializeSecurityContext() has
returned SEC_I_CONTINUE_NEEDED as this return code only indicates the
function should be called again after receiving a response back from
the server.
This only affected the Digest and NTLM authentication code.
2014-10-26 14:33:19 +00:00
Dan Fandrich
382cee0a77
Added the "flaky" keyword to a number of tests
...
Each shows evidence of flakiness on at least one platform on
the autobuilds. Users can use this keyword to skip these tests
if desired.
2014-10-26 13:50:38 +01:00
Steve Holme
980f2b7078
ntlm: Return all errors from Curl_ntlm_core_mk_nt_hash()
...
For consistency with other areas of the NTLM code propagate all errors
from Curl_ntlm_core_mk_nt_hash() up the call stack rather than just
CURLE_OUT_OF_MEMORY.
2014-10-26 09:14:46 +00:00
Steve Holme
3b738a16eb
ntlm: Return CURLcode from Curl_ntlm_core_mk_lm_hash()
2014-10-26 09:14:34 +00:00
Steve Holme
9c5f851ec9
ntlm: Use 'CURLcode result'
...
Continuing commit 0eb3d15ccb
more return code variable name changes.
2014-10-26 09:14:10 +00:00
Steve Holme
3fe5b462f7
ntlm: Only define ntlm data structure when USE_NTLM is defined
2014-10-25 22:36:49 +01:00
Steve Holme
28ff8babad
ntlm: Changed handles to be dynamic like other SSPI handles
...
Code cleanup to try and synchronise code between the different SSPI
based authentication mechanisms.
2014-10-25 14:16:06 +01:00
Steve Holme
f9f212fb93
ntlm: Renamed handle variables to match other SSPI structures
...
Code cleanup to try and synchronise code between the different SSPI
based authentication mechanisms.
2014-10-25 14:15:57 +01:00
Steve Holme
df97ab3e5f
ntlm: Renamed SSPI based input token variables
...
Code cleanup to try and synchronise code between the different SSPI
based authentication mechanisms.
2014-10-25 14:15:48 +01:00
Steve Holme
c18329cef6
ntlm: We prefer 'CURLcode result'
...
Continuing commit 0eb3d15ccb
more return code variable name changes.
2014-10-25 14:06:21 +01:00
Steve Holme
0fd714d2c3
build: Added WinIDN build configuration options
...
Added support for WinIDN build configurations to the VC8 and VC9
project files.
2014-10-25 12:56:19 +01:00
Nick Zitzmann
bd87aec5a7
darwinssl: detect possible future removal of SSLv3 from the framework
...
If Apple ever drops SSLv3 support from the Security framework, we'll fail with an error if the user insists on using SSLv3.
2014-10-24 18:59:13 -05:00
Patrick Monnerat
3ca560439c
gskit.c: remove SSLv3 from SSL default.
2014-10-24 16:08:21 +02:00
Patrick Monnerat
897ef500e5
gskit.c: use 'CURLcode result'
2014-10-24 15:16:05 +02:00
Jay Satiro
ec783dc142
SSL: Remove SSLv3 from SSL default due to POODLE attack
...
- Remove SSLv3 from SSL default in darwinssl, schannel, cyassl, nss,
openssl effectively making the default TLS 1.x. axTLS is not affected
since it supports only TLS, and gnutls is not affected since it already
defaults to TLS 1.x.
- Update CURLOPT_SSLVERSION doc
2014-10-24 13:41:56 +02:00
Daniel Stenberg
2b04257491
pipelining: only output "is not blacklisted" in debug builds
2014-10-24 11:12:34 +02:00
Daniel Stenberg
e9bbe425d4
*.3: add/extend "SEE ALSO" sections
2014-10-24 09:22:38 +02:00
Daniel Stenberg
019c95f566
curl_easy_pause.3: minor wording edit
2014-10-24 09:16:06 +02:00
Daniel Stenberg
40be9a1c1d
curl_getdate.3: provide a "SEE ALSO" section
2014-10-24 09:12:17 +02:00
Daniel Stenberg
bf769d09ec
curl_global_init.3: minor formatting fix, add version info
2014-10-24 09:08:22 +02:00
Daniel Stenberg
fb6e8a5aa4
url.c: use 'CURLcode result'
2014-10-24 08:51:04 +02:00
Daniel Stenberg
0eb3d15ccb
code cleanup: we prefer 'CURLcode result'
...
... for the local variable name in functions holding the return
code. Using the same name universally makes code easier to read and
follow.
Also, unify code for checking for CURLcode errors with:
if(result) or if(!result)
instead of
if(result == CURLE_OK), if(CURLE_OK == result) or if(result != CURLE_OK)
2014-10-24 08:23:19 +02:00
Daniel Stenberg
1752e9c088
Curl_add_timecondition: skip superfluous varible assignment
...
Detected by cppcheck.
2014-10-24 08:23:19 +02:00