7.14.1 coming right up

softened my opinions, added API benefit - Thanks to Eric Cooper
clarify that the ctxfunc is called on all new connects
2005-09-01 20:54:00 +00:00 · 2005-09-01 15:03:45 +00:00 · 2005-09-01 13:41:29 +00:00 · 2005-09-01 08:44:39 +00:00 · 2005-09-01 08:43:44 +00:00 · 2005-09-01 08:35:59 +00:00
480 changed files with 18341 additions and 6626 deletions
--- a/2546
+++ b/2546
--- a/CHANGES.2004
+++ b/CHANGES.2004
--- a/2
+++ b/2
@@ -1,6 +1,6 @@
 COPYRIGHT AND PERMISSION NOTICE
-Copyright (c) 1996 - 2004, Daniel Stenberg, <daniel@haxx.se>.
+Copyright (c) 1996 - 2005, Daniel Stenberg, <daniel@haxx.se>.
 All rights reserved.
--- a/Makefile.am
+++ b/Makefile.am
@@ -5,7 +5,7 @@
 #                            | (__| |_| |  _ <| |___
 #                             \___|\___/|_| \_\_____|
 #
-# Copyright (C) 1998 - 2004, Daniel Stenberg, <daniel@haxx.se>, et al.
+# Copyright (C) 1998 - 2005, Daniel Stenberg, <daniel@haxx.se>, et al.
 #
 # This software is licensed as described in the file COPYING, which
 # you should have received as part of this distribution. The terms
@@ -48,6 +48,15 @@ pdf:
 check: test
 if CROSSCOMPILING
 test-full: test
 test-torture: test
 test:
 	@echo "NOTICE: we can't run the tests when cross-compiling!"
 else
 test:
 	@(cd tests; $(MAKE) all quiet-test)
@@ -57,6 +66,8 @@ test-full:
 test-torture:
 	@(cd tests; $(MAKE) all torture-test)
 endif
 #
 # Build source and binary rpms. For rpm-3.0 and above, the ~/.rpmmacros
 # must contain the following line:
--- a/Makefile.dist
+++ b/Makefile.dist
@@ -5,7 +5,7 @@
 #                            | (__| |_| |  _ <| |___
 #                             \___|\___/|_| \_\_____|
 #
-# Copyright (C) 1998 - 2004, Daniel Stenberg, <daniel@haxx.se>, et al.
+# Copyright (C) 1998 - 2005, Daniel Stenberg, <daniel@haxx.se>, et al.
 #
 # This software is licensed as described in the file COPYING, which
 # you should have received as part of this distribution. The terms
@@ -174,6 +174,12 @@ vc-zlib-dll:
 	cd ..\src
 	nmake /f Makefile.vc6 cfg=release-zlib-dll
 vc-sspi:
 	cd lib
 	nmake /f Makefile.vc6 cfg=release WINDOWS_SSPI=1
 	cd ..\src
 	nmake /f Makefile.vc6 cfg=release WINDOWS_SSPI=1
 djgpp:
 	$(MAKE) -C lib -f Makefile.dj
 	$(MAKE) -C src -f Makefile.dj
@@ -194,9 +200,21 @@ netware:
 	$(MAKE) -C lib -f Makefile.netware
 	$(MAKE) -C src -f Makefile.netware
 netware-ares:
 	$(MAKE) -C lib -f Makefile.netware WITH_ARES=1
 	$(MAKE) -C src -f Makefile.netware WITH_ARES=1
 netware-ssl:
-	$(MAKE) -C lib -f Makefile.netware SSL=1
+	$(MAKE) -C lib -f Makefile.netware WITH_SSL=1
-	$(MAKE) -C src -f Makefile.netware SSL=1
+	$(MAKE) -C src -f Makefile.netware WITH_SSL=1
 netware-ssl-zlib:
 	$(MAKE) -C lib -f Makefile.netware WITH_SSL=1 WITH_ZLIB=1
 	$(MAKE) -C src -f Makefile.netware WITH_SSL=1 WITH_ZLIB=1
 netware-zlib:
 	$(MAKE) -C lib -f Makefile.netware WITH_ZLIB=1
 	$(MAKE) -C src -f Makefile.netware WITH_ZLIB=1
 netware-clean:
 	$(MAKE) -C lib -f Makefile.netware clean
--- a/37
+++ b/37
@@ -26,50 +26,37 @@ CONTACT
  If you have problems, questions, ideas or suggestions, please contact us
  by posting to a suitable mailing list. See http://curl.haxx.se/mail/
-  Many major contributors to the project are listed in the THANKS document.
+  All contributors to the project are listed in the THANKS document.
 WEB SITE
-  Visit the curl web site or mirrors for the latest news:
+  Visit the curl web site or mirrors for the latest news and downloads:
        Sweden    -- http://curl.haxx.se/
        Australia -- http://curl.planetmirror.com/
        Austria   -- http://curl.gds.tuwien.ac.at/
        Canada    -- http://curl.meulie.net/
        Denmark   -- http://curl.cofman.dk/
        Estonia   -- http://curl.wildyou.net/
        France    -- http://curl.mirror.internet.tp/
-        Germany   -- http://curl.kgt.org/
+        Germany   -- http://curl.miscellaneousmirror.org/
        Germany   -- http://curl.mirror.at.stealer.net/
        Germany   -- http://curl.mirroring.de/
        Germany   -- http://curl.mons-new-media.de/
        Germany   -- http://curl.netmirror.org/
        Russia    -- http://curl.tsuren.net/
        Taiwan    -- http://curl.cs.pu.edu.tw/
        Thailand  -- http://curl.siamu.ac.th/
        US (AZ)   -- http://curl.islandofpoker.com/
        US (CA)   -- http://curl.mirror.redwire.net/
        US (CA)   -- http://curl.mirrormonster.com/
        US (CA)   -- http://curl.signal42.com/
        US (CA)   -- http://curl.tolix.org/
        US (CA)   -- http://curl.webhosting76.com/
        US (TX)   -- http://curl.109k.com/
-
+        US (TX)   -- http://curl.mirrors.cyberservers.net/
-DOWNLOAD
+        US (TX)   -- http://curl.seekmeup.com/
-
+        US (TX)   -- http://curl.hostingzero.com/
  The official download mirror sites are:
        Australia -- http://curl.planetmirror.com/download.html
        Austria   -- http://curl.gds.tuwien.ac.at/download.html
        Estonia   -- http://curl.wildyou.net/download.html
        Germany   -- ftp://ftp.fu-berlin.de/pub/unix/network/curl/
        Germany   -- http://curl.mirror.at.stealer.net/download.html
        Germany   -- http://curl.netmirror.org/download.html
        Germany   -- http://www.mirrorspace.org/curl/
        Hongkong  -- http://www.execve.net/curl/
        Russia    -- http://curl.tsuren.net/download.html
        Sweden    -- ftp://ftp.sunet.se/pub/www/utilities/curl/
        Sweden    -- http://cool.haxx.se/curl/
        Taiwan    -- http://curl.cs.pu.edu.tw/download.html
        Thailand  -- http://curl.siamu.ac.th/download.html
        US (CA)   -- http://curl.mirror.redwire.net/download.html
        US (CA)   -- http://curl.mirrormonster.com/download.html
        US (CA)   -- http://curl.signal42.com/download.html
        US (TX)   -- http://curl.109k.com/download.html
 CVS
--- a/87
+++ b/87
@@ -1,47 +1,74 @@
-Curl and libcurl 7.13.1
+Curl and libcurl 7.14.1
- Public curl release number:               86
+ Public curl release number:               89
- Releases counted from the very beginning: 113
+ Releases counted from the very beginning: 116
- Available command line options:           104
+ Available command line options:           108
- Available curl_easy_setopt() options:     122
+ Available curl_easy_setopt() options:     123
 Number of public functions in libcurl:    46
- Amount of public web site mirrors:        18
+ Amount of public web site mirrors:        25
- Number of known libcurl bindings:         30
+ Number of known libcurl bindings:         31
 Number of contributors:                   447
 This release includes the following changes:
- o CURLOPT_COOKIEFILE set to "" is now activating the cookie engine
+ o GNU GSS support
- o FTP code overhaul => multi interface much less blocking
+ o --ignore-content-length and CURLOPT_IGNORE_CONTENT_LENGTH added
- o Added CURLE_LOGIN_DENIED to be returned when curl is denied login to FTP
+ o negotiates data connection SSL earlier when doing FTPS with PASV
-   servers
+ o CURLOPT_COOKIELIST and CURLINFO_COOKIELIST
 o trailer support for chunked encoded data streams 
 o -x/CURL_PROXY strings may now contain user+password
 o --trace-time now outputs the full microsecond, all 6 digits
 This release includes the following bugfixes:
- o -# crash when more data than expected was retrieved
+ o MSVC build problem with the DSP file
- o NTLM/krb4 buffer overflow fixed (CAN-2005-0490)
+ o windows threaded resolver access violation with multi interface
- o proxy auth bug when following redirects to another host
+ o test suite works with valgrind 3
- o socket leak when local bind failed
+ o CA cert verification with GnuTLS builds
- o HTTP POST with --anyauth picking NTLM
+ o handles expiry times in cookie files that go beyond 32 bits in size
- o SSL problems when downloading exactly 16KB data
+ o several client problems with files, such as doing -d @file when the file
- o out of memory conditions preserve error codes better
+   isn't readable now gets a warning displayed
- o a few crashes at out of memory
+ o write callback abort didn't always "take"
- o inflate buffer usage bugfix
+ o the curl -z "bad syntax" warning is now hidden when -s is used
- o better DICT protocol adherence
+ o curl -d @nonexisting no longer makes a GET
- o disable valgrind-checking while testing if libcurl is built shared
+ o minor debug callback data size
- o locale names in some date strings
+ o date parsing of dates including daylight savings time zone names
 o using NTLM over proxy with an FTP URL
 o curl-config --features now displays SSL when built with GnuTLS too
 o CURLOPT_HTTPGET, CURLOPT_POST and CURLOPT_HTTPPOST reset CURLOPT_NOBODY
 o builds fine on AmigaOS again
 o corrected date parsing on Windows with auto-DST-adjust enabled
 o treats CONNECT 407 responses with bodies better during Digest/NTLM auth
 o improved strerror_r() API guessing when cross-compiling
 o debug builds work on Tru64
 o improved libcurl.m4
 o possible memory leak in windows name resolves
 o c-ares enabled build with mingw
 o proxy host set with numerical IPv6 address
 o better treatment of binary zeroes in HTTP response headers
 o fixed the notorious FTP server failure in the test suite
 o better checking of text output in the test suite on windows
 o FTP servers' TYPE command response check made less strict
 o URL-without-slash as in http://somehost?data
 o strerror_r() configure check for HP-UX 10.20 (and others)
 o time parse work-around on HP-UX 10.20 since its gmtime_r() is broken
 Other curl-related news since the previous public release:
- o libcurl-vb 1.0 http://sf.net/projects/libcurl-vb/
+ o cURLpp 0.5.2 was released at http://rrette.com/curlpp.html
- o pycurl 7.13.0: http://pycurl.sf.net/
+ o Rexx/CURL 1.3 was released at http://rexxcurl.sf.net/
- o new german mirror: http://curl.mons-new-media.de
+ o http://curl.miscellaneousmirror.org is a new German curl mirror
- o new US mirror: http://curl.islandofpoker.com
+ o LuaCURL by Alexander Marinov at http://luacurl.luaforge.net/
 o http://curl.hostingzero.com/ is a new US curl mirror
 o ocurl 0.2.1 was released at http://sourceforge.net/projects/ocurl
 This release would not have looked like this without help, code, reports and
 advice from friends like these:
- Gisle Vanem, David Byron, Marty Kuhrt, Maruko, Eric Vergnaud, Christopher
+ John McGowan, Georg Wicherski, Andres Garcia, Eric Cooper, Todd Kulesza,
- R. Palmer, Mike Dobbs, David in bug report #1124588, Ralph Mitchell,
+ Tupone Alfredo, Gisle Vanem, David Shaw, Andrew Bushnell, Dan Fandrich,
- Rene Rebe, Dave Dribin, Dan Fandrich
+ Adrian Schuur, Diego Casorran, Peteris Krumins, Jon Grubbs, Christopher
 R. Palmer, Mario Schroeder, Richard Clayton, James Bursa, Jeff Pohlmeyer,
 Norbert Novotny, Toby Peterson, Simon Josefsson, Igor Polyakov, Kevin Lussier
        Thanks! (and sorry if I forgot to mention someone)
--- a/30
+++ b/30
@@ -1,34 +1,12 @@
 Issues not sorted in any particular order.
-To get fixed in 7.13.2 (planned release: April 2005)
+To get fixed in 7.14.1 (planned release: August 2005)
 ======================
-58 - Fix KNOWN_BUGS #19: "FTP 3rd party transfers with the multi interface
+To get fixed in 7.14.2 (planned release: October 2005)
     doesn't work"
 47 - Peter Sylvester's patch for SRP on the TLS layer
     Awaits OpenSSL support for this, no need to support this in libcurl before
     there's an OpenSSL release that does it.
 58 - SSPI for libcurl on Windows
 59 - --form-string and --form-file as discussed on curl-users list
 To get fixed in 7.14.0
 ======================
-55 - Add a function to the multi interface that gets file descriptors, as an
+60 - CONNECT 407 responses that kills the connection
     alternative to the curl_multi_fdset(). This is necessary to allow apps to
     properly avoid the FD_SETSIZE problem.
-56 - Make curl_easy_perform() a wrapper-function that simply creates a multi
+63 - 
     handle, adds the easy handle to it, runs curl_multi_perform() until the
     transfer is done, then detach the easy handle, destroy the multi handle
     and return the easy handle's return code. This will thus make everything
     internally use and assume the multi interface. The select()-loop should
     use the new function from (55).
 57 - Add an interface to libcurl for getting and setting cookies from an easy
     handle. One idea: http://curl.haxx.se/mail/lib-2004-12/0195.html the
     older idea: http://curl.haxx.se/dev/COOKIES. We need to settle on some
     middle ground I guess.
--- a/acinclude.m4
+++ b/acinclude.m4
@@ -122,6 +122,30 @@ dnl end of non-blocking try-compile test
  fi
 ])
 dnl Check for struct sockaddr_storage. Most IPv6-enabled hosts have it, but
 dnl AIX 4.3 is one known exception.
 AC_DEFUN([TYPE_SOCKADDR_STORAGE],
 [
   AC_CHECK_TYPE([struct sockaddr_storage],
        AC_DEFINE(HAVE_STRUCT_SOCKADDR_STORAGE, 1,
                  [if struct sockaddr_storage is defined]), ,
   [
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 #endif
 #ifdef HAVE_SYS_SOCKET_H
 #include <sys/socket.h>
 #endif
 #ifdef HAVE_NETINET_IN_H
 #include <netinet/in.h>
 #endif
 #ifdef HAVE_ARPA_INET_H
 #include <arpa/inet.h>
 #endif
   ])
 ])
 dnl Check for socklen_t: historically on BSD it is an int, and in
 dnl POSIX 1g it is a type of its own, but some platforms use different
 dnl types for the argument to getsockopt, getpeername, etc.  So we
@@ -168,8 +192,7 @@ AC_DEFUN([TYPE_SOCKLEN_T],
 ])
 dnl Check for in_addr_t: it is used to receive the return code of inet_addr()
-dnl and a few other things. If not found, we set it to unsigned int, as even
+dnl and a few other things.
 dnl 64-bit implementations use to set it to a 32-bit type.
 AC_DEFUN([TYPE_IN_ADDR_T],
 [
   AC_CHECK_TYPE([in_addr_t], ,[
@@ -234,7 +257,7 @@ exit (h == NULL ? 1 : 0); }],[
 ])
 dnl ************************************************************
-dnl check for working getaddrinfo()
+dnl check for working getaddrinfo() that works with AI_NUMERICHOST
 dnl
 AC_DEFUN([CURL_CHECK_WORKING_GETADDRINFO],[
  AC_CACHE_CHECK(for working getaddrinfo, ac_cv_working_getaddrinfo,[
@@ -249,6 +272,7 @@ int main(void)
    int error;
    memset(&hints, 0, sizeof(hints));
    hints.ai_flags = AI_NUMERICHOST;
    hints.ai_family = AF_UNSPEC;
    hints.ai_socktype = SOCK_STREAM;
    error = getaddrinfo("127.0.0.1", "8080", &hints, &ai);
@@ -322,8 +346,24 @@ dnl program worked:
 [ ac_cv_working_ni_withscopeid="yes" ],
 dnl program failed:
 [ ac_cv_working_ni_withscopeid="no" ],
-dnl we cross-compile:
+dnl we cross-compile, check the headers using the preprocessor
-[ ac_cv_working_ni_withscopeid="yes" ]
+[
 AC_EGREP_CPP(WORKS,
 [
 #include <stdio.h>
 #include <sys/types.h>
 #include <sys/socket.h>
 #include <netdb.h>
 #ifdef NI_WITHSCOPEID
 WORKS
 #endif
 ],
  ac_cv_working_ni_withscopeid="yes",
  ac_cv_working_ni_withscopeid="no" )
 ]
 ) dnl end of AC_RUN_IFELSE
 ]) dnl end of AC_CACHE_CHECK
@@ -376,34 +416,25 @@ dnl      int strerror_r(int errnum, char *buf, size_t n);
 dnl
 AC_DEFUN([CURL_CHECK_STRERROR_R],
 [
-  dnl determine of strerror_r is present
+  AC_CHECK_FUNCS(strerror_r)
-  AC_CHECK_FUNCS(strerror_r,[
+
  if test "x$ac_cv_func_strerror_r" = "xyes"; then
    AC_MSG_CHECKING(whether strerror_r is declared)
    AC_EGREP_CPP(strerror_r,[
 #include <string.h>],[
      strerror_r="yes"
      AC_MSG_RESULT(yes)],[
      AC_MSG_RESULT(no)
-      AC_MSG_CHECKING(whether strerror_r with -D_THREAD_SAFE is declared)
+      AC_MSG_CHECKING(whether strerror_r with -D_REENTRANT is declared)
      AC_EGREP_CPP(strerror_r,[
-#define _THREAD_SAFE
+#define _REENTRANT
 #include <string.h>],[
-        strerror_r="yes"
+	CPPFLAGS="-D_REENTRANT $CPPFLAGS"
 	CPPFLAGS="-D_THREAD_SAFE $CPPFLAGS"
 	AC_MSG_RESULT(yes)],
-	AC_MSG_RESULT(no))])])
+	AC_MSG_RESULT(no)
  if test "x$strerror_r" = "xyes"; then
    dnl check if strerror_r is properly declared in the headers
    AC_CHECK_DECL(strerror_r, ,
        AC_DEFINE(HAVE_NO_STRERROR_R_DECL, 1, [we have no strerror_r() proto])
-,
+       ) dnl with _THREAD_SAFE
-[#include <stdlib.h>
+    ]) dnl plain cpp for it
 #include <stdio.h>
 #include <string.h>
 #include <errno.h>
 ])
    dnl determine if this strerror_r() is glibc or POSIX
    AC_MSG_CHECKING([for a glibc strerror_r API])
@@ -425,8 +456,20 @@ main () {
    AC_DEFINE(HAVE_GLIBC_STRERROR_R, 1, [we have a glibc-style strerror_r()])
    AC_MSG_RESULT([yes]),
    AC_MSG_RESULT([no]),
-    dnl cross-compiling!
+
    dnl Use an inferior method of strerror_r detection while cross-compiling
    AC_EGREP_CPP(yes, [
 #include <features.h>
 #ifdef __GLIBC__
 yes
 #endif
 ], 
      dnl looks like glibc, so assume a glibc-style strerror_r()
      GLIBC_STRERROR_R="1"
      AC_DEFINE(HAVE_GLIBC_STRERROR_R, 1, [we have a glibc-style strerror_r()])
      AC_MSG_RESULT([yes]),
      AC_MSG_NOTICE([cannot determine strerror_r() style: edit lib/config.h manually!])
    ) dnl while cross-compiling
    )
    if test -z "$GLIBC_STRERROR_R"; then
@@ -715,15 +758,18 @@ AC_DEFUN([CURL_CC_DEBUG_OPTS],
         fi
         dnl -Wunreachable-code seems totally unreliable on my gcc 3.3.2 on
-         dnl on i686-Linux as it gives us heaps with false positives
+         dnl on i686-Linux as it gives us heaps with false positives.
         dnl Also, on gcc 4.0.X it is totally unbearable and complains all
         dnl over making it unusable for generic purposes. Let's not use it.
         if test "$gccnum" -ge "303"; then
           dnl gcc 3.3 and later
           WARN="$WARN -Wendif-labels -Wstrict-prototypes"
         fi
         if test "$gccnum" -ge "304"; then
-           # try -Wunreachable-code on gcc 3.4
+           # try these on gcc 3.4
-           WARN="$WARN -Wunreachable-code"
+           WARN="$WARN -Wdeclaration-after-statement"
         fi
         for flag in $CPPFLAGS; do
@@ -766,3 +812,72 @@ AC_DEFUN([CURL_CC_DEBUG_OPTS],
 ]) dnl end of AC_DEFUN()
 dnl Determine the name of the library to pass to dlopen() based on the name
 dnl that would normally be given to AC_CHECK_LIB.  The preprocessor symbol
 dnl given is set to the quoted library file name. 
 dnl The standard dynamic library file name is first generated, based on the
 dnl current system type, then a search is performed for that file on the
 dnl standard dynamic library path.  If it is a symbolic link, the destination
 dnl of the link is used as the file name, after stripping off any minor
 dnl version numbers. If a library file can't be found, a guess is made.
 dnl This macro assumes AC_PROG_LIBTOOL has been called and requires perl
 dnl to be available in the PATH, or $PERL to be set to its location.
 dnl
 dnl CURL_DLLIB_NAME(VARIABLE, library_name)
 dnl e.g. CURL_DLLIB_NAME(LDAP_NAME, ldap) on a Linux system might result
 dnl in LDAP_NAME holding the string "libldap.so.2".
 AC_DEFUN([CURL_DLLIB_NAME],
 [
 AC_MSG_CHECKING([name of dynamic library $2])
 dnl The shared library extension variable name changes from version to
 dnl version of libtool.  Try a few names then just set one statically.
 test -z "$shared_ext" && shared_ext="$shrext_cmds"
 test -z "$shared_ext" && shared_ext="$shrext"
 test -z "$shared_ext" && shared_ext=".so"
 dnl Create the library link name of the correct form for this platform
 LIBNAME_LINK_SPEC=`echo "$library_names_spec" | $SED 's/^.* //'`
 DLGUESSLIB=`name=$2 eval echo "$libname_spec"`
 DLGUESSFILE=`libname="$DLGUESSLIB" release="" major="" versuffix="" eval echo "$LIBNAME_LINK_SPEC"`
 dnl Synthesize a likely dynamic library name in case we can't find an actual one
 SO_NAME_SPEC="$soname_spec"
 dnl soname_spec undefined when identical to the 1st entry in library_names_spec
 test -z "$SO_NAME_SPEC" && SO_NAME_SPEC=`echo "$library_names_spec" | $SED 's/ .*$//'`
 DLGUESSSOFILE=`libname="$DLGUESSLIB" release="" major="" versuffix="" eval echo "$SO_NAME_SPEC"`
 if test "$cross_compiling" = yes; then
  dnl Can't look at filesystem when cross-compiling
  AC_DEFINE_UNQUOTED($1, "$DLGUESSSOFILE", [$2 dynamic library file])
  AC_MSG_RESULT([$DLGUESSSOFILE (guess while cross-compiling)])
 else
  DLFOUNDFILE=""
  if test "$sys_lib_dlsearch_path_spec" ; then
    dnl Search for the link library name and see what it points to.
    for direc in $sys_lib_dlsearch_path_spec ; do
      DLTRYFILE="$direc/$DLGUESSFILE"
      dnl Find where the symbolic link for this name points
      changequote(<<, >>)dnl
      <<
      DLFOUNDFILE=`${PERL:-perl} -e 'use File::Basename; (basename(readlink($ARGV[0])) =~ /^(.*[^\d]\.\d+)[\d\.]*$/ && print ${1}) || exit 1;' "$DLTRYFILE" 2>&5`
      >>
      changequote([, ])dnl
      if test "$?" -eq "0"; then
        dnl Found the file link
        break
      fi
    done
  fi
  if test -z "$DLFOUNDFILE" ; then
    dnl Couldn't find a link library, so guess at a name.
    DLFOUNDFILE="$DLGUESSSOFILE"
  fi
  AC_DEFINE_UNQUOTED($1, "$DLFOUNDFILE", [$2 dynamic library file])
  AC_MSG_RESULT($DLFOUNDFILE)
 fi
 ])
--- a/ares/AUTHORS
+++ b/ares/AUTHORS
@@ -0,0 +1,13 @@
 c-ares is based on ares, and these are the people that have worked on it since
 the fork was made:
 Daniel Stenberg
 Dominick Meglio
 liren at vivisimo.com
 James Bursa
 Duncan Wilcox
 Dirk Manske
 Dan Fandrich
 Gisle Vanem
 Gunter Knauf
 Henrik Stoerner
--- a/ares/CHANGES
+++ b/ares/CHANGES
@@ -1,5 +1,77 @@
  Changelog for the c-ares project
 Version 1.3.0 (August 29, 2004)
 * August 21
 - Alfredo Tupone provided a fix for the Windows code in get_iphlpapi_dns_info()
  when getting the DNS server etc.
 * June 19
 - Added some checks for the addrinfo structure.
 * June 2
 - William Ahern:
  Make UDP sockets non-blocking. I've confirmed that at least on Linux 2.4 a
  read event can come back from poll() on a valid SOCK_DGRAM socket but
  recv(2) will still block. This patch doesn't ignore EAGAIN in
  read_udp_packets(), though maybe it should. (This patch was edited by Daniel
  Stenberg and a new configure test was added (imported from curl's configure)
  to properly detect what non-blocking socket approach to use.)
  I'm not quite sure how this was happening, but I've been seeing PTR queries
  which seem to return empty responses. At least, they were empty when calling
  ares_expand_name() on the record. Here's a patch which guarantees to
  NUL-terminate the expanded name. The old behavior failed to NUL-terminate if
  len was 0, and this was causing strlen() to run past the end of the buffer
  after calling ares_expand_name() and getting ARES_SUCCESS as the return
  value. If q is not greater than *s then it's equal and *s is always
  allocated with at least one byte.
 * May 16
 - Added ares_getnameinfo which mimics the getnameinfo API (another feature
  that could use testing).
 * May 14
 - Added an inet_ntop function from BIND for systems that do not have it.
 * April 9
 - Made sortlist support IPv6 (this can probably use some testing).
 - Made sortlist support CIDR matching for IPv4.
 * April 8
 - Added preliminary IPv6 support to ares_gethostbyname. Currently, sortlist
  does not work with IPv6. Also provided an implementation of bitncmp from
  BIND for systems that do not supply this function. This will be used to add
  IPv6 support to sortlist.
 - Made ares_gethostbyaddr support IPv6 by specifying AF_INET6 as the family.
  The function can lookup IPv6 addresses both from files (/etc/hosts) and
  DNS lookups.
 * April 7
 - Tupone Alfredo fixed includes of arpa/nameser_compat.h to build fine on Mac
  OS X.
 * April 5
 - Dominick Meglio: Provided implementations of inet_net_pton and inet_pton
  from BIND for systems that do not include these functions.
 * March 11, 2005
 - Dominick Meglio added ares_parse_aaaa_reply.c and did various
  adjustments. The first little steps towards IPv6 support!
 * November 7
 - Fixed the VC project and makefile to use ares_cancel and ares_version
--- a/ares/Makefile.am
+++ b/ares/Makefile.am
@@ -12,10 +12,10 @@ MSVCFILES = vc/adig/adig.dep vc/adig/adig.dsp vc/adig/adig.mak	\
 # adig and ahost are just sample programs and thus not mentioned with the
 # regular sources and headers
 EXTRA_DIST = CHANGES README.cares Makefile.inc adig.c ahost.c $(man_MANS) \
- $(MSVCFILES)
+ $(MSVCFILES) AUTHORS
-VER=-version-info 0:0:0
+VER=-version-info 1:0:0
 # This flag accepts an argument of the form current[:revision[:age]]. So,
 # passing -version-info 3:12:1 sets current to 3, revision to 12, and age to
 # 1.
--- a/ares/Makefile.inc
+++ b/ares/Makefile.inc
@@ -3,13 +3,16 @@ ares__close_sockets.c ares_free_string.c ares_search.c ares__get_hostent.c \
 ares_gethostbyaddr.c ares_send.c ares__read_line.c ares_gethostbyname.c     \
 ares_strerror.c ares_cancel.c ares_init.c ares_timeout.c ares_destroy.c     \
 ares_mkquery.c ares_version.c ares_expand_name.c ares_parse_a_reply.c       \
-windows_port.c ares_expand_string.c ares_parse_ptr_reply.c
+windows_port.c ares_expand_string.c ares_parse_ptr_reply.c                  \
 ares_parse_aaaa_reply.c ares_getnameinfo.c inet_net_pton.c bitncmp.c        \
 inet_ntop.c
-HHEADERS = ares.h ares_private.h setup.h ares_dns.h ares_version.h nameser.h
+HHEADERS = ares.h ares_private.h setup.h ares_dns.h ares_version.h          \
           nameser.h inet_net_pton.h inet_ntop.h ares_ipv6.h bitncmp.h
 MANPAGES= ares_destroy.3 ares_expand_name.3 ares_expand_string.3 ares_fds.3 \
 ares_free_hostent.3 ares_free_string.3 ares_gethostbyaddr.3                \
 ares_gethostbyname.3 ares_init.3 ares_init_options.3 ares_mkquery.3        \
 ares_parse_a_reply.3 ares_parse_ptr_reply.3 ares_process.3                 \
 ares_query.3 ares_search.3 ares_send.3 ares_strerror.3 ares_timeout.3      \
- ares_version.3 ares_cancel.3
+ ares_version.3 ares_cancel.3 ares_parse_aaaa_reply.3 ares_getnameinfo.3
--- a/ares/Makefile.netware
+++ b/ares/Makefile.netware
@@ -20,7 +20,7 @@ endif
 TARGETS = adig.nlm ahost.nlm
 LTARGET = libcares.lib
 VERSION	= $(LIBCARES_VERSION)
-COPYR	= Copyright (c) 1996 - 2004, Daniel Stenberg, <daniel@haxx.se>
+COPYR	= Copyright (C) 1996 - 2005, Daniel Stenberg, <daniel@haxx.se>
 DESCR	= cURL $(subst .def,,$(notdir $@)) $(LIBCARES_VERSION_STR) - http://curl.haxx.se
 MTSAFE	= YES
 STACK	= 64000
@@ -89,7 +89,7 @@ LDFLAGS	= -T
 AR	= ar
 ARFLAGS	= -cq
 CFLAGS	+= -fno-builtin -fpack-struct -fpcc-struct-return -fno-strict-aliasing
-CFLAGS	+= -Wall -Wno-format # -pedantic
+CFLAGS	+= -Wall -Wno-format -Wno-uninitialized # -pedantic
 ifeq ($(LIBARCH),LIBC)
 	PRELUDE = $(SDK_LIBC)/imports/libcpre.gcc.o
 else
@@ -104,7 +104,7 @@ SDK_LIBC = $(NDK_ROOT)/libc
 ifeq ($(LIBARCH),LIBC)
 	INCLUDES += -I$(SDK_LIBC)/include -I$(SDK_LIBC)/include/nks
-	INCLUDES += -I$(SDK_LIBC)/include/winsock
+	# INCLUDES += -I$(SDK_LIBC)/include/winsock
 	CFLAGS += -D_POSIX_SOURCE
 #	CFLAGS += -D__ANSIC__
 else
@@ -126,7 +126,10 @@ DL	= '
 #-include $(NDKBASE)/nlmconv/ncpfs.inc
 endif
-OBJS	:= $(patsubst %.c,$(OBJDIR)/%.o,$(wildcard ares_*.c))
+# Makefile.inc provides the CSOURCES and HHEADERS defines
 include Makefile.inc
 OBJS	:= $(patsubst %.c,$(OBJDIR)/%.o,$(strip $(CSOURCES)))
 .PHONY: lib nlm prebuild dist install clean
@@ -256,6 +259,7 @@ config.h: Makefile.netware
 	@echo $(DL)#define VERSION "$(LIBCURL_VERSION_STR)"$(DL) >> $@
 	@echo $(DL)#define PACKAGE_BUGREPORT "curl-bug@haxx.se"$(DL) >> $@
 	@echo $(DL)#define HAVE_ARPA_INET_H 1$(DL) >> $@
 	@echo $(DL)#define HAVE_ARPA_NAMESER_H 1$(DL) >> $@
 	@echo $(DL)#define HAVE_ASSERT_H 1$(DL) >> $@
 	@echo $(DL)#define HAVE_DLFCN_H 1$(DL) >> $@
 	@echo $(DL)#define HAVE_DLOPEN 1$(DL) >> $@
@@ -297,6 +301,13 @@ config.h: Makefile.netware
 	@echo $(DL)#define SIZEOF_CURL_OFF_T 4$(DL) >> $@
 	@echo $(DL)#define STDC_HEADERS 1$(DL) >> $@
 	@echo $(DL)#define TIME_WITH_SYS_TIME 1$(DL) >> $@
 	@echo $(DL)#define HAVE_AF_INET6 1$(DL) >> $@
 	@echo $(DL)#define HAVE_PF_INET6 1$(DL) >> $@
 	@echo $(DL)#define HAVE_STRUCT_IN6_ADDR 1$(DL) >> $@
 	@echo $(DL)#define HAVE_STRUCT_SOCKADDR_IN6 1$(DL) >> $@
 	@echo $(DL)#define HAVE_STRUCT_ADDRINFO 1$(DL) >> $@
 	@echo $(DL)#define SIZEOF_STRUCT_IN6_ADDR 16$(DL) >> $@
 	@echo $(DL)#define SIZEOF_STRUCT_IN_ADDR 4$(DL) >> $@
 ifdef NW_WINSOCK
 	@echo $(DL)#define HAVE_CLOSESOCKET 1$(DL) >> $@
 else
--- a/ares/acinclude.m4
+++ b/ares/acinclude.m4
@@ -1,3 +1,126 @@
 dnl Check for how to set a socket to non-blocking state. There seems to exist
 dnl four known different ways, with the one used almost everywhere being POSIX
 dnl and XPG3, while the other different ways for different systems (old BSD,
 dnl Windows and Amiga).
 dnl
 dnl There are two known platforms (AIX 3.x and SunOS 4.1.x) where the
 dnl O_NONBLOCK define is found but does not work. This condition is attempted
 dnl to get caught in this script by using an excessive number of #ifdefs...
 dnl
 AC_DEFUN([CURL_CHECK_NONBLOCKING_SOCKET],
 [
  AC_MSG_CHECKING([non-blocking sockets style])
  AC_TRY_COMPILE([
 /* headers for O_NONBLOCK test */
 #include <sys/types.h>
 #include <unistd.h>
 #include <fcntl.h>
 ],[
 /* try to compile O_NONBLOCK */
 #if defined(sun) || defined(__sun__) || defined(__SUNPRO_C) || defined(__SUNPRO_CC)
 # if defined(__SVR4) || defined(__srv4__)
 #  define PLATFORM_SOLARIS
 # else
 #  define PLATFORM_SUNOS4
 # endif
 #endif
 #if (defined(_AIX) || defined(__xlC__)) && !defined(_AIX4)
 # define PLATFORM_AIX_V3
 #endif
 #if defined(PLATFORM_SUNOS4) || defined(PLATFORM_AIX_V3) || defined(__BEOS__)
 #error "O_NONBLOCK does not work on this platform"
 #endif
  int socket;
  int flags = fcntl(socket, F_SETFL, flags | O_NONBLOCK);
 ],[
 dnl the O_NONBLOCK test was fine
 nonblock="O_NONBLOCK"
 AC_DEFINE(HAVE_O_NONBLOCK, 1, [use O_NONBLOCK for non-blocking sockets])
 ],[
 dnl the code was bad, try a different program now, test 2
  AC_TRY_COMPILE([
 /* headers for FIONBIO test */
 #include <unistd.h>
 #include <stropts.h>
 ],[
 /* FIONBIO source test (old-style unix) */
 int socket;
 int flags = ioctl(socket, FIONBIO, &flags);
 ],[
 dnl FIONBIO test was good
 nonblock="FIONBIO"
 AC_DEFINE(HAVE_FIONBIO, 1, [use FIONBIO for non-blocking sockets])
 ],[
 dnl FIONBIO test was also bad
 dnl the code was bad, try a different program now, test 3
  AC_TRY_COMPILE([
 /* headers for ioctlsocket test (cygwin?) */
 #include <windows.h>
 ],[
 /* ioctlsocket source code */
 int socket;
 unsigned long flags = ioctlsocket(socket, FIONBIO, &flags);
 ],[
 dnl ioctlsocket test was good
 nonblock="ioctlsocket"
 AC_DEFINE(HAVE_IOCTLSOCKET, 1, [use ioctlsocket() for non-blocking sockets])
 ],[
 dnl ioctlsocket didnt compile!, go to test 4
  AC_TRY_LINK([
 /* headers for IoctlSocket test (Amiga?) */
 #include <sys/ioctl.h>
 ],[
 /* IoctlSocket source code */
 int socket;
 int flags = IoctlSocket(socket, FIONBIO, (long)1);
 ],[
 dnl ioctlsocket test was good
 nonblock="IoctlSocket"
 AC_DEFINE(HAVE_IOCTLSOCKET_CASE, 1, [use Ioctlsocket() for non-blocking sockets])
 ],[
 dnl Ioctlsocket didnt compile, do test 5!
  AC_TRY_COMPILE([
 /* headers for SO_NONBLOCK test (BeOS) */
 #include <socket.h>
 ],[
 /* SO_NONBLOCK source code */
 long b = 1;
 int socket;
 int flags = setsockopt(socket, SOL_SOCKET, SO_NONBLOCK, &b, sizeof(b));
 ],[
 dnl the SO_NONBLOCK test was good
 nonblock="SO_NONBLOCK"
 AC_DEFINE(HAVE_SO_NONBLOCK, 1, [use SO_NONBLOCK for non-blocking sockets])
 ],[
 dnl test 5 didnt compile!
 nonblock="nada"
 AC_DEFINE(HAVE_DISABLED_NONBLOCKING, 1, [disabled non-blocking sockets])
 ])
 dnl end of fifth test
 ])
 dnl end of forth test
 ])
 dnl end of third test
 ])
 dnl end of second test
 ])
 dnl end of non-blocking try-compile test
  AC_MSG_RESULT($nonblock)
  if test "$nonblock" = "nada"; then
    AC_MSG_WARN([non-block sockets disabled])
  fi
 ])
 dnl We create a function for detecting which compiler we use and then set as
 dnl pendantic compiler options as possible for that particular compiler. The
@@ -99,3 +222,70 @@ AC_DEFUN([CURL_CC_DEBUG_OPTS],
 ]) dnl end of AC_DEFUN()
 dnl This macro determines if the specified struct exists in the specified file
 dnl Syntax:
 dnl CARES_CHECK_STRUCT(headers, struct name, if found, [if not found])
 AC_DEFUN([CARES_CHECK_STRUCT], [
  AC_MSG_CHECKING([for struct $2])
  AC_TRY_COMPILE([$1], 
    [
      struct $2 struct_instance;
    ], ac_struct="yes", ac_found="no")
  if test "$ac_struct" = "yes" ; then
    AC_MSG_RESULT(yes)
    $3
  else
    AC_MSG_RESULT(no)
    $4
  fi
 ])
 dnl This macro determins if the specified struct contains a specific member.
 dnl Syntax:
 dnl CARES_CHECK_STRUCT_MEMBER(headers, struct name, member name, if found, [if not found])
 AC_DEFUN([CARES_CHECK_STRUCT_MEMBER], [
  AC_MSG_CHECKING([if struct $2 has member $3])
  AC_TRY_COMPILE([$1], 
    [
      struct $2 struct_instance;
      struct_instance.$3 = 0;
    ], ac_struct="yes", ac_found="no")
  if test "$ac_struct" = "yes" ; then
    AC_MSG_RESULT(yes)
    $4
  else
    AC_MSG_RESULT(no)
    $5
  fi
 ])
 dnl This macro determines if the specified constant exists in the specified file
 dnl Syntax:
 dnl CARES_CHECK_CONSTANT(headers, constant name, if found, [if not found])
 AC_DEFUN([CARES_CHECK_CONSTANT], [
  AC_MSG_CHECKING([for $2])
  AC_EGREP_CPP(VARIABLEWASDEFINED,
   [
      $1
      #ifdef $2
        VARIABLEWASDEFINED
      #else
        NJET
      #endif
    ], ac_constant="yes", ac_constant="no"
  )
  if test "$ac_constant" = "yes" ; then
    AC_MSG_RESULT(yes)
    $3
  else
    AC_MSG_RESULT(no)
    $4
  fi
 ])
--- a/ares/ares.h
+++ b/ares/ares.h
@@ -29,12 +29,14 @@
 #if defined(WATT32)
  #include <netinet/in.h>
  #include <sys/socket.h>
  #include <tcp.h>
 #elif defined(WIN32)
  #include <winsock.h>
  #include <windows.h>
 #else
  #include <netinet/in.h>
  #include <sys/socket.h>
 #endif
 #ifdef  __cplusplus
@@ -64,6 +66,9 @@ extern "C" {
 #define ARES_EDESTRUCTION       16
 #define ARES_EBADSTR            17
 /* ares_getnameinfo error codes */
 #define ARES_EBADFLAGS          18
 /* Flag values */
 #define ARES_FLAG_USEVC         (1 << 0)
 #define ARES_FLAG_PRIMARY       (1 << 1)
@@ -85,6 +90,24 @@ extern "C" {
 #define ARES_OPT_DOMAINS        (1 << 7)
 #define ARES_OPT_LOOKUPS        (1 << 8)
 /* Nameinfo flag values */
 #define ARES_NI_NOFQDN                  (1 << 0)
 #define ARES_NI_NUMERICHOST             (1 << 1)
 #define ARES_NI_NAMEREQD                (1 << 2)
 #define ARES_NI_NUMERICSERV             (1 << 3)
 #define ARES_NI_DGRAM                   (1 << 4)
 #define ARES_NI_TCP                     0
 #define ARES_NI_UDP                     ARES_NI_DGRAM
 #define ARES_NI_SCTP                    (1 << 5)
 #define ARES_NI_DCCP                    (1 << 6)
 #define ARES_NI_NUMERICSCOPE            (1 << 7)
 #define ARES_NI_LOOKUPHOST              (1 << 8)
 #define ARES_NI_LOOKUPSERVICE           (1 << 9)
 /* Reserved for future use */
 #define ARES_NI_IDN                     (1 << 10)
 #define ARES_NI_ALLOW_UNASSIGNED        (1 << 11)
 #define ARES_NI_USE_STD3_ASCII_RULES    (1 << 12)
 struct ares_options {
  int flags;
  int timeout;
@@ -101,12 +124,15 @@ struct ares_options {
 struct hostent;
 struct timeval;
 struct sockaddr;
 struct ares_channeldata;
 typedef struct ares_channeldata *ares_channel;
 typedef void (*ares_callback)(void *arg, int status, unsigned char *abuf,
                              int alen);
 typedef void (*ares_host_callback)(void *arg, int status,
                                   struct hostent *hostent);
 typedef void (*ares_nameinfo_callback)(void *arg, int status,
                                       char *node, char *service);
 int ares_init(ares_channel *channelptr);
 int ares_init_options(ares_channel *channelptr, struct ares_options *options,
@@ -123,7 +149,9 @@ void ares_gethostbyname(ares_channel channel, const char *name, int family,
                        ares_host_callback callback, void *arg);
 void ares_gethostbyaddr(ares_channel channel, const void *addr, int addrlen,
                        int family, ares_host_callback callback, void *arg);
-
+void ares_getnameinfo(ares_channel channel, const struct sockaddr *sa,
                      socklen_t salen, int flags, ares_nameinfo_callback callback,
                      void *arg);
 int ares_fds(ares_channel channel, fd_set *read_fds, fd_set *write_fds);
 struct timeval *ares_timeout(ares_channel channel, struct timeval *maxtv,
                             struct timeval *tv);
@@ -137,12 +165,13 @@ int ares_expand_string(const unsigned char *encoded, const unsigned char *abuf,
                     int alen, unsigned char **s, long *enclen);
 int ares_parse_a_reply(const unsigned char *abuf, int alen,
                       struct hostent **host);
 int ares_parse_aaaa_reply(const unsigned char *abuf, int alen,
                       struct hostent **host);
 int ares_parse_ptr_reply(const unsigned char *abuf, int alen, const void *addr,
                         int addrlen, int family, struct hostent **host);
 void ares_free_string(void *str);
 void ares_free_hostent(struct hostent *host);
 const char *ares_strerror(int code);
 void ares_free_errmem(char *mem);
 #ifdef  __cplusplus
 }
--- a/ares/ares__get_hostent.c
+++ b/ares/ares__get_hostent.c
@@ -30,12 +30,15 @@
 #include "ares.h"
 #include "ares_private.h"
 #include "inet_net_pton.h"
-int ares__get_hostent(FILE *fp, struct hostent **host)
+int ares__get_hostent(FILE *fp, int family, struct hostent **host)
 {
  char *line = NULL, *p, *q, *canonical, **alias;
  int status, linesize, end_at_hostname, naliases;
  struct in_addr addr;
  struct in6_addr addr6;
  int addrlen = sizeof(struct in_addr);
  struct hostent *hostent = NULL;
  while ((status = ares__read_line(fp, &line, &linesize)) == ARES_SUCCESS)
@@ -56,6 +59,17 @@ int ares__get_hostent(FILE *fp, struct hostent **host)
      *p = 0;
      addr.s_addr = inet_addr(line);
      if (addr.s_addr == INADDR_NONE)
       {
          if (ares_inet_pton(AF_INET6, line, &addr6) > 0)
            {
              if (family != AF_INET6)
                continue;
              addrlen = sizeof(struct in6_addr);
            }
          else
            continue;
       }
      else if (family != AF_INET)
        continue;
      /* Get the canonical hostname. */
@@ -100,7 +114,7 @@ int ares__get_hostent(FILE *fp, struct hostent **host)
      hostent->h_addr_list = malloc(2 * sizeof(char *));
      if (!hostent->h_addr_list)
        break;
-      hostent->h_addr_list[0] = malloc(sizeof(struct in_addr));
+      hostent->h_addr_list[0] = malloc(addrlen);
      if (!hostent->h_addr_list[0])
        break;
      hostent->h_aliases = malloc((naliases + 1) * sizeof(char *));
@@ -134,9 +148,12 @@ int ares__get_hostent(FILE *fp, struct hostent **host)
        }
      hostent->h_aliases[naliases] = NULL;
-      hostent->h_addrtype = AF_INET;
+      hostent->h_addrtype = family;
-      hostent->h_length = sizeof(struct in_addr);
+      hostent->h_length = addrlen;
-      memcpy(hostent->h_addr_list[0], &addr, sizeof(struct in_addr));
+      if (family == AF_INET)
        memcpy(hostent->h_addr_list[0], &addr, addrlen);
      else if (family == AF_INET6)
        memcpy(hostent->h_addr_list[0], &addr6, addrlen);
      hostent->h_addr_list[1] = NULL;
      *host = hostent;
      free(line);
--- a/ares/ares_expand_name.c
+++ b/ares/ares_expand_name.c
@@ -21,6 +21,9 @@
 #else
 #include <netinet/in.h>
 #include <arpa/nameser.h>
 #ifdef HAVE_ARPA_NAMESER_COMPAT_H
 #include <arpa/nameser_compat.h>
 #endif
 #endif
 #include <stdlib.h>
@@ -103,6 +106,8 @@ int ares_expand_name(const unsigned char *encoded, const unsigned char *abuf,
  /* Nuke the trailing period if we wrote one. */
  if (q > *s)
    *(q - 1) = 0;
  else
    *q = 0; /* zero terminate */
  return ARES_SUCCESS;
 }
--- a/ares/ares_free_hostent.3
+++ b/ares/ares_free_hostent.3
@@ -28,8 +28,8 @@ The
 .I ares_free_hostent
 function frees a
 .B struct hostent
-allocated by one of the functions \fIares_parse_a_reply(3)\fP or
+allocated by one of the functions \fIares_parse_a_reply(3)\fP,
-\fIares_parse_ptr_reply(3)\fP.
+\fIares_parse_aaaa_reply(3)\fP, or \fIares_parse_ptr_reply(3)\fP.
 .SH NOTES
 It is not necessary (and is not correct) to free the host structure passed to
 the callback functions for \fIares_gethostbyname(3)\fP or
@@ -37,6 +37,7 @@ the callback functions for \fIares_gethostbyname(3)\fP or
 host structures when the callback returns.
 .SH SEE ALSO
 .BR ares_parse_a_reply (3),
 .BR ares_parse_aaaa_reply (3),
 .BR ares_parse_ptr_reply (3)
 .SH AUTHOR
 Greg Hudson, MIT Information Systems
--- a/ares/ares_gethostbyaddr.c
+++ b/ares/ares_gethostbyaddr.c
@@ -12,7 +12,6 @@
 * this software for any purpose.  It is provided "as is"
 * without express or implied warranty.
 */
 #include "setup.h"
 #include <sys/types.h>
@@ -23,6 +22,9 @@
 #include <netinet/in.h>
 #include <netdb.h>
 #include <arpa/nameser.h>
 #ifdef HAVE_ARPA_NAMESER_COMPAT_H
 #include <arpa/nameser_compat.h>
 #endif
 #endif
 #include <stdio.h>
@@ -31,6 +33,7 @@
 #include "ares.h"
 #include "ares_private.h"
 #include "inet_net_pton.h"
 #ifdef WATT32
 #undef WIN32
@@ -39,7 +42,8 @@
 struct addr_query {
  /* Arguments passed to ares_gethostbyaddr() */
  ares_channel channel;
-  struct in_addr addr;
+  union ares_addr addr;
  int family;
  ares_host_callback callback;
  void *arg;
@@ -51,14 +55,21 @@ static void addr_callback(void *arg, int status, unsigned char *abuf,
                          int alen);
 static void end_aquery(struct addr_query *aquery, int status,
                       struct hostent *host);
-static int file_lookup(struct in_addr *addr, struct hostent **host);
+static int file_lookup(union ares_addr *addr, int family, struct hostent **host);
 void ares_gethostbyaddr(ares_channel channel, const void *addr, int addrlen,
                        int family, ares_host_callback callback, void *arg)
 {
  struct addr_query *aquery;
-  if (family != AF_INET || addrlen != sizeof(struct in_addr))
+  if (family != AF_INET && family != AF_INET6)
    {
      callback(arg, ARES_ENOTIMP, NULL);
      return;
    }
  if ((family == AF_INET && addrlen != sizeof(struct in_addr)) ||
      (family == AF_INET6 && addrlen != sizeof(struct in6_addr)))
    {
      callback(arg, ARES_ENOTIMP, NULL);
      return;
@@ -71,7 +82,11 @@ void ares_gethostbyaddr(ares_channel channel, const void *addr, int addrlen,
      return;
    }
  aquery->channel = channel;
-  memcpy(&aquery->addr, addr, sizeof(aquery->addr));
+  if (family == AF_INET)
    memcpy(&aquery->addr.addr4, addr, sizeof(struct in_addr));
  else
    memcpy(&aquery->addr.addr6, addr, sizeof(struct in6_addr));
  aquery->family = family;
  aquery->callback = callback;
  aquery->arg = arg;
  aquery->remaining_lookups = channel->lookups;
@@ -82,7 +97,7 @@ void ares_gethostbyaddr(ares_channel channel, const void *addr, int addrlen,
 static void next_lookup(struct addr_query *aquery)
 {
  const char *p;
-  char name[64];
+  char name[128];
  int a1, a2, a3, a4, status;
  struct hostent *host;
  unsigned long addr;
@@ -92,7 +107,9 @@ static void next_lookup(struct addr_query *aquery)
      switch (*p)
        {
        case 'b':
-          addr = ntohl(aquery->addr.s_addr);
+          if (aquery->family == AF_INET)
            {
              addr = ntohl(aquery->addr.addr4.s_addr);
              a1 = (int)((addr >> 24) & 0xff);
              a2 = (int)((addr >> 16) & 0xff);
              a3 = (int)((addr >> 8) & 0xff);
@@ -101,9 +118,27 @@ static void next_lookup(struct addr_query *aquery)
              aquery->remaining_lookups = p + 1;
              ares_query(aquery->channel, name, C_IN, T_PTR, addr_callback,
                         aquery);
            }
          else
            {
              unsigned char *bytes;
              bytes = (unsigned char *)&aquery->addr.addr6.s6_addr;
              sprintf(name, "%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.ip6.arpa",
                      bytes[15]&0xf, bytes[15] >> 4, bytes[14]&0xf, bytes[14] >> 4,
                      bytes[13]&0xf, bytes[13] >> 4, bytes[12]&0xf, bytes[12] >> 4,
                      bytes[11]&0xf, bytes[11] >> 4, bytes[10]&0xf, bytes[10] >> 4,
                      bytes[9]&0xf, bytes[9] >> 4, bytes[8]&0xf, bytes[8] >> 4,
                      bytes[7]&0xf, bytes[7] >> 4, bytes[6]&0xf, bytes[6] >> 4,
                      bytes[5]&0xf, bytes[5] >> 4, bytes[4]&0xf, bytes[4] >> 4,
                      bytes[3]&0xf, bytes[3] >> 4, bytes[2]&0xf, bytes[2] >> 4,
                      bytes[1]&0xf, bytes[1] >> 4, bytes[0]&0xf, bytes[0] >> 4);
              aquery->remaining_lookups = p + 1;
              ares_query(aquery->channel, name, C_IN, T_PTR, addr_callback,
                         aquery);
            }
          return;
        case 'f':
-          status = file_lookup(&aquery->addr, &host);
+          status = file_lookup(&aquery->addr, aquery->family, &host);
          if (status != ARES_ENOTFOUND)
            {
              end_aquery(aquery, status, host);
@@ -122,8 +157,12 @@ static void addr_callback(void *arg, int status, unsigned char *abuf, int alen)
  if (status == ARES_SUCCESS)
    {
-      status = ares_parse_ptr_reply(abuf, alen, &aquery->addr,
+      if (aquery->family == AF_INET)
        status = ares_parse_ptr_reply(abuf, alen, &aquery->addr.addr4,
                                      sizeof(struct in_addr), AF_INET, &host);
      else
        status = ares_parse_ptr_reply(abuf, alen, &aquery->addr.addr6,
                                      sizeof(struct in6_addr), AF_INET6, &host);
      end_aquery(aquery, status, host);
    }
  else if (status == ARES_EDESTRUCTION)
@@ -141,13 +180,12 @@ static void end_aquery(struct addr_query *aquery, int status,
  free(aquery);
 }
-static int file_lookup(struct in_addr *addr, struct hostent **host)
+static int file_lookup(union ares_addr *addr, int family, struct hostent **host)
 {
  FILE *fp;
  int status;
 #ifdef WIN32
  char PATH_HOSTS[MAX_PATH];
  if (IS_NT()) {
    char tmp[MAX_PATH];
@@ -157,7 +195,7 @@ static int file_lookup(struct in_addr *addr, struct hostent **host)
        == ERROR_SUCCESS)
    {
      DWORD dwLength = MAX_PATH;
-                RegQueryValueEx(hkeyHosts, DATABASEPATH, NULL, NULL, tmp,
+      RegQueryValueEx(hkeyHosts, DATABASEPATH, NULL, NULL, (LPBYTE)tmp,
                      &dwLength);
      ExpandEnvironmentStrings(tmp, PATH_HOSTS, MAX_PATH);
      RegCloseKey(hkeyHosts);
@@ -179,11 +217,23 @@ static int file_lookup(struct in_addr *addr, struct hostent **host)
  fp = fopen(PATH_HOSTS, "r");
  if (!fp)
    return ARES_ENOTFOUND;
-
+  while ((status = ares__get_hostent(fp, family, host)) == ARES_SUCCESS)
  while ((status = ares__get_hostent(fp, host)) == ARES_SUCCESS)
    {
-      if (memcmp((*host)->h_addr, addr, sizeof(struct in_addr)) == 0)
+      if (family != (*host)->h_addrtype)
        {
          ares_free_hostent(*host);
          continue;
        }
      if (family == AF_INET)
        {
          if (memcmp((*host)->h_addr, &addr->addr4, sizeof(struct in_addr)) == 0)
            break;
        }
      else if (family == AF_INET6)
        {
          if (memcmp((*host)->h_addr, &addr->addr6, sizeof(struct in6_addr)) == 0)
            break;
        }
      ares_free_hostent(*host);
    }
  fclose(fp);
--- a/ares/ares_gethostbyname.c
+++ b/ares/ares_gethostbyname.c
@@ -23,8 +23,13 @@
 #include <netinet/in.h>
 #include <arpa/inet.h>
 #include <netdb.h>
 #ifdef HAVE_ARPA_NAMESER_H
 #include <arpa/nameser.h>
 #endif
 #ifdef HAVE_ARPA_NAMESER_COMPAT_H
 #include <arpa/nameser_compat.h>
 #endif
 #endif
 #include <stdio.h>
 #include <stdlib.h>
@@ -33,6 +38,8 @@
 #include "ares.h"
 #include "ares_private.h"
 #include "inet_net_pton.h"
 #include "bitncmp.h"
 #ifdef WATT32
 #undef WIN32
@@ -44,7 +51,7 @@ struct host_query {
  char *name;
  ares_host_callback callback;
  void *arg;
-
+  int family;
  const char *remaining_lookups;
 };
@@ -53,13 +60,17 @@ static void host_callback(void *arg, int status, unsigned char *abuf,
                          int alen);
 static void end_hquery(struct host_query *hquery, int status,
                       struct hostent *host);
-static int fake_hostent(const char *name, ares_host_callback callback,
+static int fake_hostent(const char *name, int family, ares_host_callback callback,
                        void *arg);
-static int file_lookup(const char *name, struct hostent **host);
+static int file_lookup(const char *name, int family, struct hostent **host);
 static void sort_addresses(struct hostent *host, struct apattern *sortlist,
                           int nsort);
 static void sort6_addresses(struct hostent *host, struct apattern *sortlist,
                           int nsort);
 static int get_address_index(struct in_addr *addr, struct apattern *sortlist,
                             int nsort);
 static int get6_address_index(struct in6_addr *addr, struct apattern *sortlist,
                             int nsort);
 void ares_gethostbyname(ares_channel channel, const char *name, int family,
                        ares_host_callback callback, void *arg)
@@ -67,13 +78,13 @@ void ares_gethostbyname(ares_channel channel, const char *name, int family,
  struct host_query *hquery;
  /* Right now we only know how to look up Internet addresses. */
-  if (family != AF_INET)
+  if (family != AF_INET && family != AF_INET6)
    {
      callback(arg, ARES_ENOTIMP, NULL);
      return;
    }
-  if (fake_hostent(name, callback, arg))
+  if (fake_hostent(name, family, callback, arg))
    return;
  /* Allocate and fill in the host query structure. */
@@ -85,6 +96,7 @@ void ares_gethostbyname(ares_channel channel, const char *name, int family,
    }
  hquery->channel = channel;
  hquery->name = strdup(name);
  hquery->family = family;
  if (!hquery->name)
    {
      free(hquery);
@@ -112,13 +124,17 @@ static void next_lookup(struct host_query *hquery)
        case 'b':
          /* DNS lookup */
          hquery->remaining_lookups = p + 1;
          if (hquery->family == AF_INET6)
            ares_search(hquery->channel, hquery->name, C_IN, T_AAAA, host_callback,
                        hquery);
          else
            ares_search(hquery->channel, hquery->name, C_IN, T_A, host_callback,
                        hquery);
          return;
        case 'f':
          /* Host file lookup */
-          status = file_lookup(hquery->name, &host);
+          status = file_lookup(hquery->name, hquery->family, &host);
          if (status != ARES_ENOTFOUND)
            {
              end_hquery(hquery, status, host);
@@ -137,12 +153,28 @@ static void host_callback(void *arg, int status, unsigned char *abuf, int alen)
  struct hostent *host;
  if (status == ARES_SUCCESS)
    {
      if (hquery->family == AF_INET)
        {
          status = ares_parse_a_reply(abuf, alen, &host);
          if (host && channel->nsort)
            sort_addresses(host, channel->sortlist, channel->nsort);
        }
      else if (hquery->family == AF_INET6)
        {
          status = ares_parse_aaaa_reply(abuf, alen, &host);
          if (host && channel->nsort)
            sort6_addresses(host, channel->sortlist, channel->nsort);
        }
      end_hquery(hquery, status, host);
    }
  else if (status == ARES_ENODATA && hquery->family == AF_INET6)
    {
      /* There was no AAAA now lookup an A */
      hquery->family = AF_INET;
      ares_search(hquery->channel, hquery->name, C_IN, T_A, host_callback,
                  hquery);
    }
  else if (status == ARES_EDESTRUCTION)
    end_hquery(hquery, status, NULL);
  else
@@ -162,36 +194,34 @@ static void end_hquery(struct host_query *hquery, int status,
 /* If the name looks like an IP address, fake up a host entry, end the
 * query immediately, and return true.  Otherwise return false.
 */
-static int fake_hostent(const char *name, ares_host_callback callback,
+static int fake_hostent(const char *name, int family, ares_host_callback callback,
                        void *arg)
 {
  struct in_addr addr;
  struct hostent hostent;
  const char *p;
  char *aliases[1] = { NULL };
  char *addrs[2];
  int result = 0;
  struct in_addr in;
  struct in6_addr in6;
-  /* It only looks like an IP address if it's all numbers and dots. */
+  if (family == AF_INET)
-  for (p = name; *p; p++)
+    result = ((in.s_addr = inet_addr(name)) == INADDR_NONE ? 0 : 1);
-    {
+  else if (family == AF_INET6)
-      if (!isdigit((unsigned char)*p) && *p != '.')
+    result = (ares_inet_pton(AF_INET6, name, &in6) < 1 ? 0 : 1);
        return 0;
    }
-  /* It also only looks like an IP address if it's non-zero-length and
+  if (!result)
   * doesn't end with a dot.
   */
  if (p == name || *(p - 1) == '.')
    return 0;
-  /* It looks like an IP address.  Figure out what IP address it is. */
+  if (family == AF_INET)
  addr.s_addr = inet_addr(name);
  if (addr.s_addr == INADDR_NONE)
    {
-      callback(arg, ARES_EBADNAME, NULL);
+      hostent.h_length = sizeof(struct in_addr);
-      return 1;
+      addrs[0] = (char *)&in;
    }
  else if (family == AF_INET6)
    {
      hostent.h_length = sizeof(struct in6_addr);
      addrs[0] = (char *)&in6;
    }
  /* Duplicate the name, to avoid a constness violation. */
  hostent.h_name = strdup(name);
  if (!hostent.h_name)
@@ -201,11 +231,9 @@ static int fake_hostent(const char *name, ares_host_callback callback,
    }
  /* Fill in the rest of the host structure and terminate the query. */
  addrs[0] = (char *) &addr;
  addrs[1] = NULL;
  hostent.h_aliases = aliases;
-  hostent.h_addrtype = AF_INET;
+  hostent.h_addrtype = family;
  hostent.h_length = sizeof(struct in_addr);
  hostent.h_addr_list = addrs;
  callback(arg, ARES_SUCCESS, &hostent);
@@ -213,7 +241,7 @@ static int fake_hostent(const char *name, ares_host_callback callback,
  return 1;
 }
-static int file_lookup(const char *name, struct hostent **host)
+static int file_lookup(const char *name, int family, struct hostent **host)
 {
  FILE *fp;
  char **alias;
@@ -229,7 +257,7 @@ static int file_lookup(const char *name, struct hostent **host)
        == ERROR_SUCCESS)
    {
      DWORD dwLength = MAX_PATH;
-                RegQueryValueEx(hkeyHosts, DATABASEPATH, NULL, NULL, tmp,
+      RegQueryValueEx(hkeyHosts, DATABASEPATH, NULL, NULL, (LPBYTE)tmp,
                      &dwLength);
      ExpandEnvironmentStrings(tmp, PATH_HOSTS, MAX_PATH);
      RegCloseKey(hkeyHosts);
@@ -252,7 +280,7 @@ static int file_lookup(const char *name, struct hostent **host)
  if (!fp)
    return ARES_ENOTFOUND;
-  while ((status = ares__get_hostent(fp, host)) == ARES_SUCCESS)
+  while ((status = ares__get_hostent(fp, family, host)) == ARES_SUCCESS)
    {
      if (strcasecmp((*host)->h_name, name) == 0)
        break;
@@ -310,8 +338,66 @@ static int get_address_index(struct in_addr *addr, struct apattern *sortlist,
  for (i = 0; i < nsort; i++)
    {
-      if ((addr->s_addr & sortlist[i].mask.s_addr) == sortlist[i].addr.s_addr)
+      if (sortlist[i].family != AF_INET)
        continue;
      if (sortlist[i].type == PATTERN_MASK)
        {
          if ((addr->s_addr & sortlist[i].mask.addr.addr4.s_addr)
              == sortlist[i].addr.addr4.s_addr)
            break;
        }
      else
        {
          if (!ares_bitncmp(&addr->s_addr, &sortlist[i].addr.addr4.s_addr,
                            sortlist[i].mask.bits))
            break;
        }
    }
  return i;
 }
 static void sort6_addresses(struct hostent *host, struct apattern *sortlist,
                           int nsort)
 {
  struct in6_addr a1, a2;
  int i1, i2, ind1, ind2;
  /* This is a simple insertion sort, not optimized at all.  i1 walks
   * through the address list, with the loop invariant that everything
   * to the left of i1 is sorted.  In the loop body, the value at i1 is moved
   * back through the list (via i2) until it is in sorted order.
   */
  for (i1 = 0; host->h_addr_list[i1]; i1++)
    {
      memcpy(&a1, host->h_addr_list[i1], sizeof(struct in6_addr));
      ind1 = get6_address_index(&a1, sortlist, nsort);
      for (i2 = i1 - 1; i2 >= 0; i2--)
        {
          memcpy(&a2, host->h_addr_list[i2], sizeof(struct in6_addr));
          ind2 = get6_address_index(&a2, sortlist, nsort);
          if (ind2 <= ind1)
            break;
          memcpy(host->h_addr_list[i2 + 1], &a2, sizeof(struct in6_addr));
        }
      memcpy(host->h_addr_list[i2 + 1], &a1, sizeof(struct in6_addr));
    }
 }
 /* Find the first entry in sortlist which matches addr.  Return nsort
 * if none of them match.
 */
 static int get6_address_index(struct in6_addr *addr, struct apattern *sortlist,
                             int nsort)
 {
  int i;
  for (i = 0; i < nsort; i++)
    {
      if (sortlist[i].family != AF_INET6)
        continue;
        if (!ares_bitncmp(&addr->s6_addr, &sortlist[i].addr.addr6.s6_addr, sortlist[i].mask.bits))
          break;
    }
  return i;
 }
--- a/ares/ares_getnameinfo.3
+++ b/ares/ares_getnameinfo.3
@@ -0,0 +1,145 @@
 .\" $Id$
 .\"
 .\" Copyright 2005 by Dominick Meglio.
 .\"
 .\" Permission to use, copy, modify, and distribute this
 .\" software and its documentation for any purpose and without
 .\" fee is hereby granted, provided that the above copyright
 .\" notice appear in all copies and that both that copyright
 .\" notice and this permission notice appear in supporting
 .\" documentation, and that the name of M.I.T. not be used in
 .\" advertising or publicity pertaining to distribution of the
 .\" software without specific, written prior permission.
 .\" M.I.T. makes no representations about the suitability of
 .\" this software for any purpose.  It is provided "as is"
 .\" without express or implied warranty.
 .\"
 .TH ARES_GETNAMEINFO 3 "16 May 2005"
 .SH NAME
 ares_getnameinfo \- Address-to-nodename translation in protocol-independent manner
 .SH SYNOPSIS
 .nf
 .B #include <ares.h>
 .PP
 .B typedef void (*ares_nameinfo_callback)(void *\fIarg\fP, int \fIstatus\fP,
 .B	char *\fInode\fP, char *\fIservice\fP)
 .PP
 .B void ares_getnameinfo(ares_channel \fIchannel\fP, const struct sockaddr *\fIsa\fP,
 .B 	socklen_t \fIsalen\fP, int \fIflags\fP, ares_nameinfo_callback \fIcallback\fP,
 .B 	void *\fIarg\fP)
 .fi
 .SH DESCRIPTION
 The
 .B ares_getnameinfo
 function is defined for protocol-independent address translation. The function
 is a combination of \fIares_gethostbyaddr(3)\fP and \fIgetservbyport(3)\fP. The function will
 translate the address either by executing a host query on the name service channel
 identified by
 .IR channel 
 or it will attempt to resolve it locally if possible.
 The parameters
 .I sa
 and
 .I len
 give the address as a sockaddr structure, and
 .I flags
 gives the options that the function will use.  Valid flags are listed below:
 .TP 19
 .B ARES_NI_NOFQDN
 Only the nodename portion of the FQDN is returned for local hosts.
 .TP 19
 .B ARES_NI_NUMERICHOST
 The numeric form of the hostname is returned rather than the name.
 .TP 19
 .B ARES_NI_NAMEREQD
 An error is returned if the hostname cannot be found in the DNS.
 .TP 19
 .B ARES_NI_NUMERICSERV
 The numeric form of the service is returned rather than the name.
 .TP 19
 .B ARES_NI_TCP
 The service name is to be looked up for the TCP protocol.
 .TP 19
 .B ARES_NI_UDP
 The service name is to be looked up for the UDP protocol.
 .TP 19
 .B ARES_NI_SCTP
 The service name is to be looked up for the SCTP protocol.
 .TP 19
 .B ARES_NI_DCCP
 The service name is to be looked up for the DCCP protocol.
 .TP 19
 .B ARES_NI_NUMERICSCOPE
 The numeric form of the scope ID is returned rather than the name.
 .TP 19
 .B ARES_NI_LOOKUPHOST
 A hostname lookup is being requested.
 .TP 19
 .B ARES_NI_LOOKUPSERVICE
 A service name lookup is being requested.
 .PP
 When the query
 is complete or has 
 failed, the ares library will invoke \fIcallback\fP.  Completion or failure of 
 the query may happen immediately, or may happen during a later call to
 \fIares_process(3)\fP, \fIares_destroy(3)\fP or \fIares_cancel(3)\fP.
 .PP
 The callback argument
 .I arg
 is copied from the
 .B ares_getnameinfo
 argument
 .IR arg .
 The callback argument
 .I status
 indicates whether the query succeeded and, if not, how it failed.  It
 may have any of the following values:
 .TP 19
 .B ARES_SUCCESS
 The host lookup completed successfully.
 .TP 19
 .B ARES_ENOTIMP
 The ares library does not know how to look up addresses of type
 .IR family .
 .TP 19
 .B ARES_ENOTFOUND
 The address
 .I addr
 was not found.
 .TP 19
 .B ARES_ENOMEM
 Memory was exhausted.
 .TP 19
 .B ARES_EDESTRUCTION
 The name service channel
 .I channel
 is being destroyed; the query will not be completed.
 .TP 19
 .B ARES_EBADFLAGS
 The
 .I flags
 parameter contains an illegal value.
 .PP
 On successful completion of the query, the callback argument
 .I node
 contains a string representing the hostname (assuming 
 .B ARES_NI_LOOKUPHOST
 was specified). Additionally, 
 .I service
 contains a string representing the service name (assuming
 .B ARES_NI_LOOKUPSERVICE
 was specified).
 If the query did not complete successfully, or one of the values
 was not requested, 
 .I node
 or
 .I service
 will be 
 .BR NULL .
 .SH SEE ALSO
 .BR ares_process (3),
 .BR ares_getaddrinfo (3)
 .SH AUTHOR
 Dominick Meglio
 .br
 Copyright 2005 by Dominick Meglio.
--- a/ares/ares_getnameinfo.c
+++ b/ares/ares_getnameinfo.c
@@ -0,0 +1,331 @@
 /* Copyright 2005 by Dominick Meglio
 *
 * Permission to use, copy, modify, and distribute this
 * software and its documentation for any purpose and without
 * fee is hereby granted, provided that the above copyright
 * notice appear in all copies and that both that copyright
 * notice and this permission notice appear in supporting
 * documentation, and that the name of M.I.T. not be used in
 * advertising or publicity pertaining to distribution of the
 * software without specific, written prior permission.
 * M.I.T. makes no representations about the suitability of
 * this software for any purpose.  It is provided "as is"
 * without express or implied warranty.
 */
 #include "setup.h"
 #include <sys/types.h>
 #include <ctype.h>
 #if defined(WIN32) && !defined(WATT32)
 #include "nameser.h"
 #else
 #include <sys/socket.h>
 #include <netinet/in.h>
 #include <netdb.h>
 #include <arpa/inet.h>
 #include <arpa/nameser.h>
 #ifdef HAVE_ARPA_NAMESER_COMPAT_H
 #include <arpa/nameser_compat.h>
 #endif
 #endif
 #ifdef HAVE_NET_IF_H
 #include <net/if.h>
 #endif
 #ifdef HAVE_UNISTD_H
 #include <unistd.h>
 #endif
 #include <stdio.h>
 #include <stdlib.h>
 #include <string.h>
 #include "ares.h"
 #include "ares_private.h"
 #include "ares_ipv6.h"
 #include "inet_ntop.h"
 #ifdef WATT32
 #undef WIN32
 #endif
 struct nameinfo_query {
  ares_nameinfo_callback callback;
  void *arg;
  union {
    struct sockaddr_in addr4;
    struct sockaddr_in6 addr6;
  } addr;
  int family;
  int flags;
 };
 #ifdef HAVE_SOCKADDR_IN6_SIN6_SCOPE_ID
 #define IPBUFSIZ 40+IF_NAMESIZE
 #else
 #define IPBUFSIZ 40
 #endif
 static void nameinfo_callback(void *arg, int status, struct hostent *host);
 static char *lookup_service(unsigned short port, int flags, char *buf);
 #ifdef HAVE_SOCKADDR_IN6_SIN6_SCOPE_ID
 static char *append_scopeid(struct sockaddr_in6 *addr6, unsigned int scopeid, char *buf);
 #endif
 static char *ares_striendstr(const char *s1, const char *s2);
 void ares_getnameinfo(ares_channel channel, const struct sockaddr *sa, socklen_t salen,
                      int flags, ares_nameinfo_callback callback, void *arg)
 {
  struct sockaddr_in *addr;
  struct sockaddr_in6 *addr6;
  struct nameinfo_query *niquery;
  /* Verify the buffer size */
  if (salen == sizeof(struct sockaddr_in))
    addr = (struct sockaddr_in *)sa;
  else if (salen == sizeof(struct sockaddr_in6))
    addr6 = (struct sockaddr_in6 *)sa;
  else
    {
      callback(arg, ARES_ENOTIMP, NULL, NULL);
      return;
    }
  /* If neither, assume they want a host */
  if (!(flags & ARES_NI_LOOKUPSERVICE) && !(flags & ARES_NI_LOOKUPHOST))
    flags |= ARES_NI_LOOKUPHOST;
  /* All they want is a service, no need for DNS */
  if ((flags & ARES_NI_LOOKUPSERVICE) && !(flags & ARES_NI_LOOKUPHOST))
    {
      char buf[33], *service;
      unsigned int port = 0;
      if (salen == sizeof(struct sockaddr_in))
        port = addr->sin_port;
      else
        port = addr6->sin6_port;
      service = lookup_service(port, flags, buf);
      callback(arg, ARES_SUCCESS, NULL, service);
      return;
    }
  /* They want a host lookup */
  if ((flags & ARES_NI_LOOKUPHOST))
    {
     /* A numeric host can be handled without DNS */
     if ((flags & ARES_NI_NUMERICHOST))
      {
        unsigned int port = 0;
        char ipbuf[IPBUFSIZ];
        char srvbuf[32];
        char *service = NULL;
        ipbuf[0] = 0;
        /* Specifying not to lookup a host, but then saying a host 
         * is required has to be illegal.
         */
        if (flags & ARES_NI_NAMEREQD)
          {
            callback(arg, ARES_EBADFLAGS, NULL, NULL);
            return;
          }
        if (salen == sizeof(struct sockaddr_in6))
          {
            ares_inet_ntop(AF_INET6, &addr6->sin6_addr, ipbuf, IPBUFSIZ);
            port = addr6->sin6_port;
            /* If the system supports scope IDs, use it */
 #ifdef HAVE_SOCKADDR_IN6_SIN6_SCOPE_ID
            append_scopeid(addr6, flags, ipbuf);
 #endif
          }
        else
          {
            ares_inet_ntop(AF_INET, &addr->sin_addr, ipbuf, IPBUFSIZ);
            port = addr->sin_port;
          }
        /* They also want a service */
        if (flags & ARES_NI_LOOKUPSERVICE)
          service = lookup_service(port, flags, srvbuf);
        callback(arg, ARES_SUCCESS, ipbuf, service);
        return;
      }
    /* This is where a DNS lookup becomes necessary */
    else
      {
        niquery = malloc(sizeof(struct nameinfo_query));
        if (!niquery)
          {
            callback(arg, ARES_ENOMEM, NULL, NULL);
            return;
          }
        niquery->callback = callback;
        niquery->arg = arg;
        niquery->flags = flags;
        if (sa->sa_family == AF_INET) 
          {
            niquery->family = AF_INET;
            memcpy(&niquery->addr.addr4, addr, sizeof(addr));
            ares_gethostbyaddr(channel, &addr->sin_addr, sizeof(struct in_addr), AF_INET, 
                               nameinfo_callback, niquery);
          }
        else
          {
            niquery->family = AF_INET6;
            memcpy(&niquery->addr.addr6, addr6, sizeof(addr6));
            ares_gethostbyaddr(channel, &addr6->sin6_addr, sizeof(struct in6_addr), AF_INET6, 
                               nameinfo_callback, niquery);
          }
      }
    }
 }
 static void nameinfo_callback(void *arg, int status, struct hostent *host)
 {
  struct nameinfo_query *niquery = (struct nameinfo_query *) arg;
  char srvbuf[33];
  char *service = NULL;
  if (status == ARES_SUCCESS)
    {
      /* They want a service too */
      if (niquery->flags & ARES_NI_LOOKUPSERVICE)
        {
          if (niquery->family == AF_INET)
            service = lookup_service(niquery->addr.addr4.sin_port, niquery->flags, srvbuf);
          else
            service = lookup_service(niquery->addr.addr6.sin6_port, niquery->flags, srvbuf);
        }
      /* NOFQDN means we have to strip off the domain name portion.
         We do this by determining our own domain name, then searching the string
         for this domain name and removing it.
       */
      if (niquery->flags & ARES_NI_NOFQDN)
        {
           char buf[255];
           char *domain;
           gethostname(buf, 255);
           if ((domain = strchr(buf, '.')))
             {
               char *end = ares_striendstr(host->h_name, domain);
               if (end)
                 *end = 0;
             }        
        }
      niquery->callback(niquery->arg, ARES_SUCCESS, host->h_name, service);
      return;
    }
  /* We couldn't find the host, but it's OK, we can use the IP */
  else if (status == ARES_ENOTFOUND && !(niquery->flags & ARES_NI_NAMEREQD))
    {
      char ipbuf[IPBUFSIZ];
      if (niquery->family == AF_INET)
        ares_inet_ntop(AF_INET, &niquery->addr.addr4.sin_addr, ipbuf, IPBUFSIZ);
      else
        {
          ares_inet_ntop(AF_INET6, &niquery->addr.addr6.sin6_addr, ipbuf, IPBUFSIZ);
 #ifdef HAVE_SOCKADDR_IN6_SIN6_SCOPE_ID
          append_scopeid(&niquery->addr.addr6, niquery->flags, ipbuf);
 #endif
        }
      /* They want a service too */
      if (niquery->flags & ARES_NI_LOOKUPSERVICE)
        {
          if (niquery->family == AF_INET)
            service = lookup_service(niquery->addr.addr4.sin_port, niquery->flags, srvbuf);
          else
            service = lookup_service(niquery->addr.addr6.sin6_port, niquery->flags, srvbuf);
        }
      niquery->callback(niquery->arg, ARES_SUCCESS, ipbuf, service);
      return;
    }
  niquery->callback(niquery->arg, status, NULL, NULL);
  free(niquery);
 }
 static char *lookup_service(unsigned short port, int flags, char *buf)
 {
  if (port)
    {
      /* Just return the port as a string */
      if (flags & ARES_NI_NUMERICSERV)
        sprintf(buf, "%u", ntohs(port));
      else
        {
          struct servent *se;
          const char *proto;
          if (flags & ARES_NI_UDP)
            proto = "udp";
          else if (flags & ARES_NI_SCTP)
            proto = "sctp";
          else if (flags & ARES_NI_DCCP)
            proto = "dccp";
          else
            proto = "tcp";
          se = getservbyport(port, proto);
          if (se && se->s_name)
            strcpy(buf, se->s_name);
          else
            sprintf(buf, "%u", ntohs(port));
        }
      return buf;
    }
  return NULL;
 }
 #ifdef HAVE_SOCKADDR_IN6_SIN6_SCOPE_ID
 static char *append_scopeid(struct sockaddr_in6 *addr6, unsigned int flags, char *buf)
 {
  char tmpbuf[IF_NAMESIZE + 1];
  tmpbuf[0] = '%';
 #ifdef HAVE_IF_INDEXTONAME
  if ((flags & ARES_NI_NUMERICSCOPE) || (!IN6_IS_ADDR_LINKLOCAL(&addr6->sin6_addr)
      && !IN6_IS_ADDR_MC_LINKLOCAL(&addr6->sin6_addr)))
    {
       sprintf(&tmpbuf[1], "%u", addr6->sin6_scope_id);
    }
  else
    {
      if (if_indextoname(addr6->sin6_scope_id, &tmpbuf[1]) == NULL)
        sprintf(&tmpbuf[1], "%u", addr6->sin6_scope_id);
    }
 #else
  sprintf(&tmpbuf[1], "%u", addr6->sin6_scope_id);
 #endif
  strcat(buf, tmpbuf);
  return buf;
 }
 #endif
 /* Determines if s1 ends with the string in s2 (case-insensitive) */
 static char *ares_striendstr(const char *s1, const char *s2)
 {
  const char *c1, *c2, *c1_begin;
  size_t s1_len = strlen(s1), s2_len = strlen(s2);
  /* If the substr is longer than the full str, it can't match */
  if (s2_len > s1_len)
    return NULL;
  /* Jump to the end of s1 minus the length of s2 */
  c1_begin = s1+s1_len-s2_len;
  c1 = (const char *)c1_begin;
  c2 = s2;
  while (c2 < s2+s2_len)
    {
      if (tolower(*c1) != tolower(*c2))
        return NULL;
      else
        {
          c1++;
          c2++;
        }
    }
  if (c2 == c1 && c2 == NULL)
    return (char *)c1_begin;
  return NULL;
 }
--- a/ares/ares_init.c
+++ b/ares/ares_init.c
@@ -27,10 +27,17 @@
 #include <sys/time.h>
 #endif
 #ifdef HAVE_SYS_SOCKET_H
 #include <sys/socket.h>
 #endif
 #include <netinet/in.h>
 #include <arpa/inet.h>
 #include <netdb.h>
 #include <arpa/nameser.h>
 #ifdef HAVE_ARPA_NAMESER_COMPAT_H
 #include <arpa/nameser_compat.h>
 #endif
 #ifdef HAVE_UNISTD_H
 #include <unistd.h>
 #endif
@@ -44,6 +51,7 @@
 #include <errno.h>
 #include "ares.h"
 #include "ares_private.h"
 #include "inet_net_pton.h"
 #ifdef WATT32
 #undef WIN32  /* Redefined in MingW/MSVC headers */
@@ -54,19 +62,23 @@ static int init_by_options(ares_channel channel, struct ares_options *options,
 static int init_by_environment(ares_channel channel);
 static int init_by_resolv_conf(ares_channel channel);
 static int init_by_defaults(ares_channel channel);
 static int config_nameserver(struct server_state **servers, int *nservers,
                             char *str);
 static int set_search(ares_channel channel, const char *str);
 static int set_options(ares_channel channel, const char *str);
 static const char *try_option(const char *p, const char *q, const char *opt);
 #ifndef WIN32
 static int sortlist_alloc(struct apattern **sortlist, int *nsort, struct apattern *pat);
 static int ip_addr(const char *s, int len, struct in_addr *addr);
 static void natural_mask(struct apattern *pat);
 static int config_domain(ares_channel channel, char *str);
 static int config_lookup(ares_channel channel, const char *str,
                         const char *bindch, const char *filech);
 static int config_nameserver(struct server_state **servers, int *nservers,
                             char *str);
 static int config_sortlist(struct apattern **sortlist, int *nsort,
                           const char *str);
 static int set_search(ares_channel channel, const char *str);
 static int set_options(ares_channel channel, const char *str);
 static char *try_config(char *s, const char *opt);
-static const char *try_option(const char *p, const char *q, const char *opt);
+#endif
 static int ip_addr(const char *s, int len, struct in_addr *addr);
 static void natural_mask(struct apattern *pat);
 int ares_init(ares_channel *channelptr)
 {
@@ -264,7 +276,8 @@ static int get_res_nt(HKEY hKey, const char *subkey, char **obuf)
  if (!*obuf)
    return 0;
-  if (RegQueryValueEx(hKey, subkey, 0, NULL, *obuf, &size) != ERROR_SUCCESS)
+  if (RegQueryValueEx(hKey, subkey, 0, NULL,
                      (LPBYTE)*obuf, &size) != ERROR_SUCCESS)
  {
    free(*obuf);
    return 0;
@@ -314,6 +327,7 @@ static int get_iphlpapi_dns_info (char *ret_buf, size_t ret_size)
  size_t         ip_size = sizeof("255.255.255.255,")-1;
  size_t         left = ret_size;
  char          *ret = ret_buf;
  HRESULT        res;
  if (!fi)
     return (0);
@@ -326,7 +340,8 @@ static int get_iphlpapi_dns_info (char *ret_buf, size_t ret_size)
  if (!GetNetworkParams)
     goto quit;
-  if ((*GetNetworkParams) (fi, &size) != ERROR_BUFFER_OVERFLOW)
+  res = (*GetNetworkParams) (fi, &size);
  if ((res != ERROR_BUFFER_OVERFLOW) && (res != ERROR_SUCCESS))
     goto quit;
  fi = alloca (size);
@@ -709,6 +724,7 @@ static int init_by_defaults(ares_channel channel)
  return ARES_SUCCESS;
 }
 #ifndef WIN32
 static int config_domain(ares_channel channel, char *str)
 {
  char *q;
@@ -749,6 +765,8 @@ static int config_lookup(ares_channel channel, const char *str,
  return (channel->lookups) ? ARES_SUCCESS : ARES_ENOMEM;
 }
 #endif
 static int config_nameserver(struct server_state **servers, int *nservers,
                             char *str)
 {
@@ -810,39 +828,74 @@ static int config_nameserver(struct server_state **servers, int *nservers,
  return ARES_SUCCESS;
 }
 #ifndef WIN32
 static int config_sortlist(struct apattern **sortlist, int *nsort,
                           const char *str)
 {
-  struct apattern pat, *newsort;
+  struct apattern pat;
  const char *q;
  /* Add sortlist entries. */
  while (*str && *str != ';')
    {
      int bits;
      char ipbuf[16], ipbufpfx[32];
      /* Find just the IP */
      q = str;
      while (*q && *q != '/' && *q != ';' && !isspace((unsigned char)*q))
        q++;
-      if (ip_addr(str, (int)(q - str), &pat.addr) == 0)
+      memcpy(ipbuf, str, (int)(q-str));
-        {
+      ipbuf[(int)(q-str)] = 0;
-          /* We have a pattern address; now determine the mask. */
+      /* Find the prefix */
      if (*q == '/')
        {
-              str = q + 1;
+          const char *str2 = q+1;
          while (*q && *q != ';' && !isspace((unsigned char)*q))
            q++;
-              if (ip_addr(str, (int)(q - str), &pat.mask) != 0)
+          memcpy(ipbufpfx, str, (int)(q-str));
          ipbufpfx[(int)(q-str)] = 0;
          str = str2;
        }
      else
        ipbufpfx[0] = 0;
      /* Lets see if it is CIDR */
      /* First we'll try IPv6 */
      if ((bits = ares_inet_net_pton(AF_INET6, ipbufpfx ? ipbufpfx : ipbuf,
                                     &pat.addr.addr6,
                                     sizeof(pat.addr.addr6))) > 0)
        {
          pat.type = PATTERN_CIDR;
          pat.mask.bits = bits;
          pat.family = AF_INET6;
          if (!sortlist_alloc(sortlist, nsort, &pat))
            return ARES_ENOMEM;
        }
      if (ipbufpfx &&
          (bits = ares_inet_net_pton(AF_INET, ipbufpfx, &pat.addr.addr4,
                                     sizeof(pat.addr.addr4))) > 0)
        {
          pat.type = PATTERN_CIDR;
          pat.mask.bits = bits;
          pat.family = AF_INET;
          if (!sortlist_alloc(sortlist, nsort, &pat))
            return ARES_ENOMEM;
        }
      /* See if it is just a regular IP */
      else if (ip_addr(ipbuf, (int)(q-str), &pat.addr.addr4) == 0)
        {
          if (ipbufpfx)
            {
              memcpy(ipbuf, str, (int)(q-str));
              ipbuf[(int)(q-str)] = 0;
              if (ip_addr(ipbuf, (int)(q - str), &pat.mask.addr.addr4) != 0)
                natural_mask(&pat);
            }
          else
            natural_mask(&pat);
-
+          pat.family = AF_INET;
-          /* Add this pattern to our list. */
+          pat.type = PATTERN_MASK;
-          newsort = realloc(*sortlist, (*nsort + 1) * sizeof(struct apattern));
+          if (!sortlist_alloc(sortlist, nsort, &pat))
          if (!newsort)
            return ARES_ENOMEM;
          newsort[*nsort] = pat;
          *sortlist = newsort;
          (*nsort)++;
        }
      else
        {
@@ -856,6 +909,7 @@ static int config_sortlist(struct apattern **sortlist, int *nsort,
  return ARES_SUCCESS;
 }
 #endif
 static int set_search(ares_channel channel, const char *str)
 {
@@ -937,6 +991,7 @@ static int set_options(ares_channel channel, const char *str)
  return ARES_SUCCESS;
 }
 #ifndef WIN32
 static char *try_config(char *s, const char *opt)
 {
  size_t len;
@@ -950,21 +1005,34 @@ static char *try_config(char *s, const char *opt)
  return s;
 }
 #endif
 static const char *try_option(const char *p, const char *q, const char *opt)
 {
  size_t len = strlen(opt);
  return ((size_t)(q - p) > len && !strncmp(p, opt, len)) ? &p[len] : NULL;
 }
-static int ip_addr(const char *s, int len, struct in_addr *addr)
+#ifndef WIN32
 static int sortlist_alloc(struct apattern **sortlist, int *nsort,
                          struct apattern *pat)
 {
  struct apattern *newsort;
  newsort = realloc(*sortlist, (*nsort + 1) * sizeof(struct apattern));
  if (!newsort)
    return 0;
  newsort[*nsort] = *pat;
  *sortlist = newsort;
  (*nsort)++;
  return 1;
 }
 static int ip_addr(const char *ipbuf, int len, struct in_addr *addr)
 {
  char ipbuf[16];
  /* Four octets and three periods yields at most 15 characters. */
  if (len > 15)
    return -1;
  memcpy(ipbuf, s, len);
  ipbuf[len] = 0;
  addr->s_addr = inet_addr(ipbuf);
  if (addr->s_addr == INADDR_NONE && strcmp(ipbuf, "255.255.255.255") != 0)
@@ -979,15 +1047,16 @@ static void natural_mask(struct apattern *pat)
  /* Store a host-byte-order copy of pat in a struct in_addr.  Icky,
   * but portable.
   */
-  addr.s_addr = ntohl(pat->addr.s_addr);
+  addr.s_addr = ntohl(pat->addr.addr4.s_addr);
  /* This is out of date in the CIDR world, but some people might
   * still rely on it.
   */
  if (IN_CLASSA(addr.s_addr))
-    pat->mask.s_addr = htonl(IN_CLASSA_NET);
+    pat->mask.addr.addr4.s_addr = htonl(IN_CLASSA_NET);
  else if (IN_CLASSB(addr.s_addr))
-    pat->mask.s_addr = htonl(IN_CLASSB_NET);
+    pat->mask.addr.addr4.s_addr = htonl(IN_CLASSB_NET);
  else
-    pat->mask.s_addr = htonl(IN_CLASSC_NET);
+    pat->mask.addr.addr4.s_addr = htonl(IN_CLASSC_NET);
 }
 #endif
--- a/ares/ares_ipv6.h
+++ b/ares/ares_ipv6.h
@@ -0,0 +1,81 @@
 /* $Id$ */
 /*
 * Permission to use, copy, modify, and distribute this
 * software and its documentation for any purpose and without
 * fee is hereby granted, provided that the above copyright
 * notice appear in all copies and that both that copyright
 * notice and this permission notice appear in supporting
 * documentation, and that the name of M.I.T. not be used in
 * advertising or publicity pertaining to distribution of the
 * software without specific, written prior permission.
 * M.I.T. makes no representations about the suitability of
 * this software for any purpose.  It is provided "as is"
 * without express or implied warranty.
 */
 #ifndef ARES_IPV6_H
 #define ARES_IPV6_H
 #ifndef HAVE_PF_INET6
 #define PF_INET6 AF_INET6
 #endif
 #ifndef HAVE_STRUCT_IN6_ADDR
 struct in6_addr
 {
  unsigned char s6_addr[16];
 };
 #endif
 #ifndef HAVE_STRUCT_SOCKADDR_IN6
 struct sockaddr_in6
 {
  unsigned short  sin6_family;
  unsigned short  sin6_port;
  unsigned long   sin6_flowinfo;
  struct in6_addr sin6_addr;
  unsigned int    sin6_scope_id;
 };
 #endif
 #ifndef HAVE_STRUCT_ADDRINFO
 struct addrinfo
 {
  int ai_flags;
  int ai_family;
  int ai_socktype;
  int ai_protocol;
  size_t ai_addrlen;
  char *ai_cannonname;
  struct sockaddr *ai_addr;
  struct addrinfo *ai_next;
 };
 #endif
 #ifndef NS_IN6ADDRSZ
 #if SIZEOF_STRUCT_IN6_ADDR == 0
 /* We cannot have it set to zero, so we pick a fixed value here */
 #define NS_IN6ADDRSZ 16
 #else
 #define NS_IN6ADDRSZ SIZEOF_STRUCT_IN6_ADDR
 #endif
 #endif
 #ifndef NS_INADDRSZ
 #define NS_INADDRSZ SIZEOF_STRUCT_IN_ADDR
 #endif
 #ifndef NS_INT16SZ
 #define NS_INT16SZ 2
 #endif
 #ifndef IF_NAMESIZE
 #ifdef IFNAMSIZ
 #define IF_NAMESIZE IFNAMSIZ
 #else
 #define IF_NAMESIZE 256
 #endif
 #endif
 #endif /* ARES_IPV6_H */
--- a/ares/ares_mkquery.c
+++ b/ares/ares_mkquery.c
@@ -21,6 +21,9 @@
 #else
 #include <netinet/in.h>
 #include <arpa/nameser.h>
 #ifdef HAVE_ARPA_NAMESER_COMPAT_H
 #include <arpa/nameser_compat.h>
 #endif
 #endif
 #include <stdlib.h>
--- a/ares/ares_parse_a_reply.c
+++ b/ares/ares_parse_a_reply.c
@@ -24,6 +24,9 @@
 #include <arpa/inet.h>
 #include <netdb.h>
 #include <arpa/nameser.h>
 #ifdef HAVE_ARPA_NAMESER_COMPAT_H
 #include <arpa/nameser_compat.h>
 #endif
 #endif
 #include <stdlib.h>
--- a/ares/ares_parse_aaaa_reply.3
+++ b/ares/ares_parse_aaaa_reply.3
@@ -0,0 +1,64 @@
 .\" $Id$
 .\"
 .\" Copyright 2005 by Dominick Meglio.
 .\"
 .\" Permission to use, copy, modify, and distribute this
 .\" software and its documentation for any purpose and without
 .\" fee is hereby granted, provided that the above copyright
 .\" notice appear in all copies and that both that copyright
 .\" notice and this permission notice appear in supporting
 .\" documentation, and that the name of M.I.T. not be used in
 .\" advertising or publicity pertaining to distribution of the
 .\" software without specific, written prior permission.
 .\" M.I.T. makes no representations about the suitability of
 .\" this software for any purpose.  It is provided "as is"
 .\" without express or implied warranty.
 .\"
 .TH ARES_PARSE_AAAA_REPLY 3 "10 March 2005"
 .SH NAME
 ares_parse_aaaa_reply \- Parse a reply to a DNS query of type AAAA into a hostent
 .SH SYNOPSIS
 .nf
 .B #include <ares.h>
 .PP
 .B int ares_parse_aaaa_reply(const unsigned char *\fIabuf\fP, int \fIalen\fP,
 .B 	struct hostent **\fIhost\fP);
 .fi
 .SH DESCRIPTION
 The
 .B ares_parse_aaaa_reply
 function parses the response to a query of type AAAA into a
 .BR "struct hostent" .
 The parameters
 .I abuf
 and
 .I alen
 give the contents of the response.  The result is stored in allocated
 memory and a pointer to it stored into the variable pointed to by
 .IR host .
 It is the caller's responsibility to free the resulting host structure
 using
 .BR ares_free_hostent (3)
 when it is no longer needed.
 .SH RETURN VALUES
 .B ares_parse_aaaa_reply
 can return any of the following values:
 .TP 15
 .B ARES_SUCCESS
 The response was successfully parsed.
 .TP 15
 .B ARES_EBADRESP
 The response was malformatted.
 .TP 15
 .B ARES_ENODATA
 The response did not contain an answer to the query.
 .TP 15
 .B ARES_ENOMEM
 Memory was exhausted.
 .SH SEE ALSO
 .BR ares_gethostbyname (3),
 .BR ares_free_hostent (3)
 .SH AUTHOR
 Dominick Meglio
 .br
 Copyright 2005 by Dominick Meglio.
--- a/ares/ares_parse_aaaa_reply.c
+++ b/ares/ares_parse_aaaa_reply.c
@@ -0,0 +1,179 @@
 /* Copyright 2005 Dominick Meglio
 *
 * Permission to use, copy, modify, and distribute this
 * software and its documentation for any purpose and without
 * fee is hereby granted, provided that the above copyright
 * notice appear in all copies and that both that copyright
 * notice and this permission notice appear in supporting
 * documentation, and that the name of M.I.T. not be used in
 * advertising or publicity pertaining to distribution of the
 * software without specific, written prior permission.
 * M.I.T. makes no representations about the suitability of
 * this software for any purpose.  It is provided "as is"
 * without express or implied warranty.
 */
 #include "setup.h"
 #include <sys/types.h>
 #if defined(WIN32) && !defined(WATT32)
 #include "nameser.h"
 #else
 #include <sys/socket.h>
 #include <netinet/in.h>
 #include <arpa/inet.h>
 #include <netdb.h>
 #ifdef HAVE_ARPA_NAMESER_H
 #include <arpa/nameser.h>
 #endif
 #ifdef HAVE_ARPA_NAMESER_COMPAT_H
 #include <arpa/nameser_compat.h>
 #endif
 #endif
 #include <stdlib.h>
 #include <string.h>
 #include "ares.h"
 #include "ares_dns.h"
 #include "inet_net_pton.h"
 #include "ares_private.h"
 int ares_parse_aaaa_reply(const unsigned char *abuf, int alen,
                       struct hostent **host)
 {
  unsigned int qdcount, ancount;
  int status, i, rr_type, rr_class, rr_len, naddrs;
  int naliases;
  long len;
  const unsigned char *aptr;
  char *hostname, *rr_name, *rr_data, **aliases;
  struct in6_addr *addrs;
  struct hostent *hostent;
  /* Set *host to NULL for all failure cases. */
  *host = NULL;
  /* Give up if abuf doesn't have room for a header. */
  if (alen < HFIXEDSZ)
    return ARES_EBADRESP;
  /* Fetch the question and answer count from the header. */
  qdcount = DNS_HEADER_QDCOUNT(abuf);
  ancount = DNS_HEADER_ANCOUNT(abuf);
  if (qdcount != 1)
    return ARES_EBADRESP;
  /* Expand the name from the question, and skip past the question. */
  aptr = abuf + HFIXEDSZ;
  status = ares_expand_name(aptr, abuf, alen, &hostname, &len);
  if (status != ARES_SUCCESS)
    return status;
  if (aptr + len + QFIXEDSZ > abuf + alen)
    {
      free(hostname);
      return ARES_EBADRESP;
    }
  aptr += len + QFIXEDSZ;
  /* Allocate addresses and aliases; ancount gives an upper bound for both. */
  addrs = malloc(ancount * sizeof(struct in6_addr));
  if (!addrs)
    {
      free(hostname);
      return ARES_ENOMEM;
    }
  aliases = malloc((ancount + 1) * sizeof(char *));
  if (!aliases)
    {
      free(hostname);
      free(addrs);
      return ARES_ENOMEM;
    }
  naddrs = 0;
  naliases = 0;
  /* Examine each answer resource record (RR) in turn. */
  for (i = 0; i < (int)ancount; i++)
    {
      /* Decode the RR up to the data field. */
      status = ares_expand_name(aptr, abuf, alen, &rr_name, &len);
      if (status != ARES_SUCCESS)
        break;
      aptr += len;
      if (aptr + RRFIXEDSZ > abuf + alen)
        {
          status = ARES_EBADRESP;
          break;
        }
      rr_type = DNS_RR_TYPE(aptr);
      rr_class = DNS_RR_CLASS(aptr);
      rr_len = DNS_RR_LEN(aptr);
      aptr += RRFIXEDSZ;
      if (rr_class == C_IN && rr_type == T_AAAA
          && rr_len == sizeof(struct in6_addr)
          && strcasecmp(rr_name, hostname) == 0)
        {
          memcpy(&addrs[naddrs], aptr, sizeof(struct in6_addr));
          naddrs++;
          status = ARES_SUCCESS;
        }
      if (rr_class == C_IN && rr_type == T_CNAME)
        {
          /* Record the RR name as an alias. */
          aliases[naliases] = rr_name;
          naliases++;
          /* Decode the RR data and replace the hostname with it. */
          status = ares_expand_name(aptr, abuf, alen, &rr_data, &len);
          if (status != ARES_SUCCESS)
            break;
          free(hostname);
          hostname = rr_data;
        }
      else
        free(rr_name);
      aptr += rr_len;
      if (aptr > abuf + alen)
        {
          status = ARES_EBADRESP;
          break;
        }
    }
  if (status == ARES_SUCCESS && naddrs == 0)
    status = ARES_ENODATA;
  if (status == ARES_SUCCESS)
    {
      /* We got our answer.  Allocate memory to build the host entry. */
      aliases[naliases] = NULL;
      hostent = malloc(sizeof(struct hostent));
      if (hostent)
        {
          hostent->h_addr_list = malloc((naddrs + 1) * sizeof(char *));
          if (hostent->h_addr_list)
            {
              /* Fill in the hostent and return successfully. */
              hostent->h_name = hostname;
              hostent->h_aliases = aliases;
              hostent->h_addrtype = AF_INET6;
              hostent->h_length = sizeof(struct in6_addr);
              for (i = 0; i < naddrs; i++)
                hostent->h_addr_list[i] = (char *) &addrs[i];
              hostent->h_addr_list[naddrs] = NULL;
              *host = hostent;
              return ARES_SUCCESS;
            }
          free(hostent);
        }
      status = ARES_ENOMEM;
    }
  for (i = 0; i < naliases; i++)
    free(aliases[i]);
  free(aliases);
  free(addrs);
  free(hostname);
  return status;
 }
--- a/ares/ares_parse_ptr_reply.c
+++ b/ares/ares_parse_ptr_reply.c
@@ -23,6 +23,9 @@
 #include <netinet/in.h>
 #include <netdb.h>
 #include <arpa/nameser.h>
 #ifdef HAVE_ARPA_NAMESER_COMPAT_H
 #include <arpa/nameser_compat.h>
 #endif
 #endif
 #include <stdlib.h>
--- a/ares/ares_private.h
+++ b/ares/ares_private.h
@@ -33,6 +33,10 @@
 #define writev(s,v,c)     writev_s(s,v,c)
 #endif
 #ifdef NETWARE
 #include <time.h>
 #endif
 #define DEFAULT_TIMEOUT         5
 #define DEFAULT_TRIES           4
 #ifndef INADDR_NONE
@@ -69,6 +73,8 @@
 #endif
 #include "ares_ipv6.h"
 struct send_request {
  /* Remaining data to send */
  const unsigned char *data;
@@ -124,9 +130,23 @@ struct query {
 };
 /* An IP address pattern; matches an IP address X if X & mask == addr */
 #define PATTERN_MASK 0x1
 #define PATTERN_CIDR 0x2
 union ares_addr {
  struct in_addr addr4;
  struct in6_addr addr6;
 };
 struct apattern {
-  struct in_addr addr;
+  union ares_addr addr;
-  struct in_addr mask;
+  union
  {
    union ares_addr addr;
    unsigned short bits;
  } mask;
  int family;
  unsigned short type;
 };
 struct ares_channeldata {
@@ -156,7 +176,7 @@ struct ares_channeldata {
 void ares__send_query(ares_channel channel, struct query *query, time_t now);
 void ares__close_sockets(struct server_state *server);
-int ares__get_hostent(FILE *fp, struct hostent **host);
+int ares__get_hostent(FILE *fp, int family, struct hostent **host);
 int ares__read_line(FILE *fp, char **buf, int *bufsize);
 #ifdef CURLDEBUG
@@ -164,9 +184,5 @@ int ares__read_line(FILE *fp, char **buf, int *bufsize);
   libcurl lowlevel code from within library is ugly and only works when
   c-ares is built and linked with a similarly debug-build libcurl, but we do
   this anyway for convenience. */
 #ifndef CURL_EXTERN
 /* ugly hack to make this compile */
 #define CURL_EXTERN
 #endif
 #include "../lib/memdebug.h"
 #endif
--- a/ares/ares_process.c
+++ b/ares/ares_process.c
@@ -27,9 +27,18 @@
 #include <netinet/in.h>
 #include <netdb.h>
 #include <arpa/nameser.h>
 #ifdef HAVE_ARPA_NAMESER_COMPAT_H
 #include <arpa/nameser_compat.h>
 #endif
 #ifdef HAVE_UNISTD_H
 #include <unistd.h>
 #endif
 #ifdef HAVE_SYS_IOCTL_H
 #include <sys/ioctl.h>
 #endif
 #ifdef NETWARE
 #include <sys/filio.h>
 #endif
 #endif
 #include <string.h>
@@ -42,6 +51,11 @@
 #include "ares_dns.h"
 #include "ares_private.h"
 #ifndef TRUE
 /* at least Solaris 7 does not have TRUE at this point */
 #define TRUE 1
 #endif
 #if (defined(WIN32) || defined(WATT32)) && !defined(MSDOS)
 #define GET_ERRNO()  WSAGetLastError()
 #else
@@ -463,10 +477,77 @@ void ares__send_query(ares_channel channel, struct query *query, time_t now)
    }
 }
 /*
 * nonblock() set the given socket to either blocking or non-blocking mode
 * based on the 'nonblock' boolean argument. This function is highly portable.
 */
 static int nonblock(ares_socket_t sockfd,    /* operate on this */
                    int nonblock   /* TRUE or FALSE */)
 {
 #undef SETBLOCK
 #define SETBLOCK 0
 #ifdef HAVE_O_NONBLOCK
  /* most recent unix versions */
  int flags;
  flags = fcntl(sockfd, F_GETFL, 0);
  if (TRUE == nonblock)
    return fcntl(sockfd, F_SETFL, flags | O_NONBLOCK);
  else
    return fcntl(sockfd, F_SETFL, flags & (~O_NONBLOCK));
 #undef SETBLOCK
 #define SETBLOCK 1
 #endif
 #if defined(HAVE_FIONBIO) && (SETBLOCK == 0)
  /* older unix versions */
  int flags;
  flags = nonblock;
  return ioctl(sockfd, FIONBIO, &flags);
 #undef SETBLOCK
 #define SETBLOCK 2
 #endif
 #if defined(HAVE_IOCTLSOCKET) && (SETBLOCK == 0)
  /* Windows? */
  unsigned long flags;
  flags = nonblock;
  return ioctlsocket(sockfd, FIONBIO, &flags);
 #undef SETBLOCK
 #define SETBLOCK 3
 #endif
 #if defined(HAVE_IOCTLSOCKET_CASE) && (SETBLOCK == 0)
  /* presumably for Amiga */
  return IoctlSocket(sockfd, FIONBIO, (long)nonblock);
 #undef SETBLOCK
 #define SETBLOCK 4
 #endif
 #if defined(HAVE_SO_NONBLOCK) && (SETBLOCK == 0)
  /* BeOS */
  long b = nonblock ? 1 : 0;
  return setsockopt(sockfd, SOL_SOCKET, SO_NONBLOCK, &b, sizeof(b));
 #undef SETBLOCK
 #define SETBLOCK 5
 #endif
 #ifdef HAVE_DISABLED_NONBLOCKING
  return 0; /* returns success */
 #undef SETBLOCK
 #define SETBLOCK 6
 #endif
 #if (SETBLOCK == 0)
 #error "no non-blocking method was found/used/set"
 #endif
 }
 static int open_tcp_socket(ares_channel channel, struct server_state *server)
 {
  ares_socket_t s;
  int flags;
  struct sockaddr_in sockin;
  /* Acquire a socket. */
@@ -475,25 +556,7 @@ static int open_tcp_socket(ares_channel channel, struct server_state *server)
    return -1;
  /* Set the socket non-blocking. */
-
+  nonblock(s, TRUE);
 #if defined(WIN32) || defined(WATT32)
  flags = 1;
  ioctlsocket(s, FIONBIO, &flags);
 #else
  flags = fcntl(s, F_GETFL, 0);
  if (flags == -1)
    {
      closesocket(s);
      return -1;
    }
  flags |= O_NONBLOCK;
  if (fcntl(s, F_SETFL, flags) == -1)
    {
      closesocket(s);
      return -1;
    }
 #endif
  /* Connect to the server. */
  memset(&sockin, 0, sizeof(sockin));
@@ -524,6 +587,9 @@ static int open_udp_socket(ares_channel channel, struct server_state *server)
  if (s == ARES_SOCKET_BAD)
    return -1;
  /* Set the socket non-blocking. */
  nonblock(s, TRUE);
  /* Connect to the server. */
  memset(&sockin, 0, sizeof(sockin));
  sockin.sin_family = AF_INET;
--- a/ares/ares_query.c
+++ b/ares/ares_query.c
@@ -21,6 +21,9 @@
 #else
 #include <netinet/in.h>
 #include <arpa/nameser.h>
 #ifdef HAVE_ARPA_NAMESER_COMPAT_H
 #include <arpa/nameser_compat.h>
 #endif
 #endif
 #include <stdlib.h>
--- a/ares/ares_send.c
+++ b/ares/ares_send.c
@@ -21,6 +21,9 @@
 #else
 #include <netinet/in.h>
 #include <arpa/nameser.h>
 #ifdef HAVE_ARPA_NAMESER_COMPAT_H
 #include <arpa/nameser_compat.h>
 #endif
 #endif
 #include <stdlib.h>
--- a/ares/ares_strerror.c
+++ b/ares/ares_strerror.c
@@ -38,7 +38,8 @@ const char *ares_strerror(int code)
    "Error reading file",
    "Out of memory",
    "Channel is being destroyed",
-    "Misformatted string"
+    "Misformatted string",
    "Illegal flags specified"
  };
  assert(code >= 0 && code < (int)(sizeof(errtext) / sizeof(*errtext)));
--- a/ares/ares_version.h
+++ b/ares/ares_version.h
@@ -4,12 +4,12 @@
 #define ARES__VERSION_H
 #define ARES_VERSION_MAJOR 1
-#define ARES_VERSION_MINOR 2
+#define ARES_VERSION_MINOR 3
 #define ARES_VERSION_PATCH 0
 #define ARES_VERSION ((ARES_VERSION_MAJOR<<16)|\
                       (ARES_VERSION_MINOR<<8)|\
                       (ARES_VERSION_PATCH))
-#define ARES_VERSION_STR "1.2.0"
+#define ARES_VERSION_STR "1.3.0"
 const char *ares_version(int *version);
--- a/ares/bitncmp.c
+++ b/ares/bitncmp.c
@@ -0,0 +1,60 @@
 /*
 * Copyright (c) 2004 by Internet Systems Consortium, Inc. ("ISC")
 * Copyright (c) 1996,1999 by Internet Software Consortium.
 *
 * Permission to use, copy, modify, and distribute this software for any
 * purpose with or without fee is hereby granted, provided that the above
 * copyright notice and this permission notice appear in all copies.
 *
 * THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES
 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
 * MERCHANTABILITY AND FITNESS.  IN NO EVENT SHALL ISC BE LIABLE FOR
 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT
 * OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
 */
 #ifndef HAVE_BITNCMP
 #include <sys/types.h>
 #include <string.h>
 #include <stdlib.h>
 #include "bitncmp.h"
 /*
 * int
 * bitncmp(l, r, n)
 *	compare bit masks l and r, for n bits.
 * return:
 *	-1, 1, or 0 in the libc tradition.
 * note:
 *	network byte order assumed.  this means 192.5.5.240/28 has
 *	0x11110000 in its fourth octet.
 * author:
 *	Paul Vixie (ISC), June 1996
 */
 int
 ares_bitncmp(const void *l, const void *r, int n) {
 	unsigned int lb, rb;
 	int x, b;
 	b = n / 8;
 	x = memcmp(l, r, b);
 	if (x)
 		return (x);
 	lb = ((const unsigned char *)l)[b];
 	rb = ((const unsigned char *)r)[b];
 	for (b = n % 8; b > 0; b--) {
 		if ((lb & 0x80) != (rb & 0x80)) {
 			if (lb & 0x80)
 				return (1);
 			return (-1);
 		}
 		lb <<= 1;
 		rb <<= 1;
 	}
 	return (0);
 }
 #endif
--- a/ares/bitncmp.h
+++ b/ares/bitncmp.h
@@ -0,0 +1,26 @@
 /* $Id$ */
 /*
 * Permission to use, copy, modify, and distribute this
 * software and its documentation for any purpose and without
 * fee is hereby granted, provided that the above copyright
 * notice appear in all copies and that both that copyright
 * notice and this permission notice appear in supporting
 * documentation, and that the name of M.I.T. not be used in
 * advertising or publicity pertaining to distribution of the
 * software without specific, written prior permission.
 * M.I.T. makes no representations about the suitability of
 * this software for any purpose.  It is provided "as is"
 * without express or implied warranty.
 */
 #ifndef BITNCMP_H
 #define BITNCMP_H
 #ifndef HAVE_BITNCMP
 int ares_bitncmp(const void *l, const void *r, int n);
 #else
 #define ares_bitncmp(x,y,z) bitncmp(x,y,z)
 #endif
 #endif /* BITNCMP_H */
--- a/ares/buildconf
+++ b/ares/buildconf
@@ -1,7 +1,7 @@
 #!/bin/sh
-libtoolize --copy --automake --force
+${LIBTOOLIZE:-libtoolize} --copy --automake --force
-aclocal
+${ACLOCAL:-aclocal}
-autoheader
+${AUTOHEADER:-autoheader}
-autoconf
+${AUTOCONF:-autoconf}
-automake --add-missing
+${AUTOMAKE:-automake} --add-missing
--- a/ares/configure.ac
+++ b/ares/configure.ac
@@ -41,6 +41,10 @@ AC_HELP_STRING([--disable-debug],[Disable debug options]),
    dnl Checks for standard header files, to make memdebug.h inclusions bettter
    AC_HEADER_STDC
    dnl the entire --enable-debug is a hack that lives and runs on top of
    dnl libcurl stuff so this BUILDING_LIBCURL is not THAT much uglier
    AC_DEFINE(BUILDING_LIBCURL, 1, [when building as static part of libcurl])
    CPPFLAGS="$CPPFLAGS -DCURLDEBUG -I$srcdir/../include"
    CFLAGS="$CFLAGS -g" 
@@ -61,6 +65,287 @@ AC_CHECK_HEADERS(
       sys/time.h \
       sys/select.h \
       sys/socket.h \
       sys/ioctl.h \
       winsock.h \
       netinet/in.h \
       net/if.h \
       arpa/nameser.h \
       arpa/nameser_compat.h \
       arpa/inet.h, , ,
 [
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 #endif
 dnl We do this default-include simply to make sure that the nameser_compat.h
 dnl header *REALLY* can be include after the new nameser.h. It seems AIX 5.1
 dnl (and others?) is not designed to allow this.
 #ifdef HAVE_ARPA_NAMESER_H
 #include <arpa/nameser.h>
 #endif
 dnl *Sigh* these are needed in order for net/if.h to get properly detected.
 #ifdef HAVE_SYS_SOCKET_H
 #include <sys/socket.h>
 #endif
 #ifdef HAVE_WINSOCK_H
 #include <winsock.h>
 #endif
 ]
  )
 AC_CHECK_TYPE(socklen_t, ,
   AC_DEFINE(socklen_t, int, [the length of a socket address]), 
   [
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 #endif
 #ifdef HAVE_SYS_SOCKET_H
 #include <sys/socket.h>
 #endif
 #ifdef HAVE_WINSOCK_H
 #include <winsock.h>
 #endif
   ])
 dnl check for AF_INET6
 CARES_CHECK_CONSTANT(
  [
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 #endif
 #ifdef HAVE_SYS_SOCKET_H
 #include <sys/socket.h>
 #endif
 #ifdef HAVE_WINSOCK_H
 #include <winsock.h>
 #endif
  ], [PF_INET6], 
     AC_DEFINE_UNQUOTED(HAVE_PF_INET6,1,[Define to 1 if you have PF_INET6.])
 )
 dnl check for PF_INET6
 CARES_CHECK_CONSTANT(
  [
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 #endif
 #ifdef HAVE_SYS_SOCKET_H
 #include <sys/socket.h>
 #endif
 #ifdef HAVE_WINSOCK_H
 #include <winsock.h>
 #endif
  ], [AF_INET6], 
     AC_DEFINE_UNQUOTED(HAVE_AF_INET6,1,[Define to 1 if you have AF_INET6.])
 )
 dnl check for the in6_addr structure
 CARES_CHECK_STRUCT(
  [
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 #endif
 #ifdef HAVE_WINSOCK_H
 #include <winsock.h>
 #endif
 #ifdef HAVE_NETINET_IN_H
 #include <netinet/in.h>
 #endif
  ], [in6_addr], 
     AC_DEFINE_UNQUOTED(HAVE_STRUCT_IN6_ADDR,1,[Define to 1 if you have struct in6_addr.])
 )
 dnl check for the sockaddr_in6 structure
 CARES_CHECK_STRUCT(
  [
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 #endif
 #ifdef HAVE_WINSOCK_H
 #include <winsock.h>
 #endif
 #ifdef HAVE_NETINET_IN_H
 #include <netinet/in.h>
 #endif
  ], [sockaddr_in6], 
     AC_DEFINE_UNQUOTED(HAVE_STRUCT_SOCKADDR_IN6,1,
       [Define to 1 if you have struct sockaddr_in6.]) ac_have_sockaddr_in6=yes
 )
 if test "$ac_have_sockaddr_in6" = "yes" ; then
 CARES_CHECK_STRUCT_MEMBER(
  [
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 #endif
 #ifdef HAVE_WINSOCK_H
 #include <winsock.h>
 #endif
 #ifdef HAVE_NETINET_IN_H
 #include <netinet/in.h>
 #endif
  ], [sockaddr_in6], [sin6_scope_id],
     AC_DEFINE_UNQUOTED(HAVE_SOCKADDR_IN6_SIN6_SCOPE_ID,1,
       [Define to 1 if your struct sockaddr_in6 has sin6_scope_id.])
 )
 fi
 dnl check for the addrinfo structure
 CARES_CHECK_STRUCT(
  [
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 #endif
 #ifdef HAVE_WINSOCK_H
 #include <winsock.h>
 #endif
 #ifdef HAVE_NETINET_IN_H
 #include <netinet/in.h>
 #endif
  ], [addrinfo], 
     AC_DEFINE_UNQUOTED(HAVE_STRUCT_ADDRINFO,1,
       [Define to 1 if you have struct addrinfo.])
 )
 dnl check for inet_pton
 AC_CHECK_FUNCS(inet_pton)
 dnl Some systems have it, but not IPv6
 if test "$ac_cv_func_inet_pton" = "yes" ; then
 AC_MSG_CHECKING(if inet_pton supports IPv6)
 AC_TRY_RUN(
  [
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 #endif
 #ifdef HAVE_SYS_SOCKET_H
 #include <sys/socket.h>
 #endif
 #ifdef HAVE_WINSOCK_H
 #include <winsock.h>
 #endif
 #ifdef HAVE_NETINET_IN_H
 #include <netinet/in.h>
 #endif
 int main()
  {
    struct in6_addr addr6;
    if (inet_pton(AF_INET6, "::1", &addr6) < 1)
      exit(1);
    else
      exit(0);
  }
  ], [
       AC_MSG_RESULT(yes)
       AC_DEFINE_UNQUOTED(HAVE_INET_PTON_IPV6,1,[Define to 1 if inet_pton supports IPv6.])
     ], AC_MSG_RESULT(no),AC_MSG_RESULT(no))
 fi
 dnl Check for inet_net_pton
 AC_CHECK_FUNCS(inet_net_pton)
 dnl Again, some systems have it, but not IPv6
 if test "$ac_cv_func_inet_net_pton" = "yes" ; then
 AC_MSG_CHECKING(if inet_net_pton supports IPv6)
 AC_TRY_RUN(
  [
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 #endif
 #ifdef HAVE_SYS_SOCKET_H
 #include <sys/socket.h>
 #endif
 #ifdef HAVE_WINSOCK_H
 #include <winsock.h>
 #endif
 #ifdef HAVE_NETINET_IN_H
 #include <netinet/in.h>
 #endif
 int main()
  {
    struct in6_addr addr6;
    if (inet_net_pton(AF_INET6, "::1", &addr6, sizeof(addr6)) < 1)
      exit(1);
    else
      exit(0);
  }
  ], [
       AC_MSG_RESULT(yes)
       AC_DEFINE_UNQUOTED(HAVE_INET_NET_PTON_IPV6,1,[Define to 1 if inet_net_pton supports IPv6.])
     ], AC_MSG_RESULT(no),AC_MSG_RESULT(no))
 fi
 dnl Check for inet_ntop
 AC_CHECK_FUNCS(inet_ntop)
 dnl Again, some systems have it, but not IPv6
 if test "$ac_cv_func_inet_ntop" = "yes" ; then
 AC_MSG_CHECKING(if inet_ntop supports IPv6)
 AC_TRY_RUN(
  [
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 #endif
 #ifdef HAVE_SYS_SOCKET_H
 #include <sys/socket.h>
 #endif
 #ifdef HAVE_WINSOCK_H
 #include <winsock.h>
 #endif
 #ifdef HAVE_NETINET_IN_H
 #include <netinet/in.h>
 #endif
 #include <errno.h>
 int main()
  {
    struct in6_addr addr6;
    char buf[128];
    if (inet_ntop(AF_INET6, &addr6, buf, 128) == 0 && errno == EAFNOSUPPORT)
      exit(1);
    else
      exit(0);
  }
  ], [
       AC_MSG_RESULT(yes)
       AC_DEFINE_UNQUOTED(HAVE_INET_NTOP_IPV6,1,[Define to 1 if inet_ntop supports IPv6.])
     ], AC_MSG_RESULT(no),AC_MSG_RESULT(no))
 fi
 AC_CHECK_SIZEOF(struct in6_addr, ,
 [
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 #endif
 #ifdef HAVE_SYS_SOCKET_H
 #include <sys/socket.h>
 #endif
 #ifdef HAVE_WINSOCK_H
 #include <winsock.h>
 #endif
 #ifdef HAVE_NETINET_IN_H
 #include <netinet/in.h>
 #endif
 ]
 )
 AC_CHECK_SIZEOF(struct in_addr, ,
 [
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 #endif
 #ifdef HAVE_SYS_SOCKET_H
 #include <sys/socket.h>
 #endif
 #ifdef HAVE_WINSOCK_H
 #include <winsock.h>
 #endif
 #ifdef HAVE_NETINET_IN_H
 #include <netinet/in.h>
 #endif
 ]
 )
 AC_CHECK_FUNCS([bitncmp if_indextoname])
 CURL_CHECK_NONBLOCKING_SOCKET
 AC_OUTPUT(Makefile)
--- a/ares/inet_net_pton.c
+++ b/ares/inet_net_pton.c
@@ -0,0 +1,439 @@
 /*
 * Copyright (c) 2004 by Internet Systems Consortium, Inc. ("ISC")
 * Copyright (c) 1996,1999 by Internet Software Consortium.
 *
 * Permission to use, copy, modify, and distribute this software for any
 * purpose with or without fee is hereby granted, provided that the above
 * copyright notice and this permission notice appear in all copies.
 *
 * THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES
 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
 * MERCHANTABILITY AND FITNESS.  IN NO EVENT SHALL ISC BE LIABLE FOR
 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT
 * OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
 */
 #include "setup.h"
 #include <sys/types.h>
 #if defined(WIN32) && !defined(WATT32)
 #include "nameser.h"
 #else
 #ifdef HAVE_SYS_SOCKET_H
 #include <sys/socket.h>
 #endif
 #ifdef HAVE_NETINET_IN_H
 #include <netinet/in.h>
 #endif
 #ifdef HAVE_ARPA_NAMESER_H
 #include <arpa/nameser.h>
 #endif
 #ifdef HAVE_ARPA_INET_H
 #include <arpa/inet.h>
 #endif
 #endif
 #include <ctype.h>
 #include <errno.h>
 #include <stdio.h>
 #include <string.h>
 #include <stdlib.h>
 #include "ares_ipv6.h"
 #include "inet_net_pton.h"
 #if !defined(HAVE_INET_NET_PTON) || !defined(HAVE_INET_NET_PTON_IPV6) || \
    !defined(HAVE_INET_PTON) || !defined(HAVE_INET_PTON_IPV6)
 /*
 * static int
 * inet_net_pton_ipv4(src, dst, size)
 *      convert IPv4 network number from presentation to network format.
 *      accepts hex octets, hex strings, decimal octets, and /CIDR.
 *      "size" is in bytes and describes "dst".
 * return:
 *      number of bits, either imputed classfully or specified with /CIDR,
 *      or -1 if some failure occurred (check errno).  ENOENT means it was
 *      not an IPv4 network specification.
 * note:
 *      network byte order assumed.  this means 192.5.5.240/28 has
 *      0b11110000 in its fourth octet.
 * author:
 *      Paul Vixie (ISC), June 1996
 */
 static int
 inet_net_pton_ipv4(const char *src, unsigned char *dst, size_t size)
 {
  static const char xdigits[] = "0123456789abcdef";
  static const char digits[] = "0123456789";
  int n, ch, tmp = 0, dirty, bits;
  const unsigned char *odst = dst;
  ch = *src++;
  if (ch == '0' && (src[0] == 'x' || src[0] == 'X')
      && isascii((unsigned char)(src[1]))
      && isxdigit((unsigned char)(src[1]))) {
    /* Hexadecimal: Eat nybble string. */
    if (size <= 0U)
      goto emsgsize;
    dirty = 0;
    src++;  /* skip x or X. */
    while ((ch = *src++) != '\0' && isascii(ch) && isxdigit(ch)) {
      if (isupper(ch))
        ch = tolower(ch);
      n = (int)(strchr(xdigits, ch) - xdigits);
      if (dirty == 0)
        tmp = n;
      else
        tmp = (tmp << 4) | n;
      if (++dirty == 2) {
        if (size-- <= 0U)
          goto emsgsize;
        *dst++ = (unsigned char) tmp;
        dirty = 0;
      }
    }
    if (dirty) {  /* Odd trailing nybble? */
      if (size-- <= 0U)
        goto emsgsize;
      *dst++ = (unsigned char) (tmp << 4);
    }
  } else if (isascii(ch) && isdigit(ch)) {
    /* Decimal: eat dotted digit string. */
    for (;;) {
      tmp = 0;
      do {
        n = (int)(strchr(digits, ch) - digits);
        tmp *= 10;
        tmp += n;
        if (tmp > 255)
          goto enoent;
      } while ((ch = *src++) != '\0' &&
               isascii(ch) && isdigit(ch));
      if (size-- <= 0U)
        goto emsgsize;
      *dst++ = (unsigned char) tmp;
      if (ch == '\0' || ch == '/')
        break;
      if (ch != '.')
        goto enoent;
      ch = *src++;
      if (!isascii(ch) || !isdigit(ch))
        goto enoent;
    }
  } else
    goto enoent;
  bits = -1;
  if (ch == '/' && isascii((unsigned char)(src[0])) &&
      isdigit((unsigned char)(src[0])) && dst > odst) {
    /* CIDR width specifier.  Nothing can follow it. */
    ch = *src++;    /* Skip over the /. */
    bits = 0;
    do {
      n = (int)(strchr(digits, ch) - digits);
      bits *= 10;
      bits += n;
    } while ((ch = *src++) != '\0' && isascii(ch) && isdigit(ch));
    if (ch != '\0')
      goto enoent;
    if (bits > 32)
      goto emsgsize;
  }
  /* Firey death and destruction unless we prefetched EOS. */
  if (ch != '\0')
    goto enoent;
  /* If nothing was written to the destination, we found no address. */
  if (dst == odst)
    goto enoent;
  /* If no CIDR spec was given, infer width from net class. */
  if (bits == -1) {
    if (*odst >= 240)       /* Class E */
      bits = 32;
    else if (*odst >= 224)  /* Class D */
      bits = 8;
    else if (*odst >= 192)  /* Class C */
      bits = 24;
    else if (*odst >= 128)  /* Class B */
      bits = 16;
    else                    /* Class A */
      bits = 8;
    /* If imputed mask is narrower than specified octets, widen. */
    if (bits < ((dst - odst) * 8))
      bits = (int)(dst - odst) * 8;
    /*
     * If there are no additional bits specified for a class D
     * address adjust bits to 4.
     */
    if (bits == 8 && *odst == 224)
      bits = 4;
  }
  /* Extend network to cover the actual mask. */
  while (bits > ((dst - odst) * 8)) {
    if (size-- <= 0U)
      goto emsgsize;
    *dst++ = '\0';
  }
  return (bits);
  enoent:
  errno = ENOENT;
  return (-1);
  emsgsize:
  errno = EMSGSIZE;
  return (-1);
 }
 static int
 getbits(const char *src, int *bitsp)
 {
  static const char digits[] = "0123456789";
  int n;
  int val;
  char ch;
  val = 0;
  n = 0;
  while ((ch = *src++) != '\0') {
    const char *pch;
    pch = strchr(digits, ch);
    if (pch != NULL) {
      if (n++ != 0 && val == 0)       /* no leading zeros */
        return (0);
      val *= 10;
      val += (pch - digits);
      if (val > 128)                  /* range */
        return (0);
      continue;
    }
    return (0);
  }
  if (n == 0)
    return (0);
  *bitsp = val;
  return (1);
 }
 static int
 getv4(const char *src, unsigned char *dst, int *bitsp)
 {
  static const char digits[] = "0123456789";
  unsigned char *odst = dst;
  int n;
  unsigned int val;
  char ch;
  val = 0;
  n = 0;
  while ((ch = *src++) != '\0') {
    const char *pch;
    pch = strchr(digits, ch);
    if (pch != NULL) {
      if (n++ != 0 && val == 0)       /* no leading zeros */
        return (0);
      val *= 10;
      val += (pch - digits);
      if (val > 255)                  /* range */
        return (0);
      continue;
    }
    if (ch == '.' || ch == '/') {
      if (dst - odst > 3)             /* too many octets? */
        return (0);
      *dst++ = val;
      if (ch == '/')
        return (getbits(src, bitsp));
      val = 0;
      n = 0;
      continue;
    }
    return (0);
  }
  if (n == 0)
    return (0);
  if (dst - odst > 3)             /* too many octets? */
    return (0);
  *dst++ = val;
  return (1);
 }
 static int
 inet_net_pton_ipv6(const char *src, unsigned char *dst, size_t size)
 {
  static const char xdigits_l[] = "0123456789abcdef",
    xdigits_u[] = "0123456789ABCDEF";
  unsigned char tmp[NS_IN6ADDRSZ], *tp, *endp, *colonp;
  const char *xdigits, *curtok;
  int ch, saw_xdigit;
  unsigned int val;
  int digits;
  int bits;
  size_t bytes;
  int words;
  int ipv4;
  memset((tp = tmp), '\0', NS_IN6ADDRSZ);
  endp = tp + NS_IN6ADDRSZ;
  colonp = NULL;
  /* Leading :: requires some special handling. */
  if (*src == ':')
    if (*++src != ':')
      goto enoent;
  curtok = src;
  saw_xdigit = 0;
  val = 0;
  digits = 0;
  bits = -1;
  ipv4 = 0;
  while ((ch = *src++) != '\0') {
    const char *pch;
    if ((pch = strchr((xdigits = xdigits_l), ch)) == NULL)
      pch = strchr((xdigits = xdigits_u), ch);
    if (pch != NULL) {
      val <<= 4;
      val |= (pch - xdigits);
      if (++digits > 4)
        goto enoent;
      saw_xdigit = 1;
      continue;
    }
    if (ch == ':') {
      curtok = src;
      if (!saw_xdigit) {
        if (colonp)
          goto enoent;
        colonp = tp;
        continue;
      } else if (*src == '\0')
        goto enoent;
      if (tp + NS_INT16SZ > endp)
        return (0);
      *tp++ = (unsigned char) (val >> 8) & 0xff;
      *tp++ = (unsigned char) val & 0xff;
      saw_xdigit = 0;
      digits = 0;
      val = 0;
      continue;
    }
    if (ch == '.' && ((tp + NS_INADDRSZ) <= endp) &&
        getv4(curtok, tp, &bits) > 0) {
      tp += NS_INADDRSZ;
      saw_xdigit = 0;
      ipv4 = 1;
      break;  /* '\0' was seen by inet_pton4(). */
    }
    if (ch == '/' && getbits(src, &bits) > 0)
      break;
    goto enoent;
  }
  if (saw_xdigit) {
    if (tp + NS_INT16SZ > endp)
      goto enoent;
    *tp++ = (unsigned char) (val >> 8) & 0xff;
    *tp++ = (unsigned char) val & 0xff;
  }
  if (bits == -1)
    bits = 128;
  words = (bits + 15) / 16;
  if (words < 2)
    words = 2;
  if (ipv4)
    words = 8;
  endp =  tmp + 2 * words;
  if (colonp != NULL) {
    /*
     * Since some memmove()'s erroneously fail to handle
     * overlapping regions, we'll do the shift by hand.
     */
    const int n = (int)(tp - colonp);
    int i;
    if (tp == endp)
      goto enoent;
    for (i = 1; i <= n; i++) {
      endp[- i] = colonp[n - i];
      colonp[n - i] = 0;
    }
    tp = endp;
  }
  if (tp != endp)
    goto enoent;
  bytes = (bits + 7) / 8;
  if (bytes > size)
    goto emsgsize;
  memcpy(dst, tmp, bytes);
  return (bits);
  enoent:
  errno = ENOENT;
  return (-1);
  emsgsize:
  errno = EMSGSIZE;
  return (-1);
 }
 /*
 * int
 * inet_net_pton(af, src, dst, size)
 *      convert network number from presentation to network format.
 *      accepts hex octets, hex strings, decimal octets, and /CIDR.
 *      "size" is in bytes and describes "dst".
 * return:
 *      number of bits, either imputed classfully or specified with /CIDR,
 *      or -1 if some failure occurred (check errno).  ENOENT means it was
 *      not a valid network specification.
 * author:
 *      Paul Vixie (ISC), June 1996
 */
 int
 ares_inet_net_pton(int af, const char *src, void *dst, size_t size)
 {
  switch (af) {
  case AF_INET:
    return (inet_net_pton_ipv4(src, dst, size));
  case AF_INET6:
    return (inet_net_pton_ipv6(src, dst, size));
  default:
    errno = EAFNOSUPPORT;
    return (-1);
  }
 }
 #endif
 #if !defined(HAVE_INET_PTON) || !defined(HAVE_INET_PTON_IPV6)
 int ares_inet_pton(int af, const char *src, void *dst)
 {
  int size, result;
  if (af == AF_INET)
    size = sizeof(struct in_addr);
  else if (af == AF_INET6)
    size = sizeof(struct in6_addr);
  else
  {
    errno = EAFNOSUPPORT;
    return -1;
  }
  result = ares_inet_net_pton(af, src, dst, size);
  if (result == -1 && errno == ENOENT)
    return 0;
  return (result > -1 ? 1 : -1);
 }
 #endif
--- a/ares/inet_net_pton.h
+++ b/ares/inet_net_pton.h
@@ -0,0 +1,31 @@
 /* $Id$ */
 /*
 * Permission to use, copy, modify, and distribute this
 * software and its documentation for any purpose and without
 * fee is hereby granted, provided that the above copyright
 * notice appear in all copies and that both that copyright
 * notice and this permission notice appear in supporting
 * documentation, and that the name of M.I.T. not be used in
 * advertising or publicity pertaining to distribution of the
 * software without specific, written prior permission.
 * M.I.T. makes no representations about the suitability of
 * this software for any purpose.  It is provided "as is"
 * without express or implied warranty.
 */
 #ifndef INET_NET_PTON_H
 #define INET_NET_PTON_H
 #if defined(HAVE_INET_PTON) && defined(HAVE_INET_PTON_IPV6)
 #define ares_inet_pton(x,y,z) inet_pton(x,y,z)
 #else
 int ares_inet_pton(int af, const char *src, void *dst);
 #endif
 #if defined(HAVE_INET_NET_PTON) && defined(HAVE_INET_NET_PTON_IPV6)
 #define ares_inet_net_pton(w,x,y,z) inet_net_pton(w,x,y,z)
 #else
 int ares_inet_net_pton(int af, const char *src, void *dst, size_t size);
 #endif
 #endif /* INET_NET_PTON_H */
--- a/ares/inet_ntop.c
+++ b/ares/inet_ntop.c
@@ -0,0 +1,206 @@
 /* Copyright (c) 1996 by Internet Software Consortium.
 *
 * Permission to use, copy, modify, and distribute this software for any
 * purpose with or without fee is hereby granted, provided that the above
 * copyright notice and this permission notice appear in all copies.
 *
 * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
 * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
 * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
 * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
 * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
 * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
 * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
 * SOFTWARE.
 */
 #include "setup.h"
 #include <sys/types.h>
 #if defined(WIN32) && !defined(WATT32)
 #include "nameser.h"
 #else
 #ifdef HAVE_SYS_SOCKET_H
 #include <sys/socket.h>
 #endif
 #ifdef HAVE_NETINET_IN_H
 #include <netinet/in.h>
 #endif
 #ifdef HAVE_ARPA_NAMESER_H
 #include <arpa/nameser.h>
 #endif
 #ifdef HAVE_ARPA_INET_H
 #include <arpa/inet.h>
 #endif
 #endif
 #include <ctype.h>
 #include <errno.h>
 #include <stdio.h>
 #include <string.h>
 #include <stdlib.h>
 #include "ares_ipv6.h"
 #include "inet_ntop.h"
 #if !defined(HAVE_INET_NTOP) || !defined(HAVE_INET_NTOP_IPV6)
 #ifdef SPRINTF_CHAR
 # define SPRINTF(x) strlen(sprintf/**/x)
 #else
 # define SPRINTF(x) ((size_t)sprintf x)
 #endif
 /*
 * WARNING: Don't even consider trying to compile this on a system where
 * sizeof(int) < 4.  sizeof(int) > 4 is fine; all the world's not a VAX.
 */
 static const char *inet_ntop4(const unsigned char *src, char *dst, size_t size);
 static const char *inet_ntop6(const unsigned char *src, char *dst, size_t size);
 /* char *
 * inet_ntop(af, src, dst, size)
 *	convert a network format address to presentation format.
 * return:
 *	pointer to presentation format address (`dst'), or NULL (see errno).
 * author:
 *	Paul Vixie, 1996.
 */
 const char *
 ares_inet_ntop(int af, const void *src, char *dst, size_t size)
 {
 	switch (af) {
 	case AF_INET:
 		return (inet_ntop4(src, dst, size));
 	case AF_INET6:
 		return (inet_ntop6(src, dst, size));
 	default:
 		errno = EAFNOSUPPORT;
 		return (NULL);
 	}
 	/* NOTREACHED */
 }
 /* const char *
 * inet_ntop4(src, dst, size)
 *	format an IPv4 address, more or less like inet_ntoa()
 * return:
 *	`dst' (as a const)
 * notes:
 *	(1) uses no statics
 *	(2) takes a unsigned char* not an in_addr as input
 * author:
 *	Paul Vixie, 1996.
 */
 static const char *
 inet_ntop4(const unsigned char *src, char *dst, size_t size)
 {
 	static const char fmt[] = "%u.%u.%u.%u";
 	char tmp[sizeof "255.255.255.255"];
 	if (SPRINTF((tmp, fmt, src[0], src[1], src[2], src[3])) > size) {
 		errno = ENOSPC;
 		return (NULL);
 	}
 	strcpy(dst, tmp);
 	return (dst);
 }
 /* const char *
 * inet_ntop6(src, dst, size)
 *	convert IPv6 binary address into presentation (printable) format
 * author:
 *	Paul Vixie, 1996.
 */
 static const char *
 inet_ntop6(const unsigned char *src, char *dst, size_t size)
 {
 	/*
 	 * Note that int32_t and int16_t need only be "at least" large enough
 	 * to contain a value of the specified size.  On some systems, like
 	 * Crays, there is no such thing as an integer variable with 16 bits.
 	 * Keep this in mind if you think this function should have been coded
 	 * to use pointer overlays.  All the world's not a VAX.
 	 */
 	char tmp[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"], *tp;
 	struct { int base, len; } best, cur;
 	unsigned int words[NS_IN6ADDRSZ / NS_INT16SZ];
 	int i;
 	/*
 	 * Preprocess:
 	 *	Copy the input (bytewise) array into a wordwise array.
 	 *	Find the longest run of 0x00's in src[] for :: shorthanding.
 	 */
 	memset(words, '\0', sizeof words);
 	for (i = 0; i < NS_IN6ADDRSZ; i++)
 		words[i / 2] |= (src[i] << ((1 - (i % 2)) << 3));
 	best.base = -1;
 	cur.base = -1;
 	for (i = 0; i < (NS_IN6ADDRSZ / NS_INT16SZ); i++) {
 		if (words[i] == 0) {
 			if (cur.base == -1)
 				cur.base = i, cur.len = 1;
 			else
 				cur.len++;
 		} else {
 			if (cur.base != -1) {
 				if (best.base == -1 || cur.len > best.len)
 					best = cur;
 				cur.base = -1;
 			}
 		}
 	}
 	if (cur.base != -1) {
 		if (best.base == -1 || cur.len > best.len)
 			best = cur;
 	}
 	if (best.base != -1 && best.len < 2)
 		best.base = -1;
 	/*
 	 * Format the result.
 	 */
 	tp = tmp;
 	for (i = 0; i < (NS_IN6ADDRSZ / NS_INT16SZ); i++) {
 		/* Are we inside the best run of 0x00's? */
 		if (best.base != -1 && i >= best.base &&
 		    i < (best.base + best.len)) {
 			if (i == best.base)
 				*tp++ = ':';
 			continue;
 		}
 		/* Are we following an initial run of 0x00s or any real hex? */
 		if (i != 0)
 			*tp++ = ':';
 		/* Is this address an encapsulated IPv4? */
 		if (i == 6 && best.base == 0 &&
 		    (best.len == 6 || (best.len == 5 && words[5] == 0xffff))) {
 			if (!inet_ntop4(src+12, tp, sizeof tmp - (tp - tmp)))
 				return (NULL);
 			tp += strlen(tp);
 			break;
 		}
 		tp += SPRINTF((tp, "%x", words[i]));
 	}
 	/* Was it a trailing run of 0x00's? */
 	if (best.base != -1 && (best.base + best.len) == (NS_IN6ADDRSZ / NS_INT16SZ))
 		*tp++ = ':';
 	*tp++ = '\0';
 	/*
 	 * Check for overflow, copy, and we're done.
 	 */
 	if ((size_t)(tp - tmp) > size) {
 		errno = ENOSPC;
 		return (NULL);
 	}
 	strcpy(dst, tmp);
 	return (dst);
 }
 #endif
--- a/ares/inet_ntop.h
+++ b/ares/inet_ntop.h
@@ -0,0 +1,26 @@
 /* $Id$ */
 /*
 * Permission to use, copy, modify, and distribute this
 * software and its documentation for any purpose and without
 * fee is hereby granted, provided that the above copyright
 * notice appear in all copies and that both that copyright
 * notice and this permission notice appear in supporting
 * documentation, and that the name of M.I.T. not be used in
 * advertising or publicity pertaining to distribution of the
 * software without specific, written prior permission.
 * M.I.T. makes no representations about the suitability of
 * this software for any purpose.  It is provided "as is"
 * without express or implied warranty.
 */
 #ifndef INET_NTOP_H
 #define INET_NTOP_H
 #ifdef HAVE_INET_NTOP
 #define ares_inet_ntop(w,x,y,z) inet_ntop(w,x,y,z)
 #else
 const char *ares_inet_ntop(int af, const void *src, char *dst, size_t size);
 #endif
 #endif /* INET_NET_NTOP_H */
--- a/ares/nameser.h
+++ b/ares/nameser.h
@@ -16,6 +16,8 @@
 #define EINPROGRESS WSAEINPROGRESS
 #define EWOULDBLOCK WSAEWOULDBLOCK
 #define EMSGSIZE WSAEMSGSIZE
 #define EAFNOSUPPORT WSAEAFNOSUPPORT
 /* Structure for scatter/gather I/O.  */
 struct iovec
@@ -37,7 +39,9 @@ int ares_gettimeofday(struct timeval *tv, struct timezone *tz);
 #endif  /* !NETWARE */
 #define NS_CMPRSFLGS  0xc0
-
+#define NS_IN6ADDRSZ  16
 #define NS_INT16SZ    2
 #define NS_INADDRSZ   4
  /* Flag bits indicating name compression. */
 #define INDIR_MASK    NS_CMPRSFLGS
--- a/ares/setup.h
+++ b/ares/setup.h
@@ -1,7 +1,7 @@
 #ifndef ARES_SETUP_H
 #define ARES_SETUP_H
-/* Copyright (C) 2004 by Daniel Stenberg et al
+/* Copyright (C) 2004 - 2005 by Daniel Stenberg et al
 *
 * Permission to use, copy, modify, and distribute this software and its
 * documentation for any purpose and without fee is hereby granted, provided
@@ -19,6 +19,7 @@
 #else
 /* simple work-around for now, for systems without configure support */
 #define ssize_t int
 #define socklen_t int
 #endif
 /* Recent autoconf versions define these symbols in config.h. We don't want
@@ -49,7 +50,7 @@ typedef int ares_socket_t;
 #endif
 #if !defined(HAVE_UNISTD_H) && !defined(_MSC_VER)
-#define HAVE_UNISTD_H 
+#define HAVE_UNISTD_H 1
 #endif
 #if !defined(HAVE_SYS_UIO_H) && !defined(WIN32) && !defined(MSDOS)
@@ -69,4 +70,13 @@ int ares_strcasecmp(const char *s1, const char *s2);
 #define strcasecmp(a,b) ares_strcasecmp(a,b)
 #endif
 /* IPv6 compatibility */
 #if !defined(HAVE_AF_INET6)
 #if defined(HAVE_PF_INET6)
 #define AF_INET6 PF_INET6
 #else
 #define AF_INET6 AF_MAX+1
 #endif
 #endif
 #endif /* ARES_SETUP_H */
--- a/ares/vc/adig/adig.mak
+++ b/ares/vc/adig/adig.mak
@@ -185,24 +185,24 @@ SOURCE=..\..\getopt.c
 !IF  "$(CFG)" == "adig - Win32 Release"
 "areslib - Win32 Release" : 
-   cd ".\areslib"
+   cd "..\areslib"
   $(MAKE) /$(MAKEFLAGS) /F ".\areslib.mak" CFG="areslib - Win32 Release" 
   cd "..\adig"
 "areslib - Win32 ReleaseCLEAN" : 
-   cd ".\areslib"
+   cd "..\areslib"
   $(MAKE) /$(MAKEFLAGS) /F ".\areslib.mak" CFG="areslib - Win32 Release" RECURSE=1 CLEAN 
   cd "..\adig"
 !ELSEIF  "$(CFG)" == "adig - Win32 Debug"
 "areslib - Win32 Debug" : 
-   cd ".\areslib"
+   cd "..\areslib"
   $(MAKE) /$(MAKEFLAGS) /F ".\areslib.mak" CFG="areslib - Win32 Debug" 
   cd "..\adig"
 "areslib - Win32 DebugCLEAN" : 
-   cd ".\areslib"
+   cd "..\areslib"
   $(MAKE) /$(MAKEFLAGS) /F ".\areslib.mak" CFG="areslib - Win32 Debug" RECURSE=1 CLEAN 
   cd "..\adig"
--- a/ares/vc/ahost/ahost.mak
+++ b/ares/vc/ahost/ahost.mak
@@ -195,24 +195,24 @@ SOURCE=..\..\ahost.c
 !IF  "$(CFG)" == "ahost - Win32 Release"
 "areslib - Win32 Release" : 
-   cd ".\areslib"
+   cd "..\areslib"
   $(MAKE) /$(MAKEFLAGS) /F ".\areslib.mak" CFG="areslib - Win32 Release" 
   cd "..\ahost"
 "areslib - Win32 ReleaseCLEAN" : 
-   cd ".\areslib"
+   cd "..\areslib"
   $(MAKE) /$(MAKEFLAGS) /F ".\areslib.mak" CFG="areslib - Win32 Release" RECURSE=1 CLEAN 
   cd "..\ahost"
 !ELSEIF  "$(CFG)" == "ahost - Win32 Debug"
 "areslib - Win32 Debug" : 
-   cd ".\areslib"
+   cd "..\areslib"
   $(MAKE) /$(MAKEFLAGS) /F ".\areslib.mak" CFG="areslib - Win32 Debug" 
   cd "..\ahost"
 "areslib - Win32 DebugCLEAN" : 
-   cd ".\areslib"
+   cd "..\areslib"
   $(MAKE) /$(MAKEFLAGS) /F ".\areslib.mak" CFG="areslib - Win32 Debug" RECURSE=1 CLEAN 
   cd "..\ahost"
--- a/46
+++ b/46
@@ -13,7 +13,7 @@ findtool(){
  IFS=":"
  for path in $PATH
  do
-    if test -r "$path/$file"; then
+    if test -f "$path/$file"; then
      echo "$path/$file"
      return
    fi
@@ -24,7 +24,7 @@ findtool(){
 # autoconf 2.57 or newer
 #
 need_autoconf="2.57"
-ac_version=`${AUTOCONF:-autoconf} --version 2>/dev/null|head -1| sed -e 's/^[^0-9]*//' -e 's/[a-z]* *$//'`
+ac_version=`${AUTOCONF:-autoconf} --version 2>/dev/null|head -n 1| sed -e 's/^[^0-9]*//' -e 's/[a-z]* *$//'`
 if test -z "$ac_version"; then
  echo "buildconf: autoconf not found."
  echo "            You need autoconf version $need_autoconf or newer installed."
@@ -45,7 +45,7 @@ echo "buildconf: autoconf version $ac_version (ok)"
 #--------------------------------------------------------------------------
 # autoheader 2.50 or newer
 #
-ah_version=`${AUTOHEADER:-autoheader} --version 2>/dev/null|head -1| sed -e 's/^[^0-9]*//' -e 's/[a-z]* *$//'`
+ah_version=`${AUTOHEADER:-autoheader} --version 2>/dev/null|head -n 1| sed -e 's/^[^0-9]*//' -e 's/[a-z]* *$//'`
 if test -z "$ah_version"; then
  echo "buildconf: autoheader not found."
  echo "            You need autoheader version 2.50 or newer installed."
@@ -67,7 +67,7 @@ echo "buildconf: autoheader version $ah_version (ok)"
 # automake 1.7 or newer
 #
 need_automake="1.7"
-am_version=`${AUTOMAKE:-automake} --version 2>/dev/null|head -1| sed -e 's/^.* \([0-9]\)/\1/' -e 's/[a-z]* *$//' -e 's/\(.*\)\(-p.*\)/\1/'`
+am_version=`${AUTOMAKE:-automake} --version 2>/dev/null|head -n 1| sed -e 's/^.* \([0-9]\)/\1/' -e 's/[a-z]* *$//' -e 's/\(.*\)\(-p.*\)/\1/'`
 if test -z "$am_version"; then
  echo "buildconf: automake not found."
  echo "            You need automake version $need_automake or newer installed."
@@ -85,6 +85,14 @@ fi
 echo "buildconf: automake version $am_version (ok)"
 ac=`findtool aclocal`
 if test -z "$ac"; then
  echo "buildconf: aclocal not found. Weird automake installation!"
  exit 1
 else
  echo "buildconf: aclocal found"
 fi
 #--------------------------------------------------------------------------
 # libtool check
@@ -105,7 +113,7 @@ fi
 # set the LIBTOOLIZE here so that glibtoolize is used if glibtool was found
 LIBTOOLIZE="${libtool}ize"
-lt_pversion=`$libtool --version 2>/dev/null|head -1|sed -e 's/^[^0-9]*//g' -e 's/[- ].*//'`
+lt_pversion=`$libtool --version 2>/dev/null|head -n 1|sed -e 's/^[^0-9]*//g' -e 's/[- ].*//'`
 if test -z "$lt_pversion"; then
  echo "buildconf: libtool not found."
  echo "            You need libtool version $LIBTOOL_WANTED_VERSION or newer installed"
@@ -142,10 +150,17 @@ fi
 echo "buildconf: libtool version $lt_version (ok)"
 if test -f "$LIBTOOLIZE"; then
  echo "buildconf: libtoolize found"
 else
  echo "buildconf: libtoolize not found. Weird libtool installation!"
  exit 1
 fi
 #--------------------------------------------------------------------------
 # m4 check
 #
-m4=`${M4:-m4} --version 2>/dev/null|head -1`;
+m4=`${M4:-m4} --version 2>/dev/null|head -n 1`;
 m4_version=`echo $m4 | sed -e 's/^.* \([0-9]\)/\1/' -e 's/[a-z]* *$//'`
 if { echo $m4 | grep "GNU" >/dev/null 2>&1; } then
@@ -155,6 +170,10 @@ else
  exit 1
 fi
 #--------------------------------------------------------------------------
 # perl check
 #
 PERL=`findtool perl`
 # ------------------------------------------------------------
@@ -164,8 +183,13 @@ echo "buildconf: running libtoolize"
 ${LIBTOOLIZE:-libtoolize} --copy --automake --force || die "The libtool command failed"
 echo "buildconf: running aclocal"
 ${ACLOCAL:-aclocal} $ACLOCAL_FLAGS || die "The aclocal command line failed"
-echo "buildconf: running aclocal hack to convert all mv to mv -f"
+if test -n "$PERL"; then
-perl -i.bak -pe 's/\bmv +([^-\s])/mv -f $1/g' aclocal.m4
+  echo "buildconf: running aclocal hack to convert all mv to mv -f"
  $PERL -i.bak -pe 's/\bmv +([^-\s])/mv -f $1/g' aclocal.m4
 else
  echo "buildconf: perl not found"
  exit 1
 fi
 echo "buildconf: running autoheader"
 ${AUTOHEADER:-autoheader} || die "The autoheader command failed"
 echo "buildconf: cp lib/config.h.in src/config.h.in"
@@ -175,9 +199,11 @@ ${AUTOCONF:-autoconf}     || die "The autoconf command failed"
 if test -d ares; then
  cd ares
-  echo "buildconf: running aclocal in the ares directory"
+  echo "buildconf: running ares/libtoolize"
 ${LIBTOOLIZE:-libtoolize} --copy --automake --force || die "The libtool command failed"
  echo "buildconf: running ares/aclocal"
  ${ACLOCAL:-aclocal} $ACLOCAL_FLAGS || die "The ares aclocal command failed"
-  echo "buildconf: running autoconf in the ares directory"
+  echo "buildconf: running ares/autoconf"
  ${AUTOCONF:-autoconf}     || die "The ares autoconf command failed"
  cd ..
 fi
--- a/configure.ac
+++ b/configure.ac
@@ -7,7 +7,7 @@ dnl We don't know the version number "staticly" so we use a dash here
 AC_INIT(curl, [-], [a suitable curl mailing list => http://curl.haxx.se/mail/])
 dnl configure script copyright
-AC_COPYRIGHT([Copyright (c) 1998 - 2004 Daniel Stenberg, <daniel@haxx.se>
+AC_COPYRIGHT([Copyright (c) 1998 - 2005 Daniel Stenberg, <daniel@haxx.se>
 This configure script may be copied, distributed and modified under the 
 terms of the curl license; see COPYING for more details])
@@ -56,7 +56,7 @@ AC_SUBST(PKGADD_VENDOR)
 dnl
 dnl initialize all the info variables
-    curl_ssl_msg="no      (--with-ssl)"
+    curl_ssl_msg="no      (--with-ssl / --with-gnutls)"
   curl_zlib_msg="no      (--with-zlib)"
   curl_krb4_msg="no      (--with-krb4*)"
    curl_gss_msg="no      (--with-gssapi)"
@@ -66,6 +66,7 @@ dnl initialize all the info variables
    curl_idn_msg="no      (--with-libidn)"
 curl_manual_msg="no      (--enable-manual)"
 curl_verbose_msg="enabled (--disable-verbose)"
   curl_sspi_msg="no      (--enable-sspi)"
 dnl
 dnl Detect the canonical host and target build environment
@@ -121,6 +122,14 @@ case $host in
  *-*-mingw*)
    AC_DEFINE(BUILDING_LIBCURL, 1, [when building libcurl itself])
    AC_MSG_RESULT(yes)
 <20> <20>AC_MSG_CHECKING([if we need CURL_STATICLIB])
    if test "X$enable_shared" = "Xno"
    then
      AC_DEFINE(CURL_STATICLIB, 1, [when not building a shared library])
      AC_MSG_RESULT(yes)
 <20> <20>else
 <20> <20> <20>AC_MSG_RESULT(no)
    fi
    ;;
  *)
    AC_MSG_RESULT(no)
@@ -317,6 +326,7 @@ then
  AC_TRY_LINK([#include <winsock2.h>],
               [gethostbyname("www.dummysite.com");],
               [ dnl worked!
               ws2="yes"
               AC_MSG_RESULT([yes])
               HAVE_GETHOSTBYNAME="1"],
               [ dnl failed, restore LIBS
@@ -371,6 +381,55 @@ AC_HELP_STRING([--enable-libgcc],[use libgcc when linking]),
       AC_MSG_RESULT(no)
 )
 dnl **********************************************************************
 dnl Check for the name of dynamic OpenLDAP libraries
 dnl **********************************************************************
 LDAPLIBNAME=""
 AC_ARG_WITH(ldap-lib,
 AC_HELP_STRING([--with-ldap-lib=libname],[Specify name of dynamic ldap lib file]),
 [LDAPLIBNAME="$withval"])
 LBERLIBNAME=""
 AC_ARG_WITH(lber-lib,
 AC_HELP_STRING([--with-lber-lib=libname],[Specify name of dynamic lber lib file]),
 [LBERLIBNAME="$withval"])
 if test x$CURL_DISABLE_LDAP != x1 ; then
  if test -z "$LDAPLIBNAME" ; then
    case $host in
      *-*-cygwin | *-*-mingw* | *-*-pw32*)
        dnl Windows uses a single and unique OpenLDAP DLL name
        LDAPLIBNAME="wldap32.dll"
        LBERLIBNAME="no"
        ;;
    esac
  fi
  if test "$LDAPLIBNAME" ; then
    AC_DEFINE_UNQUOTED(DL_LDAP_FILE, "$LDAPLIBNAME")
    AC_MSG_CHECKING([name of dynamic library ldap])
    AC_MSG_RESULT($LDAPLIBNAME)
  else
    dnl Try to find the right ldap library name for this system
    CURL_DLLIB_NAME(DL_LDAP_FILE, ldap)
  fi
  if test "$LBERLIBNAME" ; then
    dnl If name is "no" then don't define this variable at all
    dnl (it's only needed if libldap.so's dependencies are broken).
    if test "$LBERLIBNAME" != "no" ; then 
      AC_DEFINE_UNQUOTED(DL_LBER_FILE, "$LBERLIBNAME")
    fi
    AC_MSG_CHECKING([name of dynamic library lber])
    AC_MSG_RESULT($LBERLIBNAME)
  else
    dnl Try to find the right lber library name for this system
    CURL_DLLIB_NAME(DL_LBER_FILE, lber)
  fi
 fi
 dnl **********************************************************************
 dnl Check for the presence of the winmm library.
 dnl **********************************************************************
@@ -508,14 +567,15 @@ OPT_KRB4=off
 AC_ARG_WITH(krb4,dnl
 AC_HELP_STRING([--with-krb4=DIR],[where to look for Kerberos4]),[
  OPT_KRB4="$withval"
-  if test X"$OPT_KRB4" != Xyes
+  if test X"$OPT_KRB4" != Xno; then
-  then
+    want_krb4="yes"
    if test X"$OPT_KRB4" != Xyes; then
      LDFLAGS="$LDFLAGS -L$OPT_KRB4/lib$libsuff"
      KRB4LIB="$OPT_KRB4/lib$libsuff"
      CPPFLAGS="$CPPFLAGS -I$OPT_KRB4/include"
      KRB4INC="$OPT_KRB4/include"
    fi
-  want_krb4="yes"
+  fi
 ])
 AC_MSG_CHECKING([if Kerberos4 support is requested])
@@ -584,10 +644,13 @@ dnl **********************************************************************
 AC_ARG_WITH(spnego,
  AC_HELP_STRING([--with-spnego=DIR],
-                 [Specify location of SPNEGO library fbopenssl]),
+                 [Specify location of SPNEGO library fbopenssl]), [
-  [ SPNEGO_ROOT="$withval"
+  SPNEGO_ROOT="$withval"
-    want_spnego="yes" ]
+  if test x"$SPNEGO_ROOT" != xno; then
-)
+    want_spnego="yes"
  fi
 ])
 AC_MSG_CHECKING([if SPNEGO support is requested])
 if test x"$want_spnego" = xyes; then
@@ -624,19 +687,24 @@ AC_ARG_WITH(gssapi-includes,
 AC_ARG_WITH(gssapi-libs,
  AC_HELP_STRING([--with-gssapi-libs=DIR],
  		 [Specify location of GSSAPI libs]),
-  [ GSSAPI_LIBS="-L$withval -lgssapi"
+  [ GSSAPI_LIBS="-L$withval"
    want_gss="yes" ]
 )
 AC_ARG_WITH(gssapi,
  AC_HELP_STRING([--with-gssapi=DIR],
-                 [Where to look for GSSAPI]),
+                 [Where to look for GSSAPI]), [
-  [ GSSAPI_ROOT="$withval"
+  GSSAPI_ROOT="$withval"
-    want_gss="yes" ]
+  if test x"$GSSAPI_ROOT" != xno; then
-)
+    want_gss="yes" 
  fi
 ])
 save_CPPFLAGS="$CPPFLAGS"
 AC_MSG_CHECKING([if GSSAPI support is requested])
 if test x"$want_gss" = xyes; then
  AC_MSG_RESULT(yes)
  if test -z "$GSSAPI_INCS"; then
     if test -f "$GSSAPI_ROOT/bin/krb5-config"; then
        GSSAPI_INCS=`$GSSAPI_ROOT/bin/krb5-config --cflags gssapi`
@@ -646,7 +714,48 @@ if test x"$want_gss" = xyes; then
  fi
  CPPFLAGS="$CPPFLAGS $GSSAPI_INCS"
-  if test -z "$GSSAPI_LIB_DIR"; then
+  AC_CHECK_HEADER(gss.h,
    [
      dnl found in the given dirs
      AC_DEFINE(HAVE_GSSGNU, 1, [if you have the GNU gssapi libraries])
      gnu_gss=yes
    ],
    [
      dnl not found, check Heimdal
      AC_CHECK_HEADER(gssapi.h,
        [
          dnl found in the given dirs
          AC_DEFINE(HAVE_GSSHEIMDAL, 1, [if you have the Heimdal gssapi libraries])
        ],
        [
          dnl not found, check in gssapi/ subdir 
          AC_CHECK_HEADER(gssapi/gssapi.h,
            [
              dnl found 
              AC_DEFINE(HAVE_GSSMIT, 1, [if you have the MIT gssapi libraries])
            ],
            [
              dnl no header found, disabling GSS
              want_gss=no
              AC_MSG_WARN(disabling GSSAPI since no header files was found)
            ]
          )
        ]
      )        
    ]
  )
 else
  AC_MSG_RESULT(no)
 fi
 if test x"$want_gss" = xyes; then
  AC_DEFINE(HAVE_GSSAPI, 1, [if you have the gssapi libraries])
  curl_gss_msg="enabled (MIT/Heimdal)"
  if test -n "$gnu_gss"; then
    curl_gss_msg="enabled (GNU GSS)"
    LDFLAGS="$LDFLAGS $GSSAPI_LIB_DIR -lgss"
  elif test -z "$GSSAPI_LIB_DIR"; then
     if test -f "$GSSAPI_ROOT/bin/krb5-config"; then
        gss_ldflags=`$GSSAPI_ROOT/bin/krb5-config --libs gssapi`
 	LDFLAGS="$LDFLAGS $gss_ldflags"
@@ -656,31 +765,10 @@ if test x"$want_gss" = xyes; then
        LDFLAGS="$LDFLAGS -lgssapi"
     fi
  else
-     LDFLAGS="$LDFLAGS $GSSAPI_LIB_DIR"
+     LDFLAGS="$LDFLAGS $GSSAPI_LIB_DIR -lgssapi"
  fi
  AC_MSG_RESULT(yes)
  AC_DEFINE(HAVE_GSSAPI, 1, [if you have the gssapi libraries])
  curl_gss_msg="enabled"
  AC_CHECK_HEADER(gssapi.h,
    [
       dnl found in the given dirs
      AC_DEFINE(HAVE_GSSHEIMDAL, 1, [if you have the Heimdal gssapi libraries])
    ],
    [
      dnl not found, check in gssapi/ subdir 
      AC_CHECK_HEADER(gssapi/gssapi.h,
        dnl found 
        AC_DEFINE(HAVE_GSSMIT, 1, [if you have the MIT gssapi libraries])
      )
    ]
  )
 else
-  AC_MSG_RESULT(no)
+  CPPFLAGS="$save_CPPFLAGS"
 fi
 dnl **********************************************************************
@@ -696,11 +784,7 @@ AC_HELP_STRING([--with-ssl=PATH],[where to look for SSL, PATH points to the SSL
 AC_HELP_STRING([--without-ssl], [disable SSL]),
  OPT_SSL=$withval)
-if test X"$OPT_SSL" = Xno
+if test X"$OPT_SSL" != Xno; then
 then
  AC_MSG_WARN([SSL disabled, you will not be able to use HTTPS, FTPS, NTLM and more])  
 else
  dnl backup the pre-ssl variables
  CLEANLDFLAGS="$LDFLAGS"
  CLEANCPPFLAGS="$CPPFLAGS"
@@ -713,20 +797,24 @@ else
      dnl only do pkg-config magic when not cross-compiling
      PKGTEST="yes"
    fi
-    EXTRA_SSL=/usr/local/ssl ;;
+    PREFIX_OPENSSL=/usr/local/ssl
    LIB_OPENSSL="$PREFIX_OPENSSL/lib$libsuff"
    ;;
  off)
    dnl no --with-ssl option given, just check default places
    if test x$cross_compiling != xyes; then
      dnl only do pkg-config magic when not cross-compiling
      PKGTEST="yes"
    fi
-    EXTRA_SSL= ;;
+    PREFIX_OPENSSL=
    ;;
  *)
    dnl check the given --with-ssl spot
    PKGTEST="no"
-    EXTRA_SSL=$OPT_SSL
+    PREFIX_OPENSSL=$OPT_SSL
-    LDFLAGS="$LDFLAGS -L$EXTRA_SSL/lib$libsuff"
+    LIB_OPENSSL="$PREFIX_OPENSSL/lib$libsuff"
-    CPPFLAGS="$CPPFLAGS -I$EXTRA_SSL/include/openssl -I$EXTRA_SSL/include"
+    LDFLAGS="$LDFLAGS -L$LIB_OPENSSL"
    CPPFLAGS="$CPPFLAGS -I$PREFIX_OPENSSL/include/openssl -I$PREFIX_OPENSSL/include"
    ;;
  esac
@@ -748,6 +836,8 @@ else
        SSL_LDFLAGS=`$PKGCONFIG --libs-only-L openssl 2>/dev/null`
        SSL_CPPFLAGS=`$PKGCONFIG --cflags-only-I openssl 2>/dev/null`
 	LIB_OPENSSL=`echo $SSL_LDFLAGS | sed -e 's/-L//g'`
        dnl use the values pkg-config reported
        LIBS="$LIBS $SSL_LIBS"
        CPPFLAGS="$CPPFLAGS $SSL_CPPFLAGS"
@@ -759,27 +849,6 @@ else
    fi
  fi
  AC_CHECK_LIB(crypto, CRYPTO_lock,[
     HAVECRYPTO="yes"
     ],[
     LDFLAGS="$CLEANLDFLAGS -L$EXTRA_SSL/lib$libsuff"
     CPPFLAGS="$CLEANCPPFLAGS -I$EXTRA_SSL/include/openssl -I$EXTRA_SSL/include"
     AC_CHECK_LIB(crypto, CRYPTO_add_lock,[
       HAVECRYPTO="yes" ], [
       LDFLAGS="$CLEANLDFLAGS"
       CPPFLAGS="$CLEANCPPFLAGS"
       LIBS="$CLEANLIBS"
       ])
    ])
  if test X"$HAVECRYPTO" != X"yes"; then
      AC_MSG_WARN([crypto lib was not found; SSL will be disabled])
  else
    dnl This is only reasonable to do if crypto actually is there: check for
    dnl SSL libs NOTE: it is important to do this AFTER the crypto lib
  dnl This is for Msys/Mingw
  AC_MSG_CHECKING([for gdi32])
  my_ac_save_LIBS=$LIBS
@@ -794,7 +863,26 @@ else
               AC_MSG_RESULT(no)]
              )
-    AC_CHECK_LIB(crypto, CRYPTO_add_lock)
+  AC_CHECK_LIB(crypto, CRYPTO_lock,[
     HAVECRYPTO="yes"
     LIBS="-lcrypto $LIBS"
     ],[
     LDFLAGS="$CLEANLDFLAGS -L$LIB_OPENSSL"
     CPPFLAGS="$CLEANCPPFLAGS -I$PREFIX_OPENSSL/include/openssl -I$PREFIX_OPENSSL/include"
     AC_CHECK_LIB(crypto, CRYPTO_add_lock,[
       HAVECRYPTO="yes"
       LIBS="-lcrypto $LIBS"], [
       LDFLAGS="$CLEANLDFLAGS"
       CPPFLAGS="$CLEANCPPFLAGS"
       LIBS="$CLEANLIBS"
       ])
    ])
  if test X"$HAVECRYPTO" = X"yes"; then
    dnl This is only reasonable to do if crypto actually is there: check for
    dnl SSL libs NOTE: it is important to do this AFTER the crypto lib
    AC_CHECK_LIB(ssl, SSL_connect)
    if test "$ac_cv_lib_ssl_SSL_connect" != yes; then
@@ -816,13 +904,13 @@ else
      dnl Have the libraries--check for SSLeay/OpenSSL headers
      AC_CHECK_HEADERS(openssl/x509.h openssl/rsa.h openssl/crypto.h \
                       openssl/pem.h openssl/ssl.h openssl/err.h,
-        curl_ssl_msg="enabled"
+        curl_ssl_msg="enabled (OpenSSL)"
        OPENSSL_ENABLED=1
        AC_DEFINE(USE_OPENSSL, 1, [if OpenSSL is in use]))
      if test $ac_cv_header_openssl_x509_h = no; then
        AC_CHECK_HEADERS(x509.h rsa.h crypto.h pem.h ssl.h err.h,
-          curl_ssl_msg="enabled"
+          curl_ssl_msg="enabled (OpenSSL)"
          OPENSSL_ENABLED=1)
      fi
    fi
@@ -832,7 +920,11 @@ else
       dnl is there a pkcs12.h header present?
       AC_CHECK_HEADERS(openssl/pkcs12.h)
    else
       LIBS="$CLEANLIBS"
    fi
    dnl USE_SSLEAY is the historical name for what configure calls
    dnl OPENSSL_ENABLED; the names should really be unified
    USE_SSLEAY="$OPENSSL_ENABLED"
    AC_SUBST(USE_SSLEAY)
@@ -842,11 +934,6 @@ else
    fi
  fi
 dnl **********************************************************************
 dnl Check for the CA bundle
 dnl **********************************************************************
  if test X"$OPENSSL_ENABLED" = X"1"; then
    dnl If the ENGINE library seems to be around, check for the OpenSSL engine
    dnl stuff, it is kind of "separated" from the main SSL check
@@ -856,30 +943,6 @@ dnl **********************************************************************
                AC_CHECK_FUNCS( ENGINE_load_builtin_engines )
              ])
    AC_MSG_CHECKING([CA cert bundle install path])
    AC_ARG_WITH(ca-bundle,
 AC_HELP_STRING([--with-ca-bundle=FILE], [File name to install the CA bundle as])
 AC_HELP_STRING([--without-ca-bundle], [Don't install the CA bundle]),
    [ ca="$withval" ],
    [
      if test "x$prefix" != xNONE; then
        ca="\${prefix}/share/curl/curl-ca-bundle.crt"
      else
        ca="$ac_default_prefix/share/curl/curl-ca-bundle.crt"
      fi
    ] )
    if test X"$OPT_SSL" = Xno; then
      ca="no"
    fi
    if test "x$ca" != "xno"; then
      CURL_CA_BUNDLE='"'$ca'"'
      AC_SUBST(CURL_CA_BUNDLE)  
    fi
    AC_MSG_RESULT([$ca])
    dnl these can only exist if openssl exists
    AC_CHECK_FUNCS( RAND_status \
@@ -890,17 +953,19 @@ AC_HELP_STRING([--without-ca-bundle], [Don't install the CA bundle]),
  fi
  if test "$OPENSSL_ENABLED" = "1"; then
-    dnl when the ssl shared libs were found in a path that the run-time linker
+    if test -n "$LIB_OPENSSL"; then
-    dnl doesn't search through, we need to add it to LD_LIBRARY_PATH to
+       dnl when the ssl shared libs were found in a path that the run-time
-    dnl prevent further configure tests to fail due to this
+       dnl linker doesn't search through, we need to add it to LD_LIBRARY_PATH
-    LD_LIBRARY_PATH="$LD_LIBRARY_PATH:$EXTRA_SSL/lib$libsuff"
+       dnl to prevent further configure tests to fail due to this
       LD_LIBRARY_PATH="$LD_LIBRARY_PATH:$LIB_OPENSSL"
       export LD_LIBRARY_PATH
       AC_MSG_NOTICE([Added $LIB_OPENSSL to LD_LIBRARY_PATH])
    fi
  fi
 fi
 AM_CONDITIONAL(CABUNDLE, test x$ca != xno)
 dnl **********************************************************************
 dnl Check for the random seed preferences 
 dnl **********************************************************************
@@ -933,6 +998,116 @@ if test X"$OPENSSL_ENABLED" = X"1"; then
  fi
 fi
 dnl ----------------------------------------------------
 dnl FIX: only check for GnuTLS if OpenSSL is not enabled
 dnl ----------------------------------------------------
 dnl Default to compiler & linker defaults for GnuTLS files & libraries.
 OPT_GNUTLS=no
 AC_ARG_WITH(gnutls,dnl
 AC_HELP_STRING([--with-gnutls=PATH],[where to look for GnuTLS, PATH points to the installation root (default: /usr/local/)])
 AC_HELP_STRING([--without-gnutls], [disable GnuTLS detection]),
  OPT_GNUTLS=$withval)
 if test "$OPENSSL_ENABLED" != "1"; then
  if test X"$OPT_GNUTLS" != Xno; then
    if test "x$OPT_GNUTLS" = "xyes"; then
     check=`libgnutls-config --version 2>/dev/null`
     if test -n "$check"; then
       addlib=`libgnutls-config --libs`
       addcflags=`libgnutls-config --cflags`
       version=`libgnutls-config --version`
       gtlsprefix=`libgnutls-config --prefix`
     fi
    else
      addlib=`$OPT_GNUTLS/bin/libgnutls-config --libs`
      addcflags=`$OPT_GNUTLS/bin/libgnutls-config --cflags`
      version=`$OPT_GNUTLS/bin/libgnutls-config --version 2>/dev/null`
      gtlsprefix=$OPT_GNUTLS
      if test -z "$version"; then
        version="unknown"
      fi
    fi
    if test -n "$addlib"; then
      CLEANLDFLAGS="$LDFLAGS"
      CLEANCPPFLAGS="$CPPFLAGS"
      LDFLAGS="$LDFLAGS $addlib"
      if test "$addcflags" != "-I/usr/include"; then
         CPPFLAGS="$CPPFLAGS $addcflags"
      fi
      AC_CHECK_LIB(gnutls, gnutls_check_version,
       [
       AC_DEFINE(USE_GNUTLS, 1, [if GnuTLS is enabled])
       AC_SUBST(USE_GNUTLS, [1])
       USE_GNUTLS="yes"
       curl_ssl_msg="enabled (GnuTLS)"
       ],
       [
         LDFLAGS="$CLEANLDFLAGS"
         CPPFLAGS="$CLEANCPPFLAGS"
       ])
      if test "x$USE_GNUTLS" = "xyes"; then
        AC_MSG_NOTICE([detected GnuTLS version $version])
        dnl when shared libs were found in a path that the run-time
        dnl linker doesn't search through, we need to add it to
        dnl LD_LIBRARY_PATH to prevent further configure tests to fail
        dnl due to this
        LD_LIBRARY_PATH="$LD_LIBRARY_PATH:$gtlsprefix/lib$libsuff"
        export LD_LIBRARY_PATH
        AC_MSG_NOTICE([Added $gtlsprefix/lib$libsuff to LD_LIBRARY_PATH])
      fi
    fi
  fi dnl GNUTLS not disabled
  if test X"$USE_GNUTLS" != "Xyes"; then
    AC_MSG_WARN([SSL disabled, you will not be able to use HTTPS, FTPS, NTLM and more.])
    AC_MSG_WARN([Use --with-ssl or --with-gnutls to address this.])
  fi
 fi dnl OPENSSL != 1
 dnl **********************************************************************
 dnl Check for the CA bundle
 dnl **********************************************************************
 if test X"$USE_GNUTLS$OPENSSL_ENABLED" != "X"; then
  AC_MSG_CHECKING([CA cert bundle install path])
  AC_ARG_WITH(ca-bundle,
 AC_HELP_STRING([--with-ca-bundle=FILE], [File name to install the CA bundle as])
 AC_HELP_STRING([--without-ca-bundle], [Don't install the CA bundle]),
    [ ca="$withval" ],
    [
      if test "x$prefix" != xNONE; then
        ca="\${prefix}/share/curl/curl-ca-bundle.crt"
      else
        ca="$ac_default_prefix/share/curl/curl-ca-bundle.crt"
      fi
    ] )
    if test "x$ca" != "xno"; then
      CURL_CA_BUNDLE='"'$ca'"'
      AC_SUBST(CURL_CA_BUNDLE)  
    fi
    AC_MSG_RESULT([$ca])
 fi dnl only done if some kind of SSL was enabled
 AM_CONDITIONAL(CABUNDLE, test x$ca != xno)
 dnl **********************************************************************
 dnl Check for the presence of ZLIB libraries and headers
 dnl **********************************************************************
@@ -941,27 +1116,35 @@ dnl Check for & handle argument to --with-zlib.
 _cppflags=$CPPFLAGS
 _ldflags=$LDFLAGS
 OPT_ZLIB="/usr/local"
 AC_ARG_WITH(zlib,
 AC_HELP_STRING([--with-zlib=PATH],[search for zlib in PATH])
 AC_HELP_STRING([--without-zlib],[disable use of zlib]),
               [OPT_ZLIB="$withval"])
-case "$OPT_ZLIB" in
+if test "$OPT_ZLIB" = "no" ; then
-  no)
+    AC_MSG_WARN([zlib disabled])
-    AC_MSG_WARN([zlib disabled]) ;;
+else
-  *)
+  if test "$OPT_ZLIB" = "yes" ; then
     OPT_ZLIB=""
  fi
  if test -z "$OPT_ZLIB" ; then
    dnl check for the lib first without setting any new path, since many
    dnl people have it in the default path
    AC_CHECK_LIB(z, inflateEnd,
                   dnl libz found, set the variable
                   [HAVE_LIBZ="1"],
-                   dnl if no lib found, try to add the given library
+                   dnl if no lib found, try /usr/local
-                   [if test -d "$OPT_ZLIB"; then
+                   [OPT_ZLIB="/usr/local"])
  fi
  dnl Add a nonempty path to the compiler flags
  if test -n "$OPT_ZLIB"; then
     CPPFLAGS="$CPPFLAGS -I$OPT_ZLIB/include"
     LDFLAGS="$LDFLAGS -L$OPT_ZLIB/lib$libsuff"
-                   fi])
+  fi
  AC_CHECK_HEADER(zlib.h,
    [
@@ -1004,8 +1187,7 @@ case "$OPT_ZLIB" in
    AC_MSG_NOTICE([found both libz and libz.h header])
    curl_zlib_msg="enabled"
  fi
-    ;;
+fi
 esac
 dnl set variable for use in automakefile(s)
 AM_CONDITIONAL(HAVE_LIBZ, test x"$AMFIXLIB" = x1)
@@ -1026,7 +1208,6 @@ case "$LIBIDN" in
       dnl if there is a given path, check that FIRST
       if test -n "$LIBIDN"; then
         if test "x$LIBIDN" != "xyes"; then
            AC_MSG_WARN([moo moo $LIBIDN])
            oldLDFLAGS=$LDFLAGS
            oldCPPFLAGS=$CPPFLAGS
            LDFLAGS="$LDFLAGS -L$LIBIDN/lib"
@@ -1048,6 +1229,7 @@ case "$LIBIDN" in
       if test "x$idn" = "xyes"; then
         curl_idn_msg="enabled"
         AC_SUBST(IDN_ENABLED, [1])
         dnl different versions of libidn have different setups of these:
         AC_CHECK_FUNCS( idn_free idna_strerror tld_strerror)
         AC_CHECK_HEADERS( idn-free.h tld.h )
@@ -1111,7 +1293,7 @@ else
  dnl is there a strerror_r()
  CURL_CHECK_STRERROR_R()
-  AC_CHECK_FUNCS( gmtime_r )
+  checkfor_gmtime_r="yes"
 fi
 dnl for recent AIX versions, we skip all the thread-safe checks above since
@@ -1147,7 +1329,47 @@ if test "x$RECENTAIX" = "xyes"; then
  dnl is there a strerror_r()
  CURL_CHECK_STRERROR_R()
-  AC_CHECK_FUNCS( gmtime_r )
+  checkfor_gmtime_r="yes"
 fi
 if test x$cross_compiling != xyes; then
  if test x$checkfor_gmtime_r = xyes; then
    dnl if gmtime_r was found, verify that it actuall works, as (at least) HPUX
    dnl 10.20 is known to have a buggy one. If it doesn't work, disable use of
    dnl it.
    AC_MSG_CHECKING([if gmtime_r exists and works])
    AC_RUN_IFELSE([[
    #include <time.h>
    int main(void)
    {
    time_t local = 1170352587;
    struct tm *gmt;
    struct tm keeper;
    putenv("TZ=CST6CDT");
    tzset();
    gmt = gmtime_r(&local, &keeper);
    if(gmt) {
      return 0;
    }
    return 1; /* failure */
    }
     ]],
     dnl success, do nothing
     AC_MSG_RESULT(yes)
     AC_DEFINE(HAVE_GMTIME_R, 1, [if you have (a working) gmtime_r])
     ,
     dnl failure, now disable the function
     AC_MSG_RESULT(no)
    ,
    dnl not invoked when crosscompiling)
    ])
  fi
 else
  dnl and for crosscompilings
  AC_CHECK_FUNCS(gmtime_r)
 fi
@@ -1257,6 +1479,8 @@ AC_CHECK_TYPE(ssize_t, ,
 TYPE_SOCKLEN_T
 TYPE_IN_ADDR_T
 TYPE_SOCKADDR_STORAGE
 AC_FUNC_SELECT_ARGTYPES
 dnl Checks for library functions.
@@ -1350,9 +1574,22 @@ AC_CHECK_DECL(basename, ,
 #endif
 )
-dnl poll() might be badly emulated, as in Mac OS X 10.3 (and other BSDs?) and
+AC_MSG_CHECKING([if we are Mac OS X (to disable poll)])
-dnl to find out we make an extra check here!
+disable_poll=no
-if test "$ac_cv_func_poll" = "yes"; then
+case $host in
  *-*-darwin*)
    disable_poll="yes";
    ;;
  *)
    ;;
 esac
 AC_MSG_RESULT($disable_poll)
 if test "$disable_poll" = "no"; then
  dnl poll() might be badly emulated, as in Mac OS X 10.3 (and other BSDs?) and
  dnl to find out we make an extra check here!
  if test "$ac_cv_func_poll" = "yes"; then
    AC_MSG_CHECKING([if poll works with NULL inputs])
    AC_RUN_IFELSE([
 #ifdef HAVE_SYS_POLL_H
@@ -1371,8 +1608,8 @@ if test "$ac_cv_func_poll" = "yes"; then
    AC_MSG_RESULT(cross-compiling assumes yes)
    AC_DEFINE(HAVE_POLL_FINE, 1, [If you have a fine poll])
    ) dnl end of AC_RUN_IFELSE
-fi
+  fi dnl poll() was found
-
+fi dnl poll()-check is not disabled
 AC_PATH_PROG( PERL, perl, , 
@@ -1445,7 +1682,7 @@ AC_HELP_STRING([--disable-ares],[Disable ares for name lookups]),
       AC_SUBST(HAVE_ARES)
       curl_ares_msg="enabled"
-       LIBS="$LIBS -lcares"
+       LIBS="-lcares $LIBS"
       dnl For backwards compatibility default to includes/lib in srcdir/ares
       dnl If a value is specified it is assumed that the libs are in $val/lib
@@ -1518,6 +1755,28 @@ AC_HELP_STRING([--disable-verbose],[Disable verbose strings]),
       AC_MSG_RESULT(yes)
 )
 dnl ************************************************************
 dnl enable SSPI support
 dnl
 AC_MSG_CHECKING([whether to enable SSPI support (win32 builds only)])
 AC_ARG_ENABLE(sspi,
 AC_HELP_STRING([--enable-sspi],[Enable SSPI])
 AC_HELP_STRING([--disable-sspi],[Disable SSPI]),
 [ case "$enableval" in
  yes)
       AC_MSG_RESULT(yes)
       AC_DEFINE(USE_WINDOWS_SSPI, 1, [to enable SSPI support])
       AC_SUBST(USE_WINDOWS_SSPI)
       LIBS="$LIBS -lsecur32"
       curl_sspi_msg="yes"
       ;;
  *)
       AC_MSG_RESULT(no)
       ;;
  esac ],
       AC_MSG_RESULT(no)
 )
 dnl ************************************************************
 dnl lame option to switch on debug options
 dnl
@@ -1581,6 +1840,17 @@ AC_HELP_STRING([--disable-cookies],[Disable cookies support]),
       AC_MSG_RESULT(yes)
 )
 if test "x$ws2" = "xyes"; then
  dnl If ws2_32 is wanted, make sure it is the _last_ lib in LIBS (makes
  dnl things work when built with c-ares). But we can't just move it last
  dnl since then other stuff (SSL) won't build. So we simply append it to the
  dnl end.
  LIBS="$LIBS -lws2_32"
 fi
 AM_CONDITIONAL(CROSSCOMPILING, test x$cross_compiling = xyes)
 AC_CONFIG_FILES([Makefile \
@@ -1629,4 +1899,6 @@ AC_MSG_NOTICE([Configured to build curl/libcurl:
  Build libcurl:   Shared=${enable_shared}, Static=${enable_static} 
  Built-in manual: ${curl_manual_msg}
  Verbose errors:  ${curl_verbose_msg}
  SSPI support:    ${curl_sspi_msg}
  ca cert path:    ${ca}
 ])
--- a/curl-config.in
+++ b/curl-config.in
@@ -60,6 +60,9 @@ while test $# -gt 0; do
    --feature|--features)
 	if test "@USE_SSLEAY@" = "1"; then
          echo "SSL"
          NTLM=1 # OpenSSL implies NTLM
        elif test -n "@USE_GNUTLS@"; then
          echo "SSL"
        fi
 	if test "@KRB4_ENABLED@" = "1"; then
          echo "KRB4"
@@ -73,6 +76,16 @@ while test $# -gt 0; do
 	if test "@HAVE_ARES@" = "1"; then
          echo "AsynchDNS"
        fi
 	if test "@IDN_ENABLED@" = "1"; then
          echo "IDN"
        fi
 	if test "@USE_WINDOWS_SSPI@" = "1"; then
          echo "SSPI"
          NTLM=1
        fi
 	if test "$NTLM" = "1"; then
          echo "NTLM"
        fi
 	;;
    --protocols)
--- a/docs/BINDINGS
+++ b/docs/BINDINGS
@@ -75,10 +75,15 @@ Java
  Maintained by Vic Hanson
  http://curl.haxx.se/libcurl/java/
 Lisp
  Written by Liam Healy
  http://common-lisp.net/project/cl-curl/
 Lua
-  Written by Steve Dekorte
+  LuaCURL Written by Alexander Marinov
-  http://curl.haxx.se/libcurl/lua/
+  http://luacurl.luaforge.net/
 Mono
--- a/docs/DISTRO-DILEMMA
+++ b/docs/DISTRO-DILEMMA
@@ -0,0 +1,186 @@
 Date: September 1, 2005
 Author: Daniel Stenberg <daniel@haxx.se>
 URL: http://curl.haxx.se/legal/distro-dilemma.html
 Condition
 This document is written to describe the sitution as it is right now. libcurl
 7.14.0 is currently the latest version available. Things may (or perhaps
 will) of course change in the future.
 This document reflects my view and understanding of these things. Please tell
 me where and how you think I'm wrong, and I'll try to correct my mistakes.
 Background 
 The Free Software Foundation has deemed the Original BSD license[1] to be
 "incompatible"[2] with GPL[3]. I'd rather say it is the other way around, but
 the point is the same: if you distribute a binary version of a GPL program,
 it MUST NOT be linked with any Original BSD-licenced parts or
 libraries. Doing so will violate the GPL license. For a long time, very many
 GPL licensed programs have avoided this license mess by adding an
 exception[8] to their license. And many others have just closed their eyes
 for this problem.
 libcurl is MIT-style[4] licensed - how on earth did this dilemma fall onto
 our plates?
 libcurl is only a little library. libcurl can be built to use OpenSSL for its
 SSL/TLS capabilities. OpenSSL is basically Original BSD licensed[5].
 If libcurl built to use OpenSSL is used by a GPL-licensed application and you
 decide to distribute a binary version of it (Linux distros - for example -
 tend to), you have a clash. GPL vs Original BSD.
 This dilemma is not libcurl-specific nor is it specific to any particular
 Linux distro.
 Part of the Operating System
 This would not be a problem if the used lib would be considered part of the
 uderlying operating system, as then the GPL license has an exception
 clause[6] that allows applications to use such libs without having to be
 allowed to distribute it or its sources. Possibly some distros will claim
 that OpenSSL is part of their operating system.
 Debian does however not take this stance and has officially(?) claimed that
 OpenSSL is not a required part of the Debian operating system
 Debian-legal
 In August 2004 I figured I should start pulling people's attention to this to
 see if anyone has any bright ideas or if they would dismiss my worries based
 on some elegant writing I had missed somewhere:
 My post to debian-legal on August 12 2004:
        http://lists.debian.org/debian-legal/2004/08/msg00279.html
 Several people agreed then that this is a known and rather big problem, but
 the following discussion didn't result in much.
 GnuTLS
 With the release of libcurl 7.14.0 (May 2005), it can now get built to use
 GnuTLS instead of OpenSSL. GnuTLS is a LGPL[7] licensed library that offers a
 matching set of features as OpenSSL does. Now, you can build and distribute
 an SSL capable libcurl without including any Original BSD licensed code.
 I believe Debian is the first distro to provide libcurl/GnutTLS packages.
 GnuTLS vs OpenSSL
 While these two libraries offer similar features, they are not equal. Both
 libraries have features the other one lacks. libcurl does not (yet) offer a
 standardized stable ABI if you decide to switch from using libcurl-openssl to
 libcurl-gnutls or vice versa. The GnuTLS support is very recent in libcurl
 and it has not been tested nor used very extensively, while the OpenSSL
 equivalent code has been used and thus matured for more than seven (7) years.
 In August 2005, the debian-devel mailing list discovered the license issue as
 a GPL licensed application wanted SSL capabilities from libcurl and thus was
 forced to use the GnuTLS powered libcurl. For a reason that is unknown to me,
 the application authors didn't want to or was unable to add an exception to
 their GPL license. Alas, the license problem hit the fan again.
 The Better License, Original BSD or LGPL?
 It isn't obvious or without debate to any objective interested party that
 either of these licenses are the "better" or even the "preferred" one in a
 generic situation.
 Instead, I think we should accept the fact that the SSL/TLS libraries and
 their different licenses will fit different applications and their authors
 differently depending on the applications' licenses and their general usage
 pattern (considering how LGPL libraries can be burdonsome for embedded
 systems usage).
 More SSL Libraries
 In libcurl, there's no stopping us here. There are at least a few more Open
 Source/Free SSL/TLS libraries and we would very much like to support them as
 well, to offer application authors an even wider scope of choice.
 Application Angle of this Problem
 libcurl is built to use one SSL/TLS library. It uses a single fixed name (by
 default), and applications are built/linked to use that single lib. Replacing
 one libcurl instance with another one that uses the other SSL/TLS library
 might break one or more applications (due to ABI differences and/or different
 feature set). You want your application to use the libcurl it was built for.
 Project cURL Angle of this Problem
 We distribute libcurl and everyone may build libcurl with either library. At
 their choice. This problem is not directly a problem of ours. It merely
 affects users - GPL application authors only - of our lib as it comes
 included and delivered on some distros.
 Distro Angle of this Problem
 A distro can provide separate libcurls built with different SSL/TLS libraries
 to work around this, but at least Debian seems to be very hostile against
 such an approach, probably since it makes things like devel packages for the
 different libs collide since they would provide the same include files and
 man pages etc.
 Fixing the Only Problem
 The only problem is thus for distributions that want to offer libcurl
 versions built with more than one SSL/TLS library.
 Since multiple libcurl binaries using different names are ruled out, we need
 to come up with a way to have one single libcurl that someone uses different
 underlying libraries. The best(?) approach currently suggested involves this:
 A new intermediate library (named lib2 so far in the discussions) with the
 single purpose of providing libcurl with SSL/TLS capabilities. It would have
 a unified API and ABI no matter what underlying library it would use.
 There would be one lib2 binary provided for each supported SSL/TLS library.
 For example: lib2-openssl, lib2-gnutls, lib2-yassl, lib2-matrixssl and
 lib2-nossl. Yes, take note of the last one that provides the lib2 ABI but
 that lacks the actual powers.
 When libcurl is built and linked, it will be linked against a lib2 with the
 set ABI.
 When you link an app against libcurl, it would also need to provide one of
 the (many) lib2 libs to decide what approach that fits the app. An app that
 doesn't want SSL at all would still need to link with the lib2-nossl lib.
 GPL apps can pick the lib2-gnutls, others may pick the lib2-openssl.
 This concept works equally well both for shared and static libraries.
 A positive side effect of this approach could be a more generic "de facto"
 standard API for SSL/TLS libraries.
 When Will This Happen
 Note again that this is not a problem in curl, it doesn't solve any actual
 technical problems in our project. Don't hold your breath for this to happen
 very soon (if at all) unless you step forward and contribute.
 The suggestion that is outlined above is still only a suggestion. Feel free
 to bring a better idea!
 Also, to keep in mind: I don't want this new concept to have too much of an
 impact on the existing code. Preferably it should be possible to build the
 code like today (without the use of lib2), should you decide to ignore the
 problems outlined in this document.
 Footnotes
 [1] = http://www.xfree86.org/3.3.6/COPYRIGHT2.html#6
 [2] = http://www.fsf.org/licensing/essays/bsd.html
 [3] = http://www.fsf.org/licensing/licenses/gpl.html
 [4] = http://curl.haxx.se/docs/copyright.html
 [5] = http://www.openssl.org/source/license.html
 [6] = http://www.fsf.org/licensing/licenses/gpl.html end of section 3
 [7] = http://www.fsf.org/licensing/licenses/lgpl.html
 [8] = http://en.wikipedia.org/wiki/OpenSSL_exception
 Feedback/Updates provided by
 Eric Cooper
--- a/docs/FAQ
+++ b/docs/FAQ
@@ -1,4 +1,4 @@
-Updated: December 21, 2004 (http://curl.haxx.se/docs/faq.html)
+Updated: August 26, 2005 (http://curl.haxx.se/docs/faq.html)
                                  _   _ ____  _
                              ___| | | |  _ \| |
                             / __| | | | |_) | |
@@ -43,6 +43,7 @@ FAQ
  3.15 Can I do recursive fetches with curl?
  3.16 What certificates do I need when I use SSL?
  3.17 How do I list the root dir of an FTP server?
  3.18 Can I use curl to send a POST/PUT and not wait for a response?
 4. Running Problems
  4.1 Problems connecting to SSL servers.
@@ -63,6 +64,8 @@ FAQ
  4.10 My HTTP request using HEAD, PUT or DELETE doesn't work!
  4.11 Why does my HTTP range requests return the full document?
  4.12 Why do I get "certificate verify failed" ?
  4.13 Why is curl -R on Windows one hour off?
  4.14 Redirects work in browser but not with curl!
 5. libcurl Issues
  5.1 Is libcurl thread-safe?
@@ -74,6 +77,9 @@ FAQ
  5.7 Link errors when building libcurl on Windows!
  5.8 libcurl.so.3: open failed: No such file or directory
  5.9 How does libcurl resolve host names?
  5.10 How do I prevent libcurl from writing the response to stdout?
  5.11 How do I make libcurl not receive the whole HTTP response?
  5.12 Can I make libcurl fake or hide my real IP address?
 6. License Issues
  6.1 I have a GPL program, can I use the libcurl library?
@@ -97,7 +103,7 @@ FAQ
  cURL is the name of the project. The name is a play on 'Client for URLs',
  originally with URL spelled in uppercase to make it obvious it deals with
  URLs. The fact it can also be pronounced 'see URL' also helped, it works as
-  an abbrivation for "Client URL Request Library" or why not the recursive
+  an abbreviation for "Client URL Request Library" or why not the recursive
  version: "Curl URL Request Library".
  The cURL project produces two products:
@@ -128,11 +134,11 @@ FAQ
  We pronounce curl and cURL with an initial k sound: [kurl].
-  NOTE: there are numerous sub-projects and related projects that also use the
+  There are numerous sub-projects and related projects that also use the word
-  word curl in the project names in various combinations, but you should take
+  curl in the project names in various combinations, but you should take
  notice that this FAQ is directed at the command-line tool named curl (and
  libcurl the library), and may therefore not be valid for other curl-related
-  projects.
+  projects. (There is however a small section for the PHP/CURL in this FAQ.)
  1.2 What is libcurl?
@@ -193,15 +199,14 @@ FAQ
  1.5 Who makes curl?
-  curl and libcurl are not made by any single individual. Sure, Daniel
+  curl and libcurl are not made by any single individual. Daniel Stenberg is
-  Stenberg writes the major parts, but other persons' submissions are
+  project leader and main developer, but other persons' submissions are
  important and crucial. Anyone can contribute and post their changes and
  improvements and have them inserted in the main sources (of course on the
  condition that developers agree on that the fixes are good).
-  The list of contributors in the docs/THANKS file is only a small part of all
+  The full list of the more than 400 contributors is found in the docs/THANKS
-  the people that every day provide us with bug reports, suggestions, ideas
+  file.
  and source code.
  curl is developed by a community, with Daniel at the wheel.
@@ -216,12 +221,8 @@ FAQ
  have sponsored certain parts of the development in the past and I hope some
  will continue to do so in the future.
-  If you want to support our project with a donation or similar, one way of
+  If you want to support our project, consider a donation or a banner-program
-  doing that would be to buy "gift certificates" at useful online shopping
+  or even better: by helping us coding, documenting, testing etc.
  sites, such as amazon.com or thinkgeek.com. Another way would be to sponsor
  us through a banner-program or even better: by helping us coding,
  documenting, testing etc. You're welcome to send us a buck using paypal, as
  described here: http://curl.haxx.se/donation.html
  1.7 What about CURL from curl.com?
@@ -252,6 +253,12 @@ FAQ
  users thanks to the web based archives of the mailing lists), thus saving us
  from having to repeat ourselves even more. Thanks for respecting this.
  If you have found or simply suspect a security problem in curl or libcurl,
  mail curl-security at haxx.se (closed list of receivers, mails are not
  disclosed) and tell. Then we can produce a fix in a timely manner before the
  flaw is announced to the world, thus lessen the impact the problem will have
  on existing users.
 2. Install Related Problems
@@ -296,8 +303,8 @@ FAQ
  2.2 Does curl work/build with other SSL libraries?
-  Curl has been written to use OpenSSL, although there should not be much
+  Curl has been written to use OpenSSL or GnuTLS, although there should not be
-  problems using a different library. If anyone does "port" curl to use a
+  many problems using a different library. If anyone does "port" curl to use a
  different SSL library, we are of course very interested in getting the
  patch!
@@ -392,6 +399,8 @@ FAQ
     curl -L http://redirector.com
  Not all redirects are HTTP ones, see 4.14
  3.9 How do I use curl in my favorite programming language?
  There exist many language interfaces/bindings for curl that integrates it
@@ -503,9 +512,9 @@ FAQ
    If the server doesn't require this, you don't need a client certificate.
  - Server certificate. The server you communicate with has a server
-    certificate. You can and should verify this certficate to make sure that
+    certificate. You can and should verify this certificate to make sure that
    you are truly talking to the real server and not a server impersonating
-    it. The server certificate verifaction process is made by using a
+    it. The server certificate verification process is made by using a
    Certificate Authority certificate ("CA cert") that was used to sign the
    server certificate. Server certificate verification is enabled by default
    in curl and libcurl and is often the reason for problems as explained in
@@ -533,6 +542,10 @@ FAQ
     curl ftp://ftp.sunet.se//tmp/
  3.18 Can I use curl to send a POST/PUT and not wait for a response?
  No.
 4. Running Problems
@@ -726,6 +739,28 @@ FAQ
  Details are also in the SSLCERTS file in the release archives, found online
  here: http://curl.haxx.se/docs/sslcerts.html
  4.13 Why is curl -R on Windows one hour off?
  During daylight savings time, when -R is used, curl will set a time that
  appears one hour off. This happens due to a flaw in how Windows stores and
  uses file modification times and it is not easily worked around. For details
  on this problem, read this: http://www.codeproject.com/datetime/dstbugs.asp
  4.14 Redirects work in browser but not with curl!
  curl supports HTTP redirects fine (see item 3.8). Browsers generally support
  at least two other ways to perform directs that curl does not:
    1 - Meta tags. You can write a HTML tag that will cause the browser to
        redirect to another given URL after a certain time.
    2 - Javascript. You can write a javascript program embeded in a HTML page
        that redirects the browser to another given URL.
  There is no way to make curl follow these redirects. You must either
  manually figure out what the page is set to do, or you write a script that
  parses the results and fetches the new URL.
 5. libcurl Issues
@@ -733,12 +768,20 @@ FAQ
  Yes.
-  We have written the libcurl code specificly adjusted for multi-threaded
+  We have written the libcurl code specifically adjusted for multi-threaded
  programs. libcurl will use thread-safe functions instead of non-safe ones if
  your system has such.
-  We would appreciate some kind of report or README file from those who have
+  If you use a OpenSSL-powered libcurl in a multi-threaded environment, you
-  used libcurl in a threaded environment.
+  need to provide one or two locking functions:
    http://www.openssl.org/docs/crypto/threads.html#DESCRIPTION
  If you use a GnuTLS-powered libcurl in a multi-threaded environment, you
  need to provide locking function(s) for libgcrypt (which is used by GnuTLS
  for the crypto functions).
    http://www.gnu.org/software/gnutls/manual/html_node/Multi_002dthreaded-applications.html
  5.2 How can I receive all data into a large memory chunk?
@@ -877,6 +920,35 @@ FAQ
    A - gethostbyname() on plain ipv4 windows hosts
    B - getaddrinfo() on ipv6-enabled windows hosts
  Also note that libcurl never resolves or reverse-lookups addresses given as
  pure numbers, such as 127.0.0.1 or ::1.
  5.10 How do I prevent libcurl from writing the response to stdout?
  libcurl provides a default built-in write function that writes received data
  to stdout. Set a WRITEFUNCTION to receive the data, or possibly set
  WRITEDATA to a different FILE * handle.
  5.11 How do I make libcurl not receive the whole HTTP response?
  You make the write callback (or progress callback) return an error and
  libcurl will then abort the transfer.
  5.12 Can I make libcurl fake or hide my real IP address?
  No. libcurl operates on a higher level than so. Besides, faking IP address
  would imply sending IP packages with a made-up source address, and then you
  normally get a problem with intercepting the packages sent back as they
  would then not be routed to you!
  If you use a proxy to access remote sites, the sites will not see your local
  IP address but instead the address of the proxy.
  Also note that on many networks NATs or other IP-munging techniques are used
  that makes you see and use a different IP address locally than what the
  remote server will see you coming from.
 6. License Issues
  Curl and libcurl are released under a MIT/X derivate license. The license is
@@ -933,8 +1005,13 @@ FAQ
  7.1 What is PHP/CURL?
  The module for PHP that makes it possible for PHP programs to access curl-
-  functions from within PHP. We often call it PHP/CURL to differentiate from
+  functions from within PHP.
-  curl the command line tool and libcurl the library.
+
  In the cURL project we call this module PHP/CURL to differentiate it from
  curl the command line tool and libcurl the library. The PHP team however
  does not refer to it like this (for unknown reasons). They call it plain
  CURL (often using all caps) which causes much confusion to users which in
  turn gives us a higher question load.
  7.2 Who write PHP/CURL?
--- a/docs/FEATURES
+++ b/docs/FEATURES
@@ -62,11 +62,11 @@ HTTP
 HTTPS (*1)
 - (all the HTTP features)
- - using certificates
+ - using client certificates
 - verify server certificate
 - via http-proxy
 - select desired encryption
- - force usage of a specific SSL version (SSLv2, SSLv3 or TLSv1)
+ - force usage of a specific SSL version (SSLv2(*7), SSLv3 or TLSv1)
 FTP
 - download
@@ -118,9 +118,10 @@ FILE
 FOOTNOTES
 =========
-  *1 = requires OpenSSL
+  *1 = requires OpenSSL or GnuTLS
  *2 = requires OpenLDAP
  *3 = requires a GSSAPI-compliant library, such as Heimdal or similar.
  *4 = requires FBopenssl
  *5 = requires a krb4 library, such as the MIT one or similar.
  *6 = requires c-ares
  *7 = requires OpenSSL specificly, as GnuTLS only supports SSLv3 and TLSv1
--- a/docs/HISTORY
+++ b/docs/HISTORY
@@ -114,6 +114,8 @@ distributions and otherwise retrieved as part of other software.
 September 2002, with the release of curl 7.10 it is released under the MIT
 license only.
 January 2003. Started working on the distributed curl tests. The autobuilds.
 February 2003, the curl site averages at 20000 visits weekly. At any given
 moment, there's an average of 3 people browsing the curl.haxx.se site.
@@ -139,3 +141,7 @@ August 2004:
 Number of public functions in libcurl:    36
 Amount of public web site mirrors:        12
 Number of known libcurl bindings:         26
 April 2005:
 GnuTLS can now optionally be used for the secure layer when curl is built.
--- a/docs/INSTALL
+++ b/docs/INSTALL
@@ -462,21 +462,19 @@ NetWare
   - optional zlib sources (at the moment only dynamic linking with zlib.imp);
     sources with NetWare Makefile can be obtained from:
     http://www.gknw.com/mirror/zlib/
   - optional OpenSSL sources (version 0.9.8 or later which builds with BSD);
-   Set a search path to your compiler, linker and tools; if you want to have
+   Set a search path to your compiler, linker and tools; on Linux make
-   zlib support then set the environment var ZLIB_PATH pointing to your zlib
+   sure that the var OSTYPE contains the string 'linux'; and then type
-   sources, on Linux make sure the var OSTYPE contains the string 'linux';
+   'make netware' from the top source directory; other tagets available
-   and finally type 'make netware' from the top source directory...
+   are 'netware-ssl', 'netware-ssl-zlib', 'netware-zlib' and 'netware-ares';
-   I found on some Linux systems (RH9) that OS detection didnlt work although
+   if you need other combinations you can control the build with the
   environment variables WITH_SSL, WITH_ZLIB, WITH_ARES and ENABLE_IPV6.
   I found on some Linux systems (RH9) that OS detection didnt work although
   a 'set | grep OSTYPE' shows the var present and set; I simply overwrote it
-   with 'OSTYPE=linux-rh9-gnu' and the detection in the Makefile worked...;
+   with 'OSTYPE=linux-rh9-gnu' and the detection in the Makefile worked...
   other options are currently not supported, although partly prepared.
   The Ares lib builds arlready fine, and both test tools work fine at least
   when build with CodeWarrior...; don't know yet why they fail when build with
   gcc though; if you want to compile with Ares support then set an env var
   WITH_ARES=1; I've not tested yet including libares into curl.
   Any help in testing appreciated!
-   Builds automatically created 4 times a day from current CVS are here:
+   Builds automatically created 8 times a day from current CVS are here:
   http://www.gknw.com/mirror/curl/autobuilds/
   the status of these builds can be viewed at the autobuild table:
   http://curl.haxx.se/auto/
@@ -578,17 +576,17 @@ PORTS
        - MIPS IRIX 6.2, 6.5
        - MIPS Linux
        - Pocket PC/Win CE 3.0
-        - Power AIX 3.2.5, 4.2, 4.3.1, 4.3.2, 5.1
+        - Power AIX 3.2.5, 4.2, 4.3.1, 4.3.2, 5.1, 5.2
        - PowerPC Darwin 1.0
        - PowerPC Linux
        - PowerPC Mac OS 9
        - PowerPC Mac OS X
        - SINIX-Z v5
        - Sparc Linux
-        - Sparc Solaris 2.4, 2.5, 2.5.1, 2.6, 7, 8
+        - Sparc Solaris 2.4, 2.5, 2.5.1, 2.6, 7, 8, 9, 10
        - Sparc SunOS 4.1.X
        - StrongARM (and other ARM) RISC OS 3.1, 4.02
-        - StrongARM Linux 2.4
+        - StrongARM/ARM7/ARM9 Linux 2.4, 2.6
        - StrongARM NetBSD 1.4.1
        - Ultrix 4.3a
        - i386 BeOS
@@ -596,14 +594,14 @@ PORTS
        - i386 Esix 4.1
        - i386 FreeBSD
        - i386 HURD
-        - i386 Linux 1.3, 2.0, 2.2, 2.3, 2.4
+        - i386 Linux 1.3, 2.0, 2.2, 2.3, 2.4, 2.6
        - i386 NetBSD
        - i386 Novell NetWare
        - i386 OS/2
        - i386 OpenBSD
        - i386 SCO unix
        - i386 Solaris 2.7
-        - i386 Windows 95, 98, ME, NT, 2000
+        - i386 Windows 95, 98, ME, NT, 2000, XP, 2003
        - i386 QNX 6
        - i486 ncr-sysv4.3.03 (NCR MP-RAS)
        - ia64 Linux 2.3.99
--- a/docs/KNOWN_BUGS
+++ b/docs/KNOWN_BUGS
@@ -3,13 +3,36 @@ join in and help us correct one or more of these! Also be sure to check the
 changelog of the current development status, as one or more of these problems
 may have been fixed since this was written!
-20. valgrind errors occur too often when 'make test' is used. It is because
+25. When doing a CONNECT request with curl it doesn't properly handle if the
-  too many third-party libs and tools have problems. When curl is built
+  proxy closes the connection within the authentication "negotiation phase".
-  without --disable-shared, the testing is done with a front-end script which
+  Like if you do HTTPS or similar over a proxy and you use perhaps
-  makes the valgrind testing include (ba)sh as well and that often causes
+  --proxy-anyauth. There's work in progress on this problem, and a recent
-  valgrind errors. Either we improve the valgrind error scanner a lot to
+  patch was posted here: http://curl.haxx.se/mail/lib-2005-08/0074.html
-  better identify (lib)curl errors only, or we disable valgrind checking by
+
-  default.
+24. Harshal Pradhan's Use-after-free with libcurl+ares. This probably occurs
  because there is a pending ares callback that gets called after the
  connection struct has been freed in libcurl:
        http://curl.haxx.se/mail/lib-2005-08/0022.html
  Fixing this properly most likely requires a new c-ares function.
 23. We don't support SOCKS for IPv6. We don't support FTPS over a SOCKS proxy.
  We don't have any test cases for SOCKS proxy. We probably have even more
  bugs and lack of features when a SOCKS proxy is used.
 22. Sending files to a FTP server using curl on VMS, might lead to curl
  complaining on "unaligned file size" on completion. The problem is related
  to VMS file structures and the perceived file sizes stat() returns. A
  possible fix would involve sending a "STRU VMS" command.
  http://sourceforge.net/support/tracker.php?aid=1156287
 21. FTP ASCII transfers do not follow RFC959. They don't convert the data
   accordingly (not for sending nor for receiving). RFC 959 section 3.1.1.1
   clearly describes how this should be done:
     The sender converts the data from an internal character representation to
     the standard 8-bit NVT-ASCII representation (see the Telnet
     specification).  The receiver will convert the data from the standard
     form to his own internal form.
 19. FTP 3rd party transfers with the multi interface doesn't work. Test:
  define CURL_MULTIEASY, rebuild curl, run test case 230 - 232.
@@ -27,10 +50,6 @@ may have been fixed since this was written!
  would not meaningfully support NUL characters within RFC 959 <string>,
  anyway (e.g., UNIX pathnames may not contain NUL).
 15. Test case 241 fails on all systems that support IPv6 but that don't have
  the host name 'ip6-localhost' in /etc/hosts (or similar) since the test case
  uses that host name to test the IPv6 name to address resolver.
 14. Test case 165 might fail on system which has libidn present, but with an
  old iconv version (2.1.3 is a known bad version), since it doesn't recognize
  the charset when named ISO8859-1. Changing the name to ISO-8859-1 makes the
@@ -77,9 +96,6 @@ may have been fixed since this was written!
  libcurl thinks of it as the *compressed* length. Some explanations are here:
  http://curl.haxx.se/mail/lib-2003-06/0146.html
 4. IPv6 support on AIX 4.3.3 doesn't work due to a missing sockaddr_storage
  struct. It has been reported to work on AIX 5.1 though.
 3. GOPHER transfers seem broken
 2. If a HTTP server responds to a HEAD request and includes a body (thus
@@ -91,7 +107,3 @@ may have been fixed since this was written!
  and havoc is what happens.
  More details on this is found in this libcurl mailing list thread:
  http://curl.haxx.se/mail/lib-2002-08/0000.html
 1. LDAP support requires that not only the OpenLDAP shared libraries be
   present at run time, but the development libraries (liblber.so and
   libldap.so) as well (not applicable to Windows).
--- a/docs/LICENSE-MIXING
+++ b/docs/LICENSE-MIXING
@@ -12,12 +12,11 @@ I am not a lawyer and this is not legal advice!
 One common dilemma is that GPL[1]-licensed code is not allowed to be linked
 with code licensed under the Original BSD license (with the announcement
-clause, unless there's a specified exception in the GPL-licensed module). You
+clause). You may still build your own copies that use them all, but
-may still build your own copies that use them all, but distributing them as
+distributing them as binaries would be to violate the GPL license - unless you
-binaries would be to violate the GPL license - unless you accompany your
+accompany your license with an exception[2]. This particular problem was
-license with an exception[2]. This particular problem was addressed when the
+addressed when the Modified BSD license was created, which does not have the
-Modified BSD license was created, which does not have the annoncement clause
+annoncement clause that collides with GPL.
 that collides with GPL.
 libcurl http://curl.haxx.se/docs/copyright.html
@@ -28,21 +27,30 @@ libcurl http://curl.haxx.se/docs/copyright.html
 OpenSSL http://www.openssl.org/source/license.html
-        Uses an Original BSD-style license with an announement clause that
+        (May be used for SSL/TLS support) Uses an Original BSD-style license
-        makes it "incompatible" with GPL. You are not allowed to ship binaries
+        with an announement clause that makes it "incompatible" with GPL. You
-        that link with OpenSSL that includes GPL code (unless that specific
+        are not allowed to ship binaries that link with OpenSSL that includes
-        GPL code includes an exception for OpenSSL - a habit that is growing
+        GPL code (unless that specific GPL code includes an exception for
-        more and more common).
+        OpenSSL - a habit that is growing more and more common). If OpenSSL's
        licensing is a problem for you, consider using GnuTLS instead.
 GnuTLS  http://www.gnutls.org/
        (May be used for SSL/TLS support) Uses the LGPL[3] license. If this is
        a problem for you, consider using OpenSSL instead. Also note that
        GnuTLS itself depends on and uses other libs (libgcrypt and
        libgpg-error) and they too are LGPL- or GPL-licensed.
 c-ares  http://daniel.haxx.se/projects/c-ares/license.html
-        Uses an MIT license that is very liberal and imposes no restrictions
+        (Used for asynchronous name resolves) Uses an MIT license that is very
-        on any other library or part you may link with.
+        liberal and imposes no restrictions on any other library or part you
        may link with.
 zlib    http://www.gzip.org/zlib/zlib_license.html
-        Uses an MIT-style license that shouldn't collide with any other
+        (Used for compressed Transfer-Encoding support) Uses an MIT-style
-        library.
+        license that shouldn't collide with any other library.
 krb4
@@ -52,35 +60,47 @@ krb4
        of the code in libcurl that is written to deal with Kerberos4 likewise
        have such a license.
-GSSAPI
+MIT Kerberos http://web.mit.edu/kerberos/www/dist/
-        While nothing in particular says that a GSS/Kerberos5 library must use
+        (May be used for GSS support) MIT licensed, that shouldn't collide
-        any particular license, the one I've used (Heimdal) is Original BSD-
+        with any other parts.
-        licensed with the announcement clause.
+
 Heimdal http://www.pdc.kth.se/heimdal/
        (May be used for GSS support) Heimdal is Original BSD licensed with
        the announcement clause.
 GNU GSS http://www.gnu.org/software/gss/
        (May be used for GSS support) GNU GSS is GPL licensed. Note that you
        may not distribute binary curl packages that uses this if you build
        curl to also link and use any Original BSD licensed libraries!
 fbopenssl
-        Unclear license. Based on its name, I assume that it uses the OpenSSL
+        (Used for SPNEGO support) Unclear license. Based on its name, I assume
-        license and thus shares the same issues as described for OpenSSL
+        that it uses the OpenSSL license and thus shares the same issues as
-        above.
+        described for OpenSSL above.
 libidn  http://www.gnu.org/licenses/lgpl.html
-        Uses the GNU Lesser General Public License. LGPL is a variation of GPL
+        (Used for IDNA support) Uses the GNU Lesser General Public
-        with slightly less aggressive "copyleft". This license requires more
+        License. LGPL is a variation of GPL with slightly less aggressive
-        requirements to be met when distributing binaries, see the license for
+        "copyleft". This license requires more requirements to be met when
-        details. Also note that if you distribute a binary that includes this
+        distributing binaries, see the license for details. Also note that if
-        library, you must also include the full LGPL license text. Please
+        you distribute a binary that includes this library, you must also
-        properly point out what parts of the distributed package that the
+        include the full LGPL license text. Please properly point out what
-        license addresses.
+        parts of the distributed package that the license addresses.
 OpenLDAP http://www.openldap.org/software/release/license.html
-        Uses a Modified BSD-style license. Since libcurl uses OpenLDAP as a
+        (Used for LDAP support) Uses a Modified BSD-style license. Since
-        shared library only, I have not heard of anyone that ships OpenLDAP
+        libcurl uses OpenLDAP as a shared library only, I have not heard of
-        linked with libcurl in an app.
+        anyone that ships OpenLDAP linked with libcurl in an app.
 [1] = GPL - GNU General Public License: http://www.gnu.org/licenses/gpl.html
 [2] = http://www.fsf.org/licenses/gpl-faq.html#GPLIncompatibleLibs details on
      how to write such an exception to the GPL
 [3] = LGPL - GNU Lesser General Public License:
      http://www.gnu.org/licenses/lgpl.html
--- a/docs/MANUAL
+++ b/docs/MANUAL
@@ -299,6 +299,13 @@ POST (HTTP)
        curl -F "docpicture=@dog.gif" -F "catpicture=@cat.gif" 
  To send a field value literally without interpreting a leading '@'
  or '<', or an embedded ';type=', use --form-string instead of
  -F. This is recommended when the value is obtained from a user or
  some other unpredictable source. Under these circumstances, using
  -F instead of --form-string would allow a user to trick curl into
  uploading a file.
 REFERRER
  A HTTP request has the option to include information about which address
--- a/docs/Makefile.am
+++ b/docs/Makefile.am
@@ -17,7 +17,7 @@ CLEANFILES = $(GENHTMLPAGES) $(PDFPAGES)
 EXTRA_DIST = MANUAL BUGS CONTRIBUTE FAQ FEATURES INTERNALS SSLCERTS	\
 README.win32 RESOURCES TODO TheArtOfHttpScripting THANKS VERSIONS	\
 KNOWN_BUGS BINDINGS $(man_MANS) $(HTMLPAGES) HISTORY INSTALL		\
- $(PDFPAGES) LICENSE-MIXING README.netware
+ $(PDFPAGES) LICENSE-MIXING README.netware DISTRO-DILEMMA
 MAN2HTML= roffit < $< >$@
--- a/docs/THANKS
+++ b/docs/THANKS
@@ -1,110 +1,453 @@
- This project has been alive for several years. Countless people have provided
+ This project has been alive for many years. Countless people have provided
- feedback that have improved curl. Here follows a (incomplete) list of people
+ feedback that have improved curl. Here follows a list of people that have
- that have contributed with non-trivial parts:
+ contributed (a-z order).
-Daniel Stenberg <daniel@haxx.se>
+ If you have contributed but are missing here, please let us know!
-Rafael Sagula <sagula@inf.ufrgs.br>
+
-Sampo Kellomaki <sampo@iki.fi>
+Adrian Schuur
-Linas Vepstas <linas@linas.org>
+Alan Pinstein
-Bjorn Reese <breese@mail1.stofanet.dk>
+Albert Chin-A-Young
-Johan Anderson <johan@homemail.com>
+Albert Choy
-Kjell Ericson <Kjell.Ericson@haxx.se>
+Aleksandar Milivojevic
-Troy Engel <tengel@sonic.net>
+Alex aka WindEagle
-Ryan Nelson <ryan@inch.com>
+Alex Neblett
-Bj<EFBFBD>rn Stenberg <bjorn@haxx.se>
+Alex Suykov
-Angus Mackay <amackay@gus.ml.org>
+Alexander Kourakos
 Eric Young <eay@cryptsoft.com>
 Simon Dick <simond@totally.irrelevant.org>
 Oren Tirosh <oren@monty.hishome.net>
 Steven G. Johnson <stevenj@alum.mit.edu>
 Gilbert Ramirez Jr. <gram@verdict.uthscsa.edu>
 Andr<EFBFBD>s Garc<72>a <ornalux@redestb.es>
 Douglas E. Wegscheid <wegscd@whirlpool.com>
 Mark Butler <butlerm@xmission.com>
 Eric Thelin <eric@generation-i.com>
 Marc Boucher <marc@mbsi.ca>
 Greg Onufer <Greg.Onufer@Eng.Sun.COM>
 Doug Kaufman <dkaufman@rahul.net>
 David Eriksson <david@2good.com>
 Ralph Beckmann <rabe@uni-paderborn.de>
 T. Yamada <tai@imasy.or.jp>
 Lars J. Aas <larsa@sim.no>
 J<EFBFBD>rn Hartroth <Joern.Hartroth@computer.org>
 Matthew Clarke <clamat@van.maves.ca>
 Linus Nielsen Feltzing <linus@haxx.se>
 Felix von Leitner <felix@convergence.de>
 Dan Zitter <dzitter@zitter.net>
 Jongki Suwandi <Jongki.Suwandi@eng.sun.com>
 Chris Maltby <chris@aurema.com>
 Ron Zapp <rzapper@yahoo.com>
 Paul Marquis <pmarquis@iname.com>
 Ellis Pritchard <ellis@citria.com>
 Damien Adant <dams@usa.net>
 Chris <cbayliss@csc.come>
 Marco G. Salvagno <mgs@whiz.cjb.net>
 Paul Marquis <pmarquis@iname.com>
 David LeBlanc <dleblanc@qnx.com>
 Rich Gray at Plus Technologies
 Luong Dinh Dung <u8luong@lhsystems.hu>
 Torsten Foertsch <torsten.foertsch@gmx.net>
 Kristian K<>hntopp <kris@koehntopp.de>
 Fred Noz <FNoz@siac.com>
 Caolan McNamara <caolan@csn.ul.ie>
 Albert Chin-A-Young <china@thewrittenword.com>
 Stephen Kick <skick@epicrealm.com>
 Martin Hedenfalk <mhe@stacken.kth.se>
 Richard Prescott <rip at step.polymtl.ca>
 Jason S. Priebe <priebe@wral-tv.com>
 T. Bharath <TBharath@responsenetworks.com>
 Alexander Kourakos <awk@users.sourceforge.net>
 James Griffiths <griffiths_james@yahoo.com>
 Loic Dachary <loic@senga.org>
 Robert Weaver <robert.weaver@sabre.com>
 Ingo Ralf Blum <ingoralfblum@ingoralfblum.com>
 Jun-ichiro itojun Hagino <itojun@iijlab.net>
 Frederic Lepied <flepied@mandrakesoft.com>
 Georg Horn <horn@koblenz-net.de>
 Cris Bailiff <c.bailiff@awayweb.com>
 Sterling Hughes <sterling@designmultimedia.com>
 S. Moonesamy
 Ingo Wilken <iw@WWW.Ecce-Terram.DE>
 Pawel A. Gajda <mis@k2.net.pl>
 Patrick Bihan-Faou
 Nico Baggus <Nico.Baggus@mail.ing.nl>
 Sergio Ballestrero
 Andrew Francis <locust@familyhealth.com.au>
 Tomasz Lacki <Tomasz.Lacki@primark.pl>
 Georg Huettenegger <georg@ist.org>
 John Lask <johnlask@hotmail.com>
 Eric Lavigne <erlavigne@wanadoo.fr>
 Marcus Webster <marcus.webster@phocis.com>
 G<EFBFBD>tz Babin-Ebell <babin<69>ebell@trustcenter.de>
 Andreas Damm <andreas-sourceforge@radab.org>
 Jacky Lam <sylam@emsoftltd.com>
 James Gallagher <jgallagher@gso.uri.edu>
 Kjetil Jacobsen <kjetilja@cs.uit.no>
 Markus F.X.J. Oberhumer <markus@oberhumer.com>
 Miklos Nemeth <mnemeth@kfkisystems.com>
 Kevin Roth <kproth@users.sourceforge.net>
 Ralph Mitchell <rmitchell@eds.com>
 Dan Fandrich <dan@coneharvesters.com>
 Jean-Philippe Barrette-LaPierre <jpb@rrette.com>
 Richard Bramante <RBramante@on.com>
 Daniel Kouril <kouril@ics.muni.cz>
 Dirk Manske <dm@nettraffic.de>
 David Meyer <meyer@paracel.com>
 Dominick Meglio <codemstr@ptd.net>
 Gisle Vanem <gvanem@broadpark.no>
 Giuseppe Attardi <attardi@di.unipi.it>
 Tor Arntsen <tor@spacetec.no>
 David Byron <DByron@everdreamcorp.com>
 David Phillips
 Alexander Krasnostavsky
-G<EFBFBD>nter Knauf
+Alexander Zhuravlev
 Alexis Carvalho
 Andi Jahja
 Andr<EFBFBD>s Garc<72>a
 Andreas Damm
 Andreas Olsson
 Andreas Rieke
 Andres Garcia
 Andrew Bushnell
 Andrew Francis
 Andrew Fuller
 Andy Cedilnik
 Andy Serpa
 Angus Mackay
 Antoine Calando
 Anton Kalmykov
 Arkadiusz Miskiewicz
 Augustus Saunders
 Avery Fay
 Ben Greear
 Benjamin Gerard
 Bertrand Demiddelaer
-Peter Sylvester
+Bj<EFBFBD>rn Stenberg
-Alexis S. L. Carvalho
+Bjorn Reese
 Bob Schader
 Brad Burdick
 Brent Beardsley
 Brian Akins
 Brian R Duffy
 Bruce Mitchener
 Bryan Henderson
 Bryan Henderson 
 Bryan Kemp
 Caolan McNamara
 Casey O'Donnell
-Marty Kuhrt
+Chih-Chung Chang
-James Bursa
+Chris "Bob Bob"
 Chris Combes
 Chris Gaukroger
 Chris Maltby
 Christian Kurz
 Christian Robottom Reis
 Christophe Demory
 Christophe Legry
 Christopher R. Palmer
 Clarence Gardner
 Clifford Wolf
 Cody Jones
 Colin Watson
 Colm Buckley
 Cory Nelson
 Craig Davison
 Craig Markwardt
 Cris Bailiff
 Cyrill Osterwalder
 Damien Adant
 Dan Becker
 Dan C
 Dan Fandrich
 Dan Torop
 Dan Zitter
 Daniel at touchtunes
 Daniel Stenberg
 Dave Dribin
 Dave Halbakken
 Dave Hamilton
 Dave May
 David Byron
 David Cohen
 David Eriksson
 David Houlder
 David Hull
 David J Meyer
 David James
 David Kimdon
 David LeBlanc
 David Odin
 David Phillips
 David Shaw
 David Tarendash
 David Thiel
 Detlef Schmier
 Diego Casorran
 Dimitris Sarris
 Dinar
 Dirk Eddelbuettel
 Dirk Manske
 Dolbneff A.V
 Domenico Andreoli
 Dominick Meglio
 Doug Kaufman
 Doug Porter
 Douglas E. Wegscheid
 Douglas R. Horner
 Dustin Boswell
 Dylan Ellicott
 Dylan Salisbury
 Early Ehlinger
 Edin Kadribasic
 Ellis Pritchard
 Emiliano Ida
 Enrico Scholz
 Enrik Berkhan
 Eric Cooper
 Eric Lavigne
 Eric Melville
 Eric Rautman
 Eric Thelin
 Eric Vergnaud
 Eric Young
 Erick Nuwendam
 Erwan Legrand
 Erwin Authried
 Evan Jordan
 Fabrizio Ammollo
 Fedor Karpelevitch
 Felix von Leitner
 Florian Schoppmann
 Forrest Cahoon
 Frank Keeney
 Frank Ticheler
 Fred New
 Fred Noz
 Frederic Lepied
 G<EFBFBD>nter Knauf
 G<EFBFBD>tz Babin-Ebell
 Gautam Mani
 Gaz Iqbal
 Georg Horn
 Georg Huettenegger
 Georg Wicherski
 Gerd v. Egidy
 Gerhard Herre
 Giaslas Georgios
 Gilad
 Gilbert Ramirez Jr.
 Gisle Vanem
 Giuseppe Attardi
 Giuseppe D'Ambrosio
 Glen Nakamura
 Glen Scott
 Greg Hewgill
 Greg Onufer
 Grigory Entin
 Guenole Bescon
 Guillaume Arluison
 Gustaf Hui
 Gwenole Beauchesne
 Hamish Mackenzie
 Hanno Kranzhoff
 Hans Steegers
 Hardeep Singh
 Harshal Pradhan
 Heikki Korpela
 Henrik Storner
 Hzhijun
 Ian Ford
 Ian Gulliver
 Ian Wilkes
 Ignacio Vazquez-Abrams
 Ilguiz Latypov
 Ingo Ralf Blum
 Ingo Wilken
 J<EFBFBD>rg Mueller-Tolk
 J<EFBFBD>rn Hartroth
 Jacky Lam
 Jacob Meuser
 James Bursa
 James Clancy
 James Cone
 James Gallagher
 James Griffiths
 James MacMillan
 Jamie Lokier
 Jamie Wilkinson
 Jason S. Priebe
 Jean-Claude Chauve
 Jean-Louis Lemaire
 Jean-Marc Ranger
 Jean-Philippe Barrette-LaPierre
 Jeff Lawson
 Jeff Phillips
 Jeff Pohlmeyer
 Jeffrey Pohlmeyer
 Jeremy Friesner
 Jesper Jensen
 Jesse Noller
 Jim Drash
 Joe Halpin
 Joel Chen
 Johan Anderson
 Johan Nilsson
 John Crow
 John Janssen
 John Lask
 John McGowan
 Jon Grubbs
 Jon Travis
 Jon Turner
 Jonas Forsman
 Jonatan Lander
 Jonathan Hseu
 Jongki Suwandi
 Josh Kapell
 Juan F. Codagnone
 Juan Ignacio Herv<72>s
 Juergen Wilke
 Jukka Pihl
 Julian Noble
 Jun-ichiro itojun Hagino
 Jurij Smakov
 Kai Sommerfeld
 Kai-Uwe Rommel
 Kang-Jin Lee
 Karol Pietrzak
 Keith MacDonald
 Keith McGuigan
 Ken Hirsch
 Ken Rastatter
 Kevin Fisk
 Kevin Roth
 Kimmo Kinnunen
 Kjell Ericson
 Kjetil Jacobsen
 Klevtsov Vadim
 Kris Kennaway
 Krishnendu Majumdar
 Kristian K<>hntopp
 Kyle Sallee
 Lachlan O'Dea
 Larry Campbell
 Larry Fahnoe
 Lars Gustafsson
 Lars J. Aas
 Lars Nilsson
 Lars Torben Wilson
 Legoff Vincent
 Lehel Bernadt
 Len Krause
 Linas Vepstas
 Ling Thio
 Linus Nielsen Feltzing
 Loic Dachary
 Loren Kirkby
 Luca Altea
 Luca Alteas
 Lucas Adamski
 Lukasz Czekierda
 Luke Call
 Luong Dinh Dung
 Maciej W. Rozycki
 Marc Boucher
 Marcelo Juchem 
 Marcin Konicki
 Marco G. Salvagno
 Marcus Webster
 Mario Schroeder
 Mark Butler
 Markus Moeller
 Markus Oberhumer
 Martijn Koster
 Martin C. Martin
 Martin Hedenfalk
 Marty Kuhrt
 Maruko
 Massimiliano Ziccardi
 Mathias Axelsson
 Mats Lidell
 Matt Veenstra
 Matthew Blain
 Matthew Clarke
 Maurice Barnum
 Mekonikum
 Mettgut Jamalla
 Michael Benedict
 Michael Curtis
 Michael Mealling
 Michal Bonino
 Mihai Ionescu
 Mike Bytnar
 Mike Dobbs
 Miklos Nemeth
 Mitz Wark
 Mohamed Lrhazi
 Mohun Biswas
 Moonesamy
 Nathan O'Sullivan
 Naveen Noel
 Neil Dunbar
 Neil Spring
 Nic Roets
 Nick Gimbrone
 Nick Humfrey
 Nico Baggus
 Nicolas Berloquin
 Nicolas Croiset
 Niels van Tongeren
 Nikita Schmidt
 nk
 Nodak Sodak
 Oren Tirosh
 P R Schaffner
 Patrick Bihan-Faou
 Patrick Smith
 Paul Harrington
 Paul Marquis
 Paul Moore
 Paul Nolan
 Pavel Cenek
 Pavel Orehov
 Pawel A. Gajda
 Pedro Neves
 Pete Su
 Peter Bray
 Peter Forret
 Peter Pentchev
 Peter Sylvester
 Peter Todd
 Peter Verhas
 Peter Wullinger
 Peteris Krumins
 Phil Karn
 Philip Gladstone
 Philippe Hameau
 Philippe Raoult
 Pierre
 Puneet Pawaia
 Rafael Sagula
 Ralph Beckmann
 Ralph Mitchell
 Ramana Mokkapati
 Randy McMurchy
 Reinout van Schouwen
 Renaud Chaillat
 Renaud Duhaut
 Rene Bernhardt
 Rene Rebe
 Ricardo Cadime
 Rich Gray
 Richard Archer
 Richard Atterer
 Richard Bramante
 Richard Clayton
 Richard Cooper
 Richard Gorton
 Richard Prescott
 Rick Jones
 Rick Richardson
 Rob Stanzel
 Robert D. Young
 Robert Olson
 Robert Weaver
 Robin Kay
 Rodney Simmons
 Roland Krikava
 Roland Zimmermann
 Roman Koifman
 Ron Zapp
 Rosimildo da Silva
 Roy Shan
 Rune Kleveland
 Ryan Nelson
 S<EFBFBD>bastien Willemijns
 S. Moonesamy
 Salvador D<>vila
 Salvatore Sorrentino
 Sampo Kellomaki
 Samuel D<>az Garc<72>a
 Samuel Listopad
 Sander Gates
 Saul good
 Sebastien Willemijns
 Sergio Ballestrero
 Seshubabu Pasam
 Shard
 Shawn Poulson
 Siddhartha Prakash Jain
 Simon Dick
 Simon Liu
 Spiridonoff A.V
 Stadler Stephan
 Stefan Ulrich
 Stephan Bergmann
 Stephen Kick
 Stephen More
 Sterling Hughes
 Steve Green
 Steve Lhomme
 Steve Marx
 Steve Oliphant
 Steven Bazyl
 Steven G. Johnson
 Stoned Elipot
 Sven Neuhaus
 swalkaus at yahoo.com
 T. Bharath
 T. Yamada
 Thomas Schwinge
 Thomas Tonino
 Tim Baker
 Tim Bartley
 Tim Costello
 Tim Sneddon
 Toby Peterson
 Todd Kulesza
 Tom Benoist
 Tom Lee
 Tom Mattison
 Tom Moers
 Tom Zerucha
 Tomas Pospisek
 Tomas Szepe
 Tomasz Lacki
 Tommy Tam
 Ton Voon
 Tor Arntsen
 Torsten Foertsch
 Toshiyuki Maezawa
 Traian Nicolescu
 Troels Walsted Hansen
 Troy Engel
 Tupone Alfredo
 Ulrich Zadow
 Vincent Bronner
 Vincent Penquerc'h
 Vincent Sanders
 Vojtech Janota
 Vojtech Minarik
 Walter J. Mack
 Wayne Haigh
 Werner Koch
 Wesley Laxton
 Wez Furlong
 Wilfredo Sanchez
 Wojciech Zwiefka
 Yarram Sunil
 Zvi Har'El 
--- a/docs/TODO
+++ b/docs/TODO
@@ -26,7 +26,7 @@ TODO
 * More data sharing. curl_share_* functions already exist and work, and they
   can be extended to share more. For example, enable sharing of the ares
-   channel.
+   channel and the connection cache.
 * Introduce a new error code indicating authentication problems (for proxy
   CONNECT error 407 for example). This cannot be an error code, we must not
@@ -35,16 +35,18 @@ TODO
 * Use 'struct lifreq' and SIOCGLIFADDR instead of 'struct ifreq' and
   SIOCGIFADDR on newer Solaris versions as they claim the latter is obsolete.
   To support ipv6 interface addresses properly.
 * Add the following to curl_easy_getinfo(): GET_HTTP_IP, GET_FTP_IP and
   GET_FTP_DATA_IP. Return a string with the used IP. Suggested by Alan.
 * Add option that changes the interval in which the progress callback is
   called at most.
 LIBCURL - multi interface
- * Add a curl_multi_fdset() alternative that returns only two arrays with file
+ * Add a curl_multi_fdset() alternative. this allows apps to avoid the
-   desrciptors for reading and writing to allow the app to use whatever
+   FD_SETSIZE problem with select().
   function it prefers. Plus, this allows apps to avoid the FD_SETSIZE problem
   with select().
 * Add curl_multi_timeout() to make libcurl's ares-functionality better.
@@ -59,6 +61,17 @@ TODO
   ready to accept read data. Today libcurl feeds the data as soon as it is
   available for reading, no matter what.
 * Add curl_multi_socket() and family to the multi interface that gets file
   descriptors, as an alternative to the curl_multi_fdset(). This is necessary
   to allow apps to properly avoid the FD_SETSIZE problem.
 * Make curl_easy_perform() a wrapper-function that simply creates a multi
   handle, adds the easy handle to it, runs curl_multi_perform() until the
   transfer is done, then detach the easy handle, destroy the multi handle and
   return the easy handle's return code. This will thus make everything
   internally use and assume the multi interface. The select()-loop should use
   curl_multi_socket().
 DOCUMENTATION
 * More and better
@@ -68,9 +81,6 @@ TODO
 * Make the detection of (bad) %0d and %0a codes in FTP url parts earlier in
   the process to avoid doing a resolve and connect in vain.
 * Code overhaul to make it more state-machine like and to _never_ block on
   waiting for server responses when used with the multi interface.
 * Support GSS/Kerberos 5 for ftp file transfer. This will allow user
   authentication and file encryption.  Possible libraries and example clients
   are available from MIT or Heimdal. Requsted by Markus Moeller.
@@ -146,14 +156,31 @@ TODO
   it be? There's so much that could be done if it were! (brought by Chris
   Clark)
- * Make curl's SSL layer option capable of using other free SSL libraries.
+ * Make curl's SSL layer capable of using other free SSL libraries.  Such as
-   Such as the Mozilla Security Services
+   Mozilla Security Services
-   (http://www.mozilla.org/projects/security/pki/nss/) and GnuTLS
+   (http://www.mozilla.org/projects/security/pki/nss/), MatrixSSL
-   (http://www.gnu.org/software/gnutls/) This subject has been brought up
+   (http://www.matrixssl.org/) or yaSSL (http://yassl.com/). At least the
-   again recently since GPL-licensed applications that link with libcurl MAY
+   latter two could be alternatives for those looking to reduce the footprint
-   NOT distribute binaries that use OpenSSL without adding an exception clause
+   of libcurl built with OpenSSL or GnuTLS.
-   to the GPL license. See the LICENSE-MIXING document and this:
+
-   http://www.gnome.org/~markmc/openssl-and-the-gpl.html
+ * Peter Sylvester's patch for SRP on the TLS layer.
   Awaits OpenSSL support for this, no need to support this in libcurl before
   there's an OpenSSL release that does it.
 * make the configure --with-ssl option first check for OpenSSL and then for
   GnuTLS if OpenSSL wasn't detected.
 GnuTLS
 * Get NTLM working using the functions provided by libgcrypt, since GnuTLS
   already depends on that to function. Not strictly SSL/TLS related, but
   hey... Another option is to get available DES and MD4 source code from the
   cryptopp library. They are fine license-wise, but are C++.
 * SSL engine stuff?
 * Work out a common method with Peter Sylvester's OpenSSL-patch for SRP
   on the TLS to provide name and password
 LDAP
--- a/docs/VERSIONS
+++ b/docs/VERSIONS
@@ -20,7 +20,7 @@ Version Numbers and Releases
   N is pre-release number
 One of these numbers will get bumped in each new release. The numbers to the
- right of a bumped number will be reset to zero. If Z is zero, it is not
+ right of a bumped number will be reset to zero. If Z is zero, it may not be
 included in the version number. The pre release number is only included in
 pre releases (they're never used in public, official, releases).
@@ -49,7 +49,7 @@ Version Numbers and Releases
 As a service to any application that might want to support new libcurl
 features while still being able to build with older versions, all releases
- have the libcurl version stored in the curl/curl.h file using a static
+ have the libcurl version stored in the curl/curlver.h file using a static
 numbering scheme that can be used for comparison. The version number is
 defined as:
@@ -62,3 +62,6 @@ Version Numbers and Releases
 This 6-digit hexadecimal number does not show pre-release number, and it is
 always a greater number in a more recent release. It makes comparisons with
 greater than and less than work.
 This number is also available as three separate defines:
 LIBCURL_VERSION_MAJOR, LIBCURL_VERSION_MINOR and LIBCURL_VERSION_PATCH.
--- a/docs/curl.1
+++ b/docs/curl.1
@@ -21,7 +21,7 @@
 .\" * $Id$
 .\" **************************************************************************
 .\"
-.TH curl 1 "25 Jan 2005" "Curl 7.13.0" "Curl Manual"
+.TH curl 1 "12 Aug 2005" "Curl 7.14.1" "Curl Manual"
 .SH NAME
 curl \- transfer a URL
 .SH SYNOPSIS
@@ -267,7 +267,7 @@ If this option is used several times, the last one will be used.
 be set with the \fI-H/--header\fP flag of course.  When used with
 \fI-L/--location\fP you can append ";auto" to the referer URL to make curl
 automatically set the previous URL when it follows a Location: header. The
-";auto" string can be used alone, even if you don't set an initial referer.
+\&";auto" string can be used alone, even if you don't set an initial referer.
 If this option is used several times, the last one will be used.
 .IP "--engine <name>"
@@ -343,7 +343,7 @@ will instead attempt to create missing directories. (Added in 7.10.7)
 If this option is used twice, the second will again disable silent failure.
 .IP "--ftp-pasv"
-(FTP) Use PASV when transfering. PASV is the internal default behavior, but
+(FTP) Use PASV when transferring. PASV is the internal default behavior, but
 using this option can be used to override a previous --ftp-port option. (Added
 in 7.11.0)
@@ -388,6 +388,12 @@ setting filename=, like this:
 See further examples and details in the MANUAL.
 This option can be used multiple times.
 .IP "--form-string <name=string>"
 (HTTP) Similar to \fI--form\fP except that the value string for the named
 parameter is used literally. Leading \&'@' and \&'<' characters, and the
 \&';type=' string in the value have no special meaning. Use this in preference
 to \fI--form\fP if there's any possibility that the string value may
 accidentally trigger the \&'@' or \&'<' features of \fI--form\fP.
 .IP "-g/--globoff"
 This option switches off the "URL globbing parser". When you set this option,
 you can specify URLs that contain the letters {}[] without having them being
@@ -415,9 +421,19 @@ set headers without knowing perfectly well what you're doing. Replacing an
 internal header with one without content on the right side of the colon will
 prevent that header from appearing.
 curl will make sure that each header you add/replace get sent with the proper
 end of line marker, you should thus \fBnot\fP add that as a part of the header
 content: do not add newlines or carriage returns they will only mess things up
 for you.
 See also the \fI-A/--user-agent\fP and \fI-e/--referer\fP options.
 This option can be used multiple times to add/replace/remove multiple headers.
 .IP "--ignore-content-length"
 (HTTP)
 Ignore the Content-Length header. This is particularly useful for servers
 running Apache 1.x, which will report incorrect Content-Length for files
 larger than 2 gigabytes.
 .IP "-i/--include"
 (HTTP)
 Include the HTTP-header in the output. The HTTP-header includes things
@@ -491,6 +507,20 @@ line. So, it could look similar to this:
 url = "http://curl.haxx.se/docs/"
 This option can be used multiple times.
 When curl is invoked, it always (unless \fI-q\fP is used) checks for a default
 config file and uses it if found. The default config file is checked for in
 the following places in this order:
 1) curl tries to find the "home dir": It first checks for the CURL_HOME and
 then the HOME environment variables. Failing that, it uses getpwuid() on
 unix-like systems (which returns the home dir given the current user in your
 system). On Windows, it then checks for the APPDATA variable, or as a last
 resort the '%USERPROFILE%\Application Data'.
 2) On windows, if there is no _curlrc file in the home dir, it checks for one
 in the same dir the executable curl is placed. On unix-like systems, it will
 simply try to load .curlrc from the determined home dir.
 .IP "--limit-rate <speed>"
 Specify the maximum transfer rate you want curl to use. This feature is useful
 if you have a limited pipe and you'd like your transfer not use your entire
@@ -641,6 +671,13 @@ You may use this option as many times as you have number of URLs.
 (SSL) Pass phrase for the private key
 If this option is used several times, the last one will be used.
 .IP "--proxy-anyauth"
 Tells curl to pick a suitable authentication method when communicating with
 the given proxy. This will cause an extra request/response round-trip. Added
 in curl 7.13.2.
 If this option is used twice, the second will again disable the proxy use-any
 authentication.
 .IP "--proxy-basic"
 Tells curl to use HTTP Basic authentication when communicating with the given
 proxy. Use \fI--basic\fP for enabling HTTP Basic with a remote host. Basic is
@@ -687,9 +724,10 @@ If this option is used several times, the last one will be used. Disable the
 use of PORT with \fI--ftp-pasv\fP. Disable the attempt to use the EPRT command
 instead of PORT by using \fI--disable-eprt\fP. EPRT is really PORT++.
 .IP "-q"
-If used as the first parameter on the command line, the \fI$HOME/.curlrc\fP
+If used as the first parameter on the command line, the \fIcurlrc\fP config
-file will not be read and used as a config file.
+file will not be read and used. See the \fI-K/--config\fP for details on the
-.IP "-Q/--quote <comand>"
+default config file search path.
 .IP "-Q/--quote <command>"
 (FTP) Send an arbitrary command to the remote FTP server. Quote commands are
 sent BEFORE the transfer is taking place (just after the initial PWD command
 to be exact). To make commands take place after a successful transfer, prefix
@@ -857,6 +895,11 @@ to read for untrained humans.
 If this option is used several times, the last one will be used. (Added in
 7.9.7)
 .IP "--trace-time"
 Prepends a time stamp to each trace or verbose line that curl displays.
 If this option is used several times, each occurrence will toggle it on/off.
 (Added in 7.14.0        )
 .IP "-u/--user <user:password>"
 Specify user and password to use for server authentication. Overrides
 \fI-n/--netrc\fP and \fI--netrc-optional\fP.
@@ -874,9 +917,9 @@ This option may be used any number of times. To control where this URL is
 written, use the \fI-o/--output\fP or the \fI-O/--remote-name\fP options.
 .IP "-v/--verbose"
 Makes the fetching more verbose/talkative. Mostly usable for debugging. Lines
-starting with '>' means data sent by curl, '<' means data received by curl
+starting with '>' means "header data" sent by curl, '<' means "header data"
-that is hidden in normal cases and lines starting with '*' means additional
+received by curl that is hidden in normal cases and lines starting with '*'
-info provided by curl.
+means additional info provided by curl.
 Note that if you only want HTTP headers in the output, \fI-i/--include\fP
 might be option you're looking for.
@@ -920,13 +963,16 @@ SPNEGO Negotiate authentication is supported.
 This curl supports transfers of large files, files larger than 2GB.
 .IP "IDN"
 This curl supports IDN - international domain names.
 .IP "SSPI"
 SSPI is supported. If you use NTLM and set a blank user name, curl will
 authenticate with your current user and password.
 .RE
 .IP "-w/--write-out <format>"
-Defines what to display after a completed and successful operation. The format
+Defines what to display on stdout after a completed and successful
-is a string that may contain plain text mixed with any number of variables. The
+operation. The format is a string that may contain plain text mixed with any
-string can be specified as "string", to get read from a particular file you
+number of variables. The string can be specified as "string", to get read from
-specify it "@filename" and to tell curl to read the format from stdin you
+a particular file you specify it "@filename" and to tell curl to read the
-write "@-".
+format from stdin you write "@-".
 The variables present in the output format will be substituted by the value or
 text that curl thinks fit, as described below. All variables are specified
@@ -1022,12 +1068,16 @@ transparently be converted to HTTP. It means that certain protocol specific
 operations might not be available. This is not the case if you can tunnel
 through the proxy, as done with the \fI-p/--proxytunnel\fP option.
 Starting with 7.14.1, the proxy host can be specified the exact same way as
 the proxy environment variables, include protocol prefix (http://) and
 embedded user + password.
 If this option is used several times, the last one will be used.
 .IP "-X/--request <command>"
-(HTTP)
+(HTTP) Specifies a custom request method to use when communicating with the
-Specifies a custom request to use when communicating with the HTTP server.
+HTTP server.  The specified request will be used instead of the method
-The specified request will be used instead of the standard GET. Read the
+otherwise used (which defaults to GET). Read the HTTP 1.1 specification for
-HTTP 1.1 specification for details and explanations.
+details and explanations.
 (FTP)
 Specifies a custom FTP command to use instead of LIST when doing file lists
@@ -1271,5 +1321,5 @@ http://curl.haxx.se
 ftp://ftp.sunet.se/pub/www/utilities/curl/
 .SH "SEE ALSO"
 .BR ftp (1),
-.BR wget (1),
+.BR wget (1)
--- a/docs/examples/Makefile.am
+++ b/docs/examples/Makefile.am
@@ -10,7 +10,8 @@ EXTRA_DIST = README curlgtk.c sepheaders.c simple.c postit2.c		\
 post-callback.c multi-app.c multi-double.c multi-single.c		\
 multi-post.c fopen.c simplepost.c makefile.dj curlx.c https.c		\
 multi-debugcallback.c fileupload.c getinfo.c ftp3rdparty.c debug.c	\
- anyauthput.c htmltitle.cc htmltidy.c
+ anyauthput.c htmltitle.cc htmltidy.c opensslthreadlock.c		\
 cookie_interface.c cacertinmem.c
 all:
 	@echo "done"
--- a/docs/examples/cacertinmem.c
+++ b/docs/examples/cacertinmem.c
@@ -0,0 +1,138 @@
 /*****************************************************************************
 *                                  _   _ ____  _
 *  Project                     ___| | | |  _ \| |
 *                             / __| | | | |_) | |
 *                            | (__| |_| |  _ <| |___
 *                             \___|\___/|_| \_\_____|
 *
 * $Id$
 *
 * Example using a "in core" PEM certificate to retrieve a https page.
 * Written by Theo Borm
 */
 /* on a netBSD system with OPENSSL& LIBCURL installed from
 * pkgsrc (using default paths) this program can be compiled using:
 * gcc -I/usr/pkg/include -L/usr/pkg/lib -lcurl -Wl,-R/usr/pkg/lib -lssl
 * -lcrypto -lz -o curlcacerttest curlcacerttest.c
 * on other operating systems you may want to change paths to headers
 * and libraries
 */
 #include <openssl/ssl.h>
 #include <curl/curl.h>
 #include <stdio.h>
 size_t writefunction( void *ptr, size_t size, size_t nmemb, void *stream)
 {
  fwrite(ptr,size,nmemb,stream);
  return(nmemb*size);
 }
 static CURLcode sslctx_function(CURL * curl, void * sslctx, void * parm)
 {
  X509_STORE * store;
  X509 * cert=NULL;
  BIO * bio;
  char * mypem = /* www.cacert.org */
    "-----BEGIN CERTIFICATE-----\n"\
    "MIIHPTCCBSWgAwIBAgIBADANBgkqhkiG9w0BAQQFADB5MRAwDgYDVQQKEwdSb290\n"\
    "IENBMR4wHAYDVQQLExVodHRwOi8vd3d3LmNhY2VydC5vcmcxIjAgBgNVBAMTGUNB\n"\
    "IENlcnQgU2lnbmluZyBBdXRob3JpdHkxITAfBgkqhkiG9w0BCQEWEnN1cHBvcnRA\n"\
    "Y2FjZXJ0Lm9yZzAeFw0wMzAzMzAxMjI5NDlaFw0zMzAzMjkxMjI5NDlaMHkxEDAO\n"\
    "BgNVBAoTB1Jvb3QgQ0ExHjAcBgNVBAsTFWh0dHA6Ly93d3cuY2FjZXJ0Lm9yZzEi\n"\
    "MCAGA1UEAxMZQ0EgQ2VydCBTaWduaW5nIEF1dGhvcml0eTEhMB8GCSqGSIb3DQEJ\n"\
    "ARYSc3VwcG9ydEBjYWNlcnQub3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC\n"\
    "CgKCAgEAziLA4kZ97DYoB1CW8qAzQIxL8TtmPzHlawI229Z89vGIj053NgVBlfkJ\n"\
    "8BLPRoZzYLdufujAWGSuzbCtRRcMY/pnCujW0r8+55jE8Ez64AO7NV1sId6eINm6\n"\
    "zWYyN3L69wj1x81YyY7nDl7qPv4coRQKFWyGhFtkZip6qUtTefWIonvuLwphK42y\n"\
    "fk1WpRPs6tqSnqxEQR5YYGUFZvjARL3LlPdCfgv3ZWiYUQXw8wWRBB0bF4LsyFe7\n"\
    "w2t6iPGwcswlWyCR7BYCEo8y6RcYSNDHBS4CMEK4JZwFaz+qOqfrU0j36NK2B5jc\n"\
    "G8Y0f3/JHIJ6BVgrCFvzOKKrF11myZjXnhCLotLddJr3cQxyYN/Nb5gznZY0dj4k\n"\
    "epKwDpUeb+agRThHqtdB7Uq3EvbXG4OKDy7YCbZZ16oE/9KTfWgu3YtLq1i6L43q\n"\
    "laegw1SJpfvbi1EinbLDvhG+LJGGi5Z4rSDTii8aP8bQUWWHIbEZAWV/RRyH9XzQ\n"\
    "QUxPKZgh/TMfdQwEUfoZd9vUFBzugcMd9Zi3aQaRIt0AUMyBMawSB3s42mhb5ivU\n"\
    "fslfrejrckzzAeVLIL+aplfKkQABi6F1ITe1Yw1nPkZPcCBnzsXWWdsC4PDSy826\n"\
    "YreQQejdIOQpvGQpQsgi3Hia/0PsmBsJUUtaWsJx8cTLc6nloQsCAwEAAaOCAc4w\n"\
    "ggHKMB0GA1UdDgQWBBQWtTIb1Mfz4OaO873SsDrusjkY0TCBowYDVR0jBIGbMIGY\n"\
    "gBQWtTIb1Mfz4OaO873SsDrusjkY0aF9pHsweTEQMA4GA1UEChMHUm9vdCBDQTEe\n"\
    "MBwGA1UECxMVaHR0cDovL3d3dy5jYWNlcnQub3JnMSIwIAYDVQQDExlDQSBDZXJ0\n"\
    "IFNpZ25pbmcgQXV0aG9yaXR5MSEwHwYJKoZIhvcNAQkBFhJzdXBwb3J0QGNhY2Vy\n"\
    "dC5vcmeCAQAwDwYDVR0TAQH/BAUwAwEB/zAyBgNVHR8EKzApMCegJaAjhiFodHRw\n"\
    "czovL3d3dy5jYWNlcnQub3JnL3Jldm9rZS5jcmwwMAYJYIZIAYb4QgEEBCMWIWh0\n"\
    "dHBzOi8vd3d3LmNhY2VydC5vcmcvcmV2b2tlLmNybDA0BglghkgBhvhCAQgEJxYl\n"\
    "aHR0cDovL3d3dy5jYWNlcnQub3JnL2luZGV4LnBocD9pZD0xMDBWBglghkgBhvhC\n"\
    "AQ0ESRZHVG8gZ2V0IHlvdXIgb3duIGNlcnRpZmljYXRlIGZvciBGUkVFIGhlYWQg\n"\
    "b3ZlciB0byBodHRwOi8vd3d3LmNhY2VydC5vcmcwDQYJKoZIhvcNAQEEBQADggIB\n"\
    "ACjH7pyCArpcgBLKNQodgW+JapnM8mgPf6fhjViVPr3yBsOQWqy1YPaZQwGjiHCc\n"\
    "nWKdpIevZ1gNMDY75q1I08t0AoZxPuIrA2jxNGJARjtT6ij0rPtmlVOKTV39O9lg\n"\
    "18p5aTuxZZKmxoGCXJzN600BiqXfEVWqFcofN8CCmHBh22p8lqOOLlQ+TyGpkO/c\n"\
    "gr/c6EWtTZBzCDyUZbAEmXZ/4rzCahWqlwQ3JNgelE5tDlG+1sSPypZt90Pf6DBl\n"\
    "Jzt7u0NDY8RD97LsaMzhGY4i+5jhe1o+ATc7iwiwovOVThrLm82asduycPAtStvY\n"\
    "sONvRUgzEv/+PDIqVPfE94rwiCPCR/5kenHA0R6mY7AHfqQv0wGP3J8rtsYIqQ+T\n"\
    "SCX8Ev2fQtzzxD72V7DX3WnRBnc0CkvSyqD/HMaMyRa+xMwyN2hzXwj7UfdJUzYF\n"\
    "CpUCTPJ5GhD22Dp1nPMd8aINcGeGG7MW9S/lpOt5hvk9C8JzC6WZrG/8Z7jlLwum\n"\
    "GCSNe9FINSkYQKyTYOGWhlC0elnYjyELn8+CkcY7v2vcB5G5l1YjqrZslMZIBjzk\n"\
    "zk6q5PYvCdxTby78dOs6Y5nCpqyJvKeyRKANihDjbPIky/qbn3BHLt4Ui9SyIAmW\n"\
    "omTxJBzcoTWcFbLUvFUufQb1nA5V9FrWk9p2rSVzTMVD\n"\
    "-----END CERTIFICATE-----\n";
  /* get a BIO */
  bio=BIO_new_mem_buf(mypem, -1);
  /* use it to read the PEM formatted certificate from memory into an X509
   * structure that SSL can use
   */
  PEM_read_bio_X509(bio, &cert, 0, NULL);
  if (cert == NULL)
    printf("PEM_read_bio_X509 failed...\n");
  /* get a pointer to the X509 certificate store (which may be empty!) */
  store=SSL_CTX_get_cert_store((SSL_CTX *)sslctx);
  /* add our certificate to this store */
  if (X509_STORE_add_cert(store, cert)==0)
    printf("error adding certificate\n");
  /* all set to go */
  return CURLE_OK ;
 }
 int main(void)
 {
  CURL * ch;
  CURLcode rv;
  rv=curl_global_init(CURL_GLOBAL_ALL);
  ch=curl_easy_init();
  rv=curl_easy_setopt(ch,CURLOPT_VERBOSE, 0);
  rv=curl_easy_setopt(ch,CURLOPT_HEADER, 0);
  rv=curl_easy_setopt(ch,CURLOPT_NOPROGRESS, 1);
  rv=curl_easy_setopt(ch,CURLOPT_NOSIGNAL, 1);
  rv=curl_easy_setopt(ch,CURLOPT_WRITEFUNCTION, *writefunction);
  rv=curl_easy_setopt(ch,CURLOPT_WRITEDATA, stdout);
  rv=curl_easy_setopt(ch,CURLOPT_HEADERFUNCTION, *writefunction);
  rv=curl_easy_setopt(ch,CURLOPT_WRITEHEADER, stderr);
  rv=curl_easy_setopt(ch,CURLOPT_SSLCERTTYPE,"PEM");
  rv=curl_easy_setopt(ch,CURLOPT_SSL_VERIFYPEER,1);
  rv=curl_easy_setopt(ch, CURLOPT_URL, "https://www.cacert.org/");
  /* first try: retrieve page without cacerts' certificate -> will fail
   */
  rv=curl_easy_perform(ch);
  if (rv==CURLE_OK)
    printf("*** transfer succeeded ***\n");
  else
    printf("*** transfer failed ***\n");
  /* second try: retrieve page using cacerts' certificate -> will succeed
   * load the certificate by installing a function doing the nescessary
   * "modifications" to the SSL CONTEXT just before link init
   */
  rv=curl_easy_setopt(ch,CURLOPT_SSL_CTX_FUNCTION, *sslctx_function);
  rv=curl_easy_perform(ch);
  if (rv==CURLE_OK)
    printf("*** transfer succeeded ***\n");
  else
    printf("*** transfer failed ***\n");
  curl_easy_cleanup(ch);
  curl_global_cleanup();
 }
--- a/docs/examples/cookie_interface.c
+++ b/docs/examples/cookie_interface.c
@@ -0,0 +1,110 @@
 /*****************************************************************************
 *                                  _   _ ____  _
 *  Project                     ___| | | |  _ \| |
 *                             / __| | | | |_) | |
 *                            | (__| |_| |  _ <| |___
 *                             \___|\___/|_| \_\_____|
 *
 *  This example shows usage of simple cookie interface. 
 */
 #include <stdio.h>
 #include <string.h>
 #include <errno.h>
 #include <time.h>
 #include <curl/curl.h>
 static void
 print_cookies(CURL *curl)
 {
  CURLcode res;
  struct curl_slist *cookies;
  struct curl_slist *nc;
  int i;
  printf("Cookies, curl knows:\n");
  res = curl_easy_getinfo(curl, CURLINFO_COOKIELIST, &cookies);
  if (res != CURLE_OK) {
    fprintf(stderr, "Curl curl_easy_getinfo failed: %s\n", curl_easy_strerror(res));
    exit(1);
  }
  nc = cookies, i = 1;
  while (nc) {
    printf("[%d]: %s\n", i, nc->data);
    nc = nc->next;
    i++;
  }
  if (i == 1) {
    printf("(none)\n");
  }
  curl_slist_free_all(cookies);
 }
 int
 main(void)
 {
  CURL *curl;
  CURLcode res;
  curl_global_init(CURL_GLOBAL_ALL);
  curl = curl_easy_init();
  if (curl) {
    char nline[256];
    curl_easy_setopt(curl, CURLOPT_URL, "http://www.google.com/"); /* google.com sets "PREF" cookie */
    curl_easy_setopt(curl, CURLOPT_VERBOSE, 1);
    curl_easy_setopt(curl, CURLOPT_COOKIEFILE, ""); /* just to start the cookie engine */
    res = curl_easy_perform(curl);
    if (res != CURLE_OK) {
      fprintf(stderr, "Curl perform failed: %s\n", curl_easy_strerror(res));
      return 1;
    }
    print_cookies(curl);
    printf("Erasing curl's knowledge of cookies!\n");
    curl_easy_setopt(curl, CURLOPT_COOKIELIST, "ALL");
    print_cookies(curl);
    printf("-----------------------------------------------\n"
           "Setting a cookie \"PREF\" via cookie interface:\n");
 #ifdef WIN32
 #define snprintf _snprintf
 #endif
    /* Netscape format cookie */
    snprintf(nline, 256, "%s\t%s\t%s\t%s\t%u\t%s\t%s",
      ".google.com", "TRUE", "/", "FALSE", time(NULL) + 31337, "PREF", "hello google, i like you very much!");
    res = curl_easy_setopt(curl, CURLOPT_COOKIELIST, nline);
    if (res != CURLE_OK) {
      fprintf(stderr, "Curl curl_easy_setopt failed: %s\n", curl_easy_strerror(res));
      return 1;            
    }
    /* HTTP-header style cookie */
    snprintf(nline, 256,
      "Set-Cookie: OLD_PREF=3d141414bf4209321; "
      "expires=Sun, 17-Jan-2038 19:14:07 GMT; path=/; domain=.google.com");
    res = curl_easy_setopt(curl, CURLOPT_COOKIELIST, nline);
    if (res != CURLE_OK) {
      fprintf(stderr, "Curl curl_easy_setopt failed: %s\n", curl_easy_strerror(res));
      return 1;            
    }
    print_cookies(curl);
    res = curl_easy_perform(curl);
    if (res != CURLE_OK) {
      fprintf(stderr, "Curl perform failed: %s\n", curl_easy_strerror(res));
      return 1;
    }
  }
  else {
    fprintf(stderr, "Curl init failed!\n");
    return 1;
  }
  curl_global_cleanup();
  return 0;
 }
--- a/docs/examples/makefile.dj
+++ b/docs/examples/makefile.dj
@@ -20,7 +20,8 @@ PROGRAMS  = fopen.exe ftpget.exe ftpgetresp.exe ftpupload.exe \
            multi-double.exe multi-post.exe multi-single.exe \
            persistant.exe post-callback.exe postit2.exe \
            sepheaders.exe simple.exe simplessl.exe https.exe \
-            ftp3rdparty.exe getinfo.exe anyauthput.exe
+            ftp3rdparty.exe getinfo.exe anyauthput.exe \
            cookie_interface.exe
 all: $(PROGRAMS)
--- a/docs/examples/opensslthreadlock.c
+++ b/docs/examples/opensslthreadlock.c
@@ -0,0 +1,77 @@
 /*****************************************************************************
 *                                  _   _ ____  _
 *  Project                     ___| | | |  _ \| |
 *                             / __| | | | |_) | |
 *                            | (__| |_| |  _ <| |___
 *                             \___|\___/|_| \_\_____|
 *
 * $Id$
 *
 * Example source code to show one way to set the necessary OpenSSL locking
 * callbacks if you want to do multi-threaded transfers with HTTPS/FTPS with
 * libcurl built to use OpenSSL.
 *
 * This is not a complete stand-alone example.
 *
 * Author: Jeremy Brown
 */
 #define MUTEX_TYPE       pthread_mutex_t
 #define MUTEX_SETUP(x)   pthread_mutex_init(&(x), NULL)
 #define MUTEX_CLEANUP(x) pthread_mutex_destroy(&(x))
 #define MUTEX_LOCK(x)    pthread_mutex_lock(&(x))
 #define MUTEX_UNLOCK(x)  pthread_mutex_unlock(&(x))
 #define THREAD_ID        pthread_self(  )
 void handle_error(const char *file, int lineno, const char *msg){
     fprintf(stderr, ** %s:%i %s\n, file, lineno, msg);
     ERR_print_errors_fp(stderr);
     /* exit(-1); */
 }
 /* This array will store all of the mutexes available to OpenSSL. */
 static MUTEX_TYPE *mutex_buf= NULL;
 static void locking_function(int mode, int n, const char * file, int line)
 {
  if (mode & CRYPTO_LOCK)
    MUTEX_LOCK(mutex_buf[n]);
  else
    MUTEX_UNLOCK(mutex_buf[n]);
 }
 static unsigned long id_function(void)
 {
  return ((unsigned long)THREAD_ID);
 }
 int thread_setup(void)
 {
  int i;
  mutex_buf = (MUTEX_TYPE *)malloc(CRYPTO_num_locks(  ) * sizeof(MUTEX_TYPE));
  if (!mutex_buf)
    return 0;
  for (i = 0;  i < CRYPTO_num_locks(  );  i++)
    MUTEX_SETUP(mutex_buf[i]);
  CRYPTO_set_id_callback(id_function);
  CRYPTO_set_locking_callback(locking_function);
  return 1;
 }
 int thread_cleanup(void)
 {
  int i;
  if (!mutex_buf)
    return 0;
  CRYPTO_set_id_callback(NULL);
  CRYPTO_set_locking_callback(NULL);
  for (i = 0;  i < CRYPTO_num_locks(  );  i++)
    MUTEX_CLEANUP(mutex_buf[i]);
  free(mutex_buf);
  mutex_buf = NULL;
  return 1;
 }
--- a/docs/libcurl/Makefile.am
+++ b/docs/libcurl/Makefile.am
@@ -52,7 +52,8 @@ PDFPAGES = curl_easy_cleanup.pdf curl_easy_getinfo.pdf			\
 CLEANFILES = $(HTMLPAGES) $(PDFPAGES)
-EXTRA_DIST = $(man_MANS) $(HTMLPAGES) index.html $(PDFPAGES) libcurl.m4
+EXTRA_DIST = $(man_MANS) $(HTMLPAGES) index.html $(PDFPAGES) libcurl.m4 \
 getinfo-times
 MAN2HTML= roffit --mandir=. < $< >$@
--- a/docs/libcurl/curl_easy_getinfo.3
+++ b/docs/libcurl/curl_easy_getinfo.3
@@ -15,9 +15,9 @@ Request internal information from the curl session with this function.  The
 third argument \fBMUST\fP be a pointer to a long, a pointer to a char *, a
 pointer to a struct curl_slist * or a pointer to a double (as this
 documentation describes further down).  The data pointed-to will be filled in
-accordingly and can be relied upon only if the function returns CURLE_OK.
+accordingly and can be relied upon only if the function returns CURLE_OK.  Use
-This function is intended to get used AFTER a performed transfer, all results
+this function AFTER a performed transfer if you want to get transfer- oriented
-from this function are undefined until the transfer is completed.
+data.
 You should not free the memory returned by this function unless it is
 explictly mentioned below.
@@ -35,12 +35,14 @@ this.
 Pass a pointer to a long to receive the last received proxy response code to a
 CONNECT request.
 .IP CURLINFO_FILETIME
-Pass a pointer to a long to receive the remote time of the retrieved
+Pass a pointer to a long to receive the remote time of the retrieved document
-document. If you get -1, it can be because of many reasons (unknown, the
+(in number of seconds since 1 jan 1970 in the GMT/UTC time zone). If you get
-server hides it or the server doesn't support the command that tells document
+-1, it can be because of many reasons (unknown, the server hides it or the
-time etc) and the time of the document is unknown. Note that you must tell the
+server doesn't support the command that tells document time etc) and the time
-server to collect this information before the transfer is made, by using the
+of the document is unknown. Note that you must tell the server to collect this
-CURLOPT_FILETIME option to \fIcurl_easy_setopt(3)\fP. (Added in 7.5)
+information before the transfer is made, by using the CURLOPT_FILETIME option
 to \fIcurl_easy_setopt(3)\fP or you will unconditionally get a -1 back. (Added
 in 7.5)
 .IP CURLINFO_TOTAL_TIME
 Pass a pointer to a double to receive the total transaction time in seconds
 for the previous transfer. This time does not include the connect time, so if
@@ -132,6 +134,13 @@ counted).  Combined with \fICURLINFO_REDIRECT_COUNT\fP you are able to know
 how many times libcurl successfully reused existing connection(s) or not.  See
 the Connection Options of \fIcurl_easy_setopt(3)\fP to see how libcurl tries
 to make persistent connections to save time.  (Added in 7.12.3)
 .IP CURLINFO_COOKIELIST
 Pass a pointer to a 'struct curl_slist *' to receive a linked-list of all
 cookies cURL knows (expired ones, too). Don't forget to
 \fIcurl_slist_free_all(3)\fP the list after it has been used.  If there are no
 cookies (cookies for the handle have not been enabled or simply none have been
 received) 'struct curl_slist *' will be set to point to NULL. (Added in
 7.14.1)
 .SH RETURN VALUE
 If the operation was successful, CURLE_OK is returned. Otherwise an
 appropriate error code will be returned.
--- a/docs/libcurl/curl_easy_setopt.3
+++ b/docs/libcurl/curl_easy_setopt.3
@@ -21,7 +21,7 @@
 .\" * $Id$
 .\" **************************************************************************
 .\"
-.TH curl_easy_setopt 3 "25 Jan 2005" "libcurl 7.13.0" "libcurl Manual"
+.TH curl_easy_setopt 3 "28 Jul 2005" "libcurl 7.14.1" "libcurl Manual"
 .SH NAME
 curl_easy_setopt - set options for a curl easy handle
 .SH SYNOPSIS
@@ -171,20 +171,30 @@ argument in the progress callback set with \fICURLOPT_PROGRESSFUNCTION\fP.
 .IP CURLOPT_HEADERFUNCTION
 Function pointer that should match the following prototype: \fIsize_t
 function( void *ptr, size_t size, size_t nmemb, void *stream);\fP. This
-function gets called by libcurl as soon as there is received header data that
+function gets called by libcurl as soon as it has received header data. The
-needs to be written down. The headers are guaranteed to be written one-by-one
+header callback will be called once for each header and only complete header
-and only complete lines are written. Parsing headers should be easy enough
+lines are passed on to the callback. Parsing headers should be easy enough
 using this. The size of the data pointed to by \fIptr\fP is \fIsize\fP
-multiplied with \fInmemb\fP.  The pointer named \fIstream\fP will be the one
+multiplied with \fInmemb\fP. Do not assume that the header line is zero
-you passed to libcurl with the \fICURLOPT_WRITEHEADER\fP option.  Return the
+terminated! The pointer named \fIstream\fP is the one you set with the
-number of bytes actually written or return -1 to signal error to the library
+\fICURLOPT_WRITEHEADER\fP option. The callback function must return the number
 of bytes actually taken care of, or return -1 to signal error to the library
 (it will cause it to abort the transfer with a \fICURLE_WRITE_ERROR\fP return
 code).
 Since 7.14.1: When a server sends a chunked encoded transfer, it may contain a
 trailer. That trailer is identical to a HTTP header and if such a trailer is
 received it is passed to the application using this callback as well. There
 are several ways to detect it being a trailer and not an ordinary header: 1)
 it comes after the response-body. 2) it comes after the final header line (CR
 LF) 3) a Trailer: header among the response-headers mention what header to
 expect in the trailer.
 .IP CURLOPT_WRITEHEADER
-Pass a pointer to be used to write the header part of the received data to. If
+(This option is also known as \fBCURLOPT_HEADERDATA\fP) Pass a pointer to be
-you don't use your own callback to take care of the writing, this must be a
+used to write the header part of the received data to. If you don't use your
-valid FILE *. See also the \fICURLOPT_HEADERFUNCTION\fP option above on how to
+own callback to take care of the writing, this must be a valid FILE *. See
-set a custom get-all-headers callback.
+also the \fICURLOPT_HEADERFUNCTION\fP option above on how to set a custom
 get-all-headers callback.
 .IP CURLOPT_DEBUGFUNCTION
 Function pointer that should match the following prototype: \fIint
 curl_debug_callback (CURL *, curl_infotype, char *, size_t, void *);\fP
@@ -223,6 +233,9 @@ perform operation will return the error code from this callback function.  Set
 the \fIparm\fP argument with the \fICURLOPT_SSL_CTX_DATA\fP option. This
 option was introduced in 7.11.0.
 This function will get called on all new connections made to a server, during
 the SSL negotiation. The SSL_CTX pointer will be a new one every time.
 \fBNOTE:\fP To use this properly, a non-trivial amount of knowledge of the
 openssl libraries is necessary. Using this function allows for example to use
 openssl callbacks to add additional validation code for certificates, and even
@@ -274,15 +287,20 @@ be prefixed with [protocol]:// since any such prefix will be ignored. The
 proxy's port number may optionally be specified with the separate option
 \fICURLOPT_PROXYPORT\fP.
-\fBNOTE:\fP when you tell the library to use an HTTP proxy, libcurl will
+When you tell the library to use an HTTP proxy, libcurl will transparently
-transparently convert operations to HTTP even if you specify an FTP URL
+convert operations to HTTP even if you specify an FTP URL etc. This may have
-etc. This may have an impact on what other features of the library you can
+an impact on what other features of the library you can use, such as
-use, such as \fICURLOPT_QUOTE\fP and similar FTP specifics that don't work
+\fICURLOPT_QUOTE\fP and similar FTP specifics that don't work unless you
-unless you tunnel through the HTTP proxy. Such tunneling is activated with
+tunnel through the HTTP proxy. Such tunneling is activated with
 \fICURLOPT_HTTPPROXYTUNNEL\fP.
-\fBNOTE2:\fP libcurl respects the environment variables \fBhttp_proxy\fP,
+libcurl respects the environment variables \fBhttp_proxy\fP, \fBftp_proxy\fP,
-\fBftp_proxy\fP, \fBall_proxy\fP etc, if any of those is set.
+\fBall_proxy\fP etc, if any of those is set. The \fICURLOPT_PROXY\fP option
 does however override any possibly set environment variables.
 Starting with 7.14.1, the proxy host string can be specified the exact same
 way as the proxy environment variables, include protocol prefix (http://) and
 embedded user + password.
 .IP CURLOPT_PROXYPORT
 Pass a long with this option to set the proxy port to connect to unless it is
 specified in the proxy string \fICURLOPT_PROXY\fP.
@@ -410,7 +428,7 @@ is a more secure way to do authentication over public networks than the
 regular old-fashioned Basic method.
 .IP CURLAUTH_GSSNEGOTIATE
 HTTP GSS-Negotiate authentication. The GSS-Negotiate (also known as plain
-"Negotiate") method was designed by Microsoft and is used in their web
+\&"Negotiate") method was designed by Microsoft and is used in their web
 applications. It is primarily meant as a support for Kerberos5 authentication
 but may be also used along with another authentication methods. For more
 information see IETF draft draft-brezak-spnego-http-04.txt.
@@ -442,7 +460,7 @@ use. Note that for some methods, this will induce an extra network
 round-trip. Set the actual name and password with the
 \fICURLOPT_PROXYUSERPWD\fP option. The bitmask can be constructed by or'ing
 together the bits listed above for the \fICURLOPT_HTTPAUTH\fP option. As of
-this writing, only Basic and NTLM work. (Added in 7.10.7)
+this writing, only Basic, Digest and NTLM work. (Added in 7.10.7)
 .SH HTTP OPTIONS
 .IP CURLOPT_AUTOREFERER
 Pass a non-zero parameter to enable this. When enabled, libcurl will
@@ -511,8 +529,11 @@ adding a header like "Transfer-Encoding: chunked" with
 \fICURLOPT_HTTPHEADER\fP. With HTTP 1.0 or without chunked transfer, you must
 specify the size in the request.
-NOTE: if you have issued a POST request and want to make a HEAD or GET
+When setting \fICURLOPT_POST\fP to a non-zero value, it will automatically set
-instead, you must explictly pick the new request type using
+\fICURLOPT_NOBODY\fP to 0 (since 7.14.1).
 If you issue a POST request and then want to make a HEAD or GET using the same
 re-used handle, you must explictly set the new request type using
 \fICURLOPT_NOBODY\fP or \fICURLOPT_HTTPGET\fP or similar.
 .IP CURLOPT_POSTFIELDS
 Pass a char * as parameter, which should be the full data to post in an HTTP
@@ -550,6 +571,9 @@ must remain intact until you close this curl handle again with
 Using POST with HTTP 1.1 implies the use of a "Expect: 100-continue" header.
 You can disable this header with \fICURLOPT_HTTPHEADER\fP as usual.
 When setting \fICURLOPT_HTTPPOST\fP, it will automatically set
 \fICURLOPT_NOBODY\fP to 0 (since 7.14.1).
 .IP CURLOPT_REFERER
 Pass a pointer to a zero terminated string as parameter. It will be used to
 set the Referer: header in the http request sent to the remote server. This
@@ -620,6 +644,9 @@ dumped to a file.
 Given an empty or non-existing file or by passing the empty string (""), this
 option will enable cookies for this curl handle, making it understand and
 parse received cookies and then use matching cookies in future request.
 If you use this option multiple times, you just add more files to read.
 Subsequent files will add more cookies.
 .IP CURLOPT_COOKIEJAR
 Pass a file name as char *, zero terminated. This will make libcurl write all
 internally known cookies to the specified file when \fIcurl_easy_cleanup(3)\fP
@@ -640,10 +667,18 @@ cookies" from the previous session. By default, libcurl always stores and
 loads all cookies, independent if they are session cookies are not. Session
 cookies are cookies without expiry date and they are meant to be alive and
 existing for this "session" only.
 .IP CURLOPT_COOKIELIST
 Pass a char * to a cookie string. Cookie can be either in Netscape / Mozilla
 format or just regular HTTP-style header (Set-Cookie: ...) format. If cURL
 cookie engine was not enabled it will enable its cookie engine.  Passing a
 magic string \&"ALL" will erase all cookies known by cURL. (Added in 7.14.1)
 .IP CURLOPT_HTTPGET
 Pass a long. If the long is non-zero, this forces the HTTP request to get back
 to GET. usable if a POST, HEAD, PUT or a custom request have been used
 previously using the same curl handle.
 When setting \fICURLOPT_HTTPGET\fP to a non-zero value, it will automatically
 set \fICURLOPT_NOBODY\fP to 0 (since 7.14.1).
 .IP CURLOPT_HTTP_VERSION
 Pass a long, set to one of the values described below. They force libcurl to
 use the specific HTTP versions. This is not sensible to do unless you have a
@@ -656,6 +691,12 @@ it thinks fit.
 Enforce HTTP 1.0 requests.
 .IP CURL_HTTP_VERSION_1_1
 Enforce HTTP 1.1 requests.
 .IP CURLOPT_IGNORE_CONTENT_LENGTH
 Ignore the Content-Length header. This is useful for Apache 1.x (and similar
 servers) which will report incorrect content length for files over 2
 gigabytes. If this option is used, curl will not be able to accurately report
 progress, and will simply stop the download when the server ends the
 connection. (added in 7.14.1)
 .RE
 .SH FTP OPTIONS
 .IP CURLOPT_FTPPORT
@@ -770,11 +811,15 @@ this data is sent off using the ACCT command. (Added in 7.13.0)
 .SH PROTOCOL OPTIONS
 .IP CURLOPT_TRANSFERTEXT
 A non-zero parameter tells the library to use ASCII mode for ftp transfers,
-instead of the default binary transfer. For LDAP transfers it gets the data in
+instead of the default binary transfer. For win32 systems it does not set the
-plain text instead of HTML and for win32 systems it does not set the stdout to
+stdout to binary mode. This option can be usable when transferring text data
-binary mode. This option can be usable when transferring text data between
+between systems with different views on certain characters, such as newlines
-systems with different views on certain characters, such as newlines or
+or similar.
-similar.
+
 \fBNOTE:\fP libcurl does not do a complete ASCII conversion when doing ASCII
 transfers over FTP. This is a known limitation/flaw that nobody has
 rectified. libcurl simply sets the mode to ascii and performs a standard
 transfer.
 .IP CURLOPT_CRLF
 Convert Unix newlines to CRLF newlines on transfers.
 .IP CURLOPT_RANGE
@@ -818,9 +863,8 @@ A non-zero parameter tells the library to not include the body-part in the
 output. This is only relevant for protocols that have separate header and body
 parts. On HTTP(S) servers, this will make libcurl do a HEAD request.
-To change back to GET, you should use \fICURLOPT_HTTPGET\fP. To change back to
+To change request to GET, you should use \fICURLOPT_HTTPGET\fP. Change request
-POST, you should use \fICURLOPT_POST\fP. Setting \fICURLOPT_NOBODY\fP to zero
+to POST with \fICURLOPT_POST\fP etc.
 has no effect.
 .IP CURLOPT_INFILESIZE
 When uploading a file to a remote site, this option should be used to tell
 libcurl what the expected size of the infile is. This value should be passed
@@ -996,28 +1040,60 @@ operations.
 \fBNOTE:\fP If the crypto device cannot be set,
 \fICURLE_SSL_ENGINE_SETFAILED\fP is returned.
 .IP CURLOPT_SSLVERSION
-Pass a long as parameter. Set what version of SSL to attempt to use, 2 or
+Pass a long as parameter to control what version of SSL/TLS to attempt to use.
-3. By default, the SSL library will try to solve this by itself although some
+The available options are:
-servers make this difficult why you at times may have to use this option.
+.RS
 .IP CURL_SSLVERSION_DEFAULT
 The default action. When libcurl built with OpenSSL, this will attempt to
 figure out the remote SSL protocol version. Unfortunately there are a lot of
 ancient and broken servers in use which cannot handle this technique and will
 fail to connect. When libcurl is built with GnuTLS, this will mean SSLv3.
 .IP CURL_SSLVERSION_TLSv1
 Force TLSv1
 .IP CURL_SSLVERSION_SSLv2
 Force SSLv2
 .IP CURL_SSLVERSION_SSLv3
 Force SSLv3
 .RE
 .IP CURLOPT_SSL_VERIFYPEER
-Pass a long that is set to a zero value to stop curl from verifying the peer's
+Pass a long as parameter.
-certificate (7.10 starting setting this option to non-zero by default).
+
-Alternate certificates to verify against can be specified with the
+This option determines whether curl verifies the authenticity of the
-\fICURLOPT_CAINFO\fP option or a certificate directory can be specified with
+peer's certificate.  A nonzero value means curl verifies; zero means it
-the \fICURLOPT_CAPATH\fP option.  As of 7.10, curl installs a default bundle.
+doesn't.  The default is nonzero, but before 7.10, it was zero.
-\fICURLOPT_SSL_VERIFYHOST\fP may also need to be set to 1 or 0 if
+
-\fICURLOPT_SSL_VERIFYPEER\fP is disabled (it defaults to 2).
+When negotiating an SSL connection, the server sends a certificate
 indicating its identity.  Curl verifies whether the certificate is
 authentic, i.e. that you can trust that the server is who the
 certificate says it is.  This trust is based on a chain of digital
 signatures, rooted in certification authority (CA) certificates you
 supply.  As of 7.10, curl installs a default bundle of CA certificates
 and you can specify alternate certificates with the
 \fICURLOPT_CAINFO\fP option or the \fICURLOPT_CAPATH\fP option.
 When \fICURLOPT_SSL_VERIFYPEER\fP is nonzero, and the verification
 fails to prove that the certificate is authentic, the connection
 fails.  When the option is zero, the connection succeeds regardless.
 Authenticating the certificate is not by itself very useful.  You
 typically want to ensure that the server, as authentically identified
 by its certificate, is the server you mean to be talking to.  Use
 \fICURLOPT_SSL_VERIFYHOST\fP to control that.
 .IP CURLOPT_CAINFO
 Pass a char * to a zero terminated string naming a file holding one or more
-certificates to verify the peer with. This only makes sense when used in
+certificates to verify the peer with.  This makes sense only when used in
-combination with the \fICURLOPT_SSL_VERIFYPEER\fP option.
+combination with the \fICURLOPT_SSL_VERIFYPEER\fP option.  If
 \fICURLOPT_SSL_VERIFYPEER\fP is zero, \fICURLOPT_CAINFO\fP need not
 even indicate an accessible file.
 .IP CURLOPT_CAPATH
-Pass a char * to a zero terminated string naming a directory holding multiple
+Pass a char * to a zero terminated string naming a directory holding
-CA certificates to verify the peer with. The certificate directory must be
+multiple CA certificates to verify the peer with. The certificate
-prepared using the openssl c_rehash utility. This only makes sense when used
+directory must be prepared using the openssl c_rehash utility. This
-in combination with the \fICURLOPT_SSL_VERIFYPEER\fP option. The
+makes sense only when used in combination with the
-\fICURLOPT_CAPATH\fP function apparently does not work in Windows due to some
+\fICURLOPT_SSL_VERIFYPEER\fP option.  If \fICURLOPT_SSL_VERIFYPEER\fP
-limitation in openssl. (Added in 7.9.8)
+is zero, \fICURLOPT_CAPATH\fP need not even indicate an accessible
 path.  The \fICURLOPT_CAPATH\fP function apparently does not work in
 Windows due to some limitation in openssl. (Added in 7.9.8)
 .IP CURLOPT_RANDOM_FILE
 Pass a char * to a zero terminated file name. The file will be used to read
 from to seed the random engine for SSL. The more random the specified file is,
@@ -1026,9 +1102,34 @@ the more secure the SSL connection will become.
 Pass a char * to the zero terminated path name to the Entropy Gathering Daemon
 socket. It will be used to seed the random engine for SSL.
 .IP CURLOPT_SSL_VERIFYHOST
-Pass a long. Set if we should verify the Common name from the peer certificate
+Pass a long as parameter.
-in the SSL handshake, set 1 to check existence, 2 to ensure that it matches
+
-the provided hostname. This is by default set to 2. (default changed in 7.10)
+This option determines whether curl verifies that the server claims to be
 who you want it to be.
 When negotiating an SSL connection, the server sends a certificate
 indicating its identity.
 When \fICURLOPT_SSL_VERIFYHOST\fP is 2, that certificate must indicate
 that the server is the server to which you meant to connect, or the
 connection fails.
 Curl considers the server the intended one when the Common Name field
 or a Subject Alternate Name field in the certificate matches the host
 name in the URL to which you told Curl to connect.
 When the value is 1, the certificate must contain a Common Name field,
 but it doesn't matter what name it says.  (This is not ordinarily a
 useful setting).
 When the value is 0, the connection succeeds regardless of the names in
 the certificate.
 The default, since 7.10, is 2.
 The checking this option controls is of the identity that the server
 \fIclaims\fP.  The server could be lying.  To control lying, see
 \fICURLOPT_SSL_VERIFYPEER\fP.
 .IP CURLOPT_SSL_CIPHER_LIST
 Pass a char *, pointing to a zero terminated string holding the list of
 ciphers to use for the SSL connection. The list must be syntactically correct,
--- a/docs/libcurl/curl_formadd.3
+++ b/docs/libcurl/curl_formadd.3
@@ -90,7 +90,7 @@ followed by a pointer to a string to a name, will make libcurl use the given
 name in the file upload part, instead of the actual file name given to
 \fICURLFORM_FILE\fP.
-.IP BCURLFORM_BUFFER
+.IP CURLFORM_BUFFER
 followed by a string, tells libcurl that a buffer is to be used to upload data
 instead of using a file. The given string is used as the value of the file
 name field in the content header.
--- a/docs/libcurl/curl_getdate.3
+++ b/docs/libcurl/curl_getdate.3
@@ -2,7 +2,7 @@
 .\" nroff -man [file]
 .\" $Id$
 .\"
-.TH curl_getdate 3 "5 March 2001" "libcurl 7.0" "libcurl Manual"
+.TH curl_getdate 3 "12 Aug 2005" "libcurl 7.0" "libcurl Manual"
 .SH NAME
 curl_getdate - Convert an date string to number of seconds since January 1,
 1970
@@ -26,7 +26,7 @@ order of the items is immaterial.  A date string may contain many flavors of
 items:
 .TP 0.8i
 .B calendar date items
-Can be specified several ways. Month names can only be three-letter
+Can be specified several ways. Month names can only be three-letter english
 abbrivations, numbers can be zero-prefixed and the year may use 2 or 4 digits.
 Examples: 06 Nov 1994, 06-Nov-94 and Nov-94 6.
 .TP
@@ -41,9 +41,9 @@ general you should instead use the specific relative time compared to
 UTC. Supported formats include: -1200, MST, +0100.
 .TP
 .B day of the week items
-Specifies a day of the week. Days of the week may be spelled out in full:
+Specifies a day of the week. Days of the week may be spelled out in full
-`Sunday', `Monday', etc or they may be abbreviated to their first three
+(using english): `Sunday', `Monday', etc or they may be abbreviated to their
-letters. This is usually not info that adds anything.
+first three letters. This is usually not info that adds anything.
 .TP
 .B pure numbers
 If a decimal number of the form YYYYMMDD appears, then YYYY is read as the
@@ -85,11 +85,16 @@ This function returns -1 when it fails to parse the date string. Otherwise it
 returns the number of seconds as described.
 If the year is larger than 2037 on systems with 32 bit time_t, this function
-will return 0x7fffffff (since that is the largest possible 31 bit number).
+will return 0x7fffffff (since that is the largest possible signed 32 bit
 number).
 Having a 64 bit time_t is not a guarantee that dates beyond 03:14:07 UTC,
 January 19, 2038 will work fine. On systems with a 64 bit time_t but with a
 crippled mktime(), \fIcurl_getdate\fP will return -1 in this case.
 .SH REWRITE
 The former version of this function was built with yacc and was not only very
 large, it was also never quite understood and it wasn't possible to build with
-non-GNU tools since only Bison could make it thread-safe!
+non-GNU tools since only GNU Bison could make it thread-safe!
 The rewrite was done for 7.12.2. The new one is much smaller and use simpler
 code.
--- a/docs/libcurl/curl_multi_fdset.3
+++ b/docs/libcurl/curl_multi_fdset.3
@@ -1,6 +1,6 @@
 .\" $Id$
 .\"
-.TH curl_multi_fdset 3 "15 Apr 2004" "libcurl 7.9.5" "libcurl Manual"
+.TH curl_multi_fdset 3 "25 Apr 2005" "libcurl 7.9.5" "libcurl Manual"
 .SH NAME
 curl_multi_fdset - extracts file descriptor information from a multi handle
 .SH SYNOPSIS
@@ -15,15 +15,21 @@ CURLMcode curl_multi_fdset(CURLM *multi_handle,
 .ad
 .SH DESCRIPTION
 This function extracts file descriptor information from a given multi_handle.
-libcurl returns its fd_set sets. The application can use these to select()
+libcurl returns its fd_set sets. The application can use these to select() on,
-on. The \fIcurl_multi_perform(3)\fP function should be called as soon as one
+but be sure to FD_ZERO them before calling this function as
-of them are ready to be read from or written to.
+\fIcurl_multi_fdset(3)\fP only adds its own descriptors it doesn't zero or
 otherwise remove any other. The \fIcurl_multi_perform(3)\fP function should be
 called as soon as one of them are ready to be read from or written to.
 If no file descriptors are set by libcurl, \fImax_fd\fP will contain -1 when
 this function returns. Otherwise it will contain the higher descriptor number
 libcurl set.
 You should also be aware that when doing select(), you should consider using a
 rather small (single-digit number of seconds) timeout and call
 \fIcurl_multi_perform\fP regularly - even if no activity has been seen on the
 fd_sets - as otherwise libcurl-internal retries and timeouts may not work as
-you'd think.
+you'd think and want.
 .SH RETURN VALUE
 CURLMcode type, general libcurl multi interface error code. See
 \fIlibcurl-errors(3)\fP
--- a/docs/libcurl/curl_version_info.3
+++ b/docs/libcurl/curl_version_info.3
@@ -1,8 +1,6 @@
 .\" You can view this file with:
 .\" nroff -man [file]
 .\" $Id$
 .\"
-.TH curl_version_info 3 "11 May 2004" "libcurl 7.12" "libcurl Manual"
+.TH curl_version_info 3 "11 Mar 2005" "libcurl 7.13.2" "libcurl Manual"
 .SH NAME
 curl_version_info - returns run-time libcurl version info
 .SH SYNOPSIS
@@ -36,7 +34,7 @@ typedef struct {
  const char *host;         /* human readable string */
  int features;             /* bitmask, see below */
  char *ssl_version;        /* human readable string */
-  long ssl_version_num;     /* number */
+  long ssl_version_num;     /* not used, always zero */
  const char *libz_version; /* human readable string */
  const char **protocols;   /* list of protocols */
@@ -73,9 +71,9 @@ supports IPv6
 .IP CURL_VERSION_KERBEROS4
 supports kerberos4 (when using FTP)
 .IP CURL_VERSION_SSL
-supports SSL (HTTPS/FTPS)
+supports SSL (HTTPS/FTPS) (Added in 7.10)
 .IP CURL_VERSION_LIBZ
-supports HTTP deflate using libz
+supports HTTP deflate using libz (Added in 7.10)
 .IP CURL_VERSION_NTLM
 supports HTTP NTLM (added in 7.10.6)
 .IP CURL_VERSION_GSSNEGOTIATE
@@ -91,10 +89,15 @@ interface. (added in 7.10.7)
 libcurl was built with support for SPNEGO authentication (Simple and Protected
 GSS-API Negotiation Mechanism, defined in RFC 2478.) (added in 7.10.8)
 .IP CURL_VERSION_LARGEFILE
-libcurl was built with support for large files.
+libcurl was built with support for large files. (Added in 7.11.1)
 .IP CURL_VERSION_IDN
 libcurl was built with support for IDNA, domain names with international
-letters.
+letters. (Added in 7.12.0)
 .IP CURL_VERSION_SSPI
 libcurl was built with support for SSPI. This is only available on Windows and
 makes libcurl use Windows-provided functions for NTLM authentication. It also
 allows libcurl to use the current user and the current user's password without
 the app having to pass them on. (Added in 7.13.2)
 .RE
 \fIssl_version\fP is an ascii string for the OpenSSL version used. If libcurl
 has no SSL support, this is NULL.
--- a/docs/libcurl/getinfo-times
+++ b/docs/libcurl/getinfo-times
@@ -0,0 +1,27 @@
 An overview of the six time values available from curl_easy_getinfo()
 curk_easy_perform()
    |
    |--NT
    |--|--CT
    |--|--|--PT
    |--|--|--|--ST
          |--|--|--TT
    |--|--|--|--|--RT
 NT = CURLINFO_NAMELOOKUP_TIME. The time it took from the start until the name
     resolving was completed.
 CT = CURLINFO_CONNECT_TIME. The time it took from the start until the connect
     to the remote host (or proxy) was completed.
 PT = CURLINFO_PRETRANSFER_TIME. The time it took from the start until the file
     transfer is just about to begin. This includes all pre-transfer commands
     and negotiations that are specific to the particular protocol(s)
     involved.
 ST = CURLINFO_STARTTRANSFER_TIME. The time it took from the start until the
     first byte is just about to be transferred.
 TT = CURLINFO_TOTAL_TIME. Time of the previous transfer. This time does not
     include the connect time (CT), so if you want the complete operation
     time, you should add that.
 RT = CURLINFO_REDIRECT_TIME. The time it took for all redirection steps
     include name lookup, connect, pretransfer and transfer before final
     transaction was started. So, this is zero if no redirection took place.
--- a/docs/libcurl/libcurl-errors.3
+++ b/docs/libcurl/libcurl-errors.3
@@ -196,8 +196,7 @@ Initiating the SSL Engine failed
 The remote server denied curl to login (Added in 7.13.1)
 .SH "CURLMcode"
 This is the generic return code used by functions in the libcurl multi
-interface. Also consider \fIcurl_multi_strerror(3)\fI.
+interface. Also consider \fIcurl_multi_strerror(3)\fP.
 .IP "CURLM_CALL_MULTI_PERFORM (-1)"
 This is not really an error. It means you should call
 \fIcurl_multi_perform(3)\fP again without doing select() or similar in between.
@@ -213,9 +212,7 @@ You are doomed.
 This can only be returned if libcurl bugs. Please report it to us!
 .SH "CURLSHcode"
 The "share" interface will return a CURLSHcode to indicate when an error has
-occurred.  Also consider \fIcurl_share_strerror(3)\fI.
+occurred.  Also consider \fIcurl_share_strerror(3)\fP.
 CURLSHcode is one of the following:
 .IP "CURLSHE_OK (0)"
 All fine. Proceed as usual.
 .IP "CURLSHE_BAD_OPTION (1)"
--- a/docs/libcurl/libcurl-tutorial.3
+++ b/docs/libcurl/libcurl-tutorial.3
@@ -21,7 +21,7 @@
 .\" * $Id$
 .\" **************************************************************************
 .\"
-.TH libcurl-tutorial 3 "25 Jan 2005" "libcurl" "libcurl programming"
+.TH libcurl-tutorial 3 "9 May 2005" "libcurl" "libcurl programming"
 .SH NAME
 libcurl-tutorial \- libcurl programming tutorial
 .SH "Objective"
@@ -246,17 +246,27 @@ you intend to make another transfer. libcurl will then attempt to re-use the
 previous
 .SH "Multi-threading Issues"
-libcurl is completely thread safe, except for two issues: signals and alarm
+The first basic rule is that you must \fBnever\fP share a libcurl handle (be
-handlers. Signals are needed for a SIGPIPE handler, and the alarm() call is
+it easy or multi or whatever) between multiple threads. Only use one handle in
-used to deal with timeouts (during DNS lookup).
+one thread at a time.
 libcurl is completely thread safe, except for two issues: signals and SSL/TLS
 handlers. Signals are used timeouting name resolves (during DNS lookup) - when
 built without c-ares support and not on Windows..
 If you are accessing HTTPS or FTPS URLs in a multi-threaded manner, you are
-then of course using OpenSSL multi-threaded and it has itself a few
+then of course using OpenSSL/GnuTLS multi-threaded and those libs have their
-requirements on this. Basically, you need to provide one or two functions to
+own requirements on this issue. Basically, you need to provide one or two
-allow it to function properly. For all details, see this:
+functions to allow it to function properly. For all details, see this:
 OpenSSL
   http://www.openssl.org/docs/crypto/threads.html#DESCRIPTION
 GnuTLS
 http://www.gnu.org/software/gnutls/manual/html_node/Multi_002dthreaded-applications.html
 When using multiple threads you should set the CURLOPT_NOSIGNAL option to
 TRUE for all handles. Everything will work fine except that timeouts are not
 honored during the DNS lookup - which you can work around by building libcurl
--- a/docs/libcurl/libcurl.m4
+++ b/docs/libcurl/libcurl.m4
@@ -1,7 +1,7 @@
 # LIBCURL_CHECK_CONFIG ([DEFAULT-ACTION], [MINIMUM-VERSION],
 #                       [ACTION-IF-YES], [ACTION-IF-NO])
 # ----------------------------------------------------------
-#      David Shaw <dshaw@jabberwocky.com>   Jan-23-2005
+#      David Shaw <dshaw@jabberwocky.com>   Jun-21-2005
 #
 # Checks for libcurl.  DEFAULT-ACTION is the string yes or no to
 # specify whether to default to --with-libcurl or --without-libcurl.
@@ -32,13 +32,7 @@
 # found is after version 7.7.2, the first version that included the
 # curl-config script.  Note that it is very important for people
 # packaging binary versions of libcurl to include this script!
-# Without curl-config, we can only make educated guesses as to what
+# Without curl-config, we can only guess what protocols are available.
 # protocols are available.  Specifically, we assume that all of HTTP,
 # FTP, GOPHER, FILE, TELNET, LDAP, and DICT exist, and (if SSL exists)
 # HTTPS is present.  All of these protocols existed when libcurl was
 # first created in version 7, so this is a safe assumption.  If the
 # version is 7.11.0 or later, FTPS is assumed to be present as well.
 # FTPS existed before then, but was not yet fully standards compliant.
 AC_DEFUN([LIBCURL_CHECK_CONFIG],
 [
@@ -103,6 +97,15 @@ AC_DEFUN([LIBCURL_CHECK_CONFIG],
           fi
           if test x"$LIBCURL" = "x" ; then
              LIBCURL=`$_libcurl_config --libs`
              # This is so silly, but Apple actually has a bug in their
 	      # curl-config script.  Fixed in Tiger, but there are still
 	      # lots of Panther installs around.
              case "${host}" in
                 powerpc-apple-darwin7*)
                    LIBCURL=`echo $LIBCURL | sed -e 's|-arch i386||g'`
                 ;;
              esac
           fi
 	   # All curl-config scripts support --feature
@@ -130,8 +133,8 @@ AC_DEFUN([LIBCURL_CHECK_CONFIG],
           [
           _libcurl_save_cppflags=$CPPFLAGS
           CPPFLAGS="$CPPFLAGS $LIBCURL_CPPFLAGS"
-           _libcurl_save_ldflags=$LDFLAGS
+           _libcurl_save_libs=$LIBS
-           LDFLAGS="$LDFLAGS $LIBCURL"
+           LIBS="$LIBS $LIBCURL"
           AC_LINK_IFELSE(AC_LANG_PROGRAM([#include <curl/curl.h>],[
 /* Try and use a few common options to force a failure if we are
@@ -147,12 +150,30 @@ x=CURLOPT_VERBOSE;
 ]),libcurl_cv_lib_curl_usable=yes,libcurl_cv_lib_curl_usable=no)
           CPPFLAGS=$_libcurl_save_cppflags
-           LDFLAGS=$_libcurl_save_ldflags
+           LIBS=$_libcurl_save_libs
           unset _libcurl_save_cppflags
-           unset _libcurl_save_ldflags
+           unset _libcurl_save_libs
           ])
        if test $libcurl_cv_lib_curl_usable = yes ; then
 	   # Does curl_free() exist in this version of libcurl?
 	   # If not, fake it with free()
           _libcurl_save_cppflags=$CPPFLAGS
           CPPFLAGS="$CPPFLAGS $LIBCURL_CPPFLAGS"
           _libcurl_save_libs=$LIBS
           LIBS="$LIBS $LIBCURL"
           AC_CHECK_FUNC(curl_free,,
  	      AC_DEFINE(curl_free,free,
 		[Define curl_free() as free() if our version of curl lacks curl_free.]))
           CPPFLAGS=$_libcurl_save_cppflags
           LIBS=$_libcurl_save_libs
           unset _libcurl_save_cppflags
           unset _libcurl_save_libs
           AC_DEFINE(HAVE_LIBCURL,1,
             [Define to 1 if you have a functional curl library.])
           AC_SUBST(LIBCURL_CPPFLAGS)
--- a/include/curl/curl.h
+++ b/include/curl/curl.h
@@ -7,7 +7,7 @@
 *                            | (__| |_| |  _ <| |___
 *                             \___|\___/|_| \_\_____|
 *
- * Copyright (C) 1998 - 2004, Daniel Stenberg, <daniel@haxx.se>, et al.
+ * Copyright (C) 1998 - 2005, Daniel Stenberg, <daniel@haxx.se>, et al.
 *
 * This software is licensed as described in the file COPYING, which
 * you should have received as part of this distribution. The terms
@@ -890,6 +890,12 @@ typedef enum {
     "account" info */
  CINIT(FTP_ACCOUNT, OBJECTPOINT, 134),
  /* feed cookies into cookie engine */
  CINIT(COOKIELIST, OBJECTPOINT, 135),
  /* ignore Content-Length */
  CINIT(IGNORE_CONTENT_LENGTH, LONG, 136),
  CURLOPT_LASTENTRY /* the last unused */
 } CURLoption;
@@ -1202,11 +1208,10 @@ CURL_EXTERN void curl_slist_free_all(struct curl_slist *);
 * DESCRIPTION
 *
 * Returns the time, in seconds since 1 Jan 1970 of the time string given in
- * the first argument. The time argument in the second parameter is for cases
+ * the first argument. The time argument in the second parameter is unused
- * where the specified time is relative now, like 'two weeks' or 'tomorrow'
+ * and should be set to NULL.
 * etc.
 */
-CURL_EXTERN time_t curl_getdate(const char *p, const time_t *now);
+CURL_EXTERN time_t curl_getdate(const char *p, const time_t *unused);
 #define CURLINFO_STRING   0x100000
 #define CURLINFO_LONG     0x200000
@@ -1244,6 +1249,7 @@ typedef enum {
  CURLINFO_OS_ERRNO         = CURLINFO_LONG   + 25,
  CURLINFO_NUM_CONNECTS     = CURLINFO_LONG   + 26,
  CURLINFO_SSL_ENGINES      = CURLINFO_SLIST  + 27,
  CURLINFO_COOKIELIST       = CURLINFO_SLIST  + 28,
  /* Fill in new entries below here! */
  CURLINFO_LASTONE          = 28
@@ -1358,7 +1364,7 @@ typedef struct {
  const char *host;         /* OS/host/cpu/machine when configured */
  int features;             /* bitmask, see defines below */
  const char *ssl_version;  /* human readable string */
-  long ssl_version_num;     /* number */
+  long ssl_version_num;     /* not used anymore, always 0 */
  const char *libz_version; /* human readable string */
  /* protocols is terminated by an entry with a NULL protoname */
  const char * const *protocols;
@@ -1382,6 +1388,7 @@ typedef struct {
 #define CURL_VERSION_SPNEGO    (1<<8)  /* SPNEGO auth */
 #define CURL_VERSION_LARGEFILE (1<<9)  /* supports files bigger than 2GB */
 #define CURL_VERSION_IDN       (1<<10) /* International Domain Names support */
 #define CURL_VERSION_SSPI      (1<<11) /* SSPI is supported */
 /*
 * NAME curl_version_info()
--- a/include/curl/curlver.h
+++ b/include/curl/curlver.h
@@ -28,7 +28,7 @@
 /* This is the version number of the libcurl package from which this header
   file origins: */
-#define LIBCURL_VERSION "7.13.1-CVS"
+#define LIBCURL_VERSION "7.14.1-CVS"
 /* This is the numeric version of the libcurl version number, meant for easier
   parsing and comparions by programs. The LIBCURL_VERSION_NUM define will
@@ -44,12 +44,12 @@
   always a greater number in a more recent release. It makes comparisons with
   greater than and less than work.
 */
-#define LIBCURL_VERSION_NUM 0x070d01
+#define LIBCURL_VERSION_NUM 0x070e01
 /* The numeric version number is also available "in parts" by using these
   defines: */
 #define LIBCURL_VERSION_MAJOR 7
-#define LIBCURL_VERSION_MINOR 13
+#define LIBCURL_VERSION_MINOR 14
 #define LIBCURL_VERSION_PATCH 1
 #endif /* __CURL_CURLVER_H */
--- a/include/curl/multi.h
+++ b/include/curl/multi.h
@@ -7,7 +7,7 @@
 *                            | (__| |_| |  _ <| |___
 *                             \___|\___/|_| \_\_____|
 *
- * Copyright (C) 1998 - 2004, Daniel Stenberg, <daniel@haxx.se>, et al.
+ * Copyright (C) 1998 - 2005, Daniel Stenberg, <daniel@haxx.se>, et al.
 *
 * This software is licensed as described in the file COPYING, which
 * you should have received as part of this distribution. The terms
@@ -23,16 +23,8 @@
 * $Id$
 ***************************************************************************/
 /*
-  This is meant to be the "external" header file. Don't give away any
+  This is an "external" header file. Don't give away any internals here!
  internals here!
  This document presents a mixture of ideas from at least:
  - Daniel Stenberg
  - Steve Dekorte
  - Sterling Hughes
  - Ben Greear
  -------------------------------------------
  GOALS
  o Enable a "pull" interface. The application that uses libcurl decides where
@@ -82,6 +74,22 @@ extern "C" {
 typedef void CURLM;
 #ifdef HAVE_CURL_MULTI_SOCKET /* this is not set by anything yet */
 #ifndef curl_socket_typedef
 /* Public socket typedef */
 #ifdef WIN32
 typedef SOCKET curl_socket_t;
 #define CURL_SOCKET_BAD INVALID_SOCKET
 #else
 typedef int curl_socket_t;
 #define CURL_SOCKET_BAD -1
 #endif
 #define curl_socket_typedef
 #endif /* curl_socket_typedef */
 #endif /* HAVE_CURL_MULTI_SOCKET */
 typedef enum {
  CURLM_CALL_MULTI_PERFORM=-1, /* please call curl_multi_perform() soon */
  CURLM_OK,
@@ -113,6 +121,7 @@ typedef struct CURLMsg CURLMsg;
 * Name:    curl_multi_init()
 *
 * Desc:    inititalize multi-style curl usage
 *
 * Returns: a new CURLM handle to use in all 'curl_multi' functions.
 */
 CURL_EXTERN CURLM *curl_multi_init(void);
@@ -121,6 +130,7 @@ CURL_EXTERN CURLM *curl_multi_init(void);
 * Name:    curl_multi_add_handle()
 *
 * Desc:    add a standard curl handle to the multi stack
 *
 * Returns: CURLMcode type, general multi error code.
 */
 CURL_EXTERN CURLMcode curl_multi_add_handle(CURLM *multi_handle,
@@ -130,6 +140,7 @@ CURL_EXTERN CURLMcode curl_multi_add_handle(CURLM *multi_handle,
  * Name:    curl_multi_remove_handle()
  *
  * Desc:    removes a curl handle from the multi stack again
  *
  * Returns: CURLMcode type, general multi error code.
  */
 CURL_EXTERN CURLMcode curl_multi_remove_handle(CURLM *multi_handle,
@@ -141,6 +152,7 @@ CURL_EXTERN CURLMcode curl_multi_remove_handle(CURLM *multi_handle,
  * Desc:    Ask curl for its fd_set sets. The app can use these to select() or
  *          poll() on. We want curl_multi_perform() called as soon as one of
  *          them are ready.
  *
  * Returns: CURLMcode type, general multi error code.
  */
 CURL_EXTERN CURLMcode curl_multi_fdset(CURLM *multi_handle,
@@ -175,6 +187,7 @@ CURL_EXTERN CURLMcode curl_multi_perform(CURLM *multi_handle,
  *          touch any individual easy handles in any way. We need to define
  *          in what state those handles will be if this function is called
  *          in the middle of a transfer.
  *
  * Returns: CURLMcode type, general multi error code.
  */
 CURL_EXTERN CURLMcode curl_multi_cleanup(CURLM *multi_handle);
@@ -211,16 +224,107 @@ CURL_EXTERN CURLMsg *curl_multi_info_read(CURLM *multi_handle,
                                          int *msgs_in_queue);
 /*
- * NAME curl_multi_strerror()
+ * Name:    curl_multi_strerror()
 *
- * DESCRIPTION
+ * Desc:    The curl_multi_strerror function may be used to turn a CURLMcode
 *          value into the equivalent human readable error string.  This is
 *          useful for printing meaningful error messages.
 *
- * The curl_multi_strerror function may be used to turn a CURLMcode value
+ * Returns: A pointer to a zero-terminated error message.
 * into the equivalent human readable error string.  This is useful
 * for printing meaningful error messages.
 */
 CURL_EXTERN const char *curl_multi_strerror(CURLMcode);
 #ifdef HAVE_CURL_MULTI_SOCKET
 /*
 * Name:    curl_multi_socket() and
 *          curl_multi_socket_all()
 *
 * Desc:    An alternative version of curl_multi_perform() that allows the
 *          application to pass in one of the file descriptors that have been
 *          detected to have "action" on them and let libcurl perform. This
 *          allows libcurl to not have to scan through all possible file
 *          descriptors to check for this. The app is recommended to pass in
 *          the 'easy' argument (or set it to CURL_EASY_NONE) to make libcurl
 *          figure out the internal structure even faster and easier.  If the
 *          easy argument is set to something else than CURL_EASY_NONE, the
 *          's' (socket) argument will be ignored by libcurl.
 *
 *          It also informs the application about updates in the socket (file
 *          descriptor) status by doing none, one or multiple calls to the
 *          curl_socket_callback. It thus updates the status with changes
 *          since the previous time this function was used. If 'callback' is
 *          NULL, no callback will be called. A status change may also be a
 *          new timeout only, having the same IN/OUT status as before.
 *
 *          If a previous wait for socket action(s) timed out, you should call
 *          this function with the socket argument set to
 *          CURL_SOCKET_TIMEOUT. If you want to force libcurl to (re-)check
 *          all its internal sockets, and call the callback with status for
 *          all sockets no matter what the previous state is, you call
 *          curl_multi_socket_all() instead.
 *
 *          curl_multi_perform() is thus the equivalent of calling
 *          curl_multi_socket_all(handle, NULL, NULL);
 *
 *          IMPLEMENTATION: libcurl will need an internal hash table to map
 *          socket numbers to internal easy handles for the cases when 'easy'
 *          is set to CURL_EASY_NONE.
 *
 *          Regarding the timeout argument in the callback: it is the timeout
 *          (in milliseconds) for waiting on action on this socket (and the
 *          given time period starts when the callback is called) until you
 *          should call curl_multi_socket() with the timeout stuff mentioned
 *          above. If "actions" happens on the socket before the timeout
 *          happens, remember that the timout timer keeps ticking until told
 *          otherwise.
 *
 *          The "what" argument has one of five values:
 *
 *            0 CURL_POLL_NONE (0)   - register, not interested in readiness
 *            1 CURL_POLL_IN         - register, interested in read readiness
 *            2 CURL_POLL_OUT        - register, interested in write readiness
 *            3 CURL_POLL_INOUT      - register, interested in both
 *            4 CURL_POLL_REMOVE     - deregister
 */
 #define CURL_POLL_NONE   0
 #define CURL_POLL_IN     1
 #define CURL_POLL_OUT    2
 #define CURL_POLL_INOUT  3
 #define CURL_POLL_REMOVE 4
 #define CURL_EASY_NONE (CURL *)0
 #define CURL_EASY_TIMEOUT (CURL *)0
 #define CURL_SOCKET_TIMEOUT CURL_SOCKET_BAD
 typedef int (*curl_socket_callback)(CURL *easy,      /* easy handle */
                                    curl_socket_t s, /* socket */
                                    int what,        /* see above */
                                    long ms,         /* timeout for wait */
                                    void *userp);    /* "private" pointer */
 CURLMcode curl_multi_socket(CURLM *multi_handle,
                            curl_socket_t s,
                            CURL *easy,
                            curl_socket_callback callback,
                            void *userp); /* passed to callback */
 CURLMcode curl_multi_socket_all(CURLM *multi_handle,
                                curl_socket_callback callback,
                                void *userp); /* passed to callback */
 /*
 * Name:    curl_multi_timeout()
 *
 * Desc:    Returns the maximum number of milliseconds the app is allowed to
 *          wait before curl_multi_socket() or curl_multi_perform() must be
 *          called (to allow libcurl's timed events to take place).
 *
 * Returns: CURLM error code.
 */
 CURLMcode curl_multi_timeout(CURLM *multi_handle, long *milliseconds);
 #endif /* HAVE_CURL_MULTI_SOCKET */
 #ifdef __cplusplus
 } /* end of extern "C" */
 #endif
--- a/lib/Makefile.Watcom
+++ b/lib/Makefile.Watcom
@@ -43,7 +43,8 @@ OBJS = $(OBJ_DIR)\transfer.obj         $(OBJ_DIR)\file.obj       &
       $(OBJ_DIR)\hostip4.obj          $(OBJ_DIR)\hostthre.obj   &
       $(OBJ_DIR)\hostip6.obj          $(OBJ_DIR)\inet_ntop.obj  &
       $(OBJ_DIR)\hostsyn.obj          $(OBJ_DIR)\parsedate.obj  &
-       $(OBJ_DIR)\select.obj
+       $(OBJ_DIR)\select.obj           $(OBJ_DIR)\sslgen.obj     &
       $(OBJ_DIR)\gtls.obj
 RESOURCE = $(OBJ_DIR)\libcurl.res
@@ -355,3 +356,9 @@ $(OBJ_DIR)\parsedate.obj: parsedate.c setup.h config-win32.h ..\include\curl\cur
  ..\include\curl\multi.h ..\include\curl\curl.h
 $(OBJ_DIR)\select.obj: select.c setup.h config-win32.h select.h
 $(OBJ_DIR)\gtls.obj: gtls.c setup.h config-win32.h
 $(OBJ_DIR)\sslgen.obj: sslgen.c setup.h config-win32.h urldata.h cookie.h &
  formdata.h timeval.h http_chunks.h hostip.h hash.h llist.h sslgen.h &
  ssluse.h gtls.h sendf.h strequal.h url.h memory.h memdebug.h
--- a/lib/Makefile.am
+++ b/lib/Makefile.am
@@ -5,7 +5,7 @@
 #                            | (__| |_| |  _ <| |___
 #                             \___|\___/|_| \_\_____|
 #
-# Copyright (C) 1998 - 2004, Daniel Stenberg, <daniel@haxx.se>, et al.
+# Copyright (C) 1998 - 2005, Daniel Stenberg, <daniel@haxx.se>, et al.
 #
 # This software is licensed as described in the file COPYING, which
 # you should have received as part of this distribution. The terms
@@ -25,7 +25,7 @@ AUTOMAKE_OPTIONS = foreign nostdinc
 DSP = curllib.dsp
 EXTRA_DIST = Makefile.b32 Makefile.m32 Makefile.vc6 Makefile.riscos $(DSP)    \
- curllib.dsw config-vms.h config-win32.h config-win32ce.h config-riscos.h     \
+ curllib.dsw config-win32.h config-win32ce.h config-riscos.h     \
 config-mac.h config.h.in ca-bundle.crt README.encoding README.memoryleak     \
 README.ares README.curlx makefile.dj config.dj libcurl.framework.make	      \
 libcurl.plist libcurl.rc config-amigaos.h amigaos.c amigaos.h makefile.amiga \
--- a/lib/Makefile.inc
+++ b/lib/Makefile.inc
@@ -8,13 +8,15 @@ CSOURCES = file.c timeval.c base64.c hostip.c progress.c formdata.c	\
  content_encoding.c share.c http_digest.c md5.c http_negotiate.c	\
  http_ntlm.c inet_pton.c strtoofft.c strerror.c hostares.c hostasyn.c	\
  hostip4.c hostip6.c hostsyn.c hostthre.c inet_ntop.c parsedate.c	\
-  select.c
+  select.c gtls.c sslgen.c
 HHEADERS = arpa_telnet.h netrc.h file.h timeval.h base64.h hostip.h	\
  progress.h formdata.h cookie.h http.h sendf.h ftp.h url.h dict.h	\
  if2ip.h speedcheck.h urldata.h ldap.h ssluse.h escape.h telnet.h	\
-  getinfo.h strequal.h security.h krb4.h memdebug.h inet_ntoa_r.h	\
+  getinfo.h strequal.h krb4.h memdebug.h inet_ntoa_r.h \
  http_chunks.h strtok.h connect.h llist.h hash.h content_encoding.h	\
  share.h md5.h http_digest.h http_negotiate.h http_ntlm.h ca-bundle.h	\
  inet_pton.h strtoofft.h strerror.h inet_ntop.h curlx.h memory.h	\
-  setup.h transfer.h select.h easyif.h multiif.h parsedate.h
+  setup.h transfer.h select.h easyif.h multiif.h parsedate.h sslgen.h   \
  gtls.h
--- a/lib/Makefile.netware
+++ b/lib/Makefile.netware
@@ -13,21 +13,23 @@ NDKBASE	= c:/novell
 endif
 # Edit the path below to point to the base of your Zlib sources.
-#ZLIB_PATH = ../../zlib-1.2.1
+ifndef ZLIB_PATH
 ZLIB_PATH = ../../zlib-1.2.3
 endif
 # Edit the path below to point to the base of your OpenSSL package.
 ifndef OPENSSL_PATH
-OPENSSL_PATH = ../../openssl-0.9.7d
+OPENSSL_PATH = ../../openssl-0.9.8
 endif
 ifndef INSTDIR
-INSTDIR	= ../curl-$(LIBCURL_VERSION_STR)-bin-nw
+INSTDIR	= ..$(DS)curl-$(LIBCURL_VERSION_STR)-bin-nw
 endif
 # Edit the vars below to change NLM target settings.
 TARGET  = libcurl
 VERSION	= $(LIBCURL_VERSION)
-COPYR	= Copyright (c) 1996 - 2004, Daniel Stenberg, <daniel@haxx.se>
+COPYR	= Copyright (C) 1996 - 2005, Daniel Stenberg, <daniel@haxx.se>
 DESCR	= cURL libcurl $(LIBCURL_VERSION_STR) - http://curl.haxx.se
 MTSAFE	= YES
 STACK	= 64000
@@ -103,8 +105,6 @@ else
 endif
 endif
 LDLIBS	=
 NDK_ROOT = $(NDKBASE)/ndk
 SDK_CLIB = $(NDK_ROOT)/nwsdk
 SDK_LIBC = $(NDK_ROOT)/libc
@@ -114,21 +114,26 @@ INCLUDES = -I. -I../include
 ifdef WITH_ARES
 	INCLUDES += -I../ares
-	LIBCARES = ../ares/libcares.lib
+	LDLIBS = ../ares/libcares.lib
 endif
-ifdef ZLIB_PATH
+ifdef WITH_SSL
 	INCLUDES += -I$(ZLIB_PATH)
 	IMPORTS = @$(ZLIB_PATH)/nw/zlib.imp
 	MODULES = libz.nlm
 endif
 ifdef SSL
 	INCLUDES += -I$(OPENSSL_PATH)/outinc_nw_libc -I$(OPENSSL_PATH)/outinc_nw_libc/openssl
-	LIBSSL = $(OPENSSL_PATH)/out_nw_libc/crypto.lib $(OPENSSL_PATH)/out_nw_libc/ssl.lib
+	LDLIBS += $(OPENSSL_PATH)/out_nw_libc/crypto.lib $(OPENSSL_PATH)/out_nw_libc/ssl.lib
 	IMPORTS += GetProcessSwitchCount RunningProcess
 endif
 ifdef WITH_ZLIB
 	INCLUDES += -I$(ZLIB_PATH)
 ifdef LINK_STATIC
 	LDLIBS += $(ZLIB_PATH)/nw/libz.lib
 else
 	IMPORTS += @$(ZLIB_PATH)/nw/libz.imp
 	MODULES += libz.nlm
 endif
 endif
 ifeq ($(LIBARCH),LIBC)
 	INCLUDES += -I$(SDK_LIBC)/include -I$(SDK_LIBC)/include/nks
-	INCLUDES += -I$(SDK_LIBC)/include/winsock
+	# INCLUDES += -I$(SDK_LIBC)/include/winsock
 	# INCLUDES += -I$(SDK_LDAP)/libc/inc
 	CFLAGS += -D_POSIX_SOURCE
 	# CFLAGS += -D__ANSIC__
@@ -152,13 +157,16 @@ endif
 ifeq ($(findstring linux,$(OSTYPE)),linux)
 DL	= '
 DS	= /
 #-include $(NDKBASE)/nlmconv/ncpfs.inc
 else
 DS	= \\
 endif
 # Makefile.inc provides the CSOURCES and HHEADERS defines
 include Makefile.inc
-OBJS	:= $(patsubst %.c,$(OBJDIR)/%.o,$(strip $(CSOURCES))) $(LIBCARES) $(LIBSSL)
+OBJS	:= $(patsubst %.c,$(OBJDIR)/%.o,$(strip $(CSOURCES))) $(LDLIBS)
 OBJL	= $(OBJS) $(OBJDIR)/nwlib.o
@@ -189,6 +197,9 @@ install: $(INSTDIR) all
 	@$(CP) ../COPYING $(INSTDIR)
 	@$(CP) ../README $(INSTDIR)
 	@$(CP) ../RELEASE-NOTES $(INSTDIR)
 ifdef WITH_SSL
 	@$(CP) ca-bundle.crt $(INSTDIR)
 endif
 clean:
 	-$(RM) config.h ca-bundle.h
@@ -274,11 +285,8 @@ ifdef IMPORTS
 	@echo $(DL)import $(IMPORTS)$(DL) >> $@
 endif
 ifeq ($(LD),nlmconv)
-ifdef WITH_ARES
+ifdef LDLIBS
-	@echo $(DL)input $(LIBCARES)$(DL) >> $@
+	@echo $(DL)input $(LDLIBS)$(DL) >> $@
 endif
 ifdef SSL
 	@echo $(DL)input $(LIBSSL)$(DL) >> $@
 endif
 	@echo $(DL)input $(OBJL)$(DL) >> $@
 	@echo $(DL)input $(PRELUDE)$(DL) >> $@
@@ -336,6 +344,21 @@ config.h: Makefile.netware
 	@echo $(DL)#define SIZEOF_CURL_OFF_T 4$(DL) >> $@
 	@echo $(DL)#define STDC_HEADERS 1$(DL) >> $@
 	@echo $(DL)#define TIME_WITH_SYS_TIME 1$(DL) >> $@
 	@echo $(DL)#define HAVE_AF_INET6 1$(DL) >> $@
 	@echo $(DL)#define HAVE_PF_INET6 1$(DL) >> $@
 	@echo $(DL)#define HAVE_STRUCT_IN6_ADDR 1$(DL) >> $@
 	@echo $(DL)#define HAVE_STRUCT_SOCKADDR_IN6 1$(DL) >> $@
 	@echo $(DL)#define HAVE_STRUCT_ADDRINFO 1$(DL) >> $@
 	@echo $(DL)#define SIZEOF_STRUCT_IN6_ADDR 16$(DL) >> $@
 	@echo $(DL)#define SIZEOF_STRUCT_IN_ADDR 4$(DL) >> $@
 ifdef DISABLE_LDAP
 	@echo $(DL)#define CURL_DISABLE_LDAP 1$(DL) >> $@
 else
 	@echo $(DL)#define DL_LDAP_FILE "lldapsdk.nlm"$(DL) >> $@
 endif
 ifdef ENABLE_IPV6
 	@echo $(DL)#define ENABLE_IPV6 1$(DL) >> $@
 endif
 ifdef NW_WINSOCK
 	@echo $(DL)#define HAVE_CLOSESOCKET 1$(DL) >> $@
 else
@@ -347,11 +370,11 @@ endif
 ifdef WITH_ARES
 	@echo $(DL)#define USE_ARES 1$(DL) >> $@
 endif
-ifdef ZLIB_PATH
+ifdef WITH_ZLIB
 	@echo $(DL)#define HAVE_ZLIB_H 1$(DL) >> $@
 	@echo $(DL)#define HAVE_LIBZ 1$(DL) >> $@
 endif
-ifdef SSL
+ifdef WITH_SSL
 	@echo $(DL)#define USE_SSLEAY 1$(DL) >> $@
 	@echo $(DL)#define USE_OPENSSL 1$(DL) >> $@
 	@echo $(DL)#define HAVE_OPENSSL_X509_H 1$(DL) >> $@
--- a/lib/Makefile.riscos
+++ b/lib/Makefile.riscos
@@ -12,7 +12,7 @@ objs =	o.base64 o.connect o.cookie o.dict \
 	o.memdebug o.mprintf o.netrc o.parsedate o.progress \
 	o.security o.select o.sendf o.speedcheck o.ssluse \
 	o.strequal o.strtok o.telnet o.timeval \
-	o.transfer o.url o.version o.strtoofft
+	o.transfer o.url o.version o.strtoofft o.sslgen o.gtls
 # Compile options:
 linkopts	= -o libcurl
@@ -119,6 +119,12 @@ o.sendf:	c.sendf
 o.speedcheck:	c.speedcheck
 		gcc $(compileropts) -c -o speedcheck.o c.speedcheck
 o.gtls:	c.gtls
 		gcc $(compileropts) -c -o gtls.o c.gtls
 o.sslgen:	c.sslgen
 		gcc $(compileropts) -c -o sslgen.o c.sslgen
 o.ssluse:	c.ssluse
 		gcc $(compileropts) -c -o ssluse.o c.ssluse
--- a/lib/Makefile.vc6
+++ b/lib/Makefile.vc6
@@ -42,6 +42,24 @@ OPENSSL_PATH   = ../../openssl-0.9.7e
 ZLIB_PATH  = ../../zlib-1.2.1
 !ENDIF
 # USE_WINDOWS_SSPI uses windows libraries to allow NTLM authentication
 # without an openssl installation and offers the ability to authenticate
 # using the "current logged in user".  It does however require that the
 # Windows SDK be installed.
 #
 # If, for some reason the Windows SDK is installed but not installed
 # in the default location, you can specify WINDOWS_SDK_PATH.
 # It can be downloaded from:
 # http://www.microsoft.com/msdownload/platformsdk/sdkupdate/
 # USE_WINDOWS_SSPI = 1
 !IFDEF WINDOWS_SSPI
 !IFNDEF WINDOWS_SDK_PATH
 WINDOWS_SDK_PATH = "C:\Program Files\Microsoft SDK"
 !ENDIF
 !ENDIF
 # Use the high resolution time by default.  Comment this out to use low
 # resolution time and not require winmm.lib
 USEMM_LIBS = YES
@@ -54,6 +72,7 @@ CCDEBUG    = cl.exe /MDd /Od /Gm /Zi /D_DEBUG /GZ
 CFLAGSSSL  = /DUSE_SSLEAY /I "$(OPENSSL_PATH)/inc32" /I "$(OPENSSL_PATH)/inc32/openssl"
 CFLAGSZLIB = /DHAVE_ZLIB_H /DHAVE_ZLIB /DHAVE_LIBZ /I "$(ZLIB_PATH)"
 CFLAGS     = /I. /I../include /nologo /W3 /GX /DWIN32 /YX /FD /c /DBUILDING_LIBCURL
 CFLAGSLIB  = /DCURL_STATICLIB
 LNKDLL     = link.exe /DLL
 LNKLIB     = link.exe /lib
 LFLAGS     = /nologo
@@ -69,6 +88,11 @@ CFLAGS     = $(CFLAGS) /DWITHOUT_MM_LIB
 #  RSAglue.lib was formerly needed in the SSLLIBS
 CFGSET     = FALSE
 !IFDEF WINDOWS_SSPI
 CFLAGS = $(CFLAGS) /DUSE_WINDOWS_SSPI /I$(WINDOWS_SDK_PATH)\include
 LFLAGS = $(LFLAGS) $(WINDOWS_SDK_PATH)\lib\secur32.lib
 !ENDIF
 ######################
 # release
@@ -76,7 +100,7 @@ CFGSET     = FALSE
 TARGET = $(LIB_NAME).lib
 DIROBJ = $(CFG)
 LNK    = $(LNKLIB) /out:$(DIROBJ)\$(TARGET)
-CC     = $(CCNODBG)
+CC     = $(CCNODBG) $(CFLAGSLIB)
 CFGSET = TRUE
 !ENDIF
@@ -88,7 +112,7 @@ TARGET   = $(LIB_NAME).lib
 DIROBJ   = $(CFG)
 LFLAGSZLIB = "/LIBPATH:$(ZLIB_PATH)"
 LNK      = $(LNKLIB) $(ZLIBLIBS) $(LFLAGSZLIB) /out:$(DIROBJ)\$(TARGET)
-CC       = $(CCNODBG) $(CFLAGSZLIB)
+CC       = $(CCNODBG) $(CFLAGSZLIB) $(CFLAGSLIB)
 CFGSET   = TRUE
 !ENDIF
@@ -112,7 +136,7 @@ TARGET   = $(LIB_NAME).lib
 DIROBJ   = $(CFG)
 LFLAGSSSL = "/LIBPATH:$(OPENSSL_PATH)\out32"
 LNK      = $(LNKLIB) $(LFLAGSSSL) /out:$(DIROBJ)\$(TARGET)
-CC       = $(CCNODBG) $(CFLAGSSSL)
+CC       = $(CCNODBG) $(CFLAGSSSL) $(CFLAGSLIB)
 CFGSET   = TRUE
 !ENDIF
@@ -120,10 +144,10 @@ CFGSET   = TRUE
 # release-ssl-dll
 !IF "$(CFG)" == "release-ssl-dll"
-TARGET   = $(LIB_NAME).lib
+TARGET   = $(LIB_NAME).dll
 DIROBJ   = $(CFG)
 LFLAGSSSL = "/LIBPATH:$(OPENSSL_PATH)\out32dll"
-LNK      = $(LNKLIB) $(WINLIBS) $(SSLLIBS) $(LFLAGSSSL) /out:$(DIROBJ)\$(TARGET)
+LNK      = $(LNKDLL) $(WINLIBS) /out:$(DIROBJ)\$(TARGET) $(SSLLIBS) $(LFLAGSSSL) /IMPLIB:$(DIROBJ)\$(IMPLIB_NAME).lib
 CC       = $(CCNODBG) $(CFLAGSSSL)
 CFGSET   = TRUE
 !ENDIF
@@ -137,7 +161,7 @@ DIROBJ   = $(CFG)
 LFLAGSSSL = "/LIBPATH:$(OPENSSL_PATH)\out32"
 LFLAGSZLIB = "/LIBPATH:$(ZLIB_PATH)"
 LNK      = $(LNKLIB) $(LFLAGSSSL) $(LFLAGSZLIB) /out:$(DIROBJ)\$(TARGET)
-CC       = $(CCNODBG) $(CFLAGSSSL) $(CFLAGSZLIB)
+CC       = $(CCNODBG) $(CFLAGSSSL) $(CFLAGSZLIB) $(CFLAGSLIB)
 CFGSET   = TRUE
 !ENDIF
@@ -162,7 +186,7 @@ TARGET   = $(LIB_NAME).lib
 DIROBJ   = $(CFG)
 LFLAGSZLIB = "/LIBPATH:$(ZLIB_PATH)"
 LNK      = $(LNKLIB) $(WINLIBS) $(ZLIBLIBSDLL) $(LFLAGSZLIB) /out:$(DIROBJ)\$(TARGET)
-CC       = $(CCNODBG) $(CFLAGSZLIB)
+CC       = $(CCNODBG) $(CFLAGSZLIB) $(CFLAGSLIB)
 CFGSET   = TRUE
 !ENDIF
@@ -175,7 +199,7 @@ DIROBJ   = $(CFG)
 LFLAGSZLIB = "/LIBPATH:$(ZLIB_PATH)"
 LFLAGSSSL = "/LIBPATH:$(OPENSSL_PATH)\out32dll"
 LNK      = $(LNKLIB) $(WINLIBS) $(SSLLIBS) $(ZLIBLIBSDLL) $(LFLAGSSSL) $(LFLAGSZLIB) /out:$(DIROBJ)\$(TARGET)
-CC       = $(CCNODBG) $(CFLAGSSSL) $(CFLAGSZLIB)
+CC       = $(CCNODBG) $(CFLAGSSSL) $(CFLAGSZLIB) $(CFLAGSLIB)
 CFGSET   = TRUE
 !ENDIF
@@ -213,7 +237,7 @@ RESOURCE = $(DIROBJ)\libcurl.res
 TARGET = $(LIB_NAME_DEBUG).lib
 DIROBJ = $(CFG)
 LNK    = $(LNKLIB) /out:$(DIROBJ)\$(TARGET)
-CC     = $(CCDEBUG)
+CC     = $(CCDEBUG) $(CFLAGSLIB)
 CFGSET = TRUE
 !ENDIF
@@ -225,7 +249,7 @@ TARGET   = $(LIB_NAME_DEBUG).lib
 DIROBJ   = $(CFG)
 LFLAGSSSL = "/LIBPATH:$(OPENSSL_PATH)\out32"
 LNK      = $(LNKLIB) $(SSLLIBS) $(LFLAGSSSL) /out:$(DIROBJ)\$(TARGET)
-CC       = $(CCDEBUG) $(CFLAGSSSL)
+CC       = $(CCDEBUG) $(CFLAGSSSL) $(CFLAGSLIB)
 CFGSET   = TRUE
 !ENDIF
@@ -237,7 +261,7 @@ TARGET   = $(LIB_NAME_DEBUG).lib
 DIROBJ   = $(CFG)
 LFLAGSZLIB = "/LIBPATH:$(ZLIB_PATH)"
 LNK      = $(LNKLIB) $(ZLIBLIBS) $(LFLAGSZLIB) /out:$(DIROBJ)\$(TARGET)
-CC       = $(CCDEBUG) $(CFLAGSZLIB)
+CC       = $(CCDEBUG) $(CFLAGSZLIB) $(CFLAGSLIB)
 CFGSET   = TRUE
 !ENDIF
@@ -249,7 +273,7 @@ TARGET   = $(LIB_NAME_DEBUG).lib
 DIROBJ   = $(CFG)
 LFLAGSSSL = /LIBPATH:$(OPENSSL_PATH)\out32dll
 LNK      = $(LNKLIB) $(WINLIBS) $(SSLLIBS) $(LFLAGSSSL) /out:$(DIROBJ)\$(TARGET)
-CC       = $(CCDEBUG) $(CFLAGSSSL)
+CC       = $(CCDEBUG) $(CFLAGSSSL) $(CFLAGSLIB)
 CFGSET   = TRUE
 !ENDIF
@@ -262,7 +286,7 @@ DIROBJ   = $(CFG)
 LFLAGSZLIB = "/LIBPATH:$(ZLIB_PATH)"
 LFLAGSSSL = "/LIBPATH:$(OPENSSL_PATH)\out32"
 LNK      = $(LNKLIB) $(SSLLIBS) $(ZLIBLIBS) $(LFLAGSSSL) $(LFLAGSZLIB) /out:$(DIROBJ)\$(TARGET)
-CC       = $(CCDEBUG) $(CFLAGSSSL) $(CFLAGSZLIB)
+CC       = $(CCDEBUG) $(CFLAGSSSL) $(CFLAGSZLIB) $(CFLAGSLIB)
 CFGSET   = TRUE
 !ENDIF
@@ -274,7 +298,7 @@ TARGET   = $(LIB_NAME_DEBUG).lib
 DIROBJ   = $(CFG)
 LFLAGSZLIB = "/LIBPATH:$(ZLIB_PATH)"
 LNK      = $(LNKLIB) $(WINLIBS) $(ZLIBLIBSDLL) $(LFLAGSZLIB) /out:$(DIROBJ)\$(TARGET)
-CC       = $(CCDEBUG) $(CFLAGSZLIB)
+CC       = $(CCDEBUG) $(CFLAGSZLIB) $(CFLAGSLIB)
 CFGSET   = TRUE
 !ENDIF
@@ -287,7 +311,7 @@ DIROBJ   = $(CFG)
 LFLAGSZLIB = "/LIBPATH:$(ZLIB_PATH)"
 LFLAGSSSL = "/LIBPATH:$(OPENSSL_PATH)\out32dll"
 LNK      = $(LNKLIB) $(WINLIBS) $(SSLLIBS) $(ZLIBLIBSDLL) $(LFLAGSSSL) $(LFLAGSZLIB) /out:$(DIROBJ)\$(TARGET)
-CC       = $(CCDEBUG) $(CFLAGSSSL) $(CFLAGSZLIB)
+CC       = $(CCDEBUG) $(CFLAGSSSL) $(CFLAGSZLIB) $(CFLAGSLIB)
 CFGSET   = TRUE
 !ENDIF
@@ -297,7 +321,7 @@ CFGSET   = TRUE
 !IF "$(CFG)" == "debug-dll"
 TARGET = $(LIB_NAME_DEBUG).dll
 DIROBJ = $(CFG)
-LNK    = $(LNKDLL) $(WINLIBS) /DEBUG /out:$(DIROBJ)\$(TARGET) /IMPLIB:$(DIROBJ)\$(LIB_NAME_DEBUG).lib /PDB:$(DIROBJ)\$(IMPLIB_NAME_DEBUG).pdb
+LNK    = $(LNKDLL) $(WINLIBS) /DEBUG /out:$(DIROBJ)\$(TARGET) /IMPLIB:$(DIROBJ)\$(IMPLIB_NAME_DEBUG).lib /PDB:$(DIROBJ)\$(IMPLIB_NAME_DEBUG).pdb
 CC     = $(CCDEBUG)
 CFGSET = TRUE
 RESOURCE = $(DIROBJ)\libcurl.res
@@ -310,7 +334,7 @@ RESOURCE = $(DIROBJ)\libcurl.res
 TARGET   = $(LIB_NAME_DEBUG).dll
 DIROBJ   = $(CFG)
 LFLAGSSSL = "/LIBPATH:$(OPENSSL_PATH)\out32dll"
-LNK      = $(LNKDLL) $(WINLIBS) $(SSLLIBS) $(LFLAGSSSL) /DEBUG /out:$(DIROBJ)\$(TARGET) /IMPLIB:$(DIROBJ)\$(LIB_NAME_DEBUG).lib /PDB:$(DIROBJ)\$(IMPLIB_NAME_DEBUG).pdb
+LNK      = $(LNKDLL) $(WINLIBS) $(SSLLIBS) $(LFLAGSSSL) /DEBUG /out:$(DIROBJ)\$(TARGET) /IMPLIB:$(DIROBJ)\$(IMPLIB_NAME_DEBUG).lib /PDB:$(DIROBJ)\$(IMPLIB_NAME_DEBUG).pdb
 CC       = $(CCDEBUG) $(CFLAGSSSL)
 CFGSET   = TRUE
 RESOURCE = $(DIROBJ)\libcurl.res
@@ -323,7 +347,7 @@ RESOURCE = $(DIROBJ)\libcurl.res
 TARGET   = $(LIB_NAME_DEBUG).dll
 DIROBJ   = $(CFG)
 LFLAGSZLIB = "/LIBPATH:$(ZLIB_PATH)"
-LNK      = $(LNKDLL) $(WINLIBS) $(ZLIBLIBSDLL) $(LFLAGSZLIB) /DEBUG /out:$(DIROBJ)\$(TARGET) /IMPLIB:$(DIROBJ)\$(LIB_NAME_DEBUG).lib /PDB:$(DIROBJ)\$(IMPLIB_NAME_DEBUG).pdb
+LNK      = $(LNKDLL) $(WINLIBS) $(ZLIBLIBSDLL) $(LFLAGSZLIB) /DEBUG /out:$(DIROBJ)\$(TARGET) /IMPLIB:$(DIROBJ)\$(IMPLIB_NAME_DEBUG).lib /PDB:$(DIROBJ)\$(IMPLIB_NAME_DEBUG).pdb
 CC       = $(CCDEBUG) $(CFLAGSZLIB)
 CFGSET   = TRUE
 RESOURCE = $(DIROBJ)\libcurl.res
@@ -337,7 +361,7 @@ TARGET   = $(LIB_NAME_DEBUG).dll
 DIROBJ   = $(CFG)
 LFLAGSZLIB = "/LIBPATH:$(ZLIB_PATH)"
 LFLAGSSSL = "/LIBPATH:$(OPENSSL_PATH)\out32dll"
-LNK      = $(LNKDLL) $(WINLIBS) $(SSLLIBS) $(ZLIBLIBSDLL) $(LFLAGSSSL) $(LFLAGSZLIB) /DEBUG /out:$(DIROBJ)\$(TARGET) /IMPLIB:$(DIROBJ)\$(LIB_NAME_DEBUG).lib /PDB:$(DIROBJ)\$(IMPLIB_NAME_DEBUG).pdb
+LNK      = $(LNKDLL) $(WINLIBS) $(SSLLIBS) $(ZLIBLIBSDLL) $(LFLAGSSSL) $(LFLAGSZLIB) /DEBUG /out:$(DIROBJ)\$(TARGET) /IMPLIB:$(DIROBJ)\$(IMPLIB_NAME_DEBUG).lib /PDB:$(DIROBJ)\$(IMPLIB_NAME_DEBUG).pdb
 CC       = $(CCDEBUG) $(CFLAGSSSL) $(CFLAGSZLIB)
 CFGSET   = TRUE
 RESOURCE = $(DIROBJ)\libcurl.res
@@ -405,6 +429,7 @@ X_OBJS= \
 	$(DIROBJ)\telnet.obj \
 	$(DIROBJ)\parsedate.obj \
 	$(DIROBJ)\getenv.obj \
 	$(DIROBJ)\gtls.obj \
 	$(DIROBJ)\inet_pton.obj \
 	$(DIROBJ)\hostip.obj \
 	$(DIROBJ)\hostasyn.obj \
@@ -420,6 +445,7 @@ X_OBJS= \
 	$(DIROBJ)\progress.obj \
 	$(DIROBJ)\sendf.obj \
 	$(DIROBJ)\speedcheck.obj \
 	$(DIROBJ)\sslgen.obj \
 	$(DIROBJ)\ssluse.obj \
 	$(DIROBJ)\timeval.obj \
 	$(DIROBJ)\url.obj \
@@ -454,7 +480,7 @@ $(TARGET): $(X_OBJS)
 	-xcopy $(DIROBJ)\$(LIB_NAME_DEBUG).dll . /y
 	-xcopy $(DIROBJ)\$(LIB_NAME_DEBUG).lib . /y
 	-xcopy $(DIROBJ)\$(IMPLIB_NAME).lib    . /y
-	-xcopy $(DIROBJ)\$(IMPLIB_NAME).lib    . /y
+	-xcopy $(DIROBJ)\$(IMPLIB_NAME_DEBUG).lib . /y
 	-xcopy $(DIROBJ)\*.exp                 . /y
 	-xcopy $(DIROBJ)\*.pdb                 . /y
--- a/lib/amigaos.c
+++ b/lib/amigaos.c
@@ -22,16 +22,24 @@
 ***************************************************************************/
 #include "amigaos.h"
-#include <stdio.h> /* for stderr */
+#include <amitcp/socketbasetags.h>
 struct Library *SocketBase = NULL;
 extern int errno, h_errno;
 #ifdef __libnix__
 #include <stabs.h>
 void __request(const char *msg);
 #else
 # define __request( msg )	Printf( msg "\n\a")
 #endif
 void amiga_cleanup()
 {
-  if(SocketBase)
+	if(SocketBase) {
 		CloseLibrary(SocketBase);
 		SocketBase = NULL;
 	}
 }
 BOOL amiga_init()
@@ -40,10 +48,27 @@ BOOL amiga_init()
 		SocketBase = OpenLibrary("bsdsocket.library", 4);
 	if(!SocketBase) {
-    fprintf(stderr, "No TCP/IP Stack running!\n\a");
+		__request("No TCP/IP Stack running!");
 		return FALSE;
 	}
 	if(SocketBaseTags(
 		SBTM_SETVAL(SBTC_ERRNOPTR(sizeof(errno))), (ULONG) &errno,
 //		SBTM_SETVAL(SBTC_HERRNOLONGPTR),	   (ULONG) &h_errno,
 		SBTM_SETVAL(SBTC_LOGTAGPTR),		   (ULONG) "cURL",
 	TAG_DONE)) {
 		__request("SocketBaseTags ERROR");
 		return FALSE;
 	}
 #ifndef __libnix__
 	atexit(amiga_cleanup);
 #endif
 	return TRUE;
 }
 #ifdef __libnix__
 ADD2EXIT(amiga_cleanup,-50);
 #endif
--- a/lib/amigaos.h
+++ b/lib/amigaos.h
@@ -32,13 +32,19 @@
 #include <proto/exec.h>
 #include <proto/dos.h>
-#include <bsdsocket.h>
+#include <sys/socket.h>
 #include "config-amigaos.h"
-#define select(args...) WaitSelect( args, NULL)
+#ifndef select
-#define inet_ntoa(x)    Inet_NtoA( x ## .s_addr)
+# define select(args...) WaitSelect( args, NULL)
-#define ioctl(a,b,c,d)  IoctlSocket( (LONG)a, (ULONG)b, (char*)c)
+#endif
 #ifndef inet_ntoa
 # define inet_ntoa(x)    Inet_NtoA( x ## .s_addr)
 #endif
 #ifndef ioctl
 # define ioctl(a,b,c,d)  IoctlSocket( (LONG)a, (ULONG)b, (char*)c)
 #endif
 #define _AMIGASF        1
 extern void amiga_cleanup();
--- a/lib/base64.c
+++ b/lib/base64.c
@@ -5,7 +5,7 @@
 *                            | (__| |_| |  _ <| |___
 *                             \___|\___/|_| \_\_____|
 *
- * Copyright (C) 1998 - 2004, Daniel Stenberg, <daniel@haxx.se>, et al.
+ * Copyright (C) 1998 - 2005, Daniel Stenberg, <daniel@haxx.se>, et al.
 *
 * This software is licensed as described in the file COPYING, which
 * you should have received as part of this distribution. The terms
--- a/lib/base64.h
+++ b/lib/base64.h
@@ -7,7 +7,7 @@
 *                            | (__| |_| |  _ <| |___
 *                             \___|\___/|_| \_\_____|
 *
- * Copyright (C) 1998 - 2004, Daniel Stenberg, <daniel@haxx.se>, et al.
+ * Copyright (C) 1998 - 2005, Daniel Stenberg, <daniel@haxx.se>, et al.
 *
 * This software is licensed as described in the file COPYING, which
 * you should have received as part of this distribution. The terms
--- a/lib/config-amigaos.h
+++ b/lib/config-amigaos.h
@@ -54,9 +54,12 @@
 #define HAVE_UTIME_H 1
 #define HAVE_WRITABLE_ARGV 1
 #define HAVE_ZLIB_H 1
 #define HAVE_SYS_IOCTL_H 1
 #define USE_OPENSSL 1
 #define USE_SSLEAY 1
 #define CURL_DISABLE_LDAP 1
 #define OS "AmigaOS"
@@ -78,7 +81,9 @@
 #define TIME_WITH_SYS_TIME 1
 #define in_addr_t int
-#define socklen_t int
+#ifndef socklen_t
 # define socklen_t int
 #endif
 #ifndef O_RDONLY
 # define O_RDONLY 0x0000
--- a/lib/config-mac.h
+++ b/lib/config-mac.h
@@ -36,6 +36,8 @@
 #       define USE_OPENSSL      1
 #endif
 #define CURL_DISABLE_LDAP       1
 #define HAVE_RAND_STATUS        1
 #define HAVE_RAND_EGD           1
--- a/lib/config-riscos.h
+++ b/lib/config-riscos.h
@@ -388,3 +388,6 @@
 #define HAVE_FIONBIO
 /* to disable LDAP */
 #define CURL_DISABLE_LDAP
--- a/lib/config-vms.h
+++ b/lib/config-vms.h
@@ -1,385 +0,0 @@
 /* Define if on AIX 3.
   System headers sometimes define this.
   We just want to avoid a redefinition error message.  */
 #ifndef _ALL_SOURCE
 #undef _ALL_SOURCE
 #endif
 /* Define to empty if the keyword does not work.  */
 #undef const
 /* Define as the return type of signal handlers (int or void).  */
 #undef RETSIGTYPE
 /* Define to `unsigned' if <sys/types.h> doesn't define.  */
 #undef size_t
 /* Define if you have the ANSI C header files.  */
 #define STDC_HEADERS 1
 /* Define if you can safely include both <sys/time.h> and <time.h>.  */
 #define TIME_WITH_SYS_TIME 1
 /* Define cpu-machine-OS */
 #define OS "ALPHA-COMPAQ-VMS"
 /* Define if you have the gethostbyaddr_r() function with 5 arguments */
 #undef HAVE_GETHOSTBYADDR_R_5
 /* Define if you have the gethostbyaddr_r() function with 7 arguments */
 #undef HAVE_GETHOSTBYADDR_R_7
 /* Define if you have the gethostbyaddr_r() function with 8 arguments */
 #undef HAVE_GETHOSTBYADDR_R_8
 /* Define if you have the gethostbyname_r() function with 3 arguments */
 #undef HAVE_GETHOSTBYNAME_R_3
 /* Define if you have the gethostbyname_r() function with 5 arguments */
 #undef HAVE_GETHOSTBYNAME_R_5
 /* Define if you have the gethostbyname_r() function with 6 arguments */
 #undef HAVE_GETHOSTBYNAME_R_6
 /* Define if you have the inet_ntoa_r function declared. */
 #undef HAVE_INET_NTOA_R_DECL
 /* Define if you need the _REENTRANT define for some functions */
 #undef NEED_REENTRANT
 /* Define if you have the Kerberos4 libraries (including -ldes) */
 #undef HAVE_KRB4
 /* Define this to 'int' if ssize_t is not an available typedefed type */
 #undef ssize_t
 /* Define this to 'int' if socklen_t is not an available typedefed type */
 #define socklen_t size_t
 /* Define this as a suitable file to read random data from */
 #undef RANDOM_FILE
 /* Define this to your Entropy Gathering Daemon socket pathname */
 #undef EGD_SOCKET
 /* The number of bytes in a long double.  */
 #define SIZEOF_LONG_DOUBLE 8
 /* The number of bytes in a long long.  */
 #define SIZEOF_LONG_LONG 8
 /* Define if you have the RAND_egd function.  */
 #undef HAVE_RAND_EGD
 /* Define if you have the RAND_screen function.  */
 #undef HAVE_RAND_SCREEN
 /* Define if you have the RAND_status function.  */
 #undef HAVE_RAND_STATUS
 /* Define if you have the closesocket function.  */
 #undef HAVE_CLOSESOCKET
 /* Define if you have the geteuid function.  */
 #define HAVE_GETEUID 1
 /* Define if you have the gethostbyaddr function.  */
 #define HAVE_GETHOSTBYADDR 1
 /* Define if you have the gethostbyaddr_r function.  */
 #undef HAVE_GETHOSTBYADDR_R
 /* Define if you have the gethostbyname_r function.  */
 #undef HAVE_GETHOSTBYNAME_R
 /* Define if you have the gethostname function.  */
 #define HAVE_GETHOSTNAME 1
 /* Define if you have the getpass_r function.  */
 #undef HAVE_GETPASS_R
 /* Define if you have the getpwuid function.  */
 #define HAVE_GETPWUID 1
 /* Define if you have the getservbyname function.  */
 #define HAVE_GETSERVBYNAME 1
 /* Define if you have the gettimeofday function.  */
 #define HAVE_GETTIMEOFDAY 1
 /* Define if you have the inet_addr function.  */
 #define HAVE_INET_ADDR 1
 /* Define if you have the inet_ntoa function.  */
 #define HAVE_INET_NTOA 1
 /* Define if you have the inet_ntoa_r function.  */
 #undef HAVE_INET_NTOA_R
 /* Define if you have the krb_get_our_ip_for_realm function.  */
 #undef HAVE_KRB_GET_OUR_IP_FOR_REALM
 /* Define if you have the localtime_r function.  */
 #undef HAVE_LOCALTIME_R
 /* Define if you have the perror function.  */
 #define HAVE_PERROR 1
 /* Define if you have the select function.  */
 #define HAVE_SELECT 1
 /* Define if you have the setvbuf function.  */
 #undef HAVE_SETVBUF
 /* Define if you have the sigaction function.  */
 #define HAVE_SIGACTION 1
 /* Define if you have the signal function.  */
 #define HAVE_SIGNAL 1
 /* Define if you have the socket function.  */
 #define HAVE_SOCKET 1
 /* Define if you have the strcasecmp function.  */
 #define HAVE_STRCASECMP 1
 /* Define if you have the strcmpi function.  */
 #define HAVE_STRCMPI 1
 /* Define if you have the strdup function.  */
 #define HAVE_STRDUP 1
 /* Define if you have the strftime function.  */
 #define HAVE_STRFTIME 1
 /* Define if you have the stricmp function.  */
 #define HAVE_STRICMP 1
 /* Define if you have the strlcat function.  */
 #undef HAVE_STRLCAT
 /* Define if you have the strlcpy function.  */
 #undef HAVE_STRLCPY
 /* Define if you have the strstr function.  */
 #define  HAVE_STRSTR 1
 /* Define if you have the tcgetattr function.  */
 #undef HAVE_TCGETATTR
 /* Define if you have the tcsetattr function.  */
 #undef HAVE_TCSETATTR
 /* Define if you have the uname function.  */
 #define HAVE_UNAME 1
 /* Define if you have the <alloca.h> header file.  */
 #undef HAVE_ALLOCA_H
 /* Define if you have the <arpa/inet.h> header file.  */
 #undef HAVE_ARPA_INET_H
 /* Define if you have the <crypto.h> header file.  */
 #undef HAVE_CRYPTO_H
 /* Define if you have the <des.h> header file.  */
 #undef HAVE_DES_H
 /* Define if you have the <dlfcn.h> header file.  */
 #undef HAVE_DLFCN_H
 /* Define if you have the <err.h> header file.  */
 #define HAVE_ERR_H 1
 /* Define if you have the <fcntl.h> header file.  */
 #define HAVE_FCNTL_H 1
 /* Define if you have the <getopt.h> header file.  */
 #define HAVE_GETOPT_H 1
 /* Define if you have the <io.h> header file.  */
 #undef HAVE_IO_H
 /* Define if you have the <krb.h> header file.  */
 #undef HAVE_KRB_H
 /* Define if you have the <malloc.h> header file.  */
 #define HAVE_MALLOC_H 1
 /* Define if you have the <net/if.h> header file.  */
 #define HAVE_NET_IF_H 1
 /* Define if you have the <netdb.h> header file.  */
 #define HAVE_NETDB_H 1
 /* Define if you have the <netinet/if_ether.h> header file.  */
 #define HAVE_NETINET_IF_ETHER_H 1
 /* Define if you have the <netinet/in.h> header file.  */
 #define HAVE_NETINET_IN_H 1
 /* Define if you have the <openssl/crypto.h> header file.  */
 #define HAVE_OPENSSL_CRYPTO_H 1
 /* Define if you have the <openssl/err.h> header file.  */
 #define HAVE_OPENSSL_ERR_H      1
 /* Define if you have the <openssl/pem.h> header file.  */
 #define HAVE_OPENSSL_PEM_H      1
 /* Define if you have the <openssl/rsa.h> header file.  */
 #define HAVE_OPENSSL_RSA_H 1
 /* Define if you have the <openssl/ssl.h> header file.  */
 #define HAVE_OPENSSL_SSL_H      1
 /* Define if you have the <openssl/x509.h> header file.  */
 #define HAVE_OPENSSL_X509_H     1
 /* Define if you have the <pem.h> header file.  */
 #undef HAVE_PEM_H
 /* Define if you have the <pwd.h> header file.  */
 #define HAVE_PWD_H 1
 /* Define if you have the <rsa.h> header file.  */
 #undef HAVE_RSA_H
 /* Define if you have the <sgtty.h> header file.  */
 #define HAVE_SGTTY_H 1
 /* Define if you have the <ssl.h> header file.  */
 #undef HAVE_SSL_H
 /* Define if you have the <stdlib.h> header file.  */
 #define HAVE_STDLIB_H 1
 /* Define if you have the <sys/param.h> header file.  */
 #undef HAVE_SYS_PARAM_H
 /* Define if you have the <sys/select.h> header file.  */
 #undef HAVE_SYS_SELECT_H
 /* Define if you have the <sys/socket.h> header file.  */
 #define HAVE_SYS_SOCKET_H 1
 /* Define if you have the <sys/sockio.h> header file.  */
 #undef HAVE_SYS_SOCKIO_H
 /* Define if you have the <sys/stat.h> header file.  */
 #define HAVE_SYS_STAT_H 1
 /* Define if you have the <sys/time.h> header file.  */
 #define HAVE_SYS_TIME_H 1
 /* Define if you have the <sys/types.h> header file.  */
 #define HAVE_SYS_TYPES_H 1
 /* Define if you have the <termio.h> header file.  */
 #undef HAVE_TERMIO_H
 /* Define if you have the <termios.h> header file.  */
 #define HAVE_TERMIOS_H 1
 /* Define if you have the <time.h> header file.  */
 #define HAVE_TIME_H 1
 /* Define if you have the <unistd.h> header file.  */
 #define HAVE_UNISTD_H 1
 /* Define if you have the <winsock.h> header file.  */
 #undef HAVE_WINSOCK_H
 /* Define if you have the <x509.h> header file.  */
 #undef HAVE_X509_H
 /* Define if you have the crypto library (-lcrypto).  */
 #define HAVE_LIBCRYPTO 1
 /* Define if you have the dl library (-ldl).  */
 #undef HAVE_LIBDL
 /* Define if you have the nsl library (-lnsl).  */
 #undef HAVE_LIBNSL
 /* Define if you have the resolv library (-lresolv).  */
 #define HAVE_LIBRESOLV 1
 /* Define if you have the resolve library (-lresolve).  */
 #undef HAVE_LIBRESOLVE
 /* Define if you have the socket library (-lsocket).  */
 #define HAVE_LIBSOCKET 1
 /* Define if you have the ssl library (-lssl).  */
 #define HAVE_LIBSSL     1
 /* Define if you have the ucb library (-lucb).  */
 #undef HAVE_LIBUCB
 /* Number of bits in a file offset, on hosts where this is settable. */
 #undef _FILE_OFFSET_BITS
 /* Define for large files, on AIX-style hosts. */
 #undef _LARGE_FILES
 /* Define if getaddrinfo exists and works */
 #define HAVE_GETADDRINFO 1
 /* Define if you want to enable IPv6 support */
 #undef ENABLE_IPV6
 /* Set to explicitly specify we don't want to use thread-safe functions */
 #undef DISABLED_THREADSAFE
 #define HAVE_TIMEVAL_H  1
 /* Name of this package! */
 #define PACKAGE "not-used"
 /* Version number of this archive. */
 #define VERSION "not-used"
 /* Define if you have the getpass function.  */
 #undef HAVE_GETPASS
 /* if OpenSSL is in use */
 #define USE_OPENSSL 1
 /* if SSL is enabled */
 #define USE_SSLEAY 1
 /* Define if you have the `dlopen' function. */
 #undef HAVE_DLOPEN
 /* Define if you have the <inttypes.h> header file. */
 #undef HAVE_INTTYPES_H
 /* Define if you have the <strings.h> header file. */
 #define HAVE_STRINGS_H 1
 /* Define if you have the <string.h> header file. */
 #define HAVE_STRING_H 1
 /* Define if you have the `strtok_r' function. */
 #undef HAVE_STRTOK_R
 /* Define if you have the `strtoll' function. */
 #undef HAVE_STRTOLL
 #define HAVE_MEMORY_H   1
 #define HAVE_FIONBIO    1
 /* Define if you have the `sigsetjmp' function. */
 #define HAVE_SIGSETJMP 1
 /* Define to 1 if you have the <setjmp.h> header file. */
 #define HAVE_SETJMP_H 1
 /*
 * This needs to be defined for OpenSSL 0.9.7 and other versions that have the
 * ENGINE stuff supported. If an include of "openssl/engine.h" fails, then
 * undefine the define below.
 */
 #define HAVE_OPENSSL_ENGINE_H 1
--- a/lib/config-win32.h
+++ b/lib/config-win32.h
@@ -232,6 +232,16 @@
 /* use ioctlsocket() for non-blocking sockets */
 #define HAVE_IOCTLSOCKET
 /* lber dynamic library file */
 /* #undef DL_LBER_FILE */
 /* Defines set for VS2005 to _not_ deprecate a few functions we use. */
 #define _CRT_SECURE_NO_DEPRECATE
 #define _CRT_NONSTDC_NO_DEPRECATE
 /* ldap dynamic library file */
 #define DL_LDAP_FILE "wldap32.dll"
 /*************************************************
 * This section is for compiler specific defines.*
 *************************************************/
--- a/lib/config.dj
+++ b/lib/config.dj
@@ -15,6 +15,7 @@
 #define HAVE_BASENAME          1
 #define HAVE_CLOSESOCKET       1
 #define HAVE_FCNTL_H           1
 #define HAVE_FIONBIO           1
 #define HAVE_GETHOSTBYADDR     1
 #define HAVE_GETHOSTNAME       1
 #define HAVE_GETPASS           1
@@ -93,6 +94,9 @@
  #define USE_OPENSSL            1
 #endif
 /* to disable LDAP */
 #define CURL_DISABLE_LDAP        1
 /* Because djgpp <= 2.03 doesn't have snprintf() etc.
 */
 #if (DJGPP_MINOR < 4)
@@ -101,7 +105,10 @@
 #define in_addr_t  u_long
 #define socklen_t  int
 #if __GNUC__ < 4   /* gcc 4.x built-in ? */
 #define ssize_t    int
 #endif
 #include <stdlib.h>
 #include <string.h>
--- a/Show More
+++ b/Show More