Compare commits
	
		
			371 Commits
		
	
	
		
			curl-7_26_
			...
			curl-7_27_
		
	
	| Author | SHA1 | Date | |
|---|---|---|---|
|   | 11a7ac0d6a | ||
|   | b13106339e | ||
|   | 1b1c43a9fe | ||
|   | 7b5c411f5c | ||
|   | 7f9f94a1df | ||
|   | 3b4d430cd8 | ||
|   | 33b815e894 | ||
|   | f92779198d | ||
|   | 9ac5cdfc2f | ||
|   | 8a279d2275 | ||
|   | c0f8340c7c | ||
|   | d317ca50ae | ||
|   | 487406c3c0 | ||
|   | 2c7cfd2926 | ||
|   | c66f6e60fc | ||
|   | b0735f3165 | ||
|   | 1fc5a41447 | ||
|   | cb787b70bf | ||
|   | 0f15ed1617 | ||
|   | 5d80017fd6 | ||
|   | e1711b0e9a | ||
|   | c27cc4cfe0 | ||
|   | dc470723b1 | ||
|   | da2bde9d62 | ||
|   | 13abfd997e | ||
|   | 8276791749 | ||
|   | 9d11716933 | ||
|   | ff318a6302 | ||
|   | 0e24c1e921 | ||
|   | 9ca3137987 | ||
|   | 20ff8a0988 | ||
|   | 771e91374b | ||
|   | 1a74e54e8b | ||
|   | 6e3802a2cf | ||
|   | df5a47b819 | ||
|   | a39789c85c | ||
|   | b7298e49ae | ||
|   | be795f90da | ||
|   | 1c4663bc42 | ||
|   | d759a70db8 | ||
|   | 1dcf4418ba | ||
|   | 685366006c | ||
|   | 85ce195f75 | ||
|   | 18f8b7eb72 | ||
|   | 0dc1e1e92e | ||
|   | 0e1f107f83 | ||
|   | dfe405076e | ||
|   | dce2e1aa0f | ||
|   | d8ce83e73a | ||
|   | 33eac5f7fd | ||
|   | 0025770a99 | ||
|   | d4bade7a4e | ||
|   | f9dfd7e4b7 | ||
|   | c7106b3eb7 | ||
|   | f2b6ebed7b | ||
|   | e5843470e8 | ||
|   | 4ab2d26cb8 | ||
|   | 40cd996cc0 | ||
|   | 904346bf88 | ||
|   | c42ca3e73a | ||
|   | 329be28d69 | ||
|   | 9a158f1ef0 | ||
|   | 61c7af92f2 | ||
|   | 59c88da74d | ||
|   | bce8bc203f | ||
|   | 24af69a411 | ||
|   | d7c9f2f63a | ||
|   | d39bbcfa8d | ||
|   | 86871577d9 | ||
|   | aeca33f96c | ||
|   | 825fff880e | ||
|   | 68e6b56a2a | ||
|   | 5a99bce07d | ||
|   | 4ac56b9d9f | ||
|   | b1f64d3a2a | ||
|   | e77d867068 | ||
|   | 1b27bb446f | ||
|   | ed7bfeee7a | ||
|   | 176f7ea3bb | ||
|   | 6398c8bba8 | ||
|   | c5de48b56c | ||
|   | 28dc509dde | ||
|   | 897cf5d117 | ||
|   | a3dbbcfd2a | ||
|   | 6388ac7dc1 | ||
|   | 304e24e211 | ||
|   | 6fb0ed88d6 | ||
|   | 98ca62c2d6 | ||
|   | 1ba5712f88 | ||
|   | 1a97fd7b63 | ||
|   | 32b4896107 | ||
|   | c75ece4442 | ||
|   | 016dabcf04 | ||
|   | ae8f08ee59 | ||
|   | 33ee67112f | ||
|   | e0b9d3b2c9 | ||
|   | 33e19f881e | ||
|   | dd302206ad | ||
|   | b3ebfc2b74 | ||
|   | 069b280f63 | ||
|   | 89b431f60f | ||
|   | 4e3320a679 | ||
|   | 39a72bbcd1 | ||
|   | 696ddf6f0a | ||
|   | 60d5a16b99 | ||
|   | febd598597 | ||
|   | 7747136421 | ||
|   | dd707b746f | ||
|   | ac6111aeb0 | ||
|   | c0f2bfb2c7 | ||
|   | 74552acaea | ||
|   | 5600879a1d | ||
|   | bf4580d5fd | ||
|   | 5439849246 | ||
|   | 3bda1cef92 | ||
|   | e3014dcc01 | ||
|   | 57d2732ccb | ||
|   | e6b2eb78a2 | ||
|   | 6c09ffaf46 | ||
|   | 5ce9e7a0b7 | ||
|   | 3e6dfe138a | ||
|   | 7aa95afadd | ||
|   | dc7dc9786f | ||
|   | aed6db2cb9 | ||
|   | 3a4b28d473 | ||
|   | f1474db360 | ||
|   | a8478fc8d3 | ||
|   | 849179ba27 | ||
|   | 6d1ea388cb | ||
|   | 07e3ea7f26 | ||
|   | 4afc33db8d | ||
|   | d025af9bb5 | ||
|   | f99f02bb05 | ||
|   | 92c40ce190 | ||
|   | 1eb74f94c4 | ||
|   | a28cda3653 | ||
|   | 861e1ba604 | ||
|   | 7731c34d79 | ||
|   | 14dc361433 | ||
|   | 7f59577fdd | ||
|   | b193ba8a02 | ||
|   | 53423673ca | ||
|   | 2f738c7f40 | ||
|   | aefb9196cf | ||
|   | 7292486ec3 | ||
|   | 7561a0fc83 | ||
|   | 196c8242ca | ||
|   | 424bb35877 | ||
|   | 08e0ad7b39 | ||
|   | 2ebb87f047 | ||
|   | 006b83798e | ||
|   | 293c9288b3 | ||
|   | 8f92e8be12 | ||
|   | a3e3f8ffa0 | ||
|   | 07086c9487 | ||
|   | 066811592d | ||
|   | 72a5813192 | ||
|   | 99b13f2741 | ||
|   | a15378e073 | ||
|   | 7d2abe27dd | ||
|   | 64962b0218 | ||
|   | 75dd191bdf | ||
|   | e93e3bcb82 | ||
|   | feaf8f9590 | ||
|   | 8a8829499d | ||
|   | 1e4c57fa64 | ||
|   | 29dd7192e6 | ||
|   | 705330c750 | ||
|   | 599a2c1f1a | ||
|   | 5a8649863c | ||
|   | 05f6f2497a | ||
|   | d56e8bcc8a | ||
|   | 220776de6b | ||
|   | 3da2c0f6d2 | ||
|   | ac3e356c95 | ||
|   | a96fa00f38 | ||
|   | a5e0583cd3 | ||
|   | 46480bb9a1 | ||
|   | 16c725dbc7 | ||
|   | 0fd5dda99d | ||
|   | 9d8375c29b | ||
|   | 508dbb99aa | ||
|   | 42f0588ea8 | ||
|   | 6085ca2aed | ||
|   | a8259945c4 | ||
|   | 3af5023a20 | ||
|   | 2bac074f08 | ||
|   | d098cfd8c0 | ||
|   | b4b7f6828c | ||
|   | 0d0893f2b9 | ||
|   | 2bfa57bc32 | ||
|   | b276ac7691 | ||
|   | 32ce7f19b2 | ||
|   | 819afe46ee | ||
|   | c13af84372 | ||
|   | 47c1bf9e43 | ||
|   | d95b8e0627 | ||
|   | 1e8e6057ea | ||
|   | 38f05cea46 | ||
|   | 7bf910482e | ||
|   | b8edf5bbe9 | ||
|   | 5e7a0fe73b | ||
|   | 746b80a210 | ||
|   | 764a5e4a50 | ||
|   | af0888aaf6 | ||
|   | 9c18bb3702 | ||
|   | c7cc914961 | ||
|   | c45069bfbe | ||
|   | 9a51c11074 | ||
|   | cb142cf217 | ||
|   | 7da6a9128b | ||
|   | 61d152384e | ||
|   | 0c86ccc647 | ||
|   | a92df2e007 | ||
|   | 634f7cfee4 | ||
|   | 70d56bfe3c | ||
|   | bd38ebc697 | ||
|   | b15434e749 | ||
|   | 7047e2ed72 | ||
|   | c1311c2b8f | ||
|   | 0bb5ff5d1a | ||
|   | 64dc957a41 | ||
|   | 3d3a3f9e7c | ||
|   | 8d78848a39 | ||
|   | 90412c8613 | ||
|   | 78729e76da | ||
|   | f858bb0d1f | ||
|   | 15ca80c831 | ||
|   | ec9e9f38b1 | ||
|   | 46792af733 | ||
|   | 445245ca85 | ||
|   | f96f1f3165 | ||
|   | bead90a837 | ||
|   | aaa42aa0d5 | ||
|   | 1f635608bb | ||
|   | 9c94236e6c | ||
|   | 3f9ab7cf5d | ||
|   | 63e9685470 | ||
|   | 6cd084a3b5 | ||
|   | 72c7c1d64e | ||
|   | 6ea32b8b76 | ||
|   | 1aaf86a596 | ||
|   | 6188855b67 | ||
|   | a3660127a4 | ||
|   | c09c621af7 | ||
|   | 4e430a8a16 | ||
|   | 6478e1d7e5 | ||
|   | a884ffe430 | ||
|   | c29d1f4e3a | ||
|   | 674e53f40e | ||
|   | 68857e40d6 | ||
|   | dd576194ce | ||
|   | 870c99b7e7 | ||
|   | e3f5e04cf0 | ||
|   | 0cd8c287a4 | ||
|   | eeeba1496c | ||
|   | 186b101deb | ||
|   | d2fc8b4a5f | ||
|   | 04ca9aecd1 | ||
|   | 2e48139fbf | ||
|   | 0636af6131 | ||
|   | 7352ac408b | ||
|   | c41d959ee6 | ||
|   | 430791616b | ||
|   | 00fddba672 | ||
|   | eef4b3fcfc | ||
|   | aaa1e7f9d4 | ||
|   | 37550c16f9 | ||
|   | b1f2a680bd | ||
|   | 2b56e4c1bb | ||
|   | 62f374b19e | ||
|   | 89b5680d81 | ||
|   | 0f3c330ad8 | ||
|   | 7157363ab4 | ||
|   | c5b66836a5 | ||
|   | 57e6336794 | ||
|   | 64510fe917 | ||
|   | 38dfe52559 | ||
|   | 7759d10f36 | ||
|   | 32ab3276ee | ||
|   | 74a7ee9973 | ||
|   | 0c460e80ed | ||
|   | bf51b8c07a | ||
|   | 04a6f0a1a4 | ||
|   | 1fc89eb87f | ||
|   | e336bc7c42 | ||
|   | b511486fcd | ||
|   | 3bfff57e1f | ||
|   | 628e62a966 | ||
|   | f087211566 | ||
|   | 665e16899c | ||
|   | 58987556d5 | ||
|   | 79c2af3082 | ||
|   | 8c0bfd3e0c | ||
|   | 24f127027b | ||
|   | 2b9ca12edf | ||
|   | 3b8cf5bd14 | ||
|   | c12a414b21 | ||
|   | b5bb61ee69 | ||
|   | 69f01ec2d1 | ||
|   | 4cff10af69 | ||
|   | c4e3578e4b | ||
|   | 797315044d | ||
|   | 08c128bd93 | ||
|   | 530675a1ad | ||
|   | 273e9afcc8 | ||
|   | 9c7016f560 | ||
|   | 69ba0da827 | ||
|   | 1fa2af5136 | ||
|   | cfa81b8fb0 | ||
|   | 69f7156ad9 | ||
|   | 6f964e4f06 | ||
|   | d9ca9e9869 | ||
|   | 2df6e6d9f8 | ||
|   | 379efd62aa | ||
|   | 00dd45720e | ||
|   | 54d484e136 | ||
|   | cb3d0ce2cb | ||
|   | f86432b119 | ||
|   | 2c6d32b864 | ||
|   | 3c14c524c5 | ||
|   | 8e860c1662 | ||
|   | c90acaa77a | ||
|   | b420f60a06 | ||
|   | 7291c1f565 | ||
|   | 3fa0fbb816 | ||
|   | a9d798c4d5 | ||
|   | 72f4b534c4 | ||
|   | a03100c357 | ||
|   | a7731673d0 | ||
|   | 3124a8df93 | ||
|   | c267c53017 | ||
|   | dc454bd16b | ||
|   | c6495bccbf | ||
|   | f95f19e854 | ||
|   | ca8b4e9742 | ||
|   | cd4cf989bb | ||
|   | 6015b71c4e | ||
|   | 1bfd750f3f | ||
|   | 7bdb9fba95 | ||
|   | 6927153703 | ||
|   | 6a655ca192 | ||
|   | 9f7f7925da | ||
|   | c3ef63f167 | ||
|   | 94eb132896 | ||
|   | 383641d70a | ||
|   | 963bcde476 | ||
|   | dde279ed31 | ||
|   | 89747794fe | ||
|   | 462f10f824 | ||
|   | 8834448cc1 | ||
|   | ee483aeca2 | ||
|   | fd17cd4d9c | ||
|   | 53f2c02ac7 | ||
|   | 1919352a10 | ||
|   | 9f9f9ed1b2 | ||
|   | a0d7a26e32 | ||
|   | bb1ce6cc0b | ||
|   | b5fdbe848b | ||
|   | efb8471a69 | ||
|   | 25c1b29226 | ||
|   | 2839c059b1 | ||
|   | cb9e2e8466 | ||
|   | a379a4c163 | ||
|   | b061fed981 | ||
|   | 9c480490f7 | ||
|   | 978b808f7d | ||
|   | 74be993576 | ||
|   | 4f3ec68dc7 | ||
|   | d220834f80 | ||
|   | 244e966138 | 
							
								
								
									
										4
									
								
								.gitattributes
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										4
									
								
								.gitattributes
									
									
									
									
										vendored
									
									
								
							| @@ -1 +1,5 @@ | ||||
| *.dsw -crlf | ||||
| buildconf eol=lf | ||||
| configure.ac eol=lf | ||||
| *.m4 eol=lf | ||||
| *.in eol=lf | ||||
|   | ||||
							
								
								
									
										3
									
								
								.gitignore
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										3
									
								
								.gitignore
									
									
									
									
										vendored
									
									
								
							| @@ -42,3 +42,6 @@ TAGS | ||||
| *~ | ||||
| aclocal.m4.bak | ||||
| CHANGES.dist | ||||
| .project | ||||
| .cproject | ||||
| .settings | ||||
|   | ||||
							
								
								
									
										10
									
								
								Makefile.am
									
									
									
									
									
								
							
							
						
						
									
										10
									
								
								Makefile.am
									
									
									
									
									
								
							| @@ -5,7 +5,7 @@ | ||||
| #                            | (__| |_| |  _ <| |___ | ||||
| #                             \___|\___/|_| \_\_____| | ||||
| # | ||||
| # Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
| # Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
| # | ||||
| # This software is licensed as described in the file COPYING, which | ||||
| # you should have received as part of this distribution. The terms | ||||
| @@ -86,9 +86,13 @@ endif | ||||
| examples: | ||||
| 	@(cd docs/examples; $(MAKE) check) | ||||
|  | ||||
| # This is a hook to have 'make clean' also clean up the dosc and the tests | ||||
| # dir. The extra check for the Makefiles being present is necessary because | ||||
| # 'make distcheck' will make clean first in these directories _before_ it runs | ||||
| # this hook. | ||||
| clean-local: | ||||
| 	@(cd tests; $(MAKE) clean) | ||||
| 	@(cd docs; $(MAKE) clean) | ||||
| 	@(if test -f tests/Makefile; then cd tests; $(MAKE) clean; fi) | ||||
| 	@(if test -f docs/Makefile; then cd docs; $(MAKE) clean; fi) | ||||
|  | ||||
| # | ||||
| # Build source and binary rpms. For rpm-3.0 and above, the ~/.rpmmacros | ||||
|   | ||||
							
								
								
									
										115
									
								
								RELEASE-NOTES
									
									
									
									
									
								
							
							
						
						
									
										115
									
								
								RELEASE-NOTES
									
									
									
									
									
								
							| @@ -1,54 +1,52 @@ | ||||
| Curl and libcurl 7.26.0 | ||||
| Curl and libcurl 7.27.0 | ||||
|  | ||||
|  Public curl releases:         127 | ||||
|  Command line options:         151 | ||||
|  Public curl releases:         128 | ||||
|  Command line options:         152 | ||||
|  curl_easy_setopt() options:   199 | ||||
|  Public functions in libcurl:  58 | ||||
|  Known libcurl bindings:       39 | ||||
|  Contributors:                 929 | ||||
|  Contributors:                 953 | ||||
|  | ||||
| This release includes the following changes: | ||||
|  | ||||
|  o nss: the minimal supported version of NSS bumped to 3.12.x | ||||
|  o nss: human-readable names are now provided for NSS errors if available | ||||
|  o add a manual page for mk-ca-bundle | ||||
|  o added --post303 and the CURL_REDIR_POST_303 option for CURLOPT_POSTREDIR | ||||
|  o smtp: Add support for DIGEST-MD5 authentication | ||||
|  o pop3: Added support for additional pop3 commands | ||||
|  o nss: use human-readable error messages provided by NSS | ||||
|  o added --metalink for metalink download support [5] | ||||
|  o pop3: Added support for sasl plain text authentication | ||||
|  o pop3: Added support for sasl login authentication  | ||||
|  o pop3: Added support for sasl ntlm authentication | ||||
|  o pop3: Added support for sasl cram-md5 authentication | ||||
|  o pop3: Added support for sasl digest-md5 authentication | ||||
|  o pop3: Added support for apop authentication | ||||
|  o Added support for Schannel (Native Windows) SSL/TLS encryption [2] | ||||
|  o Added support for Darwin SSL (Native Mac OS X and iOS) [6] | ||||
|  o http: print reason phrase from HTTP status line on error [8] | ||||
|  | ||||
| This release includes the following bugfixes: | ||||
|  | ||||
|  o nss: libcurl now uses NSS_InitContext() to prevent collisions if available | ||||
|    [1] | ||||
|  o URL parse: reject numerical IPv6 addresses outside brackets [4] | ||||
|  o MD5: fix OOM memory leak [5] | ||||
|  o OpenSSL cert: provide more details when cert check fails | ||||
|  o HTTP: empty chunked POST ended up in two zero size chunks [6] | ||||
|  o fixed a regression when curl resolved to multiple addresses and the first | ||||
|    isn't supported [7] | ||||
|  o -# progress meter: avoid superfluous updates and duplicate lines [8] | ||||
|  o headers: surround GCC attribute names with double underscores [9] | ||||
|  o PolarSSL: correct return code for CRL matches | ||||
|  o PolarSSL: include version number in version string | ||||
|  o PolarSSL: add support for asynchronous connect | ||||
|  o mk-ca-bundle: revert the LWP usage [12] | ||||
|  o IPv6 cookie domain: get rid of the first bracket before the second | ||||
|  o connect.c: return changed to CURLE_COULDNT_CONNECT when opensocket fails | ||||
|  o OpenSSL: Made cert hostname check conform to RFC 6125 [10] | ||||
|  o HTTP: reset expected DL/UL sizes on redirects [11] | ||||
|  o CMake: fix Windows LDAP/LDAPS option handling [2] | ||||
|  o CMake: fix MS Visual Studio x64 unsigned long long literal suffix [3] | ||||
|  o configure: update detection logic of getaddrinfo() thread-safeness | ||||
|  o configure: check for gethostbyname in the watt lib | ||||
|  o curl-config.1: fix curl-config usage in example [13] | ||||
|  o smtp: Fixed non-escaping of dot character at beginning of line | ||||
|  o MakefileBuild.vc: use the correct IDN variable | ||||
|  o autoconf: improve handling of versioned symbols | ||||
|  o curl.1: clarify -x usage | ||||
|  o curl: shorten user-agent | ||||
|  o smtp: issue with the multi-interface always sending postdata [14] | ||||
|  o compile error with GnuTLS+Nettle fixed | ||||
|  o winbuild: fix IPv6 enabled build | ||||
|  o pop3: Fixed the issue of having to supply the user name for all requests | ||||
|  o configure: fix LDAPS disabling related misplaced closing parenthesis | ||||
|  o cmdline: made -D option work with -O and -J | ||||
|  o configure: Fix libcurl.pc and curl-config generation for static MingW* | ||||
|    cross builds | ||||
|  o ssl: fix duplicated SSL handshake with multi interface and proxy [1] | ||||
|  o winbuild: Fix Makefile.vc ignoring USE_IPV6 and USE_IDN flags | ||||
|  o OpenSSL: support longer certificate subject names [3] | ||||
|  o openldap: OOM fixes | ||||
|  o log2changes.pl: fix the Version output | ||||
|  o lib554.c: use curl_formadd() properly [4] | ||||
|  o urldata.h: fix cyassl build clash with wincrypt.h | ||||
|  o cookies: changed the URL in the cookiejar headers [7] | ||||
|  o http-proxy: keep CONNECT connections alive (for NTLM) | ||||
|  o NTLM SSPI: fixed to work with unicode user names and passwords | ||||
|  o OOM fix in the curl tool when cloning cmdline options | ||||
|  o fixed some examples to use curl_global_init() properly | ||||
|  o cmdline: stricter numerical option parser | ||||
|  o HTTP HEAD: don't force-close after response-headers | ||||
|  o test231: fix wrong -C use | ||||
|  o docs: switch to proper UTF-8 for text file encoding | ||||
|  o keepalive: DragonFly uses milliseconds [9] | ||||
|  o HTTP Digest: Client's "qop" value should not be quoted | ||||
|  o make distclean works again | ||||
|  | ||||
| This release includes the following known bugs: | ||||
|  | ||||
| @@ -57,29 +55,22 @@ This release includes the following known bugs: | ||||
| This release would not have looked like this without help, code, reports and | ||||
| advice from friends like these: | ||||
|  | ||||
|  Andrei Cipu, Armel Asselin, Benjamin Johnson, Dag Ekengren, Dave Reisner, | ||||
|  Gokhan Sengun, Guenter Knauf, Jan Schaumann, Jonathan Nieder, Kamil Dudka, | ||||
|  Lijo Antony, Olaf Flebbe, Rodrigo Silva, Steve Holme, Tatsuhiro Tsujikawa, | ||||
|  Tim Heckman, Yang Tse, Arnaud Compan, Blaise Potard, Daniel Theron, | ||||
|  Michael Mueller, Michael Wallner, Tim Heckman, Roman Mamedov, Julian Taylor, | ||||
|  Claes Jakobsson, Pierre Chapuis, Jan Ehrhardt | ||||
|  Anthony Bryan, Guenter Knauf, Kamil Dudka, Steve Holme, Tatsuhiro Tsujikawa, | ||||
|  Yang Tse, Gokhan Sengun, Marc Hoersken, Ghennadi Procopciuc, Gisle Vanem, | ||||
|  Mark Salisbury, Anthony G. Basile, Enrico Scholz, Robert B. Harris, | ||||
|  Neil Bowers, Marcel Raad, Christian Hägele, Philip Craig, Nick Zitzmann, | ||||
|  Eelco Dolstra, Anton Yabchinskiy, Santhana Todatry, John Marino | ||||
|  | ||||
|         Thanks! (and sorry if I forgot to mention someone) | ||||
|  | ||||
| References to bug reports and discussions on issues: | ||||
|  | ||||
|  [1] = https://bugzilla.redhat.com/738456 | ||||
|  [2] = http://curl.haxx.se/mail/lib-2012-03/0278.html | ||||
|  [3] = http://curl.haxx.se/mail/lib-2012-03/0255.html | ||||
|  [4] = http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=670126 | ||||
|  [5] = http://curl.haxx.se/mail/lib-2012-04/0246.html | ||||
|  [6] = http://curl.haxx.se/mail/archive-2012-04/0060.html | ||||
|  [7] = http://curl.haxx.se/bug/view.cgi?id=3516508 | ||||
|  [8] = http://curl.haxx.se/bug/view.cgi?id=3517418 | ||||
|  [9] = http://curl.haxx.se/mail/lib-2012-04/0127.html | ||||
|  [10] = http://tools.ietf.org/html/rfc6125#section-6.4.3 | ||||
|  [11] = http://curl.haxx.se/bug/view.cgi?id=3510057 | ||||
|  [12] = http://curl.haxx.se/mail/lib-2012-03/0238.html | ||||
|  [13] = http://curl.haxx.se/bug/view.cgi?id=3528241 | ||||
|  [14] = http://curl.haxx.se/mail/lib-2012-05/0108.html | ||||
|   | ||||
|  [1] = https://bugzilla.redhat.com/788526 | ||||
|  [2] = http://daniel.haxx.se/blog/2012/06/12/schannel-support-in-libcurl/ | ||||
|  [3] = http://curl.haxx.se/bug/view.cgi?id=3533045 | ||||
|  [4] = http://curl.haxx.se/mail/lib-2012-06/0001.html | ||||
|  [5] = http://daniel.haxx.se/blog/2012/06/03/curling-the-metalink/ | ||||
|  [6] = http://daniel.haxx.se/blog/2012/06/28/darwin-native-ssl-for-curl/ | ||||
|  [7] = http://daniel.haxx.se/blog/2012/07/08/curls-new-http-cookies-docs/ | ||||
|  [8] = https://bugzilla.redhat.com/676596 | ||||
|  [9] = http://curl.haxx.se/bug/view.cgi?id=3546257 | ||||
|   | ||||
							
								
								
									
										21
									
								
								TODO-RELEASE
									
									
									
									
									
								
							
							
						
						
									
										21
									
								
								TODO-RELEASE
									
									
									
									
									
								
							| @@ -1,10 +1,21 @@ | ||||
| To be addressed in 7.27 | ||||
| ======================= | ||||
| Try to fix in 7.27 | ||||
| ================== | ||||
|  | ||||
| 309 - metalink support for the curl tool | ||||
| 313 - host.name vs. host.dispname and "(nil)" outputs | ||||
|  | ||||
| To be addressed in 7.28 | ||||
| ======================= | ||||
|  | ||||
| 310 - a new authentication callback | ||||
|  | ||||
| 311 - support for SSPI schannel for SSL on windows | ||||
| 312 - custom Content-Length appears in CONNECT, solve it by offering a separate | ||||
|       option to provide headers for the CONNECT request | ||||
|  | ||||
| 314 - CURL_SOCKOPTFUNCTION for accept()ed connection | ||||
|  | ||||
| 315 - multiple receivers with SMTP and one fails | ||||
|  | ||||
| 317 - CURLINFO_SSL_TRUST to return SSL-specific data for a darwinssl build | ||||
|  | ||||
| 318 - | ||||
|  | ||||
| 312 -  | ||||
|   | ||||
							
								
								
									
										275
									
								
								configure.ac
									
									
									
									
									
								
							
							
						
						
									
										275
									
								
								configure.ac
									
									
									
									
									
								
							| @@ -145,7 +145,7 @@ AC_SUBST(PKGADD_VENDOR) | ||||
|  | ||||
| dnl | ||||
| dnl initialize all the info variables | ||||
|     curl_ssl_msg="no      (--with-{ssl,gnutls,nss,polarssl,cyassl,axtls} )" | ||||
|     curl_ssl_msg="no      (--with-{ssl,gnutls,nss,polarssl,cyassl,axtls,winssl} )" | ||||
|     curl_ssh_msg="no      (--with-libssh2)" | ||||
|    curl_zlib_msg="no      (--with-zlib)" | ||||
|    curl_krb4_msg="no      (--with-krb4*)" | ||||
| @@ -154,7 +154,7 @@ dnl initialize all the info variables | ||||
| curl_tls_srp_msg="no      (--enable-tls-srp)" | ||||
|     curl_res_msg="default (--enable-ares / --enable-threaded-resolver)" | ||||
|    curl_ipv6_msg="no      (--enable-ipv6)" | ||||
|     curl_idn_msg="no      (--with-libidn)" | ||||
|     curl_idn_msg="no      (--with-{libidn,winidn})" | ||||
|  curl_manual_msg="no      (--enable-manual)" | ||||
| curl_libcurl_msg="enabled (--disable-libcurl-option)" | ||||
| curl_verbose_msg="enabled (--disable-verbose)" | ||||
| @@ -163,6 +163,8 @@ curl_verbose_msg="enabled (--disable-verbose)" | ||||
|   curl_ldaps_msg="no      (--enable-ldaps)" | ||||
|    curl_rtsp_msg="no      (--enable-rtsp)" | ||||
|    curl_rtmp_msg="no      (--with-librtmp)" | ||||
|   curl_mtlnk_msg="no      (--with-libmetalink)" | ||||
|  | ||||
|     init_ssl_msg=${curl_ssl_msg} | ||||
|  | ||||
| dnl | ||||
| @@ -240,6 +242,7 @@ AM_CONDITIONAL(MIMPURE, test x$mimpure = xyes) | ||||
| AC_MSG_CHECKING([if we need BUILDING_LIBCURL]) | ||||
| use_cppflag_building_libcurl="no" | ||||
| use_cppflag_curl_staticlib="no" | ||||
| CPPFLAG_CURL_STATICLIB="" | ||||
| case $host in | ||||
|   *-*-mingw*) | ||||
|     AC_MSG_RESULT(yes) | ||||
| @@ -249,6 +252,7 @@ case $host in | ||||
|     then | ||||
|       AC_MSG_RESULT(yes) | ||||
|       use_cppflag_curl_staticlib="yes" | ||||
|       CPPFLAG_CURL_STATICLIB="-DCURL_STATICLIB" | ||||
|     else | ||||
|       AC_MSG_RESULT(no) | ||||
|     fi | ||||
| @@ -259,6 +263,7 @@ case $host in | ||||
| esac | ||||
| AM_CONDITIONAL(USE_CPPFLAG_BUILDING_LIBCURL, test x$use_cppflag_building_libcurl = xyes) | ||||
| AM_CONDITIONAL(USE_CPPFLAG_CURL_STATICLIB, test x$use_cppflag_curl_staticlib = xyes) | ||||
| AC_SUBST(CPPFLAG_CURL_STATICLIB) | ||||
|  | ||||
| # Determine whether all dependent libraries must be specified when linking | ||||
| if test "X$enable_shared" = "Xyes" -a "X$link_all_deplibs" = "Xno" | ||||
| @@ -917,9 +922,9 @@ if test x$CURL_DISABLE_LDAP != x1 ; then | ||||
|     AC_CHECK_LIB("$LDAPLIBNAME", ldap_init,, [ | ||||
|       AC_MSG_WARN(["$LDAPLIBNAME" is not an LDAP library: LDAP disabled]) | ||||
|       AC_DEFINE(CURL_DISABLE_LDAP, 1, [to disable LDAP]) | ||||
|       AC_SUBST(CURL_DISABLE_LDAP, [1])]) | ||||
|       AC_SUBST(CURL_DISABLE_LDAP, [1]) | ||||
|       AC_DEFINE(CURL_DISABLE_LDAPS, 1, [to disable LDAPS]) | ||||
|       AC_SUBST(CURL_DISABLE_LDAPS, [1]) | ||||
|       AC_SUBST(CURL_DISABLE_LDAPS, [1])]) | ||||
|   else | ||||
|     dnl Try to find the right ldap libraries for this system | ||||
|     CURL_CHECK_LIBS_LDAP | ||||
| @@ -944,9 +949,9 @@ if test x$CURL_DISABLE_LDAP != x1 ; then | ||||
|       AC_CHECK_LIB("$LBERLIBNAME", ber_free,, [ | ||||
|         AC_MSG_WARN(["$LBERLIBNAME" is not an LBER library: LDAP disabled]) | ||||
|         AC_DEFINE(CURL_DISABLE_LDAP, 1, [to disable LDAP]) | ||||
|         AC_SUBST(CURL_DISABLE_LDAP, [1])]) | ||||
|         AC_SUBST(CURL_DISABLE_LDAP, [1]) | ||||
|         AC_DEFINE(CURL_DISABLE_LDAPS, 1, [to disable LDAPS]) | ||||
|         AC_SUBST(CURL_DISABLE_LDAPS, [1]) | ||||
|         AC_SUBST(CURL_DISABLE_LDAPS, [1])]) | ||||
|     fi | ||||
|   fi | ||||
| fi | ||||
| @@ -1336,6 +1341,59 @@ else | ||||
|   CPPFLAGS="$save_CPPFLAGS" | ||||
| fi | ||||
|  | ||||
| dnl ------------------------------------------------- | ||||
| dnl check winssl option before other SSL libraries | ||||
| dnl ------------------------------------------------- | ||||
|  | ||||
| OPT_WINSSL=no | ||||
| AC_ARG_WITH(winssl,dnl | ||||
| AC_HELP_STRING([--with-winssl],[enable Windows native SSL/TLS]) | ||||
| AC_HELP_STRING([--without-winssl], [disable Windows native SSL/TLS]), | ||||
|   OPT_WINSSL=$withval) | ||||
|  | ||||
| AC_MSG_CHECKING([whether to enable Windows native SSL/TLS (Windows native builds only)]) | ||||
| if test "$curl_ssl_msg" = "$init_ssl_msg"; then | ||||
|   if test "x$OPT_WINSSL" != "xno"  && | ||||
|      test "x$ac_cv_native_windows" = "xyes"; then | ||||
|     AC_MSG_RESULT(yes) | ||||
|     AC_DEFINE(USE_SCHANNEL, 1, [to enable Windows native SSL/TLS support]) | ||||
|     AC_SUBST(USE_SCHANNEL, [1]) | ||||
|     curl_ssl_msg="enabled (Windows-native)" | ||||
|     WINSSL_ENABLED=1 | ||||
|     # --with-winssl implies --enable-sspi | ||||
|     AC_DEFINE(USE_WINDOWS_SSPI, 1, [to enable SSPI support]) | ||||
|     AC_SUBST(USE_WINDOWS_SSPI, [1]) | ||||
|     curl_sspi_msg="enabled" | ||||
|   else | ||||
|     AC_MSG_RESULT(no) | ||||
|   fi | ||||
| else | ||||
|   AC_MSG_RESULT(no) | ||||
| fi | ||||
|  | ||||
| OPT_DARWINSSL=no | ||||
| AC_ARG_WITH(darwinssl,dnl | ||||
| AC_HELP_STRING([--with-darwinssl],[enable iOS/Mac OS X native SSL/TLS]) | ||||
| AC_HELP_STRING([--without-darwinssl], [disable iOS/Mac OS X native SSL/TLS]), | ||||
|   OPT_DARWINSSL=$withval) | ||||
|  | ||||
| AC_MSG_CHECKING([whether to enable iOS/Mac OS X native SSL/TLS]) | ||||
| if test "$curl_ssl_msg" = "$init_ssl_msg"; then | ||||
|   if test "x$OPT_DARWINSSL" != "xno" && | ||||
|      test -d "/System/Library/Frameworks/Security.framework"; then | ||||
|     AC_MSG_RESULT(yes) | ||||
|     AC_DEFINE(USE_DARWINSSL, 1, [to enable iOS/Mac OS X native SSL/TLS support]) | ||||
|     AC_SUBST(USE_DARWINSSL, [1]) | ||||
|     curl_ssl_msg="enabled (iOS/Mac OS X-native)" | ||||
|     DARWINSSL_ENABLED=1 | ||||
|     LDFLAGS="$LDFLAGS -framework CoreFoundation -framework Security" | ||||
|   else | ||||
|     AC_MSG_RESULT(no) | ||||
|   fi | ||||
| else | ||||
|   AC_MSG_RESULT(no) | ||||
| fi | ||||
|  | ||||
| dnl ********************************************************************** | ||||
| dnl Check for the presence of SSL libraries and headers | ||||
| dnl ********************************************************************** | ||||
| @@ -1349,7 +1407,7 @@ AC_HELP_STRING([--with-ssl=PATH],[Where to look for OpenSSL, PATH points to the | ||||
| AC_HELP_STRING([--without-ssl], [disable OpenSSL]), | ||||
|   OPT_SSL=$withval) | ||||
|  | ||||
| if test X"$OPT_SSL" != Xno; then | ||||
| if test "$curl_ssl_msg" = "$init_ssl_msg" && test X"$OPT_SSL" != Xno; then | ||||
|   dnl backup the pre-ssl variables | ||||
|   CLEANLDFLAGS="$LDFLAGS" | ||||
|   CLEANCPPFLAGS="$CPPFLAGS" | ||||
| @@ -1736,7 +1794,7 @@ AC_HELP_STRING([--with-gnutls=PATH],[where to look for GnuTLS, PATH points to th | ||||
| AC_HELP_STRING([--without-gnutls], [disable GnuTLS detection]), | ||||
|   OPT_GNUTLS=$withval) | ||||
|  | ||||
| if test "$OPENSSL_ENABLED" != "1"; then | ||||
| if test "$curl_ssl_msg" = "$init_ssl_msg"; then | ||||
|  | ||||
|   if test X"$OPT_GNUTLS" != Xno; then | ||||
|  | ||||
| @@ -1832,7 +1890,7 @@ if test "$OPENSSL_ENABLED" != "1"; then | ||||
|  | ||||
|   fi dnl GNUTLS not disabled | ||||
|  | ||||
| fi dnl OPENSSL != 1 | ||||
| fi | ||||
|  | ||||
| dnl --- | ||||
| dnl Check which crypto backend GnuTLS uses | ||||
| @@ -1889,7 +1947,7 @@ AC_HELP_STRING([--with-polarssl=PATH],[where to look for PolarSSL, PATH points t | ||||
| AC_HELP_STRING([--without-polarssl], [disable PolarSSL detection]), | ||||
|   OPT_POLARSSL=$withval) | ||||
|  | ||||
| if test "$OPENSSL_ENABLED" != "1"; then | ||||
| if test "$curl_ssl_msg" = "$init_ssl_msg"; then | ||||
|  | ||||
|   if test X"$OPT_POLARSSL" != Xno; then | ||||
|  | ||||
| @@ -1957,7 +2015,7 @@ if test "$OPENSSL_ENABLED" != "1"; then | ||||
|  | ||||
|   fi dnl PolarSSL not disabled | ||||
|  | ||||
| fi dnl OPENSSL != 1 | ||||
| fi | ||||
|  | ||||
| dnl ---------------------------------------------------- | ||||
| dnl check for CyaSSL | ||||
| @@ -1973,7 +2031,7 @@ AC_HELP_STRING([--with-cyassl=PATH],[where to look for CyaSSL, PATH points to th | ||||
| AC_HELP_STRING([--without-cyassl], [disable CyaSSL detection]), | ||||
|   OPT_CYASSL=$withval) | ||||
|  | ||||
| if test "$OPENSSL_ENABLED" != "1"; then | ||||
| if test "$curl_ssl_msg" = "$init_ssl_msg"; then | ||||
|  | ||||
|   if test X"$OPT_CYASSL" != Xno; then | ||||
|  | ||||
| @@ -2042,7 +2100,7 @@ if test "$OPENSSL_ENABLED" != "1"; then | ||||
|  | ||||
|   fi dnl CyaSSL not disabled | ||||
|  | ||||
| fi dnl OPENSSL != 1 | ||||
| fi | ||||
|  | ||||
| dnl ---------------------------------------------------- | ||||
| dnl NSS. Only check if GnuTLS and OpenSSL are not enabled | ||||
| @@ -2056,7 +2114,7 @@ AC_HELP_STRING([--with-nss=PATH],[where to look for NSS, PATH points to the inst | ||||
| AC_HELP_STRING([--without-nss], [disable NSS detection]), | ||||
|   OPT_NSS=$withval) | ||||
|  | ||||
| if test "$OPENSSL_ENABLED" != "1" -a "$GNUTLS_ENABLED" != "1"; then | ||||
| if test "$curl_ssl_msg" = "$init_ssl_msg"; then | ||||
|  | ||||
|   if test X"$OPT_NSS" != Xno; then | ||||
|     if test "x$OPT_NSS" = "xyes"; then | ||||
| @@ -2141,7 +2199,7 @@ if test "$OPENSSL_ENABLED" != "1" -a "$GNUTLS_ENABLED" != "1"; then | ||||
|  | ||||
|   fi dnl NSS not disabled | ||||
|  | ||||
| fi dnl OPENSSL != 1 -a GNUTLS_ENABLED != 1 | ||||
| fi dnl curl_ssl_msg = init_ssl_msg | ||||
|  | ||||
| OPT_AXTLS=off | ||||
|  | ||||
| @@ -2198,9 +2256,9 @@ if test "$curl_ssl_msg" = "$init_ssl_msg"; then | ||||
|   fi | ||||
| fi | ||||
|  | ||||
| if test "x$OPENSSL_ENABLED$GNUTLS_ENABLED$NSS_ENABLED$POLARSSL_ENABLED$AXTLS_ENABLED$CYASSL_ENABLED" = "x"; then | ||||
| if test "x$OPENSSL_ENABLED$GNUTLS_ENABLED$NSS_ENABLED$POLARSSL_ENABLED$AXTLS_ENABLED$CYASSL_ENABLED$WINSSL_ENABLED$DARWINSSL_ENABLED" = "x"; then | ||||
|   AC_MSG_WARN([SSL disabled, you will not be able to use HTTPS, FTPS, NTLM and more.]) | ||||
|   AC_MSG_WARN([Use --with-ssl, --with-gnutls, --with-polarssl, --with-cyassl, --with-nss or --with-axtls to address this.]) | ||||
|   AC_MSG_WARN([Use --with-ssl, --with-gnutls, --with-polarssl, --with-cyassl, --with-nss, --with-axtls or --with-winssl to address this.]) | ||||
| else | ||||
|   # SSL is enabled, genericly | ||||
|   AC_SUBST(SSL_ENABLED) | ||||
| @@ -2213,6 +2271,93 @@ dnl ********************************************************************** | ||||
|  | ||||
| CURL_CHECK_CA_BUNDLE | ||||
|  | ||||
| dnl ********************************************************************** | ||||
| dnl Check for libmetalink | ||||
| dnl ********************************************************************** | ||||
|  | ||||
| OPT_LIBMETALINK=no | ||||
|  | ||||
| AC_ARG_WITH(libmetalink,dnl | ||||
| AC_HELP_STRING([--with-libmetalink=PATH],[where to look for libmetalink, PATH points to the installation root]) | ||||
| AC_HELP_STRING([--without-libmetalink], [disable libmetalink detection]), | ||||
|   OPT_LIBMETALINK=$withval) | ||||
|  | ||||
| if test X"$OPT_LIBMETALINK" != Xno; then | ||||
|  | ||||
|   addlib="" | ||||
|   addld="" | ||||
|   addcflags="" | ||||
|   version="" | ||||
|   libmetalinklib="" | ||||
|   PKGTEST="no" | ||||
|   if test "x$OPT_LIBMETALINK" = "xyes"; then | ||||
|     dnl this is with no partiular path given | ||||
|     PKGTEST="yes" | ||||
|     CURL_CHECK_PKGCONFIG(libmetalink) | ||||
|   else | ||||
|     dnl When particular path is given, set PKG_CONFIG_LIBDIR using the path. | ||||
|     LIBMETALINK_PCDIR="$OPT_LIBMETALINK/lib/pkgconfig" | ||||
|     AC_MSG_NOTICE([PKG_CONFIG_LIBDIR will be set to "$LIBMETALINK_PCDIR"]) | ||||
|     if test -f "$LIBMETALINK_PCDIR/libmetalink.pc"; then | ||||
|       PKGTEST="yes" | ||||
|     fi | ||||
|     if test "$PKGTEST" = "yes"; then | ||||
|       CURL_CHECK_PKGCONFIG(libmetalink, [$LIBMETALINK_PCDIR]) | ||||
|     fi | ||||
|   fi | ||||
|   if test "$PKGTEST" = "yes" && test "$PKGCONFIG" != "no"; then | ||||
|     addlib=`CURL_EXPORT_PCDIR([$LIBMETALINK_PCDIR]) dnl | ||||
|       $PKGCONFIG --libs-only-l libmetalink` | ||||
|     addld=`CURL_EXPORT_PCDIR([$LIBMETALINK_PCDIR]) dnl | ||||
|       $PKGCONFIG --libs-only-L libmetalink` | ||||
|     addcflags=`CURL_EXPORT_PCDIR([$LIBMETALINK_PCDIR]) dnl | ||||
|       $PKGCONFIG --cflags-only-I libmetalink` | ||||
|     version=`CURL_EXPORT_PCDIR([$LIBMETALINK_PCDIR]) dnl | ||||
|       $PKGCONFIG --modversion libmetalink` | ||||
|     libmetalinklib=`echo $addld | $SED -e 's/-L//'` | ||||
|   fi | ||||
|   if test -n "$addlib"; then | ||||
|  | ||||
|     clean_CPPFLAGS="$CPPFLAGS" | ||||
|     clean_LDFLAGS="$LDFLAGS" | ||||
|     clean_LIBS="$LIBS" | ||||
|     CPPFLAGS="$addcflags $clean_CPPFLAGS" | ||||
|     LDFLAGS="$addld $clean_LDFLAGS" | ||||
|     LIBS="$addlib $clean_LIBS" | ||||
|     AC_MSG_CHECKING([if libmetalink is recent enough]) | ||||
|     AC_LINK_IFELSE([ | ||||
|       AC_LANG_PROGRAM([[ | ||||
| #       include <metalink/metalink.h> | ||||
|       ]],[[ | ||||
|         if(0 != metalink_strerror(0)) /* added in 0.1.0 */ | ||||
|           return 1; | ||||
|       ]]) | ||||
|     ],[ | ||||
|       AC_MSG_RESULT([yes ($version)]) | ||||
|       want_metalink="yes" | ||||
|     ],[ | ||||
|       AC_MSG_RESULT([no ($version)]) | ||||
|       AC_MSG_NOTICE([libmetalink library defective or too old]) | ||||
|       want_metalink="no" | ||||
|     ]) | ||||
|     CPPFLAGS="$clean_CPPFLAGS" | ||||
|     LDFLAGS="$clean_LDFLAGS" | ||||
|     LIBS="$clean_LIBS" | ||||
|     if test "$want_metalink" = "yes"; then | ||||
|       dnl finally libmetalink will be used | ||||
|       AC_DEFINE(USE_METALINK, 1, [Define to enable metalink support]) | ||||
|       LIBMETALINK_LIBS=$addlib | ||||
|       LIBMETALINK_LDFLAGS=$addld | ||||
|       LIBMETALINK_CFLAGS=$addcflags | ||||
|       AC_SUBST([LIBMETALINK_LIBS]) | ||||
|       AC_SUBST([LIBMETALINK_LDFLAGS]) | ||||
|       AC_SUBST([LIBMETALINK_CFLAGS]) | ||||
|       curl_mtlnk_msg="enabled" | ||||
|     fi | ||||
|  | ||||
|   fi | ||||
| fi | ||||
|  | ||||
| dnl ********************************************************************** | ||||
| dnl Check for the presence of LIBSSH2 libraries and headers | ||||
| dnl ********************************************************************** | ||||
| @@ -2413,6 +2558,10 @@ AC_HELP_STRING([--disable-versioned-symbols], [Disable versioned symbols in shar | ||||
|           versioned_symbols_flavour="CYASSL_" | ||||
|         elif test "x$AXTLS_ENABLED" == "x1"; then | ||||
|           versioned_symbols_flavour="AXTLS_" | ||||
|         elif test "x$WINSSL_ENABLED" == "x1"; then | ||||
|           versioned_symbols_flavour="WINSSL_" | ||||
|         elif test "x$DARWINSSL_ENABLED" == "x1"; then | ||||
|           versioned_symbols_flavour="DARWINSSL_" | ||||
|         else | ||||
|           versioned_symbols_flavour="" | ||||
|         fi | ||||
| @@ -2431,6 +2580,78 @@ AC_MSG_RESULT(no) | ||||
| AC_SUBST(VERSIONED_FLAVOUR, ["$versioned_symbols_flavour"]) | ||||
| AM_CONDITIONAL(VERSIONED_SYMBOLS, test "x$versioned_symbols" = "xyes") | ||||
|  | ||||
| dnl ------------------------------------------------- | ||||
| dnl check winidn option before other IDN libraries | ||||
| dnl ------------------------------------------------- | ||||
|  | ||||
| AC_MSG_CHECKING([whether to enable Windows native IDN (Windows native builds only)]) | ||||
| OPT_WINIDN="default" | ||||
| AC_ARG_WITH(winidn, | ||||
| AC_HELP_STRING([--with-winidn=PATH],[enable Windows native IDN]) | ||||
| AC_HELP_STRING([--without-winidn], [disable Windows native IDN]), | ||||
|   OPT_WINIDN=$withval) | ||||
| case "$OPT_WINIDN" in | ||||
|   no|default) | ||||
|     dnl --without-winidn option used or configure option not specified | ||||
|     want_winidn="no" | ||||
|     AC_MSG_RESULT([no]) | ||||
|     ;; | ||||
|   yes) | ||||
|     dnl --with-winidn option used without path | ||||
|     want_winidn="yes" | ||||
|     want_winidn_path="default" | ||||
|     AC_MSG_RESULT([yes]) | ||||
|     ;; | ||||
|   *) | ||||
|     dnl --with-winidn option used with path | ||||
|     want_winidn="yes" | ||||
|     want_winidn_path="$withval" | ||||
|     AC_MSG_RESULT([yes ($withval)]) | ||||
|     ;; | ||||
| esac | ||||
|  | ||||
| if test "$want_winidn" = "yes"; then | ||||
|   dnl winidn library support has been requested | ||||
|   clean_CPPFLAGS="$CPPFLAGS" | ||||
|   clean_LDFLAGS="$LDFLAGS" | ||||
|   clean_LIBS="$LIBS" | ||||
|   WINIDN_LIBS="-lnormaliz" | ||||
|   # | ||||
|   if test "$want_winidn_path" != "default"; then | ||||
|     dnl path has been specified | ||||
|     dnl pkg-config not available or provides no info | ||||
|     WINIDN_LDFLAGS="-L$want_winidn_path/lib$libsuff" | ||||
|     WINIDN_CPPFLAGS="-I$want_winidn_path/include" | ||||
|     WINIDN_DIR="$want_winidn_path/lib$libsuff" | ||||
|   fi | ||||
|   # | ||||
|   CPPFLAGS="$WINIDN_CPPFLAGS $CPPFLAGS" | ||||
|   LDFLAGS="$WINIDN_LDFLAGS $LDFLAGS" | ||||
|   LIBS="$WINIDN_LIBS $LIBS" | ||||
|   # | ||||
|   AC_MSG_CHECKING([if IdnToUnicode can be linked]) | ||||
|   AC_LINK_IFELSE([ | ||||
|     AC_LANG_FUNC_LINK_TRY([IdnToUnicode]) | ||||
|   ],[ | ||||
|     AC_MSG_RESULT([yes]) | ||||
|     tst_links_winidn="yes" | ||||
|   ],[ | ||||
|     AC_MSG_RESULT([no]) | ||||
|     tst_links_winidn="no" | ||||
|   ]) | ||||
|   # | ||||
|   if test "$tst_links_winidn" = "yes"; then | ||||
|     AC_DEFINE(USE_WIN32_IDN, 1, [Define to 1 if you have the `normaliz' (WinIDN) library (-lnormaliz).]) | ||||
|     AC_DEFINE(WANT_IDN_PROTOTYPES, 1, [Define to 1 to provide own prototypes.]) | ||||
|     AC_SUBST([IDN_ENABLED], [1]) | ||||
|     curl_idn_msg="enabled (Windows-native)" | ||||
|   else | ||||
|     AC_MSG_WARN([Cannot find libraries for IDN support: IDN disabled]) | ||||
|     CPPFLAGS="$clean_CPPFLAGS" | ||||
|     LDFLAGS="$clean_LDFLAGS" | ||||
|     LIBS="$clean_LIBS" | ||||
|   fi | ||||
| fi | ||||
|  | ||||
| dnl ********************************************************************** | ||||
| dnl Check for the presence of IDN libraries and headers | ||||
| @@ -2985,10 +3206,20 @@ AC_HELP_STRING([--disable-sspi],[Disable SSPI]), | ||||
|        fi | ||||
|        ;; | ||||
|   *) | ||||
|        AC_MSG_RESULT(no) | ||||
|        if test "x$WINSSL_ENABLED" = "x1"; then | ||||
|          # --with-winssl implies --enable-sspi | ||||
|          AC_MSG_RESULT(yes) | ||||
|        else | ||||
|          AC_MSG_RESULT(no) | ||||
|        fi | ||||
|        ;; | ||||
|   esac ], | ||||
|        AC_MSG_RESULT(no) | ||||
|        if test "x$WINSSL_ENABLED" = "x1"; then | ||||
|          # --with-winssl implies --enable-sspi | ||||
|          AC_MSG_RESULT(yes) | ||||
|        else | ||||
|          AC_MSG_RESULT(no) | ||||
|        fi | ||||
| ) | ||||
|  | ||||
| dnl ************************************************************ | ||||
| @@ -3119,7 +3350,7 @@ AC_SUBST(ENABLE_SHARED) | ||||
|  | ||||
| dnl | ||||
| dnl For keeping supported features and protocols also in pkg-config file | ||||
| dnl since it is more cross-compile frient than curl-config | ||||
| dnl since it is more cross-compile friendly than curl-config | ||||
| dnl | ||||
|  | ||||
| if test "x$USE_SSLEAY" = "x1"; then | ||||
| @@ -3147,7 +3378,8 @@ if test "x$USE_WINDOWS_SSPI" = "x1"; then | ||||
| fi | ||||
| if test "x$CURL_DISABLE_HTTP" != "x1"; then | ||||
|   if test "x$USE_SSLEAY" = "x1" -o "x$USE_WINDOWS_SSPI" = "x1" \ | ||||
|       -o "x$GNUTLS_ENABLED" = "x1" -o "x$NSS_ENABLED" = "x1"; then | ||||
|       -o "x$GNUTLS_ENABLED" = "x1" -o "x$NSS_ENABLED" = "x1" \ | ||||
|       -o "x$DARWINSSL_ENABLED" = "x1"; then | ||||
|     SUPPORT_FEATURES="$SUPPORT_FEATURES NTLM" | ||||
|     if test "x$NTLM_WB_ENABLED" = "x1"; then | ||||
|       SUPPORT_FEATURES="$SUPPORT_FEATURES NTLM_WB" | ||||
| @@ -3316,6 +3548,7 @@ AC_MSG_NOTICE([Configured to build curl/libcurl: | ||||
|   LDAPS support:    ${curl_ldaps_msg} | ||||
|   RTSP support:     ${curl_rtsp_msg} | ||||
|   RTMP support:     ${curl_rtmp_msg} | ||||
|   metalink support: ${curl_mtlnk_msg} | ||||
|   Protocols:        ${SUPPORT_PROTOCOLS} | ||||
| ]) | ||||
|  | ||||
|   | ||||
| @@ -6,7 +6,7 @@ | ||||
| #                            | (__| |_| |  _ <| |___ | ||||
| #                             \___|\___/|_| \_\_____| | ||||
| # | ||||
| # Copyright (C) 2001 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
| # Copyright (C) 2001 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
| # | ||||
| # This software is licensed as described in the file COPYING, which | ||||
| # you should have received as part of this distribution. The terms | ||||
| @@ -24,6 +24,7 @@ | ||||
| prefix=@prefix@ | ||||
| exec_prefix=@exec_prefix@ | ||||
| includedir=@includedir@ | ||||
| cppflag_curl_staticlib=@CPPFLAG_CURL_STATICLIB@ | ||||
|  | ||||
| usage() | ||||
| { | ||||
| @@ -128,10 +129,15 @@ while test $# -gt 0; do | ||||
| 	;; | ||||
|  | ||||
|     --cflags) | ||||
|        	if test "X@includedir@" = "X/usr/include"; then | ||||
|           echo "" | ||||
|         if test "X$cppflag_curl_staticlib" = "X-DCURL_STATICLIB"; then | ||||
|           CPPFLAG_CURL_STATICLIB="-DCURL_STATICLIB " | ||||
|         else | ||||
|           echo "-I@includedir@" | ||||
|           CPPFLAG_CURL_STATICLIB="" | ||||
|         fi | ||||
|        	if test "X@includedir@" = "X/usr/include"; then | ||||
|           echo "$(CPPFLAG_CURL_STATICLIB)" | ||||
|         else | ||||
|           echo "$(CPPFLAG_CURL_STATICLIB)-I@includedir@" | ||||
|         fi | ||||
|        	;; | ||||
|  | ||||
|   | ||||
| @@ -91,7 +91,7 @@ BUGS | ||||
|   your problem and to work on a fix (if we agree it truly is a problem). | ||||
|  | ||||
|   Lots of problems that appear to be libcurl problems are actually just abuses | ||||
|   of the libcurl API or other malfunctions in your applications. It is adviced | ||||
|   of the libcurl API or other malfunctions in your applications. It is advised | ||||
|   that you run your problematic program using a memory debug tool like | ||||
|   valgrind or similar before you post memory-related or "crashing" problems to | ||||
|   us. | ||||
|   | ||||
| @@ -279,7 +279,7 @@ | ||||
|  | ||||
| 3.6 Please don't send pull requests | ||||
|  | ||||
|  With git (and expecially github) it is easy and tempting to send a pull | ||||
|  With git (and especially github) it is easy and tempting to send a pull | ||||
|  request to one or more people in the curl project to have changes merged this | ||||
|  way instead of mailing patches to the curl-library mailing list. | ||||
|  | ||||
| @@ -294,7 +294,7 @@ | ||||
|  | ||||
|  - Commit messages can be tweaked and changed if merged locally instead of | ||||
|    using github. Merges directly on github requires the changes to be perfect | ||||
|    already, which they seldomly are. | ||||
|    already, which they seldom are. | ||||
|  | ||||
|  - Merges on github prevents rebases and even enforces --no-ff which is a git | ||||
|    style we don't otherwise use in the project | ||||
|   | ||||
							
								
								
									
										4
									
								
								docs/FAQ
									
									
									
									
									
								
							
							
						
						
									
										4
									
								
								docs/FAQ
									
									
									
									
									
								
							| @@ -138,7 +138,7 @@ FAQ | ||||
|  | ||||
|     libcurl is highly portable, it builds and works identically on numerous | ||||
|     platforms, including Solaris, NetBSD, FreeBSD, OpenBSD, Darwin, HPUX, | ||||
|     IRIX, AIX, Tru64, Linux, UnixWare, HURD, Windows, Amiga, OS/2, BeOs, Mac | ||||
|     IRIX, AIX, Tru64, Linux, UnixWare, HURD, Windows, Amiga, OS/2, BeOS, Mac | ||||
|     OS X, Ultrix, QNX, OpenVMS, RISC OS, Novell NetWare, DOS, Symbian, OSF, | ||||
|     Android, Minix, IBM TPF and more... | ||||
|  | ||||
| @@ -807,7 +807,7 @@ FAQ | ||||
|  | ||||
|     4.5.3 "403 Forbidden" | ||||
|  | ||||
|     The server understood the request, but is refusing to fulfill it. | ||||
|     The server understood the request, but is refusing to fulfil it. | ||||
|     Authorization will not help and the request SHOULD NOT be repeated. | ||||
|  | ||||
|     4.5.4 "404 Not Found" | ||||
|   | ||||
| @@ -26,12 +26,12 @@ libcurl supports | ||||
|  - compiles on win32 (reported builds on 40+ operating systems) | ||||
|  - selectable network interface for outgoing traffic | ||||
|  - IPv6 support on unix and Windows | ||||
|  - persistant connections | ||||
|  - persistent connections | ||||
|  - socks5 support | ||||
|  - supports user name + password in proxy environment variables | ||||
|  - operations through proxy "tunnel" (using CONNECT) | ||||
|  - supports large files (>2GB and >4GB) both upload/download | ||||
|  - replacable memory functions (malloc, free, realloc, etc) | ||||
|  - replaceable memory functions (malloc, free, realloc, etc) | ||||
|  - asynchronous name resolving (*6) | ||||
|  - both a push and a pull style interface | ||||
|  | ||||
| @@ -125,7 +125,7 @@ FILE | ||||
| FOOTNOTES | ||||
| ========= | ||||
|  | ||||
|   *1 = requires OpenSSL, GnuTLS, NSS, yassl, axTLS or PolarSSL | ||||
|   *1 = requires OpenSSL, GnuTLS, NSS, yassl, axTLS, PolarSSL or schannel | ||||
|   *2 = requires OpenLDAP | ||||
|   *3 = requires a GSSAPI-compliant library, such as Heimdal or similar. | ||||
|   *4 = requires FBopenssl | ||||
|   | ||||
							
								
								
									
										123
									
								
								docs/HTTP-COOKIES
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										123
									
								
								docs/HTTP-COOKIES
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,123 @@ | ||||
| Updated: July 3, 2012 (http://curl.haxx.se/docs/http-cookies.html) | ||||
|                                   _   _ ____  _ | ||||
|                               ___| | | |  _ \| | | ||||
|                              / __| | | | |_) | | | ||||
|                             | (__| |_| |  _ <| |___ | ||||
|                              \___|\___/|_| \_\_____| | ||||
|  | ||||
|  | ||||
| HTTP Cookies | ||||
|  | ||||
|  1. HTTP Cookies | ||||
|  1.1 Cookie overview | ||||
|  1.2 Cookies saved to disk | ||||
|  1.3 Cookies with curl the command line tool | ||||
|  1.4 Cookies with libcurl | ||||
|  1.5 Cookies with javascript | ||||
|  | ||||
| ============================================================================== | ||||
|  | ||||
| 1. HTTP Cookies | ||||
|  | ||||
|   1.1 Cookie overview | ||||
|  | ||||
|   HTTP cookies are pieces of 'name=contents' snippets that a server tells the | ||||
|   client to hold and then the client sends back those the server on subsequent | ||||
|   requests to the same domains/paths for which the cookies were set. | ||||
|  | ||||
|   Cookies are either "session cookies" which typically are forgotten when the | ||||
|   session is over which is often translated to equal when browser quits, or | ||||
|   the cookies aren't session cookies they have expiration dates after which | ||||
|   the client will throw them away. | ||||
|  | ||||
|   Cookies are set to the client with the Set-Cookie: header and are sent to | ||||
|   servers with the Cookie: header. | ||||
|  | ||||
|   For a very long time, the only spec explaining how to use cookies was the | ||||
|   original Netscape spec from 1994: http://curl.haxx.se/rfc/cookie_spec.html | ||||
|  | ||||
|   In 2011, RFC6265 (http://www.ietf.org/rfc/rfc6265.txt) was finally published | ||||
|   and details how cookies work within HTTP. | ||||
|  | ||||
|   1.2 Cookies saved to disk | ||||
|  | ||||
|   Netscape once created a file format for storing cookies on disk so that they | ||||
|   would survive browser restarts. curl adopted that file format to allow | ||||
|   sharing the cookies with browsers, only to see browsers move away from that | ||||
|   format. Modern browsers no longer use it, while curl still does. | ||||
|  | ||||
|   The netscape cookie file format stores one cookie per physical line in the | ||||
|   file with a bunch of associated meta data, each field separated with | ||||
|   TAB. That file is called the cookiejar in curl terminology. | ||||
|  | ||||
|   When libcurl saves a cookiejar, it creates a file header of its own in which | ||||
|   there is a URL mention that will link to the web version of this document. | ||||
|  | ||||
|   1.3 Cookies with curl the command line tool | ||||
|  | ||||
|   curl has a full cookie "engine" built in. If you just activate it, you can | ||||
|   have curl receive and send cookies exactly as mandated in the specs. | ||||
|  | ||||
|   Command line options: | ||||
|  | ||||
|   -b, --cookie | ||||
|  | ||||
|     tell curl a file to read cookies from and start the cookie engine, or if | ||||
|     it isn't a file it will pass on the given string. -b name=var works and so | ||||
|     does -b cookiefile. | ||||
|  | ||||
|   -j, --junk-session-cookies | ||||
|  | ||||
|     when used in combination with -b, it will skip all "session cookies" on | ||||
|     load so as to appear to start a new cookie session. | ||||
|  | ||||
|   -c, --cookie-jar | ||||
|  | ||||
|     tell curl to start the cookie engine and write cookies to the given file | ||||
|     after the request(s) | ||||
|  | ||||
|   1.4 Cookies with libcurl | ||||
|  | ||||
|   libcurl offers several ways to enable and interface the cookie engine. These | ||||
|   options are the ones provided by the native API. libcurl bindings may offer | ||||
|   access to them using other means. | ||||
|  | ||||
|   CURLOPT_COOKIE | ||||
|  | ||||
|     Is used when you want to specify the exact contents of a cookie header to | ||||
|     send to the server. | ||||
|  | ||||
|   CURLOPT_COOKIEFILE | ||||
|  | ||||
|     Tell libcurl to activate the cookie engine, and to read the initial set of | ||||
|     cookies from the given file. Read-only. | ||||
|  | ||||
|   CURLOPT_COOKIEJAR | ||||
|  | ||||
|     Tell libcurl to activate the cookie engine, and when the easy handle is | ||||
|     closed save all known cookies to the given cookiejar file. Write-only. | ||||
|  | ||||
|   CURLOPT_COOKIELIST | ||||
|  | ||||
|     Provide detailed information about a single cookie to add to the internal | ||||
|     storage of cookies. Pass in the cookie as a HTTP header with all the | ||||
|     details set, or pass in a line from a netscape cookie file. This option | ||||
|     can also be used to flush the cookies etc. | ||||
|      | ||||
|   CURLINFO_COOKIELIST | ||||
|  | ||||
|     Extract cookie information from the internal cookie storage as a linked | ||||
|     list. | ||||
|  | ||||
|   1.5 Cookies with javascript | ||||
|  | ||||
|   These days a lot of the web is built up by javascript. The webbrowser loads | ||||
|   complete programs that render the page you see. These javascript programs | ||||
|   can also set and access cookies. | ||||
|  | ||||
|   Since curl and libcurl are plain HTTP clients without any knowledge of or | ||||
|   capability to handle javascript, such cookies will not be detected or used. | ||||
|  | ||||
|   Often, if you want to mimic what a browser does on such web sites, you can | ||||
|   record web browser HTTP traffic when using such a site and then repeat the | ||||
|   cookie operations using curl or libcurl. | ||||
							
								
								
									
										28
									
								
								docs/INSTALL
									
									
									
									
									
								
							
							
						
						
									
										28
									
								
								docs/INSTALL
									
									
									
									
									
								
							| @@ -157,6 +157,9 @@ UNIX | ||||
|      To get support for SCP and SFTP, build with --with-libssh2 and have | ||||
|      libssh2 0.16 or later installed. | ||||
|  | ||||
|      To get Metalink support, build with --with-libmetalink and have the | ||||
|      libmetalink packages installed. | ||||
|  | ||||
|    SPECIAL CASES | ||||
|    ------------- | ||||
|    Some versions of uClibc require configuring with CPPFLAGS=-D_GNU_SOURCE=1 | ||||
| @@ -197,6 +200,9 @@ Win32 | ||||
|    first to rebuild every single library your app uses as well as your | ||||
|    app using the debug multithreaded dynamic C runtime. | ||||
|  | ||||
|    If you get linkage errors read section 5.7 of the FAQ document. | ||||
|  | ||||
|  | ||||
|    MingW32 | ||||
|    ------- | ||||
|  | ||||
| @@ -540,7 +546,7 @@ VMS | ||||
|    Curl seems to work with FTP & HTTP other protocols are not tested.  (the | ||||
|    perl http/ftp testing server supplied as testing too cannot work on VMS | ||||
|    because vms has no concept of fork(). [ I tried to give it a whack, but | ||||
|    thats of no use. | ||||
|    that's of no use. | ||||
|  | ||||
|    SSL stuff has not been ported. | ||||
|  | ||||
| @@ -673,7 +679,7 @@ NetWare | ||||
|      you can find precompiled packages at: | ||||
|      http://www.gknw.net/development/ossl/netware/ | ||||
|      for CLIB-based builds OpenSSL 0.9.8h or later is required  - earlier versions | ||||
|      dont support buildunf with CLIB BSD sockets. | ||||
|      don't support building with CLIB BSD sockets. | ||||
|    - optional SSH2 sources (version 0.17 or later); | ||||
|  | ||||
|    Set a search path to your compiler, linker and tools; on Linux make | ||||
| @@ -843,10 +849,10 @@ Android | ||||
|    Method using the static makefile: | ||||
|       - see the build notes in the Android.mk file. | ||||
|  | ||||
|    Method using a configure cross-compile (tested with Android NDK r7b): | ||||
|    Method using a configure cross-compile (tested with Android NDK r7c, r8): | ||||
|       - prepare the toolchain of the Android NDK for standalone use; this can | ||||
|         be done by invoking the script: | ||||
|         ./tools/make-standalone-toolchain.sh | ||||
|         ./build/tools/make-standalone-toolchain.sh | ||||
|         which creates a usual cross-compile toolchain. Lets assume that you put | ||||
|         this toolchain below /opt then invoke configure with something like: | ||||
|         export PATH=/opt/arm-linux-androideabi-4.4.3/bin:$PATH | ||||
| @@ -865,6 +871,20 @@ Android | ||||
|         found in your automake folder: | ||||
|         find /usr -name config.sub | ||||
|  | ||||
|    Wrapper for pkg-config | ||||
|       - In order to make proper use of pkg-config so that configure is able to | ||||
|         find all dependencies you should create a wrapper script for pkg-config; | ||||
|         file /opt/arm-linux-androideabi-4.4.3/bin/arm-linux-androideabi-pkg-config: | ||||
|  | ||||
|         #!/bin/sh | ||||
|         SYSROOT=$(dirname ${0%/*})/sysroot | ||||
|         export PKG_CONFIG_DIR= | ||||
|         export PKG_CONFIG_LIBDIR=${SYSROOT}/usr/local/lib/pkgconfig:${SYSROOT}/usr/share/pkgconfig | ||||
|         export PKG_CONFIG_SYSROOT_DIR=${SYSROOT} | ||||
|         exec pkg-config "$@" | ||||
|  | ||||
|         also create a copy or symlink with name arm-unknown-linux-androideabi-pkg-config. | ||||
|  | ||||
|  | ||||
| CROSS COMPILE | ||||
| ============= | ||||
|   | ||||
| @@ -11,7 +11,7 @@ Building with CMake | ||||
|    This document describes how to compile, build and install curl and libcurl | ||||
|    from source code using the CMake build tool. To build with CMake, you will | ||||
|    of course have to first install CMake.  The minimum required version of | ||||
|    CMake is specifed in the file CMakeLists.txt found in the top of the curl | ||||
|    CMake is specified in the file CMakeLists.txt found in the top of the curl | ||||
|    source tree. Once the correct version of CMake is installed you can follow | ||||
|    the instructions below for the platform you are building on. | ||||
|  | ||||
| @@ -39,7 +39,7 @@ Command Line CMake | ||||
|        cd curl-build | ||||
|        # now run CMake from the build tree, giving it the path to the top of | ||||
|        # the Curl source tree.  CMake will pick a compiler for you. If you | ||||
|        # want to specifiy the compile, you can set the CC environment | ||||
|        # want to specify the compile, you can set the CC environment | ||||
|        # variable prior to running CMake. | ||||
|        cmake ../curl | ||||
|        make | ||||
| @@ -51,7 +51,7 @@ Command Line CMake | ||||
| ccmake | ||||
| ========= | ||||
|      CMake comes with a curses based interface called ccmake.  To run ccmake on | ||||
|      a curl use the instructions for the command line cmake, but substitue | ||||
|      a curl use the instructions for the command line cmake, but substitute | ||||
|      ccmake ../curl for cmake ../curl.  This will bring up a curses interface | ||||
|      with instructions on the bottom of the screen. You can press the "c" key | ||||
|      to configure the project, and the "g" key to generate the project. After | ||||
| @@ -65,7 +65,7 @@ cmake-gui | ||||
|         the curl source tree. | ||||
|         2. Fill in the "Where to build the binaries" combo box with the path | ||||
|         to the directory for your build tree, ideally this should not be the | ||||
|         same as the source tree, but a parallel diretory called curl-build or | ||||
|         same as the source tree, but a parallel directory called curl-build or | ||||
|         something similar. | ||||
|         3. Once the source and binary directories are specified, press the | ||||
|         "Configure" button. | ||||
| @@ -73,5 +73,5 @@ cmake-gui | ||||
|         5. At this point you can change any of the options presented in the | ||||
|         GUI.  Once you have selected all the options you want, click the | ||||
|         "Generate" button. | ||||
|         6. Run the native build tool that you used CMake to genratate. | ||||
|         6. Run the native build tool that you used CMake to generate. | ||||
|  | ||||
|   | ||||
| @@ -26,7 +26,7 @@ exists for a Unix/linux command line environments. This is of little help when | ||||
| it comes to Windows O/S. | ||||
|  | ||||
| Secondly the help that does exist for the Windows O/S focused around mingw | ||||
| thru a command line argument environment. | ||||
| through a command line argument environment. | ||||
|  | ||||
| You may ask "Why is this a problem?" | ||||
|  | ||||
|   | ||||
| @@ -220,7 +220,7 @@ Library | ||||
|  done" loop. It loops if there's a Location: to follow. | ||||
|  | ||||
|  When completed, the curl_easy_cleanup() should be called to free up used | ||||
|  resources. It runs Curl_disconnect() on all open connectons. | ||||
|  resources. It runs Curl_disconnect() on all open connections. | ||||
|  | ||||
|  A quick roundup on internal function sequences (many of these call | ||||
|  protocol-specific function-pointers): | ||||
|   | ||||
| @@ -3,13 +3,23 @@ join in and help us correct one or more of these! Also be sure to check the | ||||
| changelog of the current development status, as one or more of these problems | ||||
| may have been fixed since this was written! | ||||
|  | ||||
| 80. Curl doesn't recognize certificates in DER format in keychain, but it | ||||
|   works with PEM. | ||||
|   http://curl.haxx.se/bug/view.cgi?id=3439999 | ||||
|  | ||||
| 79. SMTP. When sending data to multiple recipients, curl will abort and return | ||||
|   failure if one of the recipients indicate failure (on the "RCPT TO" | ||||
|   command). Ordinary mail programs would proceed and still send to the ones | ||||
|   that can receive data. This is subject for change in the future. | ||||
|   http://curl.haxx.se/bug/view.cgi?id=3438362 | ||||
|  | ||||
| 78. curl and libcurl don't always signal the client properly when "sending" | ||||
|   zero bytes files - it makes for example the command line client not creating | ||||
|   any file at all. Like when using FTP. | ||||
|   http://curl.haxx.se/bug/view.cgi?id=3438362 | ||||
|  | ||||
| 77. CURLOPT_FORBID_REUSE on a handle prevents NTLM from working since it | ||||
|   "absuses" the underlying connection re-use system and if connections are | ||||
|   "abuses" the underlying connection re-use system and if connections are | ||||
|   forced to close they break the NTLM support. | ||||
|  | ||||
| 76. The SOCKET type in Win64 is 64 bits large (and thus so is curl_socket_t on | ||||
| @@ -17,10 +27,15 @@ may have been fixed since this was written! | ||||
|   curl_easy_getinfo() to return a socket properly with the CURLINFO_LASTSOCKET | ||||
|   option as for all other operating systems. | ||||
|  | ||||
| 75. NTLM authentication involving unicode user name or password. | ||||
| 75. NTLM authentication involving unicode user name or password only works | ||||
|   properly if built with UNICODE defined together with the schannel/winssl | ||||
|   backend. The original problem was mentioned in: | ||||
|   http://curl.haxx.se/mail/lib-2009-10/0024.html | ||||
|   http://curl.haxx.se/bug/view.cgi?id=2944325 | ||||
|  | ||||
|   The schannel version verified to work as mentioned in | ||||
|   http://curl.haxx.se/mail/lib-2012-07/0073.html | ||||
|  | ||||
| 73. if a connection is made to a FTP server but the server then just never | ||||
|   sends the 220 response or otherwise is dead slow, libcurl will not | ||||
|   acknowledge the connection timeout during that phase but only the "real" | ||||
|   | ||||
| @@ -59,7 +59,7 @@ MAIL ETIQUETTE | ||||
|   no way to read the reply, but to ask the one person the question. The one | ||||
|   person consequently gets overloaded with mail. | ||||
|  | ||||
|   If you really want to contact an individual and perhaps pay for his or her's | ||||
|   If you really want to contact an individual and perhaps pay for his or her | ||||
|   services, by all means go ahead, but if it's just another curl question, | ||||
|   take it to a suitable list instead. | ||||
|  | ||||
| @@ -92,7 +92,7 @@ MAIL ETIQUETTE | ||||
|  | ||||
|   1.6 Handling trolls and spam | ||||
|  | ||||
|   Despite our good intensions and hard work to keep spam off the lists and to | ||||
|   Despite our good intentions and hard work to keep spam off the lists and to | ||||
|   maintain a friendly and positive atmosphere, there will be times when spam | ||||
|   and or trolls get through. | ||||
|  | ||||
| @@ -170,8 +170,8 @@ MAIL ETIQUETTE | ||||
|       Q: What is the most annoying thing in e-mail? | ||||
|  | ||||
|   Apart from the screwed up read order (especially when mixed together in a | ||||
|   thread when some responds doing the mandaded bottom-posting style), it also | ||||
|   makes it impossible to quote only parts of the original mail. | ||||
|   thread when someone responds using the mandated bottom-posting style), it | ||||
|   also makes it impossible to quote only parts of the original mail. | ||||
|  | ||||
|   When you reply to a mail. You let the mail client insert the previous mail | ||||
|   quoted. Then you put the cursor on the first line of the mail and you move | ||||
|   | ||||
| @@ -613,7 +613,7 @@ SFTP and SCP and PATH NAMES | ||||
| FTP and firewalls | ||||
|  | ||||
|   The FTP protocol requires one of the involved parties to open a second | ||||
|   connection as soon as data is about to get transfered. There are two ways to | ||||
|   connection as soon as data is about to get transferred. There are two ways to | ||||
|   do this. | ||||
|  | ||||
|   The default way for curl is to issue the PASV command which causes the | ||||
|   | ||||
| @@ -5,7 +5,7 @@ | ||||
| #                            | (__| |_| |  _ <| |___ | ||||
| #                             \___|\___/|_| \_\_____| | ||||
| # | ||||
| # Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
| # Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
| # | ||||
| # This software is licensed as described in the file COPYING, which | ||||
| # you should have received as part of this distribution. The terms | ||||
| @@ -36,7 +36,7 @@ EXTRA_DIST = MANUAL BUGS CONTRIBUTE FAQ FEATURES INTERNALS SSLCERTS	 \ | ||||
|  README.win32 RESOURCES TODO TheArtOfHttpScripting THANKS VERSIONS	 \ | ||||
|  KNOWN_BUGS BINDINGS $(man_MANS) $(HTMLPAGES) HISTORY INSTALL		 \ | ||||
|  $(PDFPAGES) LICENSE-MIXING README.netware DISTRO-DILEMMA INSTALL.devcpp \ | ||||
|  MAIL-ETIQUETTE | ||||
|  MAIL-ETIQUETTE HTTP-COOKIES | ||||
|  | ||||
| MAN2HTML= roffit < $< >$@ | ||||
|  | ||||
|   | ||||
							
								
								
									
										48
									
								
								docs/THANKS
									
									
									
									
									
								
							
							
						
						
									
										48
									
								
								docs/THANKS
									
									
									
									
									
								
							| @@ -65,7 +65,7 @@ Andrew Fuller | ||||
| Andrew Moise | ||||
| Andrew Wansink | ||||
| Andrew de los Reyes | ||||
| Andr<EFBFBD>s Garc<EFBFBD>a | ||||
| Andrés García | ||||
| Andy Cedilnik | ||||
| Andy Serpa | ||||
| Andy Tsouladze | ||||
| @@ -76,6 +76,7 @@ Anton Bychkov | ||||
| Anton Kalmykov | ||||
| Arkadiusz Miskiewicz | ||||
| Armel Asselin | ||||
| Arnaud Compan | ||||
| Arnaud Ebalard | ||||
| Arthur Murray | ||||
| Arve Knudsen | ||||
| @@ -94,6 +95,7 @@ Ben Van Hof | ||||
| Ben Winslow | ||||
| Benbuck Nason | ||||
| Benjamin Gerard | ||||
| Benjamin Johnson | ||||
| Bernard Leak | ||||
| Bernhard Reutner-Fischer | ||||
| Bertrand Demiddelaer | ||||
| @@ -102,7 +104,8 @@ Bill Hoffman | ||||
| Bjoern Sikora | ||||
| Bjorn Augustsson | ||||
| Bjorn Reese | ||||
| Bj<EFBFBD>rn Stenberg | ||||
| Björn Stenberg | ||||
| Blaise Potard | ||||
| Bob Richmond | ||||
| Bob Schader | ||||
| Bogdan Nicula | ||||
| @@ -171,6 +174,7 @@ Cris Bailiff | ||||
| Cristian Rodriguez | ||||
| Curt Bogmine | ||||
| Cyrill Osterwalder | ||||
| Dag Ekengren | ||||
| Dagobert Michelsen | ||||
| Damien Adant | ||||
| Dan Becker | ||||
| @@ -184,11 +188,11 @@ Dan Zitter | ||||
| Daniel Black | ||||
| Daniel Cater | ||||
| Daniel Egger | ||||
| Daniel Fandrich | ||||
| Daniel Johnson | ||||
| Daniel Mentz | ||||
| Daniel Steinberg | ||||
| Daniel Stenberg | ||||
| Daniel Theron | ||||
| Daniel at touchtunes | ||||
| Darryl House | ||||
| Darshan Mody | ||||
| @@ -311,7 +315,7 @@ Georg Lippitsch | ||||
| Georg Wicherski | ||||
| Gerd v. Egidy | ||||
| Gerhard Herre | ||||
| Gerrit Bruchh<EFBFBD>user | ||||
| Gerrit Bruchhäuser | ||||
| Giancarlo Formicuccia | ||||
| Giaslas Georgios | ||||
| Gil Weber | ||||
| @@ -335,7 +339,7 @@ Guenter Knauf | ||||
| Guillaume Arluison | ||||
| Gustaf Hui | ||||
| Gwenole Beauchesne | ||||
| G<EFBFBD>tz Babin-Ebell | ||||
| Götz Babin-Ebell | ||||
| Hamish Mackenzie | ||||
| Hang Kin Lau | ||||
| Hanno Kranzhoff | ||||
| @@ -387,7 +391,9 @@ James MacMillan | ||||
| Jamie Lokier | ||||
| Jamie Newton | ||||
| Jamie Wilkinson | ||||
| Jan Ehrhardt | ||||
| Jan Kunder | ||||
| Jan Schaumann | ||||
| Jan Van Boghout | ||||
| Jared Lundell | ||||
| Jari Sundell | ||||
| @@ -453,6 +459,7 @@ Jonas Forsman | ||||
| Jonas Schnelli | ||||
| Jonatan Lander | ||||
| Jonathan Hseu | ||||
| Jonathan Nieder | ||||
| Jongki Suwandi | ||||
| Jose Kahan | ||||
| Josef Wolf | ||||
| @@ -461,18 +468,19 @@ Joshua Kwan | ||||
| Josue Andrade Gomes | ||||
| Juan Barreto | ||||
| Juan F. Codagnone | ||||
| Juan Ignacio Herv<EFBFBD>s | ||||
| Juan Ignacio Hervás | ||||
| Judson Bishop | ||||
| Juergen Wilke | ||||
| Jukka Pihl | ||||
| Julian Noble | ||||
| Julian Taylor | ||||
| Julien Chaffraix | ||||
| Julien Royer | ||||
| Jun-ichiro itojun Hagino | ||||
| Jurij Smakov | ||||
| Justin Fletcher | ||||
| J<EFBFBD>rg Mueller-Tolk | ||||
| J<EFBFBD>rn Hartroth | ||||
| Jörg Mueller-Tolk | ||||
| Jörn Hartroth | ||||
| Kai Sommerfeld | ||||
| Kai-Uwe Rommel | ||||
| Kalle Vahlman | ||||
| @@ -506,7 +514,7 @@ Kris Kennaway | ||||
| Krishnendu Majumdar | ||||
| Krister Johansen | ||||
| Kristian Gunstone | ||||
| Kristian K<EFBFBD>hntopp | ||||
| Kristian Köhntopp | ||||
| Kyle Sallee | ||||
| Lachlan O'Dea | ||||
| Larry Campbell | ||||
| @@ -523,6 +531,7 @@ Len Krause | ||||
| Lenaic Lefever | ||||
| Lenny Rachitsky | ||||
| Liam Healy | ||||
| Lijo Antony | ||||
| Linas Vepstas | ||||
| Ling Thio | ||||
| Linus Nielsen Feltzing | ||||
| @@ -544,6 +553,7 @@ Mandy Wu | ||||
| Manfred Schwarb | ||||
| Manuel Massing | ||||
| Marc Boucher | ||||
| Marc Hoersken | ||||
| Marc Kleine-Budde | ||||
| Marcel Roelofs | ||||
| Marcelo Juchem | ||||
| @@ -644,7 +654,7 @@ Nick Zitzmann | ||||
| Nico Baggus | ||||
| Nicolas Berloquin | ||||
| Nicolas Croiset | ||||
| Nicolas Fran<EFBFBD>ois | ||||
| Nicolas François | ||||
| Niels van Tongeren | ||||
| Nikita Schmidt | ||||
| Nikitinskit Dmitriy | ||||
| @@ -658,8 +668,9 @@ Nodak Sodak | ||||
| Norbert Frese | ||||
| Norbert Novotny | ||||
| Ofer | ||||
| Olaf Flebbe | ||||
| Olaf Stueben | ||||
| Olaf St<EFBFBD>ben | ||||
| Olaf Stüben | ||||
| Oren Tirosh | ||||
| Ori Avtalion | ||||
| P R Schaffner | ||||
| @@ -714,6 +725,7 @@ Philippe Raoult | ||||
| Philippe Vaucher | ||||
| Pierre | ||||
| Pierre Brico | ||||
| Pierre Chapuis | ||||
| Pierre Joye | ||||
| Pierre Ynard | ||||
| Pooyan McSporran | ||||
| @@ -772,11 +784,13 @@ Robin Johnson | ||||
| Robin Kay | ||||
| Robson Braga Araujo | ||||
| Rodney Simmons | ||||
| Rodrigo Silva | ||||
| Roland Blom | ||||
| Roland Krikava | ||||
| Roland Zimmermann | ||||
| Rolland Dudemaine | ||||
| Roman Koifman | ||||
| Roman Mamedov | ||||
| Ron Zapp | ||||
| Rosimildo da Silva | ||||
| Roy Shan | ||||
| @@ -787,11 +801,11 @@ Ryan Chan | ||||
| Ryan Nelson | ||||
| Ryan Schmidt | ||||
| S. Moonesamy | ||||
| Salvador D<EFBFBD>vila | ||||
| Salvador Dávila | ||||
| Salvatore Sorrentino | ||||
| Sam Listopad | ||||
| Sampo Kellomaki | ||||
| Samuel D<EFBFBD>az Garc<EFBFBD>a | ||||
| Samuel Díaz García | ||||
| Samuel Listopad | ||||
| Samuel Thibault | ||||
| Sander Gates | ||||
| @@ -849,11 +863,12 @@ Stoned Elipot | ||||
| Sven Anders | ||||
| Sven Neuhaus | ||||
| Sven Wegener | ||||
| S<EFBFBD>bastien Willemijns | ||||
| Sébastien Willemijns | ||||
| T. Bharath | ||||
| T. Yamada | ||||
| Taneli Vahakangas | ||||
| Tanguy Fautre | ||||
| Tatsuhiro Tsujikawa | ||||
| Temprimus | ||||
| Thomas J. Moore | ||||
| Thomas Klausner | ||||
| @@ -867,10 +882,11 @@ Tim Bartley | ||||
| Tim Chen | ||||
| Tim Costello | ||||
| Tim Harder | ||||
| Tim Heckman | ||||
| Tim Newsome | ||||
| Tim Sneddon | ||||
| Tinus van den Berg | ||||
| Tobias Rundstr<EFBFBD>m | ||||
| Tobias Rundström | ||||
| Toby Peterson | ||||
| Todd A Ouska | ||||
| Todd Kulesza | ||||
| @@ -901,7 +917,7 @@ Traian Nicolescu | ||||
| Troels Walsted Hansen | ||||
| Troy Engel | ||||
| Tupone Alfredo | ||||
| Ulf H<EFBFBD>rnhammar | ||||
| Ulf Härnhammar | ||||
| Ulrich Zadow | ||||
| Venkat Akella | ||||
| Victor Snezhko | ||||
|   | ||||
							
								
								
									
										196
									
								
								docs/TODO
									
									
									
									
									
								
							
							
						
						
									
										196
									
								
								docs/TODO
									
									
									
									
									
								
							| @@ -62,56 +62,63 @@ | ||||
|  8.4 non-gcrypt | ||||
|  | ||||
|  9. SMTP | ||||
|  9.1 Other authentication mechanims | ||||
|  9.1 Other authentication mechanisms | ||||
|  9.2 Specify the preferred authentication mechanism | ||||
|  9.3 Initial response | ||||
|  9.4 Pipelining | ||||
|   | ||||
|  10. POP3 | ||||
|  10.1 APOP Authentication | ||||
|  10.2 Other authentication mechanims | ||||
|  10.2 SASL based authentication mechanisms | ||||
|  10.3 auth= in URLs | ||||
|   | ||||
|  11. Other protocols | ||||
|  11. IMAP | ||||
|  11.1 SASL based authentication mechanisms | ||||
|   | ||||
|  12. New protocols | ||||
|  12.1 RSYNC | ||||
|  12. LDAP | ||||
|  12.1 SASL based authentication mechanisms | ||||
|   | ||||
|  13. Client | ||||
|  13.1 sync | ||||
|  13.2 glob posts | ||||
|  13.3 prevent file overwriting | ||||
|  13.4 simultaneous parallel transfers | ||||
|  13.5 provide formpost headers | ||||
|  13.6 url-specific options | ||||
|  13.7 metalink support | ||||
|  13.8 warning when setting an option | ||||
|  13.9 IPv6 addresses with globbing | ||||
|  13. Other protocols | ||||
|  | ||||
|  14. Build | ||||
|  14.1 roffit | ||||
|  14. New protocols | ||||
|  14.1 RSYNC | ||||
|  | ||||
|  15. Test suite | ||||
|  15.1 SSL tunnel | ||||
|  15.2 nicer lacking perl message | ||||
|  15.3 more protocols supported | ||||
|  15.4 more platforms supported | ||||
|  15. Client | ||||
|  15.1 sync | ||||
|  15.2 glob posts | ||||
|  15.3 prevent file overwriting | ||||
|  15.4 simultaneous parallel transfers | ||||
|  15.5 provide formpost headers | ||||
|  15.6 url-specific options | ||||
|  15.7 metalink support | ||||
|  15.8 warning when setting an option | ||||
|  15.9 IPv6 addresses with globbing | ||||
|  | ||||
|  16. Next SONAME bump | ||||
|  16.1 http-style HEAD output for ftp | ||||
|  16.2 combine error codes | ||||
|  16.3 extend CURLOPT_SOCKOPTFUNCTION prototype | ||||
|  16. Build | ||||
|  16.1 roffit | ||||
|  | ||||
|  17. Next major release | ||||
|  17.1 cleanup return codes | ||||
|  17.2 remove obsolete defines | ||||
|  17.3 size_t | ||||
|  17.4 remove several functions | ||||
|  17.5 remove CURLOPT_FAILONERROR | ||||
|  17.6 remove CURLOPT_DNS_USE_GLOBAL_CACHE | ||||
|  17.7 remove progress meter from libcurl | ||||
|  17.8 remove 'curl_httppost' from public | ||||
|  17.9 have form functions use CURL handle argument | ||||
|  17. Test suite | ||||
|  17.1 SSL tunnel | ||||
|  17.2 nicer lacking perl message | ||||
|  17.3 more protocols supported | ||||
|  17.4 more platforms supported | ||||
|  | ||||
|  18. Next SONAME bump | ||||
|  18.1 http-style HEAD output for ftp | ||||
|  18.2 combine error codes | ||||
|  18.3 extend CURLOPT_SOCKOPTFUNCTION prototype | ||||
|  | ||||
|  19. Next major release | ||||
|  19.1 cleanup return codes | ||||
|  19.2 remove obsolete defines | ||||
|  19.3 size_t | ||||
|  19.4 remove several functions | ||||
|  19.5 remove CURLOPT_FAILONERROR | ||||
|  19.6 remove CURLOPT_DNS_USE_GLOBAL_CACHE | ||||
|  19.7 remove progress meter from libcurl | ||||
|  19.8 remove 'curl_httppost' from public | ||||
|  19.9 have form functions use CURL handle argument | ||||
|  19.10 Add CURLOPT_MAIL_CLIENT option | ||||
|  | ||||
| ============================================================================== | ||||
|  | ||||
| @@ -373,15 +380,14 @@ to provide the data to send. | ||||
|  | ||||
| 9. SMTP | ||||
|  | ||||
| 9.1 Other authentication mechanims | ||||
| 9.1 Other authentication mechanisms | ||||
|  | ||||
|  Add support for other authentication mechanisms such as digest-md5 and | ||||
|  gssapi. | ||||
|  Add support for gssapi. | ||||
|  | ||||
| 9.2 Specify the preferred authentication mechanism | ||||
|  | ||||
|  Add the ability to specify the preferred authentication mechanism or a list | ||||
|  of mechanims that should be used. Not only that, but the order that is | ||||
|  of mechanisms that should be used. Not only that, but the order that is | ||||
|  returned by the server during the EHLO response should be honored by curl. | ||||
|  | ||||
| 9.3 Initial response | ||||
| @@ -406,7 +412,7 @@ to provide the data to send. | ||||
|  is specified as "APOP <username> <md5 password>", however, it isn't | ||||
|  supported by all mail servers. | ||||
|  | ||||
| 10.2 Other authentication mechanims | ||||
| 10.2 SASL authentication mechanisms | ||||
|  | ||||
|  SASL offers support for additional authentication mechanisms via the AUTH | ||||
|  command. Detection of an email server's support for SASL authentication | ||||
| @@ -415,21 +421,39 @@ to provide the data to send. | ||||
|  | ||||
| 10.3 auth= in URLs | ||||
|  | ||||
|  Being able to specify the preferred authentication mechanim in the URL as | ||||
|  per RFC-2384 (http://tools.ietf.org/html/rfc2384). | ||||
|  Being able to specify the preferred authentication mechanism in the URL as | ||||
|  per RFC2384. | ||||
|  | ||||
| 11. Other protocols | ||||
| 11. IMAP | ||||
|  | ||||
| 12. New protocols | ||||
| 11.1 SASL based authentication mechanisms | ||||
|  | ||||
| 12.1 RSYNC | ||||
|  Like POP3 curl currently sends usernames and passwords as clear text. | ||||
|  Support should also be added to support SASL based authentication mechanisms | ||||
|  as these are more secure. | ||||
|  | ||||
| 12. LDAP | ||||
|  | ||||
| 12.1 SASL based authentication mechansims | ||||
|  | ||||
|  Currently the LDAP module only supports ldap_simple_bind_s() in order to bind | ||||
|  to an LDAP server. However, this function sends username and password details | ||||
|  using the simple authentication mechanism (as clear text). However, it should | ||||
|  be possible to use ldap_bind_s() instead specifing the security context | ||||
|  information ourselves. | ||||
|  | ||||
| 13. Other protocols | ||||
|  | ||||
| 14. New protocols | ||||
|  | ||||
| 14.1 RSYNC | ||||
|  | ||||
|  There's no RFC for the protocol or an URI/URL format.  An implementation | ||||
|  should most probably use an existing rsync library, such as librsync. | ||||
|  | ||||
| 13. Client | ||||
| 15. Client | ||||
|  | ||||
| 13.1 sync | ||||
| 15.1 sync | ||||
|  | ||||
|  "curl --sync http://example.com/feed[1-100].rss" or | ||||
|  "curl --sync http://example.net/{index,calendar,history}.html" | ||||
| @@ -438,12 +462,12 @@ to provide the data to send. | ||||
|  remote file is newer than the local file. A Last-Modified HTTP date header | ||||
|  should also be used to set the mod date on the downloaded file. | ||||
|  | ||||
| 13.2 glob posts | ||||
| 15.2 glob posts | ||||
|  | ||||
|  Globbing support for -d and -F, as in 'curl -d "name=foo[0-9]" URL'. | ||||
|  This is easily scripted though. | ||||
|  | ||||
| 13.3 prevent file overwriting | ||||
| 15.3 prevent file overwriting | ||||
|  | ||||
|  Add an option that prevents cURL from overwriting existing local files. When | ||||
|  used, and there already is an existing file with the target file name | ||||
| @@ -451,14 +475,14 @@ to provide the data to send. | ||||
|  existing). So that index.html becomes first index.html.1 and then | ||||
|  index.html.2 etc. | ||||
|  | ||||
| 13.4 simultaneous parallel transfers | ||||
| 15.4 simultaneous parallel transfers | ||||
|  | ||||
|  The client could be told to use maximum N simultaneous parallel transfers and | ||||
|  then just make sure that happens. It should of course not make more than one | ||||
|  connection to the same remote host. This would require the client to use the | ||||
|  multi interface. http://curl.haxx.se/bug/feature.cgi?id=1558595 | ||||
|  | ||||
| 13.5 provide formpost headers | ||||
| 15.5 provide formpost headers | ||||
|  | ||||
|  Extending the capabilities of the multipart formposting. How about leaving | ||||
|  the ';type=foo' syntax as it is and adding an extra tag (headers) which | ||||
| @@ -472,7 +496,7 @@ to provide the data to send. | ||||
|  which should overwrite the program reasonable defaults (plain/text, | ||||
|  8bit...) | ||||
|  | ||||
| 13.6 url-specific options | ||||
| 15.6 url-specific options | ||||
|  | ||||
|  Provide a way to make options bound to a specific URL among several on the | ||||
|  command line. Possibly by letting ':' separate options between URLs, | ||||
| @@ -486,62 +510,62 @@ to provide the data to send. | ||||
|  | ||||
|  The example would do a POST-GET-POST combination on a single command line. | ||||
|  | ||||
| 13.7 metalink support | ||||
| 15.7 metalink support | ||||
|  | ||||
|  Add metalink support to curl (http://www.metalinker.org/). This is most useful | ||||
|  with simultaneous parallel transfers (11.6) but not necessary. | ||||
|  | ||||
| 13.8 warning when setting an option | ||||
| 15.8 warning when setting an option | ||||
|  | ||||
|   Display a warning when libcurl returns an error when setting an option. | ||||
|   This can be useful to tell when support for a particular feature hasn't been | ||||
|   compiled into the library. | ||||
|  | ||||
| 13.9 IPv6 addresses with globbing | ||||
| 15.9 IPv6 addresses with globbing | ||||
|  | ||||
|   Currently the command line client needs to get url globbing disabled (with | ||||
|   -g) for it to support IPv6 numerical addresses. This is a rather silly flaw | ||||
|   that should be corrected. It probably involves a smarter detection of the | ||||
|   '[' and ']' letters. | ||||
|  | ||||
| 14. Build | ||||
| 16. Build | ||||
|  | ||||
| 14.1 roffit | ||||
| 16.1 roffit | ||||
|  | ||||
|  Consider extending 'roffit' to produce decent ASCII output, and use that | ||||
|  instead of (g)nroff when building src/hugehelp.c | ||||
|  | ||||
| 15. Test suite | ||||
| 17. Test suite | ||||
|  | ||||
| 15.1 SSL tunnel | ||||
| 17.1 SSL tunnel | ||||
|  | ||||
|  Make our own version of stunnel for simple port forwarding to enable HTTPS | ||||
|  and FTP-SSL tests without the stunnel dependency, and it could allow us to | ||||
|  provide test tools built with either OpenSSL or GnuTLS | ||||
|  | ||||
| 15.2 nicer lacking perl message | ||||
| 17.2 nicer lacking perl message | ||||
|  | ||||
|  If perl wasn't found by the configure script, don't attempt to run the tests | ||||
|  but explain something nice why it doesn't. | ||||
|  | ||||
| 15.3 more protocols supported | ||||
| 17.3 more protocols supported | ||||
|  | ||||
|  Extend the test suite to include more protocols. The telnet could just do ftp | ||||
|  or http operations (for which we have test servers). | ||||
|  | ||||
| 15.4 more platforms supported | ||||
| 17.4 more platforms supported | ||||
|  | ||||
|  Make the test suite work on more platforms. OpenBSD and Mac OS. Remove | ||||
|  fork()s and it should become even more portable. | ||||
|  | ||||
| 16. Next SONAME bump | ||||
| 18. Next SONAME bump | ||||
|  | ||||
| 16.1 http-style HEAD output for ftp | ||||
| 18.1 http-style HEAD output for ftp | ||||
|  | ||||
|  #undef CURL_FTP_HTTPSTYLE_HEAD in lib/ftp.c to remove the HTTP-style headers | ||||
|  from being output in NOBODY requests over ftp | ||||
|  | ||||
| 16.2 combine error codes | ||||
| 18.2 combine error codes | ||||
|  | ||||
|  Combine some of the error codes to remove duplicates.  The original | ||||
|  numbering should not be changed, and the old identifiers would be | ||||
| @@ -551,37 +575,44 @@ to provide the data to send. | ||||
|  Candidates for removal and their replacements: | ||||
|  | ||||
|     CURLE_FILE_COULDNT_READ_FILE => CURLE_REMOTE_FILE_NOT_FOUND | ||||
|  | ||||
|     CURLE_FTP_COULDNT_RETR_FILE => CURLE_REMOTE_FILE_NOT_FOUND | ||||
|  | ||||
|     CURLE_FTP_COULDNT_USE_REST => CURLE_RANGE_ERROR | ||||
|  | ||||
|     CURLE_FUNCTION_NOT_FOUND => CURLE_FAILED_INIT | ||||
|  | ||||
|     CURLE_LDAP_INVALID_URL => CURLE_URL_MALFORMAT | ||||
|  | ||||
|     CURLE_TFTP_NOSUCHUSER => CURLE_TFTP_ILLEGAL | ||||
|  | ||||
|     CURLE_TFTP_NOTFOUND => CURLE_REMOTE_FILE_NOT_FOUND | ||||
|  | ||||
|     CURLE_TFTP_PERM => CURLE_REMOTE_ACCESS_DENIED | ||||
|  | ||||
| 16.3 extend CURLOPT_SOCKOPTFUNCTION prototype | ||||
| 18.3 extend CURLOPT_SOCKOPTFUNCTION prototype | ||||
|  | ||||
|  The current prototype only provides 'purpose' that tells what the | ||||
|  connection/socket is for, but not any protocol or similar. It makes it hard | ||||
|  for applications to differentiate on TCP vs UDP and even HTTP vs FTP and | ||||
|  similar. | ||||
|  | ||||
| 17. Next major release | ||||
| 19. Next major release | ||||
|  | ||||
| 17.1 cleanup return codes | ||||
| 19.1 cleanup return codes | ||||
|  | ||||
|  curl_easy_cleanup() returns void, but curl_multi_cleanup() returns a | ||||
|  CURLMcode. These should be changed to be the same. | ||||
|  | ||||
| 17.2 remove obsolete defines | ||||
| 19.2 remove obsolete defines | ||||
|  | ||||
|  remove obsolete defines from curl/curl.h | ||||
|  | ||||
| 17.3 size_t | ||||
| 19.3 size_t | ||||
|  | ||||
|  make several functions use size_t instead of int in their APIs | ||||
|  | ||||
| 17.4 remove several functions | ||||
| 19.4 remove several functions | ||||
|  | ||||
|  remove the following functions from the public API: | ||||
|  | ||||
| @@ -602,18 +633,18 @@ to provide the data to send. | ||||
|  | ||||
|  curl_multi_socket_all | ||||
|  | ||||
| 17.5 remove CURLOPT_FAILONERROR | ||||
| 19.5 remove CURLOPT_FAILONERROR | ||||
|  | ||||
|  Remove support for CURLOPT_FAILONERROR, it has gotten too kludgy and weird | ||||
|  internally. Let the app judge success or not for itself. | ||||
|  | ||||
| 17.6 remove CURLOPT_DNS_USE_GLOBAL_CACHE | ||||
| 19.6 remove CURLOPT_DNS_USE_GLOBAL_CACHE | ||||
|  | ||||
|  Remove support for a global DNS cache. Anything global is silly, and we | ||||
|  already offer the share interface for the same functionality but done | ||||
|  "right". | ||||
|  | ||||
| 17.7 remove progress meter from libcurl | ||||
| 19.7 remove progress meter from libcurl | ||||
|  | ||||
|  The internally provided progress meter output doesn't belong in the library. | ||||
|  Basically no application wants it (apart from curl) but instead applications | ||||
| @@ -623,7 +654,7 @@ to provide the data to send. | ||||
|  variable types passed to it instead of doubles so that big files work | ||||
|  correctly. | ||||
|  | ||||
| 17.8 remove 'curl_httppost' from public | ||||
| 19.8 remove 'curl_httppost' from public | ||||
|  | ||||
|  curl_formadd() was made to fill in a public struct, but the fact that the | ||||
|  struct is public is never really used by application for their own advantage | ||||
| @@ -632,10 +663,21 @@ to provide the data to send. | ||||
|  Changing them to return a private handle will benefit the implementation and | ||||
|  allow us much greater freedoms while still maintining a solid API and ABI. | ||||
|  | ||||
| 17.9 have form functions use CURL handle argument | ||||
| 19.9 have form functions use CURL handle argument | ||||
|  | ||||
|  curl_formadd() and curl_formget() both currently have no CURL handle | ||||
|  argument, but both can use a callback that is set in the easy handle, and | ||||
|  thus curl_formget() with callback cannot function without first having | ||||
|  curl_easy_perform() (or similar) called - which is hard to grasp and a design | ||||
|  mistake. | ||||
|  | ||||
| 19.10 Add CURLOPT_MAIL_CLIENT option | ||||
|  | ||||
|  Rather than use the URL to specify the mail client string to present in the | ||||
|  HELO and EHLO commands, libcurl should support a new CURLOPT specifically for | ||||
|  specifing this data as the URL is non-standard and to be honest a bit of a | ||||
|  hack ;-) | ||||
|  | ||||
|  Please see the following thread for more information: | ||||
|  http://curl.haxx.se/mail/lib-2012-05/0178.html | ||||
|   | ||||
							
								
								
									
										35
									
								
								docs/curl.1
									
									
									
									
									
								
							
							
						
						
									
										35
									
								
								docs/curl.1
									
									
									
									
									
								
							| @@ -35,8 +35,8 @@ command is designed to work without user interaction. | ||||
|  | ||||
| curl offers a busload of useful tricks like proxy support, user | ||||
| authentication, FTP upload, HTTP post, SSL connections, cookies, file transfer | ||||
| resume and more. As you will see below, the number of features will make your | ||||
| head spin! | ||||
| resume, Metalink, and more. As you will see below, the number of features will | ||||
| make your head spin! | ||||
|  | ||||
| curl is powered by libcurl for all transfer-related features. See | ||||
| .BR libcurl (3) | ||||
| @@ -832,6 +832,31 @@ is used, this option can be used to prevent curl from following redirections | ||||
| option to -1 to make it limitless. | ||||
|  | ||||
| If this option is used several times, the last one will be used. | ||||
| .IP "--metalink" | ||||
| This option can tell curl to parse and process a given URI as Metalink file (both | ||||
| version 3 and 4 (RFC 5854) are supported) and make use of the mirrors | ||||
| listed within for failover if there are errors (such as the file or | ||||
| server not being available). It will also verify the hashe of the file | ||||
| after the download completes. The Metalink file itself is downloaded | ||||
| and processed in memory and not stored in the local file system. | ||||
|  | ||||
| Example to use a remote Metalink file: | ||||
|  | ||||
| \fBcurl\fP --metalink http://www.example.com/example.metalink | ||||
|  | ||||
| To use a Metalink file in the local file system, use FILE protocol | ||||
| (file://): | ||||
|  | ||||
| \fBcurl\fP --metalink file://example.metalink | ||||
|  | ||||
| Please note that if FILE protocol is disabled, there is no way to use | ||||
| a local Metalink file at the time of this writing. Also note that If | ||||
| --metalink and --include are used together, --include will be | ||||
| ignored. This is because including headers in the response will break | ||||
| Metalink parser and if the headers are included in the file described | ||||
| in Metalink file, hash check will fail. | ||||
|  | ||||
| (Added in 7.27.0, if built against the libmetalink library.) | ||||
| .IP "-n, --netrc" | ||||
| Makes curl scan the \fI.netrc\fP (\fI_netrc\fP on Windows) file in the user's | ||||
| home directory for login name and password. This is typically used for FTP on | ||||
| @@ -1223,7 +1248,7 @@ using \fI--retry-delay\fP you disable this exponential backoff algorithm. See | ||||
| also \fI--retry-max-time\fP to limit the total time allowed for | ||||
| retries. (Added in 7.12.3) | ||||
|  | ||||
| If this option is used multiple times, the last occurrence decide the amount. | ||||
| If this option is used multiple times, the last occurrence determines the amount. | ||||
| .IP "--retry-delay <seconds>" | ||||
| Make curl sleep this amount of time before each retry when a transfer has | ||||
| failed with a transient error (it changes the default backoff time algorithm | ||||
| @@ -1693,6 +1718,10 @@ SSPI is supported. If you use NTLM and set a blank user name, curl will | ||||
| authenticate with your current user and password. | ||||
| .IP "TLS-SRP" | ||||
| SRP (Secure Remote Password) authentication is supported for TLS. | ||||
| .IP "Metalink" | ||||
| This curl supports Metalink (both version 3 and 4 (RFC 5854)), which | ||||
| describes mirrors and hashes.  curl will use mirrors for failover if | ||||
| there are errors (such as the file or server not being available). | ||||
| .RE | ||||
| .SH FILES | ||||
| .I ~/.curlrc | ||||
|   | ||||
| @@ -40,12 +40,6 @@ endif | ||||
| ifndef OPENSSL_PATH | ||||
| OPENSSL_PATH = ../../../openssl-0.9.8x | ||||
| endif | ||||
| ifndef OPENSSL_LIBPATH | ||||
| OPENSSL_LIBPATH = $(OPENSSL_PATH)/out | ||||
| endif | ||||
| ifndef OPENSSL_LIBS | ||||
| OPENSSL_LIBS = -leay32 -lssl32 | ||||
| endif | ||||
| # Edit the path below to point to the base of your LibSSH2 package. | ||||
| ifndef LIBSSH2_PATH | ||||
| LIBSSH2_PATH = ../../../libssh2-1.4.2 | ||||
| @@ -81,19 +75,44 @@ ifndef ARCH | ||||
| ARCH = w32 | ||||
| endif | ||||
|  | ||||
| CC = gcc | ||||
| CFLAGS = -g -O2 -Wall | ||||
| CFLAGS += -fno-strict-aliasing | ||||
| CC	= $(CROSSPREFIX)gcc | ||||
| CFLAGS	= -g -O2 -Wall | ||||
| CFLAGS	+= -fno-strict-aliasing | ||||
| ifeq ($(ARCH),w64) | ||||
| CFLAGS += -D_AMD64_ | ||||
| CFLAGS	+= -D_AMD64_ | ||||
| endif | ||||
| # comment LDFLAGS below to keep debug info | ||||
| LDFLAGS = -s | ||||
| RC = windres | ||||
| RCFLAGS = --include-dir=$(PROOT)/include -O COFF -i | ||||
| LDFLAGS	= -s | ||||
| RC	= $(CROSSPREFIX)windres | ||||
| RCFLAGS	= --include-dir=$(PROOT)/include -O COFF -i | ||||
|  | ||||
| RM = del /q /f 2>NUL | ||||
| CP = copy | ||||
| # Platform-dependent helper tool macros | ||||
| ifeq ($(findstring /sh,$(SHELL)),/sh) | ||||
| DEL	= rm -f $1 | ||||
| RMDIR	= rm -fr $1 | ||||
| MKDIR	= mkdir -p $1 | ||||
| COPY	= -cp -afv $1 $2 | ||||
| #COPYR	= -cp -afr $1/* $2 | ||||
| COPYR	= -rsync -aC $1/* $2 | ||||
| TOUCH	= touch $1 | ||||
| CAT	= cat | ||||
| ECHONL	= echo "" | ||||
| DL	= ' | ||||
| else | ||||
| ifeq "$(OS)" "Windows_NT" | ||||
| DEL	= -del 2>NUL /q /f $(subst /,\,$1) | ||||
| RMDIR	= -rd 2>NUL /q /s $(subst /,\,$1) | ||||
| else | ||||
| DEL	= -del 2>NUL $(subst /,\,$1) | ||||
| RMDIR	= -deltree 2>NUL /y $(subst /,\,$1) | ||||
| endif | ||||
| MKDIR	= -md 2>NUL $(subst /,\,$1) | ||||
| COPY	= -copy 2>NUL /y $(subst /,\,$1) $(subst /,\,$2) | ||||
| COPYR	= -xcopy 2>NUL /q /y /e $(subst /,\,$1) $(subst /,\,$2) | ||||
| TOUCH	= copy 2>&1>NUL /b $(subst /,\,$1) +,, | ||||
| CAT	= type | ||||
| ECHONL	= $(ComSpec) /c echo. | ||||
| endif | ||||
|  | ||||
| ######################################################## | ||||
| ## Nothing more to do below this line! | ||||
| @@ -138,6 +157,13 @@ endif | ||||
| ifeq ($(findstring -ipv6,$(CFG)),-ipv6) | ||||
| IPV6 = 1 | ||||
| endif | ||||
| ifeq ($(findstring -metalink,$(CFG)),-metalink) | ||||
| METALINK = 1 | ||||
| endif | ||||
| ifeq ($(findstring -winssl,$(CFG)),-winssl) | ||||
| SCHANNEL = 1 | ||||
| SSPI = 1 | ||||
| endif | ||||
|  | ||||
| INCLUDES = -I. -I$(PROOT) -I$(PROOT)/include -I$(PROOT)/lib | ||||
|  | ||||
| @@ -148,6 +174,7 @@ else | ||||
|   curl_DEPENDENCIES = $(PROOT)/lib/libcurl.a | ||||
|   curl_LDADD = -L$(PROOT)/lib -lcurl | ||||
|   CFLAGS += -DCURL_STATICLIB | ||||
|   LDFLAGS += -static | ||||
| endif | ||||
| ifdef ARES | ||||
|   ifndef DYN | ||||
| @@ -165,7 +192,22 @@ ifdef SSH2 | ||||
|   curl_LDADD += -L"$(LIBSSH2_PATH)/win32" -lssh2 | ||||
| endif | ||||
| ifdef SSL | ||||
|   CFLAGS += -DUSE_SSLEAY -DHAVE_OPENSSL_ENGINE_H | ||||
|   ifndef OPENSSL_LIBPATH | ||||
|     OPENSSL_LIBS = -lssl -lcrypto | ||||
|     ifeq "$(wildcard $(OPENSSL_PATH)/out)" "$(OPENSSL_PATH)/out" | ||||
|       OPENSSL_LIBPATH = $(OPENSSL_PATH)/out | ||||
|       ifdef DYN | ||||
|         OPENSSL_LIBS = -lssl32 -leay32 | ||||
|       endif | ||||
|     endif | ||||
|     ifeq "$(wildcard $(OPENSSL_PATH)/lib)" "$(OPENSSL_PATH)/lib" | ||||
|       OPENSSL_LIBPATH = $(OPENSSL_PATH)/lib | ||||
|     endif | ||||
|   endif | ||||
|   ifndef DYN | ||||
|     OPENSSL_LIBS += -lgdi32 -lcrypt32 | ||||
|   endif | ||||
|   CFLAGS += -DUSE_SSLEAY | ||||
|   curl_LDADD += -L"$(OPENSSL_LIBPATH)" $(OPENSSL_LIBS) | ||||
| endif | ||||
| ifdef ZLIB | ||||
| @@ -184,6 +226,9 @@ endif | ||||
| endif | ||||
| ifdef SSPI | ||||
|   CFLAGS += -DUSE_WINDOWS_SSPI | ||||
|   ifdef SCHANNEL | ||||
|     CFLAGS += -DUSE_SCHANNEL | ||||
|   endif | ||||
| endif | ||||
| ifdef SPNEGO | ||||
|   CFLAGS += -DHAVE_SPNEGO | ||||
| @@ -215,6 +260,8 @@ include Makefile.inc | ||||
| check_PROGRAMS := $(patsubst %,%.exe,$(strip $(check_PROGRAMS))) | ||||
| check_PROGRAMS += ftpuploadresume.exe synctime.exe | ||||
|  | ||||
| .PRECIOUS: %.o | ||||
|  | ||||
|  | ||||
| all: $(check_PROGRAMS) | ||||
|  | ||||
| @@ -228,8 +275,8 @@ all: $(check_PROGRAMS) | ||||
| 	$(RC) $(RCFLAGS) $< -o $@ | ||||
|  | ||||
| clean: | ||||
| 	-$(RM) $(check_PROGRAMS:.exe=.o) | ||||
| 	@$(call DEL, $(check_PROGRAMS:.exe=.o)) | ||||
|  | ||||
| distclean vclean: clean | ||||
| 	-$(RM) $(check_PROGRAMS) | ||||
| 	@$(call DEL, $(check_PROGRAMS)) | ||||
|  | ||||
|   | ||||
| @@ -162,6 +162,10 @@ int main(int argc, char **argv) | ||||
|  | ||||
|     /* Now run off and do what you've been told! */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   | ||||
| @@ -132,6 +132,10 @@ int main(void) | ||||
|  | ||||
|     curl_easy_setopt(curl, CURLOPT_URL, "http://example.com/"); | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   | ||||
| @@ -64,14 +64,21 @@ int main(void) | ||||
|     curl_easy_setopt(curl, CURLOPT_VERBOSE, 1L); | ||||
|  | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) { | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* now extract transfer info */ | ||||
|     curl_easy_getinfo(curl, CURLINFO_SPEED_UPLOAD, &speed_upload); | ||||
|     curl_easy_getinfo(curl, CURLINFO_TOTAL_TIME, &total_time); | ||||
|     } | ||||
|     else { | ||||
|       /* now extract transfer info */ | ||||
|       curl_easy_getinfo(curl, CURLINFO_SPEED_UPLOAD, &speed_upload); | ||||
|       curl_easy_getinfo(curl, CURLINFO_TOTAL_TIME, &total_time); | ||||
|  | ||||
|     fprintf(stderr, "Speed: %.3f bytes/sec during %.3f seconds\n", | ||||
|             speed_upload, total_time); | ||||
|       fprintf(stderr, "Speed: %.3f bytes/sec during %.3f seconds\n", | ||||
|               speed_upload, total_time); | ||||
|  | ||||
|     } | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   } | ||||
|   | ||||
| @@ -60,6 +60,10 @@ int main(void) | ||||
|     curl_easy_setopt(curl, CURLOPT_HEADERFUNCTION, write_response); | ||||
|     curl_easy_setopt(curl, CURLOPT_WRITEHEADER, respfile); | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   | ||||
| @@ -122,6 +122,10 @@ int main(void) | ||||
|  | ||||
|     /* Now run off and do what you've been told! */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* clean up the FTP commands list */ | ||||
|     curl_slist_free_all (headerlist); | ||||
|   | ||||
| @@ -27,6 +27,10 @@ int main(void) | ||||
|   CURL *curl; | ||||
|   CURLcode res; | ||||
|  | ||||
|   /* In windows, this will init the winsock stuff */ | ||||
|   curl_global_init(CURL_GLOBAL_ALL); | ||||
|  | ||||
|   /* get a curl handle */ | ||||
|   curl = curl_easy_init(); | ||||
|   if(curl) { | ||||
|     /* First set the URL that is about to receive our POST. This URL can | ||||
| @@ -38,9 +42,14 @@ int main(void) | ||||
|  | ||||
|     /* Perform the request, res will get the return code */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   } | ||||
|   curl_global_cleanup(); | ||||
|   return 0; | ||||
| } | ||||
|   | ||||
| @@ -38,10 +38,18 @@ int main(void) | ||||
|     curl_easy_setopt(curl, CURLOPT_URL, "localhost"); | ||||
|     curl_easy_setopt(curl, CURLOPT_VERBOSE, 1L); | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* redo request with our own custom Accept: */ | ||||
|     res = curl_easy_setopt(curl, CURLOPT_HTTPHEADER, chunk); | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   | ||||
| @@ -110,6 +110,10 @@ int main(int argc, char **argv) | ||||
|  | ||||
|     /* Now run off and do what you've been told! */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   | ||||
| @@ -55,7 +55,12 @@ int main(void) | ||||
|     curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, 0L); | ||||
| #endif | ||||
|  | ||||
|     /* Perform the request, res will get the return code */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   | ||||
| @@ -37,12 +37,24 @@ int main(void) | ||||
|  | ||||
|     /* get the first document */ | ||||
|     curl_easy_setopt(curl, CURLOPT_URL, "http://example.com/"); | ||||
|  | ||||
|     /* Perform the request, res will get the return code */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* get another document from the same server using the same | ||||
|        connection */ | ||||
|     curl_easy_setopt(curl, CURLOPT_URL, "http://example.com/docs/"); | ||||
|  | ||||
|     /* Perform the request, res will get the return code */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   | ||||
| @@ -59,7 +59,12 @@ int main(void) | ||||
|     curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, 0L); | ||||
| #endif | ||||
|  | ||||
|     /* Perform the request, res will get the return code */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   | ||||
| @@ -59,7 +59,12 @@ int main(void) | ||||
|     curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, 0L); | ||||
| #endif | ||||
|  | ||||
|     /* Perform the request, res will get the return code */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   | ||||
| @@ -60,6 +60,16 @@ int main(void) | ||||
|   pooh.readptr = data; | ||||
|   pooh.sizeleft = strlen(data); | ||||
|  | ||||
|   /* In windows, this will init the winsock stuff */ | ||||
|   res = curl_global_init(CURL_GLOBAL_DEFAULT); | ||||
|   /* Check for errors */ | ||||
|   if(res != CURLE_OK) { | ||||
|     fprintf(stderr, "curl_global_init() failed: %s\n", | ||||
|             curl_easy_strerror(res)); | ||||
|     return 1; | ||||
|   } | ||||
|  | ||||
|   /* get a curl handle */ | ||||
|   curl = curl_easy_init(); | ||||
|   if(curl) { | ||||
|     /* First set the URL that is about to receive our POST. */ | ||||
| @@ -120,9 +130,14 @@ int main(void) | ||||
|  | ||||
|     /* Perform the request, res will get the return code */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   } | ||||
|   curl_global_cleanup(); | ||||
|   return 0; | ||||
| } | ||||
|   | ||||
| @@ -83,7 +83,13 @@ int main(int argc, char *argv[]) | ||||
|       /* only disable 100-continue header if explicitly requested */ | ||||
|       curl_easy_setopt(curl, CURLOPT_HTTPHEADER, headerlist); | ||||
|     curl_easy_setopt(curl, CURLOPT_HTTPPOST, formpost); | ||||
|  | ||||
|     /* Perform the request, res will get the return code */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   | ||||
| @@ -30,7 +30,13 @@ int main(void) | ||||
|   curl = curl_easy_init(); | ||||
|   if(curl) { | ||||
|     curl_easy_setopt(curl, CURLOPT_URL, "http://example.com"); | ||||
|  | ||||
|     /* Perform the request, res will get the return code */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   | ||||
| @@ -39,7 +39,12 @@ int main(void) | ||||
|        itself */ | ||||
|     curl_easy_setopt(curl, CURLOPT_POSTFIELDSIZE, (long)strlen(postthis)); | ||||
|  | ||||
|     /* Perform the request, res will get the return code */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* always cleanup */ | ||||
|     curl_easy_cleanup(curl); | ||||
|   | ||||
| @@ -65,6 +65,10 @@ int main(void) | ||||
|  | ||||
|     /* send the message (including headers) */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* free the list of recipients */ | ||||
|     curl_slist_free_all(recipients); | ||||
|   | ||||
| @@ -118,7 +118,13 @@ int main(void) | ||||
|       /* disconnect if we can't validate server's cert */ | ||||
|       curl_easy_setopt(curl,CURLOPT_SSL_VERIFYPEER,1L); | ||||
|  | ||||
|       /* Perform the request, res will get the return code */ | ||||
|       res = curl_easy_perform(curl); | ||||
|       /* Check for errors */ | ||||
|       if(res != CURLE_OK) | ||||
|         fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|                 curl_easy_strerror(res)); | ||||
|  | ||||
|       break;                   /* we are done... */ | ||||
|     } | ||||
|     /* always cleanup */ | ||||
|   | ||||
| @@ -96,7 +96,6 @@ int main(void) | ||||
|    CURLM *mcurl; | ||||
|    int still_running = 1; | ||||
|    struct timeval mp_start; | ||||
|    char mp_timedout = 0; | ||||
|    struct WriteThis pooh; | ||||
|    struct curl_slist* rcpt_list = NULL; | ||||
|  | ||||
| @@ -132,7 +131,6 @@ int main(void) | ||||
|    curl_easy_setopt(curl, CURLOPT_SSL_SESSIONID_CACHE, 0L); | ||||
|    curl_multi_add_handle(mcurl, curl); | ||||
|  | ||||
|    mp_timedout = 0; | ||||
|    mp_start = tvnow(); | ||||
|  | ||||
|   /* we start some action by calling perform right away */ | ||||
|   | ||||
| @@ -139,6 +139,10 @@ int main(void) | ||||
|  | ||||
|     /* send the message (including headers) */ | ||||
|     res = curl_easy_perform(curl); | ||||
|     /* Check for errors */ | ||||
|     if(res != CURLE_OK) | ||||
|       fprintf(stderr, "curl_easy_perform() failed: %s\n", | ||||
|               curl_easy_strerror(res)); | ||||
|  | ||||
|     /* free the list of recipients and clean up */ | ||||
|     curl_slist_free_all(recipients); | ||||
|   | ||||
| @@ -69,7 +69,7 @@ output. This is only relevant for protocols that actually have headers | ||||
| preceding the data (like HTTP). | ||||
| .IP CURLOPT_NOPROGRESS | ||||
| Pass a long. If set to 1, it tells the library to shut off the progress meter | ||||
| completely. It will also present the \fICURLOPT_PROGRESSFUNCTION\fP from | ||||
| completely. It will also prevent the \fICURLOPT_PROGRESSFUNCTION\fP from | ||||
| getting called. | ||||
|  | ||||
| Future versions of libcurl are likely to not have any built-in progress meter | ||||
| @@ -147,10 +147,10 @@ Using the rules above, a file name pattern can be constructed: | ||||
| (This was added in 7.21.0) | ||||
| .SH CALLBACK OPTIONS | ||||
| .IP CURLOPT_WRITEFUNCTION | ||||
| Function pointer that should match the following prototype: \fBsize_t | ||||
| function( char *ptr, size_t size, size_t nmemb, void *userdata);\fP This | ||||
| function gets called by libcurl as soon as there is data received that needs | ||||
| to be saved. The size of the data pointed to by \fIptr\fP is \fIsize\fP | ||||
| Pass a pointer to a function that matches the following prototype: | ||||
| \fBsize_t function( char *ptr, size_t size, size_t nmemb, void *userdata);\fP | ||||
| This function gets called by libcurl as soon as there is data received that | ||||
| needs to be saved. The size of the data pointed to by \fIptr\fP is \fIsize\fP | ||||
| multiplied with \fInmemb\fP, it will not be zero terminated. Return the number | ||||
| of bytes actually taken care of. If that amount differs from the amount passed | ||||
| to your function, it'll signal an error to the library. This will abort the | ||||
| @@ -193,11 +193,11 @@ crashes. | ||||
| This option is also known with the older name \fICURLOPT_FILE\fP, the name | ||||
| \fICURLOPT_WRITEDATA\fP was introduced in 7.9.7. | ||||
| .IP CURLOPT_READFUNCTION | ||||
| Function pointer that should match the following prototype: \fBsize_t | ||||
| function( void *ptr, size_t size, size_t nmemb, void *userdata);\fP This | ||||
| function gets called by libcurl as soon as it needs to read data in order to | ||||
| send it to the peer. The data area pointed at by the pointer \fIptr\fP may be | ||||
| filled with at most \fIsize\fP multiplied with \fInmemb\fP number of | ||||
| Pass a pointer to a function that matches the following prototype: | ||||
| \fBsize_t function( void *ptr, size_t size, size_t nmemb, void *userdata);\fP | ||||
| This function gets called by libcurl as soon as it needs to read data in order | ||||
| to send it to the peer. The data area pointed at by the pointer \fIptr\fP may | ||||
| be filled with at most \fIsize\fP multiplied with \fInmemb\fP number of | ||||
| bytes. Your function must return the actual number of bytes that you stored in | ||||
| that memory area. Returning 0 will signal end-of-file to the library and cause | ||||
| it to stop the current transfer. | ||||
| @@ -234,13 +234,13 @@ If you're using libcurl as a win32 DLL, you MUST use a | ||||
| This option was also known by the older name \fICURLOPT_INFILE\fP, the name | ||||
| \fICURLOPT_READDATA\fP was introduced in 7.9.7. | ||||
| .IP CURLOPT_IOCTLFUNCTION | ||||
| Function pointer that should match the \fIcurl_ioctl_callback\fP prototype | ||||
| found in \fI<curl/curl.h>\fP. This function gets called by libcurl when | ||||
| something special I/O-related needs to be done that the library can't do by | ||||
| itself. For now, rewinding the read data stream is the only action it can | ||||
| request. The rewinding of the read data stream may be necessary when doing a | ||||
| HTTP PUT or POST with a multi-pass authentication method.  (Option added in | ||||
| 7.12.3). | ||||
| Pass a pointer to a function that matches the following prototype: | ||||
| \fBcurlioerr function(CURL *handle, int cmd, void *clientp);\fP. This function | ||||
| gets called by libcurl when something special I/O-related needs to be done | ||||
| that the library can't do by itself. For now, rewinding the read data stream | ||||
| is the only action it can request. The rewinding of the read data stream may | ||||
| be necessary when doing a HTTP PUT or POST with a multi-pass authentication | ||||
| method.  (Option added in 7.12.3). | ||||
|  | ||||
| Use \fICURLOPT_SEEKFUNCTION\fP instead to provide seeking! | ||||
| .IP CURLOPT_IOCTLDATA | ||||
| @@ -248,7 +248,7 @@ Pass a pointer that will be untouched by libcurl and passed as the 3rd | ||||
| argument in the ioctl callback set with \fICURLOPT_IOCTLFUNCTION\fP.  (Option | ||||
| added in 7.12.3) | ||||
| .IP CURLOPT_SEEKFUNCTION | ||||
| Function pointer that should match the following prototype: \fIint | ||||
| Pass a pointer to a function that matches the following prototype: \fBint | ||||
| function(void *instream, curl_off_t offset, int origin);\fP This function gets | ||||
| called by libcurl to seek to a certain position in the input stream and can be | ||||
| used to fast forward a file in a resumed upload (instead of reading all | ||||
| @@ -270,18 +270,18 @@ Data pointer to pass to the file seek function. If you use the | ||||
| \fICURLOPT_SEEKFUNCTION\fP option, this is the pointer you'll get as input. If | ||||
| you don't specify a seek callback, NULL is passed. (Option added in 7.18.0) | ||||
| .IP CURLOPT_SOCKOPTFUNCTION | ||||
| Function pointer that should match the \fIcurl_sockopt_callback\fP prototype | ||||
| found in \fI<curl/curl.h>\fP. This function gets called by libcurl after the | ||||
| socket() call but before the connect() call. The callback's \fIpurpose\fP | ||||
| argument identifies the exact purpose for this particular socket, and | ||||
| currently only one value is supported: \fICURLSOCKTYPE_IPCXN\fP for the | ||||
| primary connection (meaning the control connection in the FTP case). Future | ||||
| versions of libcurl may support more purposes. It passes the newly created | ||||
| socket descriptor so additional setsockopt() calls can be done at the user's | ||||
| discretion.  Return 0 (zero) from the callback on success. Return 1 from the | ||||
| callback function to signal an unrecoverable error to the library and it will | ||||
| close the socket and return \fICURLE_COULDNT_CONNECT\fP.  (Option added in | ||||
| 7.16.0) | ||||
| Pass a pointer to a function that matches the following prototype: \fBint | ||||
| function(void *clientp, curl_socket_t curlfd, curlsocktype purpose);\fP. This | ||||
| function gets called by libcurl after the socket() call but before the | ||||
| connect() call. The callback's \fIpurpose\fP argument identifies the exact | ||||
| purpose for this particular socket, and currently only one value is supported: | ||||
| \fICURLSOCKTYPE_IPCXN\fP for the primary connection (meaning the control | ||||
| connection in the FTP case). Future versions of libcurl may support more | ||||
| purposes. It passes the newly created socket descriptor so additional | ||||
| setsockopt() calls can be done at the user's discretion.  Return 0 (zero) from | ||||
| the callback on success. Return 1 from the callback function to signal an | ||||
| unrecoverable error to the library and it will close the socket and return | ||||
| \fICURLE_COULDNT_CONNECT\fP.  (Option added in 7.16.0) | ||||
|  | ||||
| Added in 7.21.5, the callback function may return | ||||
| \fICURL_SOCKOPT_ALREADY_CONNECTED\fP, which tells libcurl that the socket is | ||||
| @@ -291,20 +291,21 @@ Pass a pointer that will be untouched by libcurl and passed as the first | ||||
| argument in the sockopt callback set with \fICURLOPT_SOCKOPTFUNCTION\fP. | ||||
| (Option added in 7.16.0) | ||||
| .IP CURLOPT_OPENSOCKETFUNCTION | ||||
| Function pointer that should match the \fIcurl_opensocket_callback\fP | ||||
| prototype found in \fI<curl/curl.h>\fP. This function gets called by libcurl | ||||
| instead of the \fIsocket(2)\fP call. The callback's \fIpurpose\fP argument | ||||
| identifies the exact purpose for this particular socket: | ||||
| \fICURLSOCKTYPE_IPCXN\fP is for IP based connections. Future versions of | ||||
| libcurl may support more purposes. It passes the resolved peer address as a | ||||
| \fIaddress\fP argument so the callback can modify the address or refuse to | ||||
| connect at all. The callback function should return the socket or | ||||
| \fICURL_SOCKET_BAD\fP in case no connection should be established or any error | ||||
| detected. Any additional \fIsetsockopt(2)\fP calls can be done on the socket | ||||
| at the user's discretion.  \fICURL_SOCKET_BAD\fP return value from the | ||||
| callback function will signal an unrecoverable error to the library and it | ||||
| will return \fICURLE_COULDNT_CONNECT\fP.  This return code can be used for IP | ||||
| address blacklisting.  The default behavior is: | ||||
| Pass a pointer to a function that matches the following prototype: | ||||
| \fBcurl_socket_t function(void *clientp, curlsocktype purpose, struct | ||||
| curl_sockaddr *address);\fP. This function gets called by libcurl instead of | ||||
| the \fIsocket(2)\fP call. The callback's \fIpurpose\fP argument identifies the | ||||
| exact purpose for this particular socket: \fICURLSOCKTYPE_IPCXN\fP is for IP | ||||
| based connections. Future versions of libcurl may support more purposes. It | ||||
| passes the resolved peer address as a \fIaddress\fP argument so the callback | ||||
| can modify the address or refuse to connect at all. The callback function | ||||
| should return the socket or \fICURL_SOCKET_BAD\fP in case no connection could | ||||
| be established or another error was detected. Any additional | ||||
| \fIsetsockopt(2)\fP calls can be done on the socket at the user's discretion. | ||||
| \fICURL_SOCKET_BAD\fP return value from the callback function will signal an | ||||
| unrecoverable error to the library and it will return | ||||
| \fICURLE_COULDNT_CONNECT\fP.  This return code can be used for IP address | ||||
| blacklisting.  The default behavior is: | ||||
| .nf | ||||
|    return socket(addr->family, addr->socktype, addr->protocol); | ||||
| .fi | ||||
| @@ -314,25 +315,26 @@ Pass a pointer that will be untouched by libcurl and passed as the first | ||||
| argument in the opensocket callback set with \fICURLOPT_OPENSOCKETFUNCTION\fP. | ||||
| (Option added in 7.17.1.) | ||||
| .IP CURLOPT_CLOSESOCKETFUNCTION | ||||
| Function pointer that should match the \fIcurl_closesocket_callback\fP | ||||
| prototype found in \fI<curl/curl.h>\fP. This function gets called by libcurl | ||||
| instead of the \fIclose(3)\fP or \fIclosesocket(3)\fP call when sockets are | ||||
| closed (not for any other file descriptors). This is pretty much the reverse | ||||
| to the \fICURLOPT_OPENSOCKETFUNCTION\fP option. Return 0 to signal success and | ||||
| 1 if there was an error.  (Option added in 7.21.7) | ||||
| Pass a pointer to a function that matches the following prototype: \fBint | ||||
| function(void *clientp, curl_socket_t item);\fP. This function gets called by | ||||
| libcurl instead of the \fIclose(3)\fP or \fIclosesocket(3)\fP call when | ||||
| sockets are closed (not for any other file descriptors). This is pretty much | ||||
| the reverse to the \fICURLOPT_OPENSOCKETFUNCTION\fP option. Return 0 to signal | ||||
| success and 1 if there was an error.  (Option added in 7.21.7) | ||||
| .IP CURLOPT_CLOSESOCKETDATA | ||||
| Pass a pointer that will be untouched by libcurl and passed as the first | ||||
| argument in the closesocket callback set with | ||||
| \fICURLOPT_CLOSESOCKETFUNCTION\fP.  (Option added in 7.21.7) | ||||
| .IP CURLOPT_PROGRESSFUNCTION | ||||
| Function pointer that should match the \fIcurl_progress_callback\fP prototype | ||||
| found in \fI<curl/curl.h>\fP. This function gets called by libcurl instead of | ||||
| its internal equivalent with a frequent interval during operation (roughly | ||||
| once per second or sooner) no matter if data is being transfered or not. | ||||
| Unknown/unused argument values passed to the callback will be set to zero | ||||
| (like if you only download data, the upload size will remain 0). Returning a | ||||
| non-zero value from this callback will cause libcurl to abort the transfer and | ||||
| return \fICURLE_ABORTED_BY_CALLBACK\fP. | ||||
| Pass a pointer to a function that matches the following prototype: \fBint | ||||
| function(void *clientp, double dltotal, double dlnow, double ultotal, double | ||||
| ulnow); \fP. This function gets called by libcurl instead of its internal | ||||
| equivalent with a frequent interval during operation (roughly once per second | ||||
| or sooner) no matter if data is being transferred or not.  Unknown/unused | ||||
| argument values passed to the callback will be set to zero (like if you only | ||||
| download data, the upload size will remain 0). Returning a non-zero value from | ||||
| this callback will cause libcurl to abort the transfer and return | ||||
| \fICURLE_ABORTED_BY_CALLBACK\fP. | ||||
|  | ||||
| If you transfer data with the multi interface, this function will not be | ||||
| called during periods of idleness unless you call the appropriate libcurl | ||||
| @@ -344,14 +346,14 @@ get called. | ||||
| Pass a pointer that will be untouched by libcurl and passed as the first | ||||
| argument in the progress callback set with \fICURLOPT_PROGRESSFUNCTION\fP. | ||||
| .IP CURLOPT_HEADERFUNCTION | ||||
| Function pointer that should match the following prototype: \fIsize_t | ||||
| function( void *ptr, size_t size, size_t nmemb, void *userdata);\fP. This | ||||
| function gets called by libcurl as soon as it has received header data. The | ||||
| header callback will be called once for each header and only complete header | ||||
| lines are passed on to the callback. Parsing headers is very easy using | ||||
| this. The size of the data pointed to by \fIptr\fP is \fIsize\fP multiplied | ||||
| with \fInmemb\fP. Do not assume that the header line is zero terminated! The | ||||
| pointer named \fIuserdata\fP is the one you set with the | ||||
| Pass a pointer to a function that matches the following prototype: | ||||
| \fBsize_t function( void *ptr, size_t size, size_t nmemb, void | ||||
| *userdata);\fP. This function gets called by libcurl as soon as it has | ||||
| received header data. The header callback will be called once for each header | ||||
| and only complete header lines are passed on to the callback. Parsing headers | ||||
| is very easy using this. The size of the data pointed to by \fIptr\fP is | ||||
| \fIsize\fP multiplied with \fInmemb\fP. Do not assume that the header line is | ||||
| zero terminated! The pointer named \fIuserdata\fP is the one you set with the | ||||
| \fICURLOPT_WRITEHEADER\fP option. The callback function must return the number | ||||
| of bytes actually taken care of. If that amount differs from the amount passed | ||||
| to your function, it'll signal an error to the library. This will abort the | ||||
| @@ -391,7 +393,7 @@ the writing, this must be a valid FILE * as the internal default will then be | ||||
| a plain fwrite(). See also the \fICURLOPT_HEADERFUNCTION\fP option above on | ||||
| how to set a custom get-all-headers callback. | ||||
| .IP CURLOPT_DEBUGFUNCTION | ||||
| Function pointer that should match the following prototype: \fIint | ||||
| Pass a pointer to a function that matches the following prototype: \fBint | ||||
| curl_debug_callback (CURL *, curl_infotype, char *, size_t, void *);\fP | ||||
| \fICURLOPT_DEBUGFUNCTION\fP replaces the standard debug function used when | ||||
| \fICURLOPT_VERBOSE \fP is in effect. This callback receives debug information, | ||||
| @@ -420,11 +422,11 @@ used by libcurl, it is only passed to the callback. | ||||
| This option does only function for libcurl powered by OpenSSL. If libcurl was | ||||
| built against another SSL library, this functionality is absent. | ||||
|  | ||||
| Function pointer that should match the following prototype: \fBCURLcode | ||||
| sslctxfun(CURL *curl, void *sslctx, void *parm);\fP This function gets called | ||||
| by libcurl just before the initialization of a SSL connection after having | ||||
| processed all other SSL related options to give a last chance to an | ||||
| application to modify the behaviour of openssl's ssl initialization. The | ||||
| Pass a pointer to a function that matches the following prototype: | ||||
| \fBCURLcode sslctxfun(CURL *curl, void *sslctx, void *parm);\fP This function | ||||
| gets called by libcurl just before the initialization of a SSL connection | ||||
| after having processed all other SSL related options to give a last chance to | ||||
| an application to modify the behaviour of openssl's ssl initialization. The | ||||
| \fIsslctx\fP parameter is actually a pointer to an openssl \fISSL_CTX\fP. If | ||||
| an error is returned no attempt to establish a connection is made and the | ||||
| perform operation will return the error code from this callback function.  Set | ||||
| @@ -447,8 +449,8 @@ parameter, otherwise \fBNULL\fP. (Added in 7.11.0) | ||||
| .IP CURLOPT_CONV_TO_NETWORK_FUNCTION | ||||
| .IP CURLOPT_CONV_FROM_NETWORK_FUNCTION | ||||
| .IP CURLOPT_CONV_FROM_UTF8_FUNCTION | ||||
| Function pointers that should match the following prototype: CURLcode | ||||
| function(char *ptr, size_t length); | ||||
| Pass a pointer to a function that matches the following prototype: | ||||
| \fBCURLcode function(char *ptr, size_t length);\fP | ||||
|  | ||||
| These three options apply to non-ASCII platforms only.  They are available | ||||
| only if \fBCURL_DOES_CONVERSIONS\fP was defined when libcurl was built. When | ||||
| @@ -490,18 +492,19 @@ follows: | ||||
| You will need to override these definitions if they are different on your | ||||
| system. | ||||
| .IP CURLOPT_INTERLEAVEFUNCTION | ||||
| Function pointer that should match the following prototype: \fIsize_t | ||||
| function( void *ptr, size_t size, size_t nmemb, void *userdata)\fP. This | ||||
| function gets called by libcurl as soon as it has received interleaved RTP | ||||
| data. This function gets called for each $ block and therefore contains | ||||
| exactly one upper-layer protocol unit (e.g.  one RTP packet). Curl writes the | ||||
| interleaved header as well as the included data for each call. The first byte | ||||
| is always an ASCII dollar sign. The dollar sign is followed by a one byte | ||||
| channel identifier and then a 2 byte integer length in network byte order. See | ||||
| \fIRFC 2326 Section 10.12\fP for more information on how RTP interleaving | ||||
| behaves. If unset or set to NULL, curl will use the default write function. | ||||
| Pass a pointer to a function that matches the following prototype: | ||||
| \fBsize_t function( void *ptr, size_t size, size_t nmemb, void | ||||
| *userdata)\fP. This function gets called by libcurl as soon as it has received | ||||
| interleaved RTP data. This function gets called for each $ block and therefore | ||||
| contains exactly one upper-layer protocol unit (e.g.  one RTP packet). Curl | ||||
| writes the interleaved header as well as the included data for each call. The | ||||
| first byte is always an ASCII dollar sign. The dollar sign is followed by a | ||||
| one byte channel identifier and then a 2 byte integer length in network byte | ||||
| order. See \fIRFC2326 Section 10.12\fP for more information on how RTP | ||||
| interleaving behaves. If unset or set to NULL, curl will use the default write | ||||
| function. | ||||
|  | ||||
| Interleaved RTP poses some challeneges for the client application. Since the | ||||
| Interleaved RTP poses some challenges for the client application. Since the | ||||
| stream data is sharing the RTSP control connection, it is critical to service | ||||
| the RTP in a timely fashion. If the RTP data is not handled quickly, | ||||
| subsequent response processing may become unreasonably delayed and the | ||||
| @@ -515,10 +518,10 @@ This is the userdata pointer that will be passed to | ||||
| \fICURLOPT_INTERLEAVEFUNCTION\fP when interleaved RTP data is received. (Added | ||||
| in 7.20.0) | ||||
| .IP CURLOPT_CHUNK_BGN_FUNCTION | ||||
| Function pointer that should match the following prototype: \fBlong function | ||||
| (const void *transfer_info, void *ptr, int remains)\fP. This function gets | ||||
| called by libcurl before a part of the stream is going to be transferred (if | ||||
| the transfer supports chunks). | ||||
| Pass a pointer to a function that matches the following prototype: | ||||
| \fBlong function (const void *transfer_info, void *ptr, int remains)\fP. This | ||||
| function gets called by libcurl before a part of the stream is going to be | ||||
| transferred (if the transfer supports chunks). | ||||
|  | ||||
| This callback makes sense only when using the \fICURLOPT_WILDCARDMATCH\fP | ||||
| option for now. | ||||
| @@ -535,9 +538,9 @@ Return \fICURL_CHUNK_BGN_FUNC_OK\fP if everything is fine, | ||||
| \fICURL_CHUNK_BGN_FUNC_FAIL\fP to tell libcurl to stop if some error occurred. | ||||
| (This was added in 7.21.0) | ||||
| .IP CURLOPT_CHUNK_END_FUNCTION | ||||
| Function pointer that should match the following prototype: \fBlong | ||||
| function(void *ptr)\fP. This function gets called by libcurl as soon as a part | ||||
| of the stream has been transferred (or skipped). | ||||
| Pass a pointer to a function that matches the following prototype: | ||||
| \fBlong function(void *ptr)\fP. This function gets called by libcurl as soon | ||||
| as a part of the stream has been transferred (or skipped). | ||||
|  | ||||
| Return \fICURL_CHUNK_END_FUNC_OK\fP if everything is fine or | ||||
| \fBCURL_CHUNK_END_FUNC_FAIL\fP to tell the lib to stop if some error occurred. | ||||
| @@ -547,9 +550,9 @@ Pass a pointer that will be untouched by libcurl and passed as the ptr | ||||
| argument to the \fICURL_CHUNK_BGN_FUNTION\fP and \fICURL_CHUNK_END_FUNTION\fP. | ||||
| (This was added in 7.21.0) | ||||
| .IP CURLOPT_FNMATCH_FUNCTION | ||||
| Function pointer that should match \fBint function(void *ptr, const char | ||||
| *pattern, const char *string)\fP prototype (see \fIcurl/curl.h\fP). It is used | ||||
| internally for the wildcard matching feature. | ||||
| Pass a pointer to a function that matches the following prototype: \fBint | ||||
| function(void *ptr, const char *pattern, const char *string)\fP prototype (see | ||||
| \fIcurl/curl.h\fP). It is used internally for the wildcard matching feature. | ||||
|  | ||||
| Return \fICURL_FNMATCHFUNC_MATCH\fP if pattern matches the string, | ||||
| \fICURL_FNMATCHFUNC_NOMATCH\fP if not or \fICURL_FNMATCHFUNC_FAIL\fP if an | ||||
| @@ -563,11 +566,11 @@ Pass a char * to a buffer that the libcurl may store human readable error | ||||
| messages in. This may be more helpful than just the return code from | ||||
| \fIcurl_easy_perform\fP. The buffer must be at least CURL_ERROR_SIZE big. | ||||
| Although this argument is a 'char *', it does not describe an input string. | ||||
| Therefore the (probably undefined) contents of the buffer is NOT copied | ||||
| by the library. You should keep the associated storage available until | ||||
| libcurl no longer needs it. Failing to do so will cause very odd behavior | ||||
| or even crashes. libcurl will need it until you call \fIcurl_easy_cleanup(3)\fP | ||||
| or you set the same option again to use a different pointer. | ||||
| Therefore the (probably undefined) contents of the buffer is NOT copied by the | ||||
| library. You must keep the associated storage available until libcurl no | ||||
| longer needs it. Failing to do so will cause very odd behavior or even | ||||
| crashes. libcurl will need it until you call \fIcurl_easy_cleanup(3)\fP or you | ||||
| set the same option again to use a different pointer. | ||||
|  | ||||
| Use \fICURLOPT_VERBOSE\fP and \fICURLOPT_DEBUGFUNCTION\fP to better | ||||
| debug/trace why errors happen. | ||||
| @@ -592,13 +595,13 @@ detected, like when a "100-continue" is received as a response to a | ||||
| POST/PUT and a 401 or 407 is received immediately afterwards. | ||||
| .SH NETWORK OPTIONS | ||||
| .IP CURLOPT_URL | ||||
| The actual URL to deal with. The parameter should be a char * to a zero | ||||
| terminated string which must be URL-encoded in the following format: | ||||
| Pass in a pointer to the actual URL to deal with. The parameter should be a | ||||
| char * to a zero terminated string which must be URL-encoded in the following | ||||
| format: | ||||
|  | ||||
| scheme://host:port/path | ||||
|  | ||||
| For a greater explanation of the format please see RFC 3986 | ||||
| (http://curl.haxx.se/rfc/rfc3986.txt). | ||||
| For a greater explanation of the format please see RFC3986. | ||||
|  | ||||
| If the given URL lacks the scheme, or protocol, part ("http://" or "ftp://" | ||||
| etc), libcurl will attempt to resolve which protocol to use based on the | ||||
| @@ -626,18 +629,20 @@ authentication. | ||||
|  | ||||
| For example the following types of authentication support this: | ||||
|  | ||||
| http://user:password@www.domain.com | ||||
| ftp://user:password@ftp.domain.com | ||||
| pop3://user:password@mail.domain.com | ||||
| http://user:password@www.example.com | ||||
|  | ||||
| ftp://user:password@ftp.example.com | ||||
|  | ||||
| pop3://user:password@mail.example.com | ||||
|  | ||||
| The port is optional and when not specified libcurl will use the default port | ||||
| based on the determined or specified protocol: 80 for http, 21 for ftp and 25 | ||||
| for smtp, etc. The following examples show how to specify the port: | ||||
| based on the determined or specified protocol: 80 for HTTP, 21 for FTP and 25 | ||||
| for SMTP, etc. The following examples show how to specify the port: | ||||
|  | ||||
| http://www.weirdserver.com:8080/ - This will connect to a web server using | ||||
| port 8080. | ||||
| http://www.example.com:8080/ - This will connect to a web server using port | ||||
| 8080 rather than 80. | ||||
|  | ||||
| smtp://mail.domain.com:587/ - This will connect to a smtp server on the | ||||
| smtp://mail.example.com:587/ - This will connect to a SMTP server on the | ||||
| alternative mail port. | ||||
|  | ||||
| The path part of the URL is protocol specific and whilst some examples are | ||||
| @@ -652,13 +657,12 @@ retrieved for either the directory specified or the root directory. The | ||||
| exact resource returned for each URL is entirely dependent on the server's | ||||
| configuration. | ||||
|  | ||||
| http://www.netscape.com - This gets the main page (index.html in this | ||||
| example) from Netscape's web server. | ||||
| http://www.example.com - This gets the main page from the web server. | ||||
|  | ||||
| http://www.netscape.com/index.html - This returns the main page from Netscape | ||||
| by specifying the page to get. | ||||
| http://www.example.com/index.html - This returns the main page by explicitly | ||||
| requesting it. | ||||
|  | ||||
| http://www.netscape.com/contactus/ - This returns the default document from | ||||
| http://www.example.com/contactus/ - This returns the default document from | ||||
| the contactus directory. | ||||
|  | ||||
| .B FTP | ||||
| @@ -668,15 +672,16 @@ directory. If the file part is omitted then libcurl downloads the directory | ||||
| listing for the directory specified. If the directory is omitted then | ||||
| the directory listing for the root / home directory will be returned. | ||||
|  | ||||
| ftp://cool.haxx.se - This retrieves the directory listing for our FTP server. | ||||
| ftp://ftp.example.com - This retrieves the directory listing for the root | ||||
| directory. | ||||
|  | ||||
| ftp://cool.haxx.se/readme.txt - This downloads the file readme.txt from the | ||||
| ftp://ftp.example.com/readme.txt - This downloads the file readme.txt from the | ||||
| root directory. | ||||
|  | ||||
| ftp://cool.haxx.se/libcurl/readme.txt - This downloads readme.txt from the | ||||
| ftp://ftp.example.com/libcurl/readme.txt - This downloads readme.txt from the | ||||
| libcurl directory. | ||||
|  | ||||
| ftp://user:password@my.example.com/readme.txt - This retrieves the readme.txt | ||||
| ftp://user:password@ftp.example.com/readme.txt - This retrieves the readme.txt | ||||
| file from the user's home directory. When a username and password is | ||||
| specified, everything that is specified in the path part is relative to the | ||||
| user's home directory. To retrieve files from the root directory or a | ||||
| @@ -684,7 +689,7 @@ directory underneath the root directory then the absolute path must be | ||||
| specified by prepending an additional forward slash to the beginning of the | ||||
| path. | ||||
|  | ||||
| ftp://user:password@my.example.com//readme.txt - This retrieves the readme.txt | ||||
| ftp://user:password@ftp.example.com//readme.txt - This retrieves the readme.txt | ||||
| from the root directory when logging in as a specified user. | ||||
|  | ||||
| .B SMTP | ||||
| @@ -697,11 +702,11 @@ and specifying this path allows you to set an alternative name, such as | ||||
| your machine's fully qualified domain name, which you might have obtained | ||||
| from an external function such as gethostname or getaddrinfo. | ||||
|  | ||||
| smtp://mail.domain.com - This connects to the mail server at domain.com and | ||||
| smtp://mail.example.com - This connects to the mail server at example.com and | ||||
| sends your local computer's host name in the HELO / EHLO command. | ||||
|  | ||||
| smtp://mail.domain.com/client.domain.com - This will send client.domain.com in | ||||
| the HELO / EHLO command to the mail server at domain.com. | ||||
| smtp://mail.example.com/client.example.com - This will send client.example.com in | ||||
| the HELO / EHLO command to the mail server at example.com. | ||||
|  | ||||
| .B POP3 | ||||
|  | ||||
| @@ -709,8 +714,8 @@ The path part of a POP3 request specifies the mailbox (message) to retrieve. | ||||
| If the mailbox is not specified then a list of waiting messages is returned | ||||
| instead. | ||||
|  | ||||
| pop3://user:password@mail.domain.com - This lists the available messages | ||||
| pop3://user:password@mail.domain.com/1 - This retrieves the first message | ||||
| pop3://user:password@mail.example.com - This lists the available messages | ||||
| pop3://user:password@mail.example.com/1 - This retrieves the first message | ||||
|  | ||||
| .B SCP | ||||
|  | ||||
| @@ -745,6 +750,26 @@ user's home directory | ||||
| sftp://ssh.example.com/~/Documents/ - This requests a directory listing | ||||
| of the Documents directory under the user's home directory | ||||
|  | ||||
| .B LDAP | ||||
|  | ||||
| The path part of a LDAP request can be used to specify the: Distinguished | ||||
| Name, Attributes, Scope, Filter and Extension for a LDAP search. Each field | ||||
| is separated by a question mark and when that field is not required an empty | ||||
| string with the question mark separator should be included. | ||||
|  | ||||
| ldap://ldap.example.com/o=My%20Organisation - This will perform a LDAP search | ||||
| with the DN as My Organisation. | ||||
|  | ||||
| ldap://ldap.example.com/o=My%20Organisation?postalAddress - This will perform | ||||
| the same search but will only return postalAddress attributes. | ||||
|  | ||||
| ldap://ldap.example.com/?rootDomainNamingContext - This specifies an empty DN | ||||
| and requests information about the rootDomainNamingContext attribute for an | ||||
| Active Directory server. | ||||
|  | ||||
| For more information about the individual components of a LDAP URL please | ||||
| see RFC4516. | ||||
|  | ||||
| .B NOTES | ||||
|  | ||||
| Starting with version 7.20.0, the fragment part of the URI will not be sent as | ||||
| @@ -820,13 +845,14 @@ affect how libcurl speaks to a proxy when CONNECT is used. The HTTP version | ||||
| used for "regular" HTTP requests is instead controlled with | ||||
| \fICURLOPT_HTTP_VERSION\fP. | ||||
| .IP CURLOPT_NOPROXY | ||||
| Pass a pointer to a zero terminated string. This should be a comma separated | ||||
| list of hosts which do not use a proxy, if one is specified.  The only | ||||
| wildcard is a single * character, which matches all hosts, and effectively | ||||
| disables the proxy. Each name in this list is matched as either a domain which | ||||
| contains the hostname, or the hostname itself. For example, local.com would | ||||
| match local.com, local.com:80, and www.local.com, but not www.notlocal.com. | ||||
| (Added in 7.19.4) | ||||
| Pass a pointer to a zero terminated string. The string consists of a comma | ||||
| separated list of host names that do not require a proxy to get reached, even | ||||
| if one is specified.  The only wildcard available is a single * character, | ||||
| which matches all hosts, and effectively disables the proxy. Each name in this | ||||
| list is matched as either a domain which contains the hostname, or the | ||||
| hostname itself. For example, example.com would match example.com, | ||||
| example.com:80, and www.example.com, but not www.notanexample.com.  (Added in | ||||
| 7.19.4) | ||||
| .IP CURLOPT_HTTPPROXYTUNNEL | ||||
| Set the parameter to 1 to make the library tunnel all operations through a | ||||
| given HTTP proxy. There is a big difference between using a proxy and to | ||||
| @@ -838,7 +864,7 @@ default service name for a SOCKS5 server is rcmd/server-fqdn. This option | ||||
| allows you to change it. (Added in 7.19.4) | ||||
| .IP CURLOPT_SOCKS5_GSSAPI_NEC | ||||
| Pass a long set to 1 to enable or 0 to disable. As part of the gssapi | ||||
| negotiation a protection mode is negotiated. The rfc1961 says in section | ||||
| negotiation a protection mode is negotiated. The RFC1961 says in section | ||||
| 4.3/4.4 it should be protected, but the NEC reference implementation does not. | ||||
| If enabled, this option allows the unprotected exchange of the protection mode | ||||
| negotiation. (Added in 7.19.4). | ||||
| @@ -861,7 +887,7 @@ connection. This can be used in combination with \fICURLOPT_INTERFACE\fP and | ||||
| you are recommended to use \fICURLOPT_LOCALPORTRANGE\fP as well when this is | ||||
| set. Valid port numbers are 1 - 65535. (Added in 7.15.2) | ||||
| .IP CURLOPT_LOCALPORTRANGE | ||||
| Pass a long. This is the number of attempts libcurl should make to find a | ||||
| Pass a long. This is the number of attempts libcurl will make to find a | ||||
| working local port number. It starts with the given \fICURLOPT_LOCALPORT\fP | ||||
| and adds one to the number for each retry. Setting this to 1 or below will | ||||
| make libcurl do only one try for the exact port number. Port numbers by nature | ||||
| @@ -900,21 +926,20 @@ only makes sense to use this option if you want it smaller. | ||||
| Pass a long specifying what remote port number to connect to, instead of the | ||||
| one specified in the URL or the default port for the used protocol. | ||||
| .IP CURLOPT_TCP_NODELAY | ||||
| Pass a long specifying whether the TCP_NODELAY option should be set or | ||||
| cleared (1 = set, 0 = clear). The option is cleared by default. This | ||||
| will have no effect after the connection has been established. | ||||
| Pass a long specifying whether the TCP_NODELAY option is to be set or cleared | ||||
| (1 = set, 0 = clear). The option is cleared by default. This will have no | ||||
| effect after the connection has been established. | ||||
|  | ||||
| Setting this option will disable TCP's Nagle algorithm. The purpose of | ||||
| this algorithm is to try to minimize the number of small packets on | ||||
| the network (where "small packets" means TCP segments less than the | ||||
| Maximum Segment Size (MSS) for the network). | ||||
| Setting this option will disable TCP's Nagle algorithm. The purpose of this | ||||
| algorithm is to try to minimize the number of small packets on the network | ||||
| (where "small packets" means TCP segments less than the Maximum Segment Size | ||||
| (MSS) for the network). | ||||
|  | ||||
| Maximizing the amount of data sent per TCP segment is good because it | ||||
| amortizes the overhead of the send. However, in some cases (most | ||||
| notably telnet or rlogin) small segments may need to be sent | ||||
| without delay. This is less efficient than sending larger amounts of | ||||
| data at a time, and can contribute to congestion on the network if | ||||
| overdone. | ||||
| amortizes the overhead of the send. However, in some cases (most notably | ||||
| telnet or rlogin) small segments may need to be sent without delay. This is | ||||
| less efficient than sending larger amounts of data at a time, and can | ||||
| contribute to congestion on the network if overdone. | ||||
| .IP CURLOPT_ADDRESS_SCOPE | ||||
| Pass a long specifying the scope_id value to use when connecting to IPv6 | ||||
| link-local or site-local addresses. (Added in 7.19.0) | ||||
| @@ -1099,7 +1124,7 @@ authentication method(s) you want it to use for TLS authentication. | ||||
| .RS | ||||
| .IP CURLOPT_TLSAUTH_SRP | ||||
| TLS-SRP authentication. Secure Remote Password authentication for TLS is | ||||
| defined in RFC 5054 and provides mutual authentication if both sides have a | ||||
| defined in RFC5054 and provides mutual authentication if both sides have a | ||||
| shared secret. To use TLS-SRP, you must also set the | ||||
| \fICURLOPT_TLSAUTH_USERNAME\fP and \fICURLOPT_TLSAUTH_PASSWORD\fP options. | ||||
|  | ||||
| @@ -1148,8 +1173,8 @@ the server is ignored. See the special file lib/README.encoding for details. | ||||
| .IP CURLOPT_TRANSFER_ENCODING | ||||
| Adds a request for compressed Transfer Encoding in the outgoing HTTP | ||||
| request. If the server supports this and so desires, it can respond with the | ||||
| HTTP resonse sent using a compressed Transfer-Encoding that will be | ||||
| automatically uncompressed by libcurl on receival. | ||||
| HTTP response sent using a compressed Transfer-Encoding that will be | ||||
| automatically uncompressed by libcurl on reception. | ||||
|  | ||||
| Transfer-Encoding differs slightly from the Content-Encoding you ask for with | ||||
| \fBCURLOPT_ACCEPT_ENCODING\fP in that a Transfer-Encoding is strictly meant to | ||||
| @@ -1184,19 +1209,19 @@ an infinite number of redirects (which is the default) | ||||
| .IP CURLOPT_POSTREDIR | ||||
| Pass a bitmask to control how libcurl acts on redirects after POSTs that get a | ||||
| 301, 302 or 303 response back.  A parameter with bit 0 set (value | ||||
| \fBCURL_REDIR_POST_301\fP) tells the library to respect RFC 2616/10.3.2 and | ||||
| not convert POST requests into GET requests when following a 301 | ||||
| redirection. Setting bit 1 (value CURL_REDIR_POST_302) makes libcurl maintain | ||||
| the request method after a 302 redirect. Setting bit 2 (value | ||||
| \fBCURL_REDIR_POST_303) makes libcurl maintain the request method after a 302 | ||||
| redirect. CURL_REDIR_POST_ALL is a convenience define that sets both bits. | ||||
| \fBCURL_REDIR_POST_301\fP) tells the library to respect RFC2616/10.3.2 and not | ||||
| convert POST requests into GET requests when following a 301 redirection. | ||||
| Setting bit 1 (value \fBCURL_REDIR_POST_302\fP) makes libcurl maintain the | ||||
| request method after a 302 redirect whilst setting bit 2 (value | ||||
| \fBCURL_REDIR_POST_303\fP) makes libcurl maintain the request method after a | ||||
| 303 redirect. The value \fBCURL_REDIR_POST_ALL\fP is a convenience define that | ||||
| sets all three bits. | ||||
|  | ||||
| The non-RFC behaviour is ubiquitous in web browsers, so the library does the | ||||
| conversion by default to maintain consistency. However, a server may require a | ||||
| POST to remain a POST after such a redirection. This option is meaningful only | ||||
| when setting \fICURLOPT_FOLLOWLOCATION\fP.  (Added in 7.17.1) (This option was | ||||
| known as CURLOPT_POST301 up to 7.19.0 as it only supported the 301 way before | ||||
| then) | ||||
| known as CURLOPT_POST301 up to 7.19.0 as it only supported the 301 then) | ||||
| .IP CURLOPT_PUT | ||||
| A parameter set to 1 tells the library to use HTTP PUT to transfer data. The | ||||
| data should be set with \fICURLOPT_READDATA\fP and \fICURLOPT_INFILESIZE\fP. | ||||
| @@ -1487,16 +1512,16 @@ should be used for this parameter. | ||||
| Unlike CURLOPT_MAIL_FROM and CURLOPT_MAIL_RCPT, the address should not be | ||||
| specified within a pair of angled brackets (<>). However, if an empty string | ||||
| is used then a pair of brackets will be sent by libcurl as required by | ||||
| RFC-2554. | ||||
| RFC2554. | ||||
|  | ||||
| (Added in 7.24.0) | ||||
| (Added in 7.25.0) | ||||
| .SH TFTP OPTIONS | ||||
| .IP CURLOPT_TFTP_BLKSIZE | ||||
| Specify block size to use for TFTP data transmission. Valid range as per RFC | ||||
| 2348 is 8-65464 bytes. The default of 512 bytes will be used if this option is | ||||
| not specified. The specified block size will only be used pending support by | ||||
| the remote server. If the server does not return an option acknowledgement or | ||||
| returns an option acknowledgement with no blksize, the default of 512 bytes | ||||
| Specify block size to use for TFTP data transmission. Valid range as per | ||||
| RFC2348 is 8-65464 bytes. The default of 512 bytes will be used if this option | ||||
| is not specified. The specified block size will only be used pending support | ||||
| by the remote server. If the server does not return an option acknowledgement | ||||
| or returns an option acknowledgement with no blksize, the default of 512 bytes | ||||
| will be used. (added in 7.19.4) | ||||
| .SH FTP OPTIONS | ||||
| .IP CURLOPT_FTPPORT | ||||
| @@ -1611,7 +1636,7 @@ already exists or lack of permissions prevents creation. (Added in 7.16.3) | ||||
|  | ||||
| Starting with 7.19.4, you can also set this value to 2, which will make | ||||
| libcurl retry the CWD command again if the subsequent MKD command fails. This | ||||
| is especially useful if you're doing many simultanoes connections against the | ||||
| is especially useful if you're doing many simultaneous connections against the | ||||
| same server and they all have this option enabled, as then CWD may first fail | ||||
| but then another connection does MKD before this connection and thus MKD fails | ||||
| but trying CWD works! 7.19.4 also introduced the \fICURLFTP_CREATE_DIR\fP and | ||||
| @@ -1698,7 +1723,7 @@ initialized. (Added in 7.20.0) | ||||
| .RS | ||||
| .IP CURL_RTSPREQ_OPTIONS | ||||
| Used to retrieve the available methods of the server. The application is | ||||
| responsbile for parsing and obeying the response. \fB(The session ID is not | ||||
| responsible for parsing and obeying the response. \fB(The session ID is not | ||||
| needed for this method.)\fP  (Added in 7.20.0) | ||||
| .IP CURL_RTSPREQ_DESCRIBE | ||||
| Used to get the low level description of a stream. The application should note | ||||
| @@ -1821,7 +1846,7 @@ want. It should be in the format "X-Y", where X or Y may be left out. HTTP | ||||
| transfers also support several intervals, separated with commas as in | ||||
| \fI"X-Y,N-M"\fP. Using this kind of multiple intervals will cause the HTTP | ||||
| server to send the response document in pieces (using standard MIME separation | ||||
| techniques). For RTSP, the formatting of a range should follow RFC 2326 | ||||
| techniques). For RTSP, the formatting of a range should follow RFC2326 | ||||
| Section 12.29. For RTSP, byte ranges are \fBnot\fP permitted. Instead, ranges | ||||
| should be given in npt, utc, or smpte formats. | ||||
|  | ||||
| @@ -1858,12 +1883,18 @@ something, you don't actually change how libcurl behaves or acts in regards | ||||
| to the particular request method, it will only change the actual string sent | ||||
| in the request. | ||||
|  | ||||
| For example: if you tell libcurl to do a HEAD request, but then change the | ||||
| request to a "GET" with \fBCURLOPT_CUSTOMREQUEST\fP you'll still see libcurl | ||||
| act as if it sent a HEAD even when it does send a GET. | ||||
| For example: | ||||
|  | ||||
| To switch to a proper HEAD, use \fICURLOPT_NOBODY\fP, to switch to a proper | ||||
| POST, use \fICURLOPT_POST\fP or \fICURLOPT_POSTFIELDS\fP and so on. | ||||
| With the HTTP protocol when you tell libcurl to do a HEAD request, but then | ||||
| specify a GET though a custom request libcurl will still act as if it sent a | ||||
| HEAD. To switch to a proper HEAD use \fICURLOPT_NOBODY\fP, to switch to a | ||||
| proper POST use \fICURLOPT_POST\fP or \fICURLOPT_POSTFIELDS\fP and to switch | ||||
| to a proper GET use CURLOPT_HTTPGET. | ||||
|  | ||||
| With the POP3 protocol when you tell libcurl to use a custom request it will | ||||
| behave like a LIST or RETR command was sent where it expects data to be | ||||
| returned by the server. As such \fICURLOPT_NOBODY\fP should be used when | ||||
| specifying commands such as DELE and NOOP for example. | ||||
|  | ||||
| Restore to the internal default by setting this to NULL. | ||||
|  | ||||
| @@ -2348,7 +2379,7 @@ require you to disable this in order for you to succeed. (Added in 7.16.0) | ||||
| Pass a long with a bitmask to tell libcurl about specific SSL behaviors. | ||||
|  | ||||
| CURLSSLOPT_ALLOW_BEAST is the only supported bit and by setting this the user | ||||
| will tell libcurl to not attempt to use any work-arounds for a security flaw | ||||
| will tell libcurl to not attempt to use any workarounds for a security flaw | ||||
| in the SSL3 and TLS1.0 protocols.  If this option isn't used or this bit is | ||||
| set to 0, the SSL layer libcurl uses may use a work-around for this flaw | ||||
| although it might cause interoperability problems with some (older) SSL | ||||
|   | ||||
| @@ -5,7 +5,7 @@ | ||||
| .\" *                            | (__| |_| |  _ <| |___ | ||||
| .\" *                             \___|\___/|_| \_\_____| | ||||
| .\" * | ||||
| .\" * Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
| .\" * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
| .\" * | ||||
| .\" * This software is licensed as described in the file COPYING, which | ||||
| .\" * you should have received as part of this distribution. The terms | ||||
| @@ -66,6 +66,10 @@ Initialize the Win32 socket libraries. | ||||
| .TP | ||||
| .B CURL_GLOBAL_NOTHING | ||||
| Initialise nothing extra. This sets no bit. | ||||
| .TP | ||||
| .B CURL_GLOBAL_DEFAULT | ||||
| A sensible default. It will init both SSL and Win32. Right now, this equals | ||||
| the functionality of the \fBCURL_GLOBAL_ALL\fP mask. | ||||
| .SH RETURN VALUE | ||||
| If this function returns non-zero, something went wrong and you cannot use the | ||||
| other curl functions. | ||||
|   | ||||
| @@ -5,7 +5,7 @@ | ||||
| .\" *                            | (__| |_| |  _ <| |___ | ||||
| .\" *                             \___|\___/|_| \_\_____| | ||||
| .\" * | ||||
| .\" * Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
| .\" * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
| .\" * | ||||
| .\" * This software is licensed as described in the file COPYING, which | ||||
| .\" * you should have received as part of this distribution. The terms | ||||
| @@ -132,8 +132,8 @@ timeout value to use when waiting for socket activities. | ||||
| them for activity. This can be done through your application code, or by way | ||||
| of an external library such as libevent or glib. | ||||
|  | ||||
| 6. Call curl_multi_socket_action() to kickstart everything. To get one or more | ||||
| callbacks called. | ||||
| 6. Call curl_multi_socket_action(...CURL_SOCKET_TIMEOUT...) to kickstart | ||||
| everything. To get one or more callbacks called. | ||||
|  | ||||
| 7. Wait for activity on any of libcurl's sockets, use the timeout value your | ||||
| callback has been told | ||||
|   | ||||
| @@ -65,7 +65,7 @@ object. Note that when you use the multi interface, all easy handles added to | ||||
| the same multi handle will share DNS cache by default without this having to | ||||
| be used! | ||||
| .IP CURL_LOCK_DATA_SSL_SESSION | ||||
| SSL session IDs will be shared accross the easy handles using this shared | ||||
| SSL session IDs will be shared across the easy handles using this shared | ||||
| object. This will reduce the time spent in the SSL handshake when reconnecting | ||||
| to the same server. Note SSL session IDs are reused within the same easy handle | ||||
| by default. | ||||
|   | ||||
| @@ -248,7 +248,10 @@ This is the generic return code used by functions in the libcurl multi | ||||
| interface. Also consider \fIcurl_multi_strerror(3)\fP. | ||||
| .IP "CURLM_CALL_MULTI_PERFORM (-1)" | ||||
| This is not really an error. It means you should call | ||||
| \fIcurl_multi_perform(3)\fP again without doing select() or similar in between. | ||||
| \fIcurl_multi_perform(3)\fP again without doing select() or similar in | ||||
| between. Before version 7.20.0 this could be returned by | ||||
| \fIcurl_multi_perform(3)\fP, but in later versions this return code is never | ||||
| used. | ||||
| .IP "CURLM_OK (0)" | ||||
| Things are fine. | ||||
| .IP "CURLM_BAD_HANDLE (1)" | ||||
| @@ -282,5 +285,5 @@ An invalid share object was passed to the function. | ||||
| Not enough memory was available. | ||||
| (Added in 7.12.0) | ||||
| .IP "CURLSHE_NOT_BUILT_IN (5)" | ||||
| The requsted sharing could not be done because the library you use don't have | ||||
| The requested sharing could not be done because the library you use don't have | ||||
| that particular feature enabled. (Added in 7.23.0) | ||||
|   | ||||
| @@ -30,12 +30,12 @@ | ||||
|  | ||||
| /* This is the version number of the libcurl package from which this header | ||||
|    file origins: */ | ||||
| #define LIBCURL_VERSION "7.26.0-DEV" | ||||
| #define LIBCURL_VERSION "7.27.0-DEV" | ||||
|  | ||||
| /* The numeric version number is also available "in parts" by using these | ||||
|    defines: */ | ||||
| #define LIBCURL_VERSION_MAJOR 7 | ||||
| #define LIBCURL_VERSION_MINOR 26 | ||||
| #define LIBCURL_VERSION_MINOR 27 | ||||
| #define LIBCURL_VERSION_PATCH 0 | ||||
|  | ||||
| /* This is the numeric version of the libcurl version number, meant for easier | ||||
| @@ -53,7 +53,7 @@ | ||||
|    and it is always a greater number in a more recent release. It makes | ||||
|    comparisons with greater than and less than work. | ||||
| */ | ||||
| #define LIBCURL_VERSION_NUM 0x071A00 | ||||
| #define LIBCURL_VERSION_NUM 0x071B00 | ||||
|  | ||||
| /* | ||||
|  * This is the date and time when the full source package was created. The | ||||
|   | ||||
							
								
								
									
										4
									
								
								lib/.gitignore
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										4
									
								
								lib/.gitignore
									
									
									
									
										vendored
									
									
								
							| @@ -11,3 +11,7 @@ libcurl.vcproj | ||||
| vc6libcurl.dsp | ||||
| Makefile.vc10.dist | ||||
| libcurl.vers | ||||
| *.a | ||||
| *.res | ||||
| *.imp | ||||
| *.nlm | ||||
|   | ||||
| @@ -30,14 +30,14 @@ DOCS = README.encoding README.memoryleak README.ares README.curlx	\ | ||||
|  | ||||
| CMAKE_DIST = CMakeLists.txt curl_config.h.cmake | ||||
|  | ||||
| EXTRA_DIST = Makefile.b32 Makefile.m32 Makefile.vc6 $(DSP)                 \ | ||||
|  vc6libcurl.dsw config-win32.h config-win32ce.h config-riscos.h            \ | ||||
|  config-mac.h curl_config.h.in makefile.dj config-dos.h libcurl.plist      \ | ||||
|  libcurl.rc config-amigaos.h makefile.amiga                                \ | ||||
|  Makefile.netware nwlib.c nwos.c libcurl.imp msvcproj.head msvcproj.foot   \ | ||||
|  config-win32ce.h config-os400.h setup-os400.h config-symbian.h		   \ | ||||
|  Makefile.Watcom config-tpf.h $(DOCS) $(VCPROJ) mk-ca-bundle.pl		   \ | ||||
|  mk-ca-bundle.vbs firefox-db2pem.sh $(CMAKE_DIST) config-vxworks.h	   \ | ||||
| EXTRA_DIST = Makefile.b32 Makefile.m32 Makefile.vc6 $(DSP)              \ | ||||
|  vc6libcurl.dsw config-win32.h config-win32ce.h config-riscos.h         \ | ||||
|  config-mac.h curl_config.h.in makefile.dj config-dos.h libcurl.plist   \ | ||||
|  libcurl.rc config-amigaos.h makefile.amiga                             \ | ||||
|  Makefile.netware nwlib.c nwos.c msvcproj.head msvcproj.foot		\ | ||||
|  config-win32ce.h config-os400.h setup-os400.h config-symbian.h		\ | ||||
|  Makefile.Watcom config-tpf.h $(DOCS) $(VCPROJ) mk-ca-bundle.pl		\ | ||||
|  mk-ca-bundle.vbs firefox-db2pem.sh $(CMAKE_DIST) config-vxworks.h	\ | ||||
|  Makefile.vxworks config-vms.h checksrc.pl | ||||
|  | ||||
| CLEANFILES = $(DSP) $(VCPROJ) | ||||
|   | ||||
| @@ -23,7 +23,8 @@ CSOURCES = file.c timeval.c base64.c hostip.c progress.c formdata.c	\ | ||||
|   curl_rtmp.c openldap.c curl_gethostname.c gopher.c axtls.c		\ | ||||
|   idn_win32.c http_negotiate_sspi.c cyassl.c http_proxy.c non-ascii.c	\ | ||||
|   asyn-ares.c asyn-thread.c curl_gssapi.c curl_ntlm.c curl_ntlm_wb.c	\ | ||||
|   curl_ntlm_core.c curl_ntlm_msgs.c | ||||
|   curl_ntlm_core.c curl_ntlm_msgs.c curl_sasl.c curl_schannel.c	\ | ||||
|   curl_multibyte.c curl_darwinssl.c | ||||
|  | ||||
| HHEADERS = arpa_telnet.h netrc.h file.h timeval.h qssl.h hostip.h	\ | ||||
|   progress.h formdata.h cookie.h http.h sendf.h ftp.h url.h dict.h	\ | ||||
| @@ -38,5 +39,6 @@ HHEADERS = arpa_telnet.h netrc.h file.h timeval.h qssl.h hostip.h	\ | ||||
|   curl_base64.h rawstr.h curl_addrinfo.h curl_sspi.h slist.h nonblock.h	\ | ||||
|   curl_memrchr.h imap.h pop3.h smtp.h pingpong.h rtsp.h curl_threads.h	\ | ||||
|   warnless.h curl_hmac.h polarssl.h curl_rtmp.h curl_gethostname.h	\ | ||||
|   gopher.h axtls.h cyassl.h http_proxy.h non-ascii.h asyn.h curl_ntlm.h \ | ||||
|   curl_gssapi.h curl_ntlm_wb.h curl_ntlm_core.h curl_ntlm_msgs.h | ||||
|   gopher.h axtls.h cyassl.h http_proxy.h non-ascii.h asyn.h curl_ntlm.h	\ | ||||
|   curl_gssapi.h curl_ntlm_wb.h curl_ntlm_core.h curl_ntlm_msgs.h	\ | ||||
|   curl_sasl.h curl_schannel.h curl_multibyte.h curl_darwinssl.h | ||||
|   | ||||
							
								
								
									
										111
									
								
								lib/Makefile.m32
									
									
									
									
									
								
							
							
						
						
									
										111
									
								
								lib/Makefile.m32
									
									
									
									
									
								
							| @@ -20,15 +20,6 @@ endif | ||||
| ifndef OPENSSL_PATH | ||||
| OPENSSL_PATH = ../../openssl-0.9.8x | ||||
| endif | ||||
| ifndef OPENSSL_INCLUDE | ||||
| OPENSSL_INCLUDE = $(OPENSSL_PATH)/outinc | ||||
| endif | ||||
| ifndef OPENSSL_LIBPATH | ||||
| OPENSSL_LIBPATH = $(OPENSSL_PATH)/out | ||||
| endif | ||||
| ifndef OPENSSL_LIBS | ||||
| OPENSSL_LIBS = -leay32 -lssl32 | ||||
| endif | ||||
| # Edit the path below to point to the base of your LibSSH2 package. | ||||
| ifndef LIBSSH2_PATH | ||||
| LIBSSH2_PATH = ../../libssh2-1.4.2 | ||||
| @@ -64,22 +55,47 @@ ifndef ARCH | ||||
| ARCH = w32 | ||||
| endif | ||||
|  | ||||
| CC = gcc | ||||
| CFLAGS = -g -O2 -Wall | ||||
| CFLAGS += -fno-strict-aliasing | ||||
| CC	= $(CROSSPREFIX)gcc | ||||
| CFLAGS	= -g -O2 -Wall | ||||
| CFLAGS	+= -fno-strict-aliasing | ||||
| ifeq ($(ARCH),w64) | ||||
| CFLAGS += -D_AMD64_ | ||||
| CFLAGS	+= -D_AMD64_ | ||||
| endif | ||||
| # comment LDFLAGS below to keep debug info | ||||
| LDFLAGS = -s | ||||
| AR = ar | ||||
| RANLIB = ranlib | ||||
| RC = windres | ||||
| RCFLAGS = --include-dir=$(PROOT)/include -DDEBUGBUILD=0 -O COFF -i | ||||
| STRIP = strip -g | ||||
| LDFLAGS	= -s | ||||
| AR	= $(CROSSPREFIX)ar | ||||
| RANLIB	= $(CROSSPREFIX)ranlib | ||||
| RC	= $(CROSSPREFIX)windres | ||||
| RCFLAGS	= --include-dir=$(PROOT)/include -DDEBUGBUILD=0 -O COFF -i | ||||
| STRIP	= $(CROSSPREFIX)strip -g | ||||
|  | ||||
| RM = del /q /f 2>NUL | ||||
| CP = copy | ||||
| # Platform-dependent helper tool macros | ||||
| ifeq ($(findstring /sh,$(SHELL)),/sh) | ||||
| DEL	= rm -f $1 | ||||
| RMDIR	= rm -fr $1 | ||||
| MKDIR	= mkdir -p $1 | ||||
| COPY	= -cp -afv $1 $2 | ||||
| #COPYR	= -cp -afr $1/* $2 | ||||
| COPYR	= -rsync -aC $1/* $2 | ||||
| TOUCH	= touch $1 | ||||
| CAT	= cat | ||||
| ECHONL	= echo "" | ||||
| DL	= ' | ||||
| else | ||||
| ifeq "$(OS)" "Windows_NT" | ||||
| DEL	= -del 2>NUL /q /f $(subst /,\,$1) | ||||
| RMDIR	= -rd 2>NUL /q /s $(subst /,\,$1) | ||||
| else | ||||
| DEL	= -del 2>NUL $(subst /,\,$1) | ||||
| RMDIR	= -deltree 2>NUL /y $(subst /,\,$1) | ||||
| endif | ||||
| MKDIR	= -md 2>NUL $(subst /,\,$1) | ||||
| COPY	= -copy 2>NUL /y $(subst /,\,$1) $(subst /,\,$2) | ||||
| COPYR	= -xcopy 2>NUL /q /y /e $(subst /,\,$1) $(subst /,\,$2) | ||||
| TOUCH	= copy 2>&1>NUL /b $(subst /,\,$1) +,, | ||||
| CAT	= type | ||||
| ECHONL	= $(ComSpec) /c echo. | ||||
| endif | ||||
|  | ||||
| ######################################################## | ||||
| ## Nothing more to do below this line! | ||||
| @@ -103,6 +119,9 @@ endif | ||||
| ifeq ($(findstring -ssl,$(CFG)),-ssl) | ||||
| SSL = 1 | ||||
| endif | ||||
| ifeq ($(findstring -srp,$(CFG)),-srp) | ||||
| SRP = 1 | ||||
| endif | ||||
| ifeq ($(findstring -zlib,$(CFG)),-zlib) | ||||
| ZLIB = 1 | ||||
| endif | ||||
| @@ -124,6 +143,10 @@ endif | ||||
| ifeq ($(findstring -ipv6,$(CFG)),-ipv6) | ||||
| IPV6 = 1 | ||||
| endif | ||||
| ifeq ($(findstring -winssl,$(CFG)),-winssl) | ||||
| WINSSL = 1 | ||||
| SSPI = 1 | ||||
| endif | ||||
|  | ||||
| INCLUDES = -I. -I../include | ||||
| CFLAGS += -DBUILDING_LIBCURL | ||||
| @@ -145,11 +168,37 @@ ifdef SSH2 | ||||
|   DLL_LIBS += -L"$(LIBSSH2_PATH)/win32" -lssh2 | ||||
| endif | ||||
| ifdef SSL | ||||
|   ifndef OPENSSL_INCLUDE | ||||
|     ifeq "$(wildcard $(OPENSSL_PATH)/outinc)" "$(OPENSSL_PATH)/outinc" | ||||
|       OPENSSL_INCLUDE = $(OPENSSL_PATH)/outinc | ||||
|     endif | ||||
|     ifeq "$(wildcard $(OPENSSL_PATH)/include)" "$(OPENSSL_PATH)/include" | ||||
|       OPENSSL_INCLUDE = $(OPENSSL_PATH)/include | ||||
|     endif | ||||
|   endif | ||||
|   ifneq "$(wildcard $(OPENSSL_INCLUDE)/openssl/opensslv.h)" "$(OPENSSL_INCLUDE)/openssl/opensslv.h" | ||||
|   $(error Invalid path to OpenSSL package: $(OPENSSL_PATH)) | ||||
|   endif | ||||
|   ifndef OPENSSL_LIBPATH | ||||
|     ifeq "$(wildcard $(OPENSSL_PATH)/out)" "$(OPENSSL_PATH)/out" | ||||
|       OPENSSL_LIBPATH = $(OPENSSL_PATH)/out | ||||
|       OPENSSL_LIBS = -leay32 -lssl32 | ||||
|     endif | ||||
|     ifeq "$(wildcard $(OPENSSL_PATH)/lib)" "$(OPENSSL_PATH)/lib" | ||||
|       OPENSSL_LIBPATH = $(OPENSSL_PATH)/lib | ||||
|       OPENSSL_LIBS = -lcrypto -lssl | ||||
|     endif | ||||
|   endif | ||||
|   INCLUDES += -I"$(OPENSSL_INCLUDE)" | ||||
|   CFLAGS += -DUSE_SSLEAY -DUSE_OPENSSL -DHAVE_OPENSSL_ENGINE_H -DHAVE_OPENSSL_PKCS12_H \ | ||||
|             -DHAVE_ENGINE_LOAD_BUILTIN_ENGINES -DOPENSSL_NO_KRB5 \ | ||||
|             -DCURL_WANTS_CA_BUNDLE_ENV | ||||
|   DLL_LIBS += -L"$(OPENSSL_LIBPATH)" $(OPENSSL_LIBS) | ||||
|   ifdef SRP | ||||
|     ifeq "$(wildcard $(OPENSSL_INCLUDE)/openssl/srp.h)" "$(OPENSSL_INCLUDE)/openssl/srp.h" | ||||
|       CFLAGS += -DHAVE_SSLEAY_SRP -DUSE_TLS_SRP | ||||
|     endif | ||||
|   endif | ||||
| endif | ||||
| ifdef ZLIB | ||||
|   INCLUDES += -I"$(ZLIB_PATH)" | ||||
| @@ -169,6 +218,9 @@ endif | ||||
| endif | ||||
| ifdef SSPI | ||||
|   CFLAGS += -DUSE_WINDOWS_SSPI | ||||
|   ifdef WINSSL | ||||
|     CFLAGS += -DUSE_SCHANNEL | ||||
|   endif | ||||
| endif | ||||
| ifdef SPNEGO | ||||
|   CFLAGS += -DHAVE_SPNEGO | ||||
| @@ -212,7 +264,7 @@ RESOURCE = libcurl.res | ||||
| all: $(libcurl_a_LIBRARY) $(libcurl_dll_LIBRARY) | ||||
|  | ||||
| $(libcurl_a_LIBRARY): $(libcurl_a_OBJECTS) $(libcurl_a_DEPENDENCIES) | ||||
| 	-$(RM) $@ | ||||
| 	@$(call DEL, $@) | ||||
| 	$(AR) cru $@ $(libcurl_a_OBJECTS) | ||||
| 	$(RANLIB) $@ | ||||
| 	$(STRIP) $@ | ||||
| @@ -220,7 +272,7 @@ $(libcurl_a_LIBRARY): $(libcurl_a_OBJECTS) $(libcurl_a_DEPENDENCIES) | ||||
| # remove the last line above to keep debug info | ||||
|  | ||||
| $(libcurl_dll_LIBRARY): $(libcurl_a_OBJECTS) $(RESOURCE) $(libcurl_dll_DEPENDENCIES) | ||||
| 	-$(RM) $@ | ||||
| 	@$(call DEL, $@) | ||||
| 	$(CC) $(LDFLAGS) -shared -Wl,--out-implib,$(libcurl_dll_a_LIBRARY) \ | ||||
| 	  -o $@ $(libcurl_a_OBJECTS) $(RESOURCE) $(DLL_LIBS) | ||||
|  | ||||
| @@ -232,17 +284,18 @@ $(libcurl_dll_LIBRARY): $(libcurl_a_OBJECTS) $(RESOURCE) $(libcurl_dll_DEPENDENC | ||||
|  | ||||
| clean: | ||||
| ifeq "$(wildcard $(PROOT)/include/curl/curlbuild.h.dist)" "$(PROOT)/include/curl/curlbuild.h.dist" | ||||
| 	-$(RM) $(subst /,\,$(PROOT)/include/curl/curlbuild.h) | ||||
| 	@$(call DEL, $(PROOT)/include/curl/curlbuild.h) | ||||
| endif | ||||
| 	-$(RM) $(libcurl_a_OBJECTS) $(RESOURCE) | ||||
| 	@$(call DEL, $(libcurl_a_OBJECTS) $(RESOURCE)) | ||||
|  | ||||
| distclean vclean: clean | ||||
| 	-$(RM) $(libcurl_a_LIBRARY) $(libcurl_dll_LIBRARY) $(libcurl_dll_a_LIBRARY) | ||||
| 	@$(call DEL, $(libcurl_a_LIBRARY) $(libcurl_dll_LIBRARY) $(libcurl_dll_a_LIBRARY)) | ||||
|  | ||||
| $(PROOT)/include/curl/curlbuild.h: | ||||
| 	@echo Creating $@ | ||||
| 	@$(call COPY, $@.dist, $@) | ||||
|  | ||||
| $(LIBCARES_PATH)/libcares.a: | ||||
| 	$(MAKE) -C $(LIBCARES_PATH) -f Makefile.m32 | ||||
|  | ||||
| $(PROOT)/include/curl/curlbuild.h: | ||||
| 	@echo Creating $@ | ||||
| 	@$(CP) $(subst /,\,$@).dist $(subst /,\,$@) | ||||
|  | ||||
|   | ||||
| @@ -64,7 +64,8 @@ DESCR	= cURL libcurl $(LIBCURL_VERSION_STR) ($(LIBARCH)) - http://curl.haxx.se | ||||
| MTSAFE	= YES | ||||
| STACK	= 64000 | ||||
| SCREEN	= none | ||||
| EXPORTS	= @libcurl.imp | ||||
| EXPORTF	= $(TARGET).imp | ||||
| EXPORTS	= @$(EXPORTF) | ||||
|  | ||||
| # Uncomment the next line to enable linking with POSIX semantics. | ||||
| # POSIXFL = 1 | ||||
| @@ -330,7 +331,7 @@ $(OBJDIR)/%.o: %.c | ||||
| #	@echo Compiling $< | ||||
| 	$(CC) $(CFLAGS) -c $< -o $@ | ||||
|  | ||||
| $(OBJDIR)/version.inc: ../include/curl/curlver.h $(OBJDIR) | ||||
| $(OBJDIR)/version.inc: $(CURL_INC)/curl/curlver.h $(OBJDIR) | ||||
| 	@echo Creating $@ | ||||
| 	@$(AWK) -f ../packages/NetWare/get_ver.awk $< > $@ | ||||
|  | ||||
| @@ -350,7 +351,7 @@ clean: | ||||
| 	-$(RM) -r $(OBJDIR) | ||||
|  | ||||
| distclean vclean: clean | ||||
| 	-$(RM) $(TARGET).$(LIBEXT) $(TARGET).nlm | ||||
| 	-$(RM) $(TARGET).$(LIBEXT) $(TARGET).nlm $(TARGET).imp | ||||
| 	-$(RM) certdata.txt ca-bundle.crt | ||||
|  | ||||
| $(OBJDIR) $(INSTDIR): | ||||
| @@ -364,7 +365,7 @@ ifdef RANLIB | ||||
| 	@$(RANLIB) $@ | ||||
| endif | ||||
|  | ||||
| $(TARGET).nlm: $(OBJDIR)/$(TARGET).def $(OBJL) $(XDCDATA) | ||||
| $(TARGET).nlm: $(OBJDIR)/$(TARGET).def $(OBJL) $(EXPORTF) $(XDCDATA) | ||||
| 	@echo Linking $@ | ||||
| 	@-$(RM) $@ | ||||
| 	@$(LD) $(LDFLAGS) $< | ||||
| @@ -660,6 +661,10 @@ else | ||||
| 	@echo $(DL)#define CURL_CA_BUNDLE getenv("CURL_CA_BUNDLE")$(DL) >> $@ | ||||
| endif | ||||
|  | ||||
| $(EXPORTF): $(CURL_INC)/curl/curl.h $(CURL_INC)/curl/easy.h $(CURL_INC)/curl/multi.h $(CURL_INC)/curl/mprintf.h | ||||
| 	@echo Creating $@ | ||||
| 	@$(AWK) -f ../packages/NetWare/get_exp.awk $^ > $@ | ||||
|  | ||||
| FORCE: ; | ||||
|  | ||||
| info: $(OBJDIR)/version.inc | ||||
| @@ -696,13 +701,6 @@ else | ||||
| 	@echo ipv6 support:    no | ||||
| endif | ||||
|  | ||||
| $(LIBCARES_PATH)/libcares.$(LIBEXT): | ||||
| 	$(MAKE) -C $(LIBCARES_PATH) -f Makefile.netware lib | ||||
|  | ||||
| ca-bundle.crt: mk-ca-bundle.pl | ||||
| 	@echo Creating $@ | ||||
| 	@-$(PERL) $< -b -n $@ | ||||
|  | ||||
| $(CURL_INC)/curl/curlbuild.h: Makefile.netware FORCE | ||||
| 	@echo Creating $@ | ||||
| 	@echo $(DL)/* $@ intended for NetWare target.$(DL) > $@ | ||||
| @@ -741,3 +739,10 @@ endif | ||||
| 	@echo $(DL)typedef CURL_TYPEOF_CURL_OFF_T curl_off_t;$(DL) >> $@ | ||||
| 	@echo $(DL)#endif /* __CURL_CURLBUILD_H */$(DL) >> $@ | ||||
|  | ||||
| $(LIBCARES_PATH)/libcares.$(LIBEXT): | ||||
| 	$(MAKE) -C $(LIBCARES_PATH) -f Makefile.netware lib | ||||
|  | ||||
| ca-bundle.crt: mk-ca-bundle.pl | ||||
| 	@echo Creating $@ | ||||
| 	@-$(PERL) $< -b -n $@ | ||||
|  | ||||
|   | ||||
| @@ -5,7 +5,7 @@ | ||||
| #                            | (__| |_| |  _ <| |___ | ||||
| #                             \___|\___/|_| \_\_____| | ||||
| # | ||||
| # Copyright (C) 1999 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
| # Copyright (C) 1999 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
| # | ||||
| # This software is licensed as described in the file COPYING, which | ||||
| # you should have received as part of this distribution. The terms | ||||
| @@ -22,7 +22,7 @@ | ||||
|  | ||||
| # All files in the Makefile.vc* series are generated automatically from the | ||||
| # one made for MSVC version 6. Alas, if you want to do changes to any of the | ||||
| # fiels and send back to the project, edit the version six, make your diff and | ||||
| # files and send back to the project, edit the version six, make your diff and | ||||
| # mail curl-library. | ||||
|  | ||||
| ########################################################################### | ||||
| @@ -189,6 +189,20 @@ CC       = $(CCNODBG) $(RTLIB) $(CFLAGSSSL) $(CFLAGSZLIB) $(CFLAGSLIB) | ||||
| CFGSET   = TRUE | ||||
| !ENDIF | ||||
|  | ||||
| ###################### | ||||
| # release-ssl-ssh2-zlib | ||||
|  | ||||
| !IF "$(CFG)" == "release-ssl-ssh2-zlib" | ||||
| TARGET   = $(LIBCURL_STA_LIB_REL) | ||||
| DIROBJ   = $(CFG) | ||||
| LFLAGSSSL = "/LIBPATH:$(OPENSSL_PATH)\out32" | ||||
| LFLAGSSSH2 = "/LIBPATH:$(LIBSSH2_PATH)" | ||||
| LFLAGSZLIB = "/LIBPATH:$(ZLIB_PATH)" | ||||
| LNK      = $(LNKLIB) $(LFLAGSSSL) $(LFLAGSSSH2) $(LFLAGSZLIB) /out:$(DIROBJ)\$(TARGET) | ||||
| CC       = $(CCNODBG) $(RTLIB) $(CFLAGSSSL) $(CFLAGSSSH2) $(CFLAGSZLIB) $(CFLAGSLIB) | ||||
| CFGSET   = TRUE | ||||
| !ENDIF | ||||
|  | ||||
| ###################### | ||||
| # release-ssl-dll | ||||
|  | ||||
| @@ -226,36 +240,6 @@ CC       = $(CCNODBG) $(RTLIB) $(CFLAGSSSL) $(CFLAGSZLIB) $(CFLAGSLIB) | ||||
| CFGSET   = TRUE | ||||
| !ENDIF | ||||
|  | ||||
| ###################### | ||||
| # release-ssl-ssh2-zlib | ||||
|  | ||||
| !IF "$(CFG)" == "release-ssl-ssh2-zlib" | ||||
| TARGET   = $(LIB_NAME).lib | ||||
| DIROBJ   = $(CFG) | ||||
| LFLAGSSSL = "/LIBPATH:$(OPENSSL_PATH)\out32" | ||||
| LFLAGSSSH2 = "/LIBPATH:$(LIBSSH2_PATH)" | ||||
| LFLAGSZLIB = "/LIBPATH:$(ZLIB_PATH)" | ||||
| LNK      = $(LNKLIB) $(LFLAGSSSL) $(LFLAGSSSH2) $(LFLAGSZLIB) /out:$(DIROBJ)\$(TARGET) | ||||
| CC       = $(CCNODBG) $(RTLIB) $(CFLAGSSSL) $(CFLAGSSSH2) $(CFLAGSZLIB) $(CFLAGSLIB) | ||||
| CFGSET   = TRUE | ||||
| RESOURCE = $(LIBSSH2_PATH)/Release/src/libssh2.lib $(ZLIB_PATH)/zlib.lib | ||||
| !ENDIF | ||||
|  | ||||
| ###################### | ||||
| # debug-ssl-ssh2-zlib | ||||
|  | ||||
| !IF "$(CFG)" == "debug-ssl-ssh2-zlib" | ||||
| TARGET   = $(LIB_NAME_DEBUG).lib | ||||
| DIROBJ   = $(CFG) | ||||
| LFLAGSZLIB = "/LIBPATH:$(ZLIB_PATH)" | ||||
| LFLAGSSSH2 = "/LIBPATH:$(LIBSSH2_PATH)" | ||||
| LFLAGSSSL = "/LIBPATH:$(OPENSSL_PATH)\out32" | ||||
| LNK      = $(LNKLIB) $(ZLIBLIBS) $(LFLAGSSSL) $(LFLAGSSSH2) $(LFLAGSZLIB) /out:$(DIROBJ)\$(TARGET) | ||||
| CC       = $(CCDEBUG) $(RTLIBD) $(CFLAGSSSL) $(CFLAGSSSH2) $(CFLAGSZLIB) $(CFLAGSLIB) | ||||
| CFGSET   = TRUE | ||||
| RESOURCE = $(LIBSSH2_PATH)/Release/src/libssh2.lib $(ZLIB_PATH)/zlib.lib | ||||
| !ENDIF | ||||
|  | ||||
| ###################### | ||||
| # release-dll | ||||
|  | ||||
| @@ -356,6 +340,20 @@ CC       = $(CCDEBUG) $(RTLIBD) $(CFLAGSSSL) $(CFLAGSZLIB) $(CFLAGSLIB) | ||||
| CFGSET   = TRUE | ||||
| !ENDIF | ||||
|  | ||||
| ###################### | ||||
| # debug-ssl-ssh2-zlib | ||||
|  | ||||
| !IF "$(CFG)" == "debug-ssl-ssh2-zlib" | ||||
| TARGET   = $(LIBCURL_STA_LIB_DBG) | ||||
| DIROBJ   = $(CFG) | ||||
| LFLAGSZLIB = "/LIBPATH:$(ZLIB_PATH)" | ||||
| LFLAGSSSH2 = "/LIBPATH:$(LIBSSH2_PATH)" | ||||
| LFLAGSSSL = "/LIBPATH:$(OPENSSL_PATH)\out32" | ||||
| LNK      = $(LNKLIB) $(ZLIBLIBS) $(LFLAGSSSL) $(LFLAGSSSH2) $(LFLAGSZLIB) /out:$(DIROBJ)\$(TARGET) | ||||
| CC       = $(CCDEBUG) $(RTLIBD) $(CFLAGSSSL) $(CFLAGSSSH2) $(CFLAGSZLIB) $(CFLAGSLIB) | ||||
| CFGSET   = TRUE | ||||
| !ENDIF | ||||
|  | ||||
| ###################### | ||||
| # debug-ssl-dll | ||||
|  | ||||
| @@ -463,11 +461,11 @@ RESOURCE = $(DIROBJ)\libcurl.res | ||||
| !MESSAGE   release-dll-ssl-dll          - release dynamic library with dynamic ssl | ||||
| !MESSAGE   release-dll-zlib-dll         - release dynamic library with dynamic zlib | ||||
| !MESSAGE   release-dll-ssl-dll-zlib-dll - release dynamic library with dynamic ssl and dynamic zlib | ||||
| !MESSAGE   debug-ssl-ssh2-zlib          - debug static library with ssl, ssh2 and zlib | ||||
| !MESSAGE   debug                        - debug static library | ||||
| !MESSAGE   debug-ssl                    - debug static library with ssl | ||||
| !MESSAGE   debug-zlib                   - debug static library with zlib | ||||
| !MESSAGE   debug-ssl-zlib               - debug static library with ssl and zlib | ||||
| !MESSAGE   debug-ssl-ssh2-zlib          - debug static library with ssl, ssh2 and zlib | ||||
| !MESSAGE   debug-ssl-dll                - debug static library with dynamic ssl | ||||
| !MESSAGE   debug-zlib-dll               - debug static library with dynamic zlib | ||||
| !MESSAGE   debug-ssl-dll-zlib-dll       - debug static library with dynamic ssl and dynamic zlib | ||||
| @@ -503,25 +501,29 @@ X_OBJS= \ | ||||
| 	$(DIROBJ)\content_encoding.obj \ | ||||
| 	$(DIROBJ)\cookie.obj \ | ||||
| 	$(DIROBJ)\curl_addrinfo.obj \ | ||||
| 	$(DIROBJ)\curl_darwinssl.obj \ | ||||
| 	$(DIROBJ)\curl_fnmatch.obj \ | ||||
| 	$(DIROBJ)\curl_gethostname.obj \ | ||||
| 	$(DIROBJ)\curl_memrchr.obj \ | ||||
| 	$(DIROBJ)\curl_multibyte.obj \ | ||||
| 	$(DIROBJ)\curl_ntlm.obj \ | ||||
| 	$(DIROBJ)\curl_ntlm_core.obj \ | ||||
| 	$(DIROBJ)\curl_ntlm_msgs.obj \ | ||||
| 	$(DIROBJ)\curl_ntlm_wb.obj \ | ||||
| 	$(DIROBJ)\curl_rand.obj \ | ||||
| 	$(DIROBJ)\curl_rtmp.obj \ | ||||
| 	$(DIROBJ)\curl_sasl.obj \ | ||||
| 	$(DIROBJ)\curl_schannel.obj \ | ||||
| 	$(DIROBJ)\curl_sspi.obj \ | ||||
| 	$(DIROBJ)\curl_threads.obj \ | ||||
| 	$(DIROBJ)\dict.obj \ | ||||
| 	$(DIROBJ)\easy.obj \ | ||||
| 	$(DIROBJ)\escape.obj \ | ||||
| 	$(DIROBJ)\fileinfo.obj \ | ||||
| 	$(DIROBJ)\file.obj \ | ||||
| 	$(DIROBJ)\fileinfo.obj \ | ||||
| 	$(DIROBJ)\formdata.obj \ | ||||
| 	$(DIROBJ)\ftplistparser.obj \ | ||||
| 	$(DIROBJ)\ftp.obj \ | ||||
| 	$(DIROBJ)\ftplistparser.obj \ | ||||
| 	$(DIROBJ)\getenv.obj \ | ||||
| 	$(DIROBJ)\getinfo.obj \ | ||||
| 	$(DIROBJ)\gopher.obj \ | ||||
| @@ -529,15 +531,15 @@ X_OBJS= \ | ||||
| 	$(DIROBJ)\hash.obj \ | ||||
| 	$(DIROBJ)\hmac.obj \ | ||||
| 	$(DIROBJ)\hostasyn.obj \ | ||||
| 	$(DIROBJ)\hostip.obj \ | ||||
| 	$(DIROBJ)\hostip4.obj \ | ||||
| 	$(DIROBJ)\hostip6.obj \ | ||||
| 	$(DIROBJ)\hostip.obj \ | ||||
| 	$(DIROBJ)\hostsyn.obj \ | ||||
| 	$(DIROBJ)\http.obj \ | ||||
| 	$(DIROBJ)\http_chunks.obj \ | ||||
| 	$(DIROBJ)\http_digest.obj \ | ||||
| 	$(DIROBJ)\http_negotiate.obj \ | ||||
|         $(DIROBJ)\http_negotiate_sspi.obj \ | ||||
| 	$(DIROBJ)\http.obj \ | ||||
| 	$(DIROBJ)\http_negotiate_sspi.obj \ | ||||
| 	$(DIROBJ)\http_proxy.obj \ | ||||
| 	$(DIROBJ)\if2ip.obj \ | ||||
| 	$(DIROBJ)\imap.obj \ | ||||
| @@ -565,8 +567,8 @@ X_OBJS= \ | ||||
| 	$(DIROBJ)\share.obj \ | ||||
| 	$(DIROBJ)\slist.obj \ | ||||
| 	$(DIROBJ)\smtp.obj \ | ||||
| 	$(DIROBJ)\socks_gssapi.obj \ | ||||
| 	$(DIROBJ)\socks.obj \ | ||||
| 	$(DIROBJ)\socks_gssapi.obj \ | ||||
| 	$(DIROBJ)\socks_sspi.obj \ | ||||
| 	$(DIROBJ)\speedcheck.obj \ | ||||
| 	$(DIROBJ)\splay.obj \ | ||||
|   | ||||
| @@ -1,5 +1,5 @@ | ||||
| #ifndef __LIB_CONFIG_WIN32CE_H | ||||
| #define __LIB_CONFIG_WIN32CE_H | ||||
| #ifndef HEADER_CURL_CONFIG_WIN32CE_H | ||||
| #define HEADER_CURL_CONFIG_WIN32CE_H | ||||
| /*************************************************************************** | ||||
|  *                                  _   _ ____  _ | ||||
|  *  Project                     ___| | | |  _ \| | | ||||
| @@ -7,7 +7,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -79,7 +79,7 @@ | ||||
| #define HAVE_STDLIB_H 1 | ||||
|  | ||||
| /* Define if you have the <process.h> header file.  */ | ||||
| #define HAVE_PROCESS_H 1 | ||||
| /* #define HAVE_PROCESS_H 1 */ | ||||
|  | ||||
| /* Define if you have the <sys/param.h> header file.  */ | ||||
| /* #define HAVE_SYS_PARAM_H 1 */ | ||||
| @@ -427,6 +427,14 @@ | ||||
| /*                       WinCE                                      */ | ||||
| /* ---------------------------------------------------------------- */ | ||||
|  | ||||
| #ifndef UNICODE | ||||
| #  define UNICODE | ||||
| #endif | ||||
|  | ||||
| #ifndef _UNICODE | ||||
| #  define _UNICODE | ||||
| #endif | ||||
|  | ||||
| #define CURL_DISABLE_FILE 1 | ||||
| #define CURL_DISABLE_TELNET 1 | ||||
| #define CURL_DISABLE_LDAP 1 | ||||
| @@ -437,4 +445,4 @@ | ||||
|  | ||||
| extern int stat(const char *path,struct stat *buffer ); | ||||
|  | ||||
| #endif /* __LIB_CONFIG_WIN32CE_H */ | ||||
| #endif /* HEADER_CURL_CONFIG_WIN32CE_H */ | ||||
|   | ||||
| @@ -91,6 +91,13 @@ | ||||
|  | ||||
| static bool verifyconnect(curl_socket_t sockfd, int *error); | ||||
|  | ||||
| #ifdef __DragonFly__ | ||||
| /* DragonFlyBSD uses millisecond as KEEPIDLE and KEEPINTVL units */ | ||||
| #define KEEPALIVE_FACTOR(x) (x *= 1000) | ||||
| #else | ||||
| #define KEEPALIVE_FACTOR(x) | ||||
| #endif | ||||
|  | ||||
| static void | ||||
| tcpkeepalive(struct SessionHandle *data, | ||||
|              curl_socket_t sockfd) | ||||
| @@ -105,6 +112,7 @@ tcpkeepalive(struct SessionHandle *data, | ||||
|   else { | ||||
| #ifdef TCP_KEEPIDLE | ||||
|     optval = curlx_sltosi(data->set.tcp_keepidle); | ||||
|     KEEPALIVE_FACTOR(optval); | ||||
|     if(setsockopt(sockfd, IPPROTO_TCP, TCP_KEEPIDLE, | ||||
|           (void *)&optval, sizeof(optval)) < 0) { | ||||
|       infof(data, "Failed to set TCP_KEEPIDLE on fd %d\n", sockfd); | ||||
| @@ -112,6 +120,7 @@ tcpkeepalive(struct SessionHandle *data, | ||||
| #endif | ||||
| #ifdef TCP_KEEPINTVL | ||||
|     optval = curlx_sltosi(data->set.tcp_keepintvl); | ||||
|     KEEPALIVE_FACTOR(optval); | ||||
|     if(setsockopt(sockfd, IPPROTO_TCP, TCP_KEEPINTVL, | ||||
|           (void *)&optval, sizeof(optval)) < 0) { | ||||
|       infof(data, "Failed to set TCP_KEEPINTVL on fd %d\n", sockfd); | ||||
|   | ||||
| @@ -5,7 +5,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -882,7 +882,7 @@ struct Cookie *Curl_cookie_getlist(struct CookieInfo *c, | ||||
|     for(i=0; co; co = co->next) | ||||
|       array[i++] = co; | ||||
|  | ||||
|     /* now sort the cookie pointers in path lenth order */ | ||||
|     /* now sort the cookie pointers in path length order */ | ||||
|     qsort(array, matches, sizeof(struct Cookie *), cookie_sort); | ||||
|  | ||||
|     /* remake the linked list order according to the new order */ | ||||
| @@ -1069,7 +1069,7 @@ static int cookie_output(struct CookieInfo *c, const char *dumphere) | ||||
|     char *format_ptr; | ||||
|  | ||||
|     fputs("# Netscape HTTP Cookie File\n" | ||||
|           "# http://curl.haxx.se/rfc/cookie_spec.html\n" | ||||
|           "# http://curl.haxx.se/docs/http-cookies.html\n" | ||||
|           "# This file was generated by libcurl! Edit at your own risk.\n\n", | ||||
|           out); | ||||
|     co = c->cookies; | ||||
|   | ||||
							
								
								
									
										920
									
								
								lib/curl_darwinssl.c
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										920
									
								
								lib/curl_darwinssl.c
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,920 @@ | ||||
| /*************************************************************************** | ||||
|  *                                  _   _ ____  _ | ||||
|  *  Project                     ___| | | |  _ \| | | ||||
|  *                             / __| | | | |_) | | | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 2012, Nick Zitzmann, <nickzman@gmail.com>. | ||||
|  * Copyright (C) 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
|  * are also available at http://curl.haxx.se/docs/copyright.html. | ||||
|  * | ||||
|  * You may opt to use, copy, modify, merge, publish, distribute and/or sell | ||||
|  * copies of the Software, and permit persons to whom the Software is | ||||
|  * furnished to do so, under the terms of the COPYING file. | ||||
|  * | ||||
|  * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY | ||||
|  * KIND, either express or implied. | ||||
|  * | ||||
|  ***************************************************************************/ | ||||
|  | ||||
| /* | ||||
|  * Source file for all iOS and Mac OS X SecureTransport-specific code for the | ||||
|  * TLS/SSL layer. No code but sslgen.c should ever call or use these functions. | ||||
|  */ | ||||
|  | ||||
| #include "setup.h" | ||||
|  | ||||
| #ifdef USE_DARWINSSL | ||||
|  | ||||
| #ifdef HAVE_LIMITS_H | ||||
| #include <limits.h> | ||||
| #endif | ||||
| #ifdef HAVE_SYS_SOCKET_H | ||||
| #include <sys/socket.h> | ||||
| #endif | ||||
|  | ||||
| #include <Security/Security.h> | ||||
| #include <Security/SecureTransport.h> | ||||
| #include <CoreFoundation/CoreFoundation.h> | ||||
| #include <CommonCrypto/CommonDigest.h> | ||||
|  | ||||
| #include "urldata.h" | ||||
| #include "sendf.h" | ||||
| #include "inet_pton.h" | ||||
| #include "connect.h" | ||||
| #include "select.h" | ||||
| #include "sslgen.h" | ||||
| #include "curl_darwinssl.h" | ||||
|  | ||||
| #define _MPRINTF_REPLACE /* use our functions only */ | ||||
| #include <curl/mprintf.h> | ||||
|  | ||||
| #include "curl_memory.h" | ||||
| /* The last #include file should be: */ | ||||
| #include "memdebug.h" | ||||
|  | ||||
| /* From MacTypes.h (which we can't include because it isn't present in iOS: */ | ||||
| #define ioErr -36 | ||||
|  | ||||
| /* The following two functions were ripped from Apple sample code, | ||||
|  * with some modifications: */ | ||||
| static OSStatus SocketRead(SSLConnectionRef connection, | ||||
|                            void *data,          /* owned by | ||||
|                                                  * caller, data | ||||
|                                                  * RETURNED */ | ||||
|                            size_t *dataLength)  /* IN/OUT */ | ||||
| { | ||||
|   UInt32 bytesToGo = *dataLength; | ||||
|   UInt32 initLen = bytesToGo; | ||||
|   UInt8 *currData = (UInt8 *)data; | ||||
|   /*int sock = *(int *)connection;*/ | ||||
|   struct ssl_connect_data *connssl = (struct ssl_connect_data *)connection; | ||||
|   int sock = connssl->ssl_sockfd; | ||||
|   OSStatus rtn = noErr; | ||||
|   UInt32 bytesRead; | ||||
|   int rrtn; | ||||
|   int theErr; | ||||
|  | ||||
|   *dataLength = 0; | ||||
|  | ||||
|   for(;;) { | ||||
|     bytesRead = 0; | ||||
|     rrtn = read(sock, currData, bytesToGo); | ||||
|     if(rrtn <= 0) { | ||||
|       /* this is guesswork... */ | ||||
|       theErr = errno; | ||||
|       if((rrtn == 0) && (theErr == 0)) { | ||||
|         /* try fix for iSync */ | ||||
|         rtn = errSSLClosedGraceful; | ||||
|       } | ||||
|       else /* do the switch */ | ||||
|         switch(theErr) { | ||||
|           case ENOENT: | ||||
|             /* connection closed */ | ||||
|             rtn = errSSLClosedGraceful; | ||||
|             break; | ||||
|           case ECONNRESET: | ||||
|             rtn = errSSLClosedAbort; | ||||
|             break; | ||||
|           case EAGAIN: | ||||
|             rtn = errSSLWouldBlock; | ||||
|             connssl->ssl_direction = false; | ||||
|             break; | ||||
|           default: | ||||
|             rtn = ioErr; | ||||
|             break; | ||||
|         } | ||||
|       break; | ||||
|     } | ||||
|     else { | ||||
|       bytesRead = rrtn; | ||||
|     } | ||||
|     bytesToGo -= bytesRead; | ||||
|     currData  += bytesRead; | ||||
|  | ||||
|     if(bytesToGo == 0) { | ||||
|       /* filled buffer with incoming data, done */ | ||||
|       break; | ||||
|     } | ||||
|   } | ||||
|   *dataLength = initLen - bytesToGo; | ||||
|  | ||||
|   return rtn; | ||||
| } | ||||
|  | ||||
| static OSStatus SocketWrite(SSLConnectionRef connection, | ||||
|                             const void *data, | ||||
|                             size_t *dataLength)  /* IN/OUT */ | ||||
| { | ||||
|   UInt32 bytesSent = 0; | ||||
|   /*int sock = *(int *)connection;*/ | ||||
|   struct ssl_connect_data *connssl = (struct ssl_connect_data *)connection; | ||||
|   int sock = connssl->ssl_sockfd; | ||||
|   int length; | ||||
|   UInt32 dataLen = *dataLength; | ||||
|   const UInt8 *dataPtr = (UInt8 *)data; | ||||
|   OSStatus ortn; | ||||
|   int theErr; | ||||
|  | ||||
|   *dataLength = 0; | ||||
|  | ||||
|   do { | ||||
|     length = write(sock, | ||||
|                    (char*)dataPtr + bytesSent, | ||||
|                    dataLen - bytesSent); | ||||
|   } while((length > 0) && | ||||
|            ( (bytesSent += length) < dataLen) ); | ||||
|  | ||||
|   if(length <= 0) { | ||||
|     theErr = errno; | ||||
|     if(theErr == EAGAIN) { | ||||
|       ortn = errSSLWouldBlock; | ||||
|       connssl->ssl_direction = true; | ||||
|     } | ||||
|     else { | ||||
|       ortn = ioErr; | ||||
|     } | ||||
|   } | ||||
|   else { | ||||
|     ortn = noErr; | ||||
|   } | ||||
|   *dataLength = bytesSent; | ||||
|   return ortn; | ||||
| } | ||||
|  | ||||
| CF_INLINE const char *CipherNameForNumber(SSLCipherSuite cipher) { | ||||
|   switch (cipher) { | ||||
|     case SSL_RSA_WITH_NULL_MD5: | ||||
|       return "SSL_RSA_WITH_NULL_MD5"; | ||||
|       break; | ||||
|     case SSL_RSA_WITH_NULL_SHA: | ||||
|       return "SSL_RSA_WITH_NULL_SHA"; | ||||
|       break; | ||||
|     case SSL_RSA_EXPORT_WITH_RC4_40_MD5: | ||||
|       return "SSL_RSA_EXPORT_WITH_RC4_40_MD5"; | ||||
|       break; | ||||
|     case SSL_RSA_WITH_RC4_128_MD5: | ||||
|       return "SSL_RSA_WITH_RC4_128_MD5"; | ||||
|       break; | ||||
|     case SSL_RSA_WITH_RC4_128_SHA: | ||||
|       return "SSL_RSA_WITH_RC4_128_SHA"; | ||||
|       break; | ||||
|     case SSL_RSA_EXPORT_WITH_RC2_CBC_40_MD5: | ||||
|       return "SSL_RSA_EXPORT_WITH_RC2_CBC_40_MD5"; | ||||
|       break; | ||||
|     case SSL_RSA_WITH_IDEA_CBC_SHA: | ||||
|       return "SSL_RSA_WITH_IDEA_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_RSA_EXPORT_WITH_DES40_CBC_SHA: | ||||
|       return "SSL_RSA_EXPORT_WITH_DES40_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_RSA_WITH_DES_CBC_SHA: | ||||
|       return "SSL_RSA_WITH_DES_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_RSA_WITH_3DES_EDE_CBC_SHA: | ||||
|       return "SSL_RSA_WITH_3DES_EDE_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DH_DSS_EXPORT_WITH_DES40_CBC_SHA: | ||||
|       return "SSL_DH_DSS_EXPORT_WITH_DES40_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DH_DSS_WITH_DES_CBC_SHA: | ||||
|       return "SSL_DH_DSS_WITH_DES_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DH_DSS_WITH_3DES_EDE_CBC_SHA: | ||||
|       return "SSL_DH_DSS_WITH_3DES_EDE_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DH_RSA_EXPORT_WITH_DES40_CBC_SHA: | ||||
|       return "SSL_DH_RSA_EXPORT_WITH_DES40_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DH_RSA_WITH_DES_CBC_SHA: | ||||
|       return "SSL_DH_RSA_WITH_DES_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DH_RSA_WITH_3DES_EDE_CBC_SHA: | ||||
|       return "SSL_DH_RSA_WITH_3DES_EDE_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA: | ||||
|       return "SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DHE_DSS_WITH_DES_CBC_SHA: | ||||
|       return "SSL_DHE_DSS_WITH_DES_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA: | ||||
|       return "SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA: | ||||
|       return "SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DHE_RSA_WITH_DES_CBC_SHA: | ||||
|       return "SSL_DHE_RSA_WITH_DES_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA: | ||||
|       return "SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DH_anon_EXPORT_WITH_RC4_40_MD5: | ||||
|       return "SSL_DH_anon_EXPORT_WITH_RC4_40_MD5"; | ||||
|       break; | ||||
|     case SSL_DH_anon_WITH_RC4_128_MD5: | ||||
|       return "SSL_DH_anon_WITH_RC4_128_MD5"; | ||||
|       break; | ||||
|     case SSL_DH_anon_EXPORT_WITH_DES40_CBC_SHA: | ||||
|       return "SSL_DH_anon_EXPORT_WITH_DES40_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DH_anon_WITH_DES_CBC_SHA: | ||||
|       return "SSL_DH_anon_WITH_DES_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_DH_anon_WITH_3DES_EDE_CBC_SHA: | ||||
|       return "SSL_DH_anon_WITH_3DES_EDE_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_FORTEZZA_DMS_WITH_NULL_SHA: | ||||
|       return "SSL_FORTEZZA_DMS_WITH_NULL_SHA"; | ||||
|       break; | ||||
|     case SSL_FORTEZZA_DMS_WITH_FORTEZZA_CBC_SHA: | ||||
|       return "SSL_FORTEZZA_DMS_WITH_FORTEZZA_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_RSA_WITH_AES_128_CBC_SHA: | ||||
|       return "TLS_RSA_WITH_AES_128_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_DH_DSS_WITH_AES_128_CBC_SHA: | ||||
|       return "TLS_DH_DSS_WITH_AES_128_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_DH_RSA_WITH_AES_128_CBC_SHA: | ||||
|       return "TLS_DH_RSA_WITH_AES_128_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_DHE_DSS_WITH_AES_128_CBC_SHA: | ||||
|       return "TLS_DHE_DSS_WITH_AES_128_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_DHE_RSA_WITH_AES_128_CBC_SHA: | ||||
|       return "TLS_DHE_RSA_WITH_AES_128_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_DH_anon_WITH_AES_128_CBC_SHA: | ||||
|       return "TLS_DH_anon_WITH_AES_128_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_RSA_WITH_AES_256_CBC_SHA: | ||||
|       return "TLS_RSA_WITH_AES_256_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_DH_DSS_WITH_AES_256_CBC_SHA: | ||||
|       return "TLS_DH_DSS_WITH_AES_256_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_DH_RSA_WITH_AES_256_CBC_SHA: | ||||
|       return "TLS_DH_RSA_WITH_AES_256_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_DHE_DSS_WITH_AES_256_CBC_SHA: | ||||
|       return "TLS_DHE_DSS_WITH_AES_256_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_DHE_RSA_WITH_AES_256_CBC_SHA: | ||||
|       return "TLS_DHE_RSA_WITH_AES_256_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_DH_anon_WITH_AES_256_CBC_SHA: | ||||
|       return "TLS_DH_anon_WITH_AES_256_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_ECDSA_WITH_NULL_SHA: | ||||
|       return "TLS_ECDH_ECDSA_WITH_NULL_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_ECDSA_WITH_RC4_128_SHA: | ||||
|       return "TLS_ECDH_ECDSA_WITH_RC4_128_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA: | ||||
|       return "TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA: | ||||
|       return "TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA: | ||||
|       return "TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDHE_ECDSA_WITH_NULL_SHA: | ||||
|       return "TLS_ECDHE_ECDSA_WITH_NULL_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDHE_ECDSA_WITH_RC4_128_SHA: | ||||
|       return "TLS_ECDHE_ECDSA_WITH_RC4_128_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA: | ||||
|       return "TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: | ||||
|       return "TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: | ||||
|       return "TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_RSA_WITH_NULL_SHA: | ||||
|       return "TLS_ECDH_RSA_WITH_NULL_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_RSA_WITH_RC4_128_SHA: | ||||
|       return "TLS_ECDH_RSA_WITH_RC4_128_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA: | ||||
|       return "TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_RSA_WITH_AES_128_CBC_SHA: | ||||
|       return "TLS_ECDH_RSA_WITH_AES_128_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_RSA_WITH_AES_256_CBC_SHA: | ||||
|       return "TLS_ECDH_RSA_WITH_AES_256_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDHE_RSA_WITH_NULL_SHA: | ||||
|       return "TLS_ECDHE_RSA_WITH_NULL_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDHE_RSA_WITH_RC4_128_SHA: | ||||
|       return "TLS_ECDHE_RSA_WITH_RC4_128_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA: | ||||
|       return "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: | ||||
|       return "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: | ||||
|       return "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_anon_WITH_NULL_SHA: | ||||
|       return "TLS_ECDH_anon_WITH_NULL_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_anon_WITH_RC4_128_SHA: | ||||
|       return "TLS_ECDH_anon_WITH_RC4_128_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA: | ||||
|       return "TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_anon_WITH_AES_128_CBC_SHA: | ||||
|       return "TLS_ECDH_anon_WITH_AES_128_CBC_SHA"; | ||||
|       break; | ||||
|     case TLS_ECDH_anon_WITH_AES_256_CBC_SHA: | ||||
|       return "TLS_ECDH_anon_WITH_AES_256_CBC_SHA"; | ||||
|       break; | ||||
|     case SSL_RSA_WITH_RC2_CBC_MD5: | ||||
|       return "SSL_RSA_WITH_RC2_CBC_MD5"; | ||||
|       break; | ||||
|     case SSL_RSA_WITH_IDEA_CBC_MD5: | ||||
|       return "SSL_RSA_WITH_IDEA_CBC_MD5"; | ||||
|       break; | ||||
|     case SSL_RSA_WITH_DES_CBC_MD5: | ||||
|       return "SSL_RSA_WITH_DES_CBC_MD5"; | ||||
|       break; | ||||
|     case SSL_RSA_WITH_3DES_EDE_CBC_MD5: | ||||
|       return "SSL_RSA_WITH_3DES_EDE_CBC_MD5"; | ||||
|       break; | ||||
|   } | ||||
|   return "(NONE)"; | ||||
| } | ||||
|  | ||||
| static CURLcode darwinssl_connect_step1(struct connectdata *conn, | ||||
|                                         int sockindex) | ||||
| { | ||||
|   struct SessionHandle *data = conn->data; | ||||
|   curl_socket_t sockfd = conn->sock[sockindex]; | ||||
|   struct ssl_connect_data *connssl = &conn->ssl[sockindex]; | ||||
|   bool sni = true; | ||||
| #ifdef ENABLE_IPV6 | ||||
|   struct in6_addr addr; | ||||
| #else | ||||
|   struct in_addr addr; | ||||
| #endif | ||||
|   /*SSLConnectionRef ssl_connection;*/ | ||||
|   OSStatus err = noErr; | ||||
|  | ||||
|   if(connssl->ssl_ctx) | ||||
|     (void)SSLDisposeContext(connssl->ssl_ctx); | ||||
|   err = SSLNewContext(false, &(connssl->ssl_ctx)); | ||||
|   if(err != noErr) { | ||||
|     failf(data, "SSL: couldn't create a context: OSStatus %d", err); | ||||
|     return CURLE_OUT_OF_MEMORY; | ||||
|   } | ||||
|  | ||||
|   /* check to see if we've been told to use an explicit SSL/TLS version */ | ||||
|   (void)SSLSetProtocolVersionEnabled(connssl->ssl_ctx, kSSLProtocolAll, false); | ||||
|   switch(data->set.ssl.version) { | ||||
|     default: | ||||
|     case CURL_SSLVERSION_DEFAULT: | ||||
|       (void)SSLSetProtocolVersionEnabled(connssl->ssl_ctx, | ||||
|                                          kSSLProtocol3, | ||||
|                                          true); | ||||
|       (void)SSLSetProtocolVersionEnabled(connssl->ssl_ctx, | ||||
|                                          kTLSProtocol1, | ||||
|                                          true); | ||||
|       break; | ||||
|     case CURL_SSLVERSION_TLSv1: | ||||
|       (void)SSLSetProtocolVersionEnabled(connssl->ssl_ctx, | ||||
|                                          kTLSProtocol1, | ||||
|                                          true); | ||||
|       break; | ||||
|     case CURL_SSLVERSION_SSLv2: | ||||
|       (void)SSLSetProtocolVersionEnabled(connssl->ssl_ctx, | ||||
|                                          kSSLProtocol2, | ||||
|                                          true); | ||||
|       break; | ||||
|     case CURL_SSLVERSION_SSLv3: | ||||
|       (void)SSLSetProtocolVersionEnabled(connssl->ssl_ctx, | ||||
|                                          kSSLProtocol3, | ||||
|                                          true); | ||||
|       break; | ||||
|   } | ||||
|  | ||||
|   /* No need to load certificates here. SecureTransport uses the Keychain | ||||
|    * (which is also part of the Security framework) to evaluate trust. */ | ||||
|  | ||||
|   /* SSL always tries to verify the peer, this only says whether it should | ||||
|    * fail to connect if the verification fails, or if it should continue | ||||
|    * anyway. In the latter case the result of the verification is checked with | ||||
|    * SSL_get_verify_result() below. */ | ||||
|   err = SSLSetEnableCertVerify(connssl->ssl_ctx, | ||||
|                                data->set.ssl.verifypeer?true:false); | ||||
|   if(err != noErr) { | ||||
|     failf(data, "SSL: SSLSetEnableCertVerify() failed: OSStatus %d", err); | ||||
|     return CURLE_SSL_CONNECT_ERROR; | ||||
|   } | ||||
|  | ||||
|   /* If this is a domain name and not an IP address, then configure SNI: */ | ||||
|   if((0 == Curl_inet_pton(AF_INET, conn->host.name, &addr)) && | ||||
| #ifdef ENABLE_IPV6 | ||||
|      (0 == Curl_inet_pton(AF_INET6, conn->host.name, &addr)) && | ||||
| #endif | ||||
|      sni) { | ||||
|     err = SSLSetPeerDomainName(connssl->ssl_ctx, conn->host.name, | ||||
|                                strlen(conn->host.name)); | ||||
|     if(err != noErr) { | ||||
|       infof(data, "WARNING: SSL: SSLSetPeerDomainName() failed: OSStatus %d", | ||||
|             err); | ||||
|     } | ||||
|   } | ||||
|  | ||||
|   err = SSLSetIOFuncs(connssl->ssl_ctx, SocketRead, SocketWrite); | ||||
|   if(err != noErr) { | ||||
|     failf(data, "SSL: SSLSetIOFuncs() failed: OSStatus %d", err); | ||||
|     return CURLE_SSL_CONNECT_ERROR; | ||||
|   } | ||||
|  | ||||
|   /* pass the raw socket into the SSL layers */ | ||||
|   /* We need to store the FD in a constant memory address, because | ||||
|    * SSLSetConnection() will not copy that address. I've found that | ||||
|    * conn->sock[sockindex] may change on its own. */ | ||||
|   connssl->ssl_sockfd = sockfd; | ||||
|   /*ssl_connection = &(connssl->ssl_sockfd); | ||||
|   err = SSLSetConnection(connssl->ssl_ctx, ssl_connection);*/ | ||||
|   err = SSLSetConnection(connssl->ssl_ctx, connssl); | ||||
|   if(err != noErr) { | ||||
|     failf(data, "SSL: SSLSetConnection() failed: %d", err); | ||||
|     return CURLE_SSL_CONNECT_ERROR; | ||||
|   } | ||||
|  | ||||
|   connssl->connecting_state = ssl_connect_2; | ||||
|   return CURLE_OK; | ||||
| } | ||||
|  | ||||
| static CURLcode | ||||
| darwinssl_connect_step2(struct connectdata *conn, int sockindex) | ||||
| { | ||||
|   struct SessionHandle *data = conn->data; | ||||
|   struct ssl_connect_data *connssl = &conn->ssl[sockindex]; | ||||
|   OSStatus err; | ||||
|   SSLCipherSuite cipher; | ||||
|  | ||||
|   DEBUGASSERT(ssl_connect_2 == connssl->connecting_state | ||||
|               || ssl_connect_2_reading == connssl->connecting_state | ||||
|               || ssl_connect_2_writing == connssl->connecting_state); | ||||
|  | ||||
|   /* Here goes nothing: */ | ||||
|   err = SSLHandshake(connssl->ssl_ctx); | ||||
|  | ||||
|   if(err != noErr) { | ||||
|     switch (err) { | ||||
|       case errSSLWouldBlock:  /* they're not done with us yet */ | ||||
|         connssl->connecting_state = connssl->ssl_direction ? | ||||
|             ssl_connect_2_writing : ssl_connect_2_reading; | ||||
|         return CURLE_OK; | ||||
|         break; | ||||
|  | ||||
|       case errSSLServerAuthCompleted: | ||||
|         /* the documentation says we need to call SSLHandshake() again */ | ||||
|         return darwinssl_connect_step2(conn, sockindex); | ||||
|  | ||||
|       case errSSLXCertChainInvalid: | ||||
|       case errSSLUnknownRootCert: | ||||
|       case errSSLNoRootCert: | ||||
|       case errSSLCertExpired: | ||||
|         failf(data, "SSL certificate problem: OSStatus %d", err); | ||||
|         return CURLE_SSL_CACERT; | ||||
|         break; | ||||
|  | ||||
|       default: | ||||
|         failf(data, "Unknown SSL protocol error in connection to %s:%d", | ||||
|               conn->host.name, err); | ||||
|         return CURLE_SSL_CONNECT_ERROR; | ||||
|         break; | ||||
|     } | ||||
|   } | ||||
|   else { | ||||
|     /* we have been connected fine, we're not waiting for anything else. */ | ||||
|     connssl->connecting_state = ssl_connect_3; | ||||
|  | ||||
|     /* Informational message */ | ||||
|     (void)SSLGetNegotiatedCipher(connssl->ssl_ctx, &cipher); | ||||
|     infof (data, "SSL connection using %s\n", CipherNameForNumber(cipher)); | ||||
|  | ||||
|     return CURLE_OK; | ||||
|   } | ||||
| } | ||||
|  | ||||
| static CURLcode | ||||
| darwinssl_connect_step3(struct connectdata *conn, | ||||
|                         int sockindex) | ||||
| { | ||||
|   struct SessionHandle *data = conn->data; | ||||
|   struct ssl_connect_data *connssl = &conn->ssl[sockindex]; | ||||
|   CFStringRef server_cert_summary; | ||||
|   char server_cert_summary_c[128]; | ||||
|   CFArrayRef server_certs; | ||||
|   SecCertificateRef server_cert; | ||||
|   OSStatus err; | ||||
|   CFIndex i, count; | ||||
|  | ||||
|   /* There is no step 3! | ||||
|    * Well, okay, if verbose mode is on, let's print the details of the | ||||
|    * server certificates. */ | ||||
|   err = SSLCopyPeerCertificates(connssl->ssl_ctx, &server_certs); | ||||
|   if(err == noErr) { | ||||
|     count = CFArrayGetCount(server_certs); | ||||
|     for(i = 0L ; i < count ; i++) { | ||||
|       server_cert = (SecCertificateRef)CFArrayGetValueAtIndex(server_certs, i); | ||||
|  | ||||
|       server_cert_summary = SecCertificateCopySubjectSummary(server_cert); | ||||
|       memset(server_cert_summary_c, 0, 128); | ||||
|       if(CFStringGetCString(server_cert_summary, | ||||
|                             server_cert_summary_c, | ||||
|                             128, | ||||
|                             kCFStringEncodingUTF8)) { | ||||
|         infof(data, "Server certificate: %s\n", server_cert_summary_c); | ||||
|       } | ||||
|       CFRelease(server_cert_summary); | ||||
|     } | ||||
|     CFRelease(server_certs); | ||||
|   } | ||||
|  | ||||
|   connssl->connecting_state = ssl_connect_done; | ||||
|   return CURLE_OK; | ||||
| } | ||||
|  | ||||
| static Curl_recv darwinssl_recv; | ||||
| static Curl_send darwinssl_send; | ||||
|  | ||||
| static CURLcode | ||||
| darwinssl_connect_common(struct connectdata *conn, | ||||
|                          int sockindex, | ||||
|                          bool nonblocking, | ||||
|                          bool *done) | ||||
| { | ||||
|   CURLcode retcode; | ||||
|   struct SessionHandle *data = conn->data; | ||||
|   struct ssl_connect_data *connssl = &conn->ssl[sockindex]; | ||||
|   curl_socket_t sockfd = conn->sock[sockindex]; | ||||
|   long timeout_ms; | ||||
|   int what; | ||||
|  | ||||
|   /* check if the connection has already been established */ | ||||
|   if(ssl_connection_complete == connssl->state) { | ||||
|     *done = TRUE; | ||||
|     return CURLE_OK; | ||||
|   } | ||||
|  | ||||
|   if(ssl_connect_1==connssl->connecting_state) { | ||||
|     /* Find out how much more time we're allowed */ | ||||
|     timeout_ms = Curl_timeleft(data, NULL, TRUE); | ||||
|  | ||||
|     if(timeout_ms < 0) { | ||||
|       /* no need to continue if time already is up */ | ||||
|       failf(data, "SSL connection timeout"); | ||||
|       return CURLE_OPERATION_TIMEDOUT; | ||||
|     } | ||||
|     retcode = darwinssl_connect_step1(conn, sockindex); | ||||
|     if(retcode) | ||||
|       return retcode; | ||||
|   } | ||||
|  | ||||
|   while(ssl_connect_2 == connssl->connecting_state || | ||||
|         ssl_connect_2_reading == connssl->connecting_state || | ||||
|         ssl_connect_2_writing == connssl->connecting_state) { | ||||
|  | ||||
|     /* check allowed time left */ | ||||
|     timeout_ms = Curl_timeleft(data, NULL, TRUE); | ||||
|  | ||||
|     if(timeout_ms < 0) { | ||||
|       /* no need to continue if time already is up */ | ||||
|       failf(data, "SSL connection timeout"); | ||||
|       return CURLE_OPERATION_TIMEDOUT; | ||||
|     } | ||||
|  | ||||
|     /* if ssl is expecting something, check if it's available. */ | ||||
|     if(connssl->connecting_state == ssl_connect_2_reading | ||||
|        || connssl->connecting_state == ssl_connect_2_writing) { | ||||
|  | ||||
|       curl_socket_t writefd = ssl_connect_2_writing == | ||||
|       connssl->connecting_state?sockfd:CURL_SOCKET_BAD; | ||||
|       curl_socket_t readfd = ssl_connect_2_reading == | ||||
|       connssl->connecting_state?sockfd:CURL_SOCKET_BAD; | ||||
|  | ||||
|       what = Curl_socket_ready(readfd, writefd, nonblocking?0:timeout_ms); | ||||
|       if(what < 0) { | ||||
|         /* fatal error */ | ||||
|         failf(data, "select/poll on SSL socket, errno: %d", SOCKERRNO); | ||||
|         return CURLE_SSL_CONNECT_ERROR; | ||||
|       } | ||||
|       else if(0 == what) { | ||||
|         if(nonblocking) { | ||||
|           *done = FALSE; | ||||
|           return CURLE_OK; | ||||
|         } | ||||
|         else { | ||||
|           /* timeout */ | ||||
|           failf(data, "SSL connection timeout"); | ||||
|           return CURLE_OPERATION_TIMEDOUT; | ||||
|         } | ||||
|       } | ||||
|       /* socket is readable or writable */ | ||||
|     } | ||||
|  | ||||
|     /* Run transaction, and return to the caller if it failed or if this | ||||
|      * connection is done nonblocking and this loop would execute again. This | ||||
|      * permits the owner of a multi handle to abort a connection attempt | ||||
|      * before step2 has completed while ensuring that a client using select() | ||||
|      * or epoll() will always have a valid fdset to wait on. | ||||
|      */ | ||||
|     retcode = darwinssl_connect_step2(conn, sockindex); | ||||
|     if(retcode || (nonblocking && | ||||
|                    (ssl_connect_2 == connssl->connecting_state || | ||||
|                     ssl_connect_2_reading == connssl->connecting_state || | ||||
|                     ssl_connect_2_writing == connssl->connecting_state))) | ||||
|       return retcode; | ||||
|  | ||||
|   } /* repeat step2 until all transactions are done. */ | ||||
|  | ||||
|  | ||||
|   if(ssl_connect_3==connssl->connecting_state) { | ||||
|     retcode = darwinssl_connect_step3(conn, sockindex); | ||||
|     if(retcode) | ||||
|       return retcode; | ||||
|   } | ||||
|  | ||||
|   if(ssl_connect_done==connssl->connecting_state) { | ||||
|     connssl->state = ssl_connection_complete; | ||||
|     conn->recv[sockindex] = darwinssl_recv; | ||||
|     conn->send[sockindex] = darwinssl_send; | ||||
|     *done = TRUE; | ||||
|   } | ||||
|   else | ||||
|     *done = FALSE; | ||||
|  | ||||
|   /* Reset our connect state machine */ | ||||
|   connssl->connecting_state = ssl_connect_1; | ||||
|  | ||||
|   return CURLE_OK; | ||||
| } | ||||
|  | ||||
| CURLcode | ||||
| Curl_darwinssl_connect_nonblocking(struct connectdata *conn, | ||||
|                                    int sockindex, | ||||
|                                    bool *done) | ||||
| { | ||||
|   return darwinssl_connect_common(conn, sockindex, TRUE, done); | ||||
| } | ||||
|  | ||||
| CURLcode | ||||
| Curl_darwinssl_connect(struct connectdata *conn, | ||||
|                        int sockindex) | ||||
| { | ||||
|   CURLcode retcode; | ||||
|   bool done = FALSE; | ||||
|  | ||||
|   retcode = darwinssl_connect_common(conn, sockindex, FALSE, &done); | ||||
|  | ||||
|   if(retcode) | ||||
|     return retcode; | ||||
|  | ||||
|   DEBUGASSERT(done); | ||||
|  | ||||
|   return CURLE_OK; | ||||
| } | ||||
|  | ||||
| void Curl_darwinssl_close(struct connectdata *conn, int sockindex) | ||||
| { | ||||
|   struct ssl_connect_data *connssl = &conn->ssl[sockindex]; | ||||
|  | ||||
|   (void)SSLClose(connssl->ssl_ctx); | ||||
|   (void)SSLDisposeContext(connssl->ssl_ctx); | ||||
|   connssl->ssl_ctx = NULL; | ||||
|   connssl->ssl_sockfd = 0; | ||||
| } | ||||
|  | ||||
| void Curl_darwinssl_close_all(struct SessionHandle *data) | ||||
| { | ||||
|   /* SecureTransport doesn't separate sessions from contexts, so... */ | ||||
|   (void)data; | ||||
| } | ||||
|  | ||||
| int Curl_darwinssl_shutdown(struct connectdata *conn, int sockindex) | ||||
| { | ||||
|   struct ssl_connect_data *connssl = &conn->ssl[sockindex]; | ||||
|   struct SessionHandle *data = conn->data; | ||||
|   ssize_t nread; | ||||
|   int what; | ||||
|   int rc; | ||||
|   char buf[120]; | ||||
|  | ||||
|   if(!connssl->ssl_ctx) | ||||
|     return 0; | ||||
|  | ||||
|   if(data->set.ftp_ccc != CURLFTPSSL_CCC_ACTIVE) | ||||
|     return 0; | ||||
|  | ||||
|   Curl_darwinssl_close(conn, sockindex); | ||||
|  | ||||
|   rc = 0; | ||||
|  | ||||
|   what = Curl_socket_ready(conn->sock[sockindex], | ||||
|                            CURL_SOCKET_BAD, SSL_SHUTDOWN_TIMEOUT); | ||||
|  | ||||
|   for(;;) { | ||||
|     if(what < 0) { | ||||
|       /* anything that gets here is fatally bad */ | ||||
|       failf(data, "select/poll on SSL socket, errno: %d", SOCKERRNO); | ||||
|       rc = -1; | ||||
|       break; | ||||
|     } | ||||
|  | ||||
|     if(!what) {                                /* timeout */ | ||||
|       failf(data, "SSL shutdown timeout"); | ||||
|       break; | ||||
|     } | ||||
|  | ||||
|     /* Something to read, let's do it and hope that it is the close | ||||
|      notify alert from the server. No way to SSL_Read now, so use read(). */ | ||||
|  | ||||
|     nread = read(conn->sock[sockindex], buf, sizeof(buf)); | ||||
|  | ||||
|     if(nread < 0) { | ||||
|       failf(data, "read: %s", strerror(errno)); | ||||
|       rc = -1; | ||||
|     } | ||||
|  | ||||
|     if(nread <= 0) | ||||
|       break; | ||||
|  | ||||
|     what = Curl_socket_ready(conn->sock[sockindex], CURL_SOCKET_BAD, 0); | ||||
|   } | ||||
|  | ||||
|   return rc; | ||||
| } | ||||
|  | ||||
| size_t Curl_darwinssl_version(char *buffer, size_t size) | ||||
| { | ||||
|   return snprintf(buffer, size, "SecureTransport"); | ||||
| } | ||||
|  | ||||
| /* | ||||
|  * This function uses SSLGetSessionState to determine connection status. | ||||
|  * | ||||
|  * Return codes: | ||||
|  *     1 means the connection is still in place | ||||
|  *     0 means the connection has been closed | ||||
|  *    -1 means the connection status is unknown | ||||
|  */ | ||||
| int Curl_darwinssl_check_cxn(struct connectdata *conn) | ||||
| { | ||||
|   struct ssl_connect_data *connssl = &conn->ssl[FIRSTSOCKET]; | ||||
|   OSStatus err; | ||||
|   SSLSessionState state; | ||||
|  | ||||
|   if(connssl->ssl_ctx) { | ||||
|     err = SSLGetSessionState(connssl->ssl_ctx, &state); | ||||
|     if(err == noErr) | ||||
|       return state == kSSLConnected || state == kSSLHandshake; | ||||
|     return -1; | ||||
|   } | ||||
|   return 0; | ||||
| } | ||||
|  | ||||
| bool Curl_darwinssl_data_pending(const struct connectdata *conn, | ||||
|                                  int connindex) | ||||
| { | ||||
|   const struct ssl_connect_data *connssl = &conn->ssl[connindex]; | ||||
|   OSStatus err; | ||||
|   size_t buffer; | ||||
|  | ||||
|   if(connssl->ssl_ctx) {  /* SSL is in use */ | ||||
|     err = SSLGetBufferedReadSize(connssl->ssl_ctx, &buffer); | ||||
|     if(err == noErr) | ||||
|       return buffer > 0UL; | ||||
|     return false; | ||||
|   } | ||||
|   else | ||||
|     return false; | ||||
| } | ||||
|  | ||||
| void Curl_darwinssl_random(struct SessionHandle *data, | ||||
|                            unsigned char *entropy, | ||||
|                            size_t length) | ||||
| { | ||||
|   /* arc4random_buf() isn't available on cats older than Lion, so let's | ||||
|      do this manually for the benefit of the older cats. */ | ||||
|   size_t i; | ||||
|   u_int32_t random = 0; | ||||
|  | ||||
|   for(i = 0 ; i < length ; i++) { | ||||
|     if(i % sizeof(u_int32_t) == 0) | ||||
|       random = arc4random(); | ||||
|     entropy[i] = random & 0xFF; | ||||
|     random >>= 8; | ||||
|   } | ||||
|   i = random = 0; | ||||
|   (void)data; | ||||
| } | ||||
|  | ||||
| void Curl_darwinssl_md5sum(unsigned char *tmp, /* input */ | ||||
|                            size_t tmplen, | ||||
|                            unsigned char *md5sum, /* output */ | ||||
|                            size_t md5len) | ||||
| { | ||||
|   (void)md5len; | ||||
|   (void)CC_MD5(tmp, tmplen, md5sum); | ||||
| } | ||||
|  | ||||
| static ssize_t darwinssl_send(struct connectdata *conn, | ||||
|                               int sockindex, | ||||
|                               const void *mem, | ||||
|                               size_t len, | ||||
|                               CURLcode *curlcode) | ||||
| { | ||||
|   /*struct SessionHandle *data = conn->data;*/ | ||||
|   struct ssl_connect_data *connssl = &conn->ssl[sockindex]; | ||||
|   size_t processed; | ||||
|   OSStatus err = SSLWrite(connssl->ssl_ctx, mem, len, &processed); | ||||
|  | ||||
|   if(err != noErr) { | ||||
|     switch (err) { | ||||
|       case errSSLWouldBlock:  /* we're not done yet; keep sending */ | ||||
|         *curlcode = CURLE_AGAIN; | ||||
|         return -1; | ||||
|         break; | ||||
|  | ||||
|       default: | ||||
|         failf(conn->data, "SSLWrite() return error %d", err); | ||||
|         *curlcode = CURLE_SEND_ERROR; | ||||
|         return -1; | ||||
|         break; | ||||
|     } | ||||
|   } | ||||
|   return (ssize_t)processed; | ||||
| } | ||||
|  | ||||
| static ssize_t darwinssl_recv(struct connectdata *conn, | ||||
|                               int num, | ||||
|                               char *buf, | ||||
|                               size_t buffersize, | ||||
|                               CURLcode *curlcode) | ||||
| { | ||||
|   /*struct SessionHandle *data = conn->data;*/ | ||||
|   struct ssl_connect_data *connssl = &conn->ssl[num]; | ||||
|   size_t processed; | ||||
|   OSStatus err = SSLRead(connssl->ssl_ctx, buf, buffersize, &processed); | ||||
|  | ||||
|   if(err != noErr) { | ||||
|     switch (err) { | ||||
|       case errSSLWouldBlock:  /* we're not done yet; keep reading */ | ||||
|         *curlcode = CURLE_AGAIN; | ||||
|         return -1; | ||||
|         break; | ||||
|  | ||||
|       default: | ||||
|         failf(conn->data, "SSLRead() return error %d", err); | ||||
|         *curlcode = CURLE_RECV_ERROR; | ||||
|         return -1; | ||||
|         break; | ||||
|     } | ||||
|   } | ||||
|   return (ssize_t)processed; | ||||
| } | ||||
|  | ||||
| #endif /* USE_DARWINSSL */ | ||||
							
								
								
									
										73
									
								
								lib/curl_darwinssl.h
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										73
									
								
								lib/curl_darwinssl.h
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,73 @@ | ||||
| #ifndef HEADER_CURL_DARWINSSL_H | ||||
| #define HEADER_CURL_DARWINSSL_H | ||||
| /*************************************************************************** | ||||
|  *                                  _   _ ____  _ | ||||
|  *  Project                     ___| | | |  _ \| | | ||||
|  *                             / __| | | | |_) | | | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 2012, Nick Zitzmann, <nickzman@gmail.com>. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
|  * are also available at http://curl.haxx.se/docs/copyright.html. | ||||
|  * | ||||
|  * You may opt to use, copy, modify, merge, publish, distribute and/or sell | ||||
|  * copies of the Software, and permit persons to whom the Software is | ||||
|  * furnished to do so, under the terms of the COPYING file. | ||||
|  * | ||||
|  * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY | ||||
|  * KIND, either express or implied. | ||||
|  * | ||||
|  ***************************************************************************/ | ||||
| #include "setup.h" | ||||
|  | ||||
| #ifdef USE_DARWINSSL | ||||
|  | ||||
| CURLcode Curl_darwinssl_connect(struct connectdata *conn, int sockindex); | ||||
|  | ||||
| CURLcode Curl_darwinssl_connect_nonblocking(struct connectdata *conn, | ||||
|                                             int sockindex, | ||||
|                                             bool *done); | ||||
|  | ||||
| /* this function doesn't actually do anything */ | ||||
| void Curl_darwinssl_close_all(struct SessionHandle *data); | ||||
|  | ||||
| /* close a SSL connection */ | ||||
| void Curl_darwinssl_close(struct connectdata *conn, int sockindex); | ||||
|  | ||||
| size_t Curl_darwinssl_version(char *buffer, size_t size); | ||||
| int Curl_darwinssl_shutdown(struct connectdata *conn, int sockindex); | ||||
| int Curl_darwinssl_check_cxn(struct connectdata *conn); | ||||
| bool Curl_darwinssl_data_pending(const struct connectdata *conn, | ||||
|                                  int connindex); | ||||
|  | ||||
| void Curl_darwinssl_random(struct SessionHandle *data, | ||||
|                            unsigned char *entropy, | ||||
|                            size_t length); | ||||
| void Curl_darwinssl_md5sum(unsigned char *tmp, /* input */ | ||||
|                            size_t tmplen, | ||||
|                            unsigned char *md5sum, /* output */ | ||||
|                            size_t md5len); | ||||
|  | ||||
| /* API setup for SecureTransport */ | ||||
| #define curlssl_init() (1) | ||||
| #define curlssl_cleanup() Curl_nop_stmt | ||||
| #define curlssl_connect Curl_darwinssl_connect | ||||
| #define curlssl_connect_nonblocking Curl_darwinssl_connect_nonblocking | ||||
| #define curlssl_session_free(x) Curl_nop_stmt | ||||
| #define curlssl_close_all Curl_darwinssl_close_all | ||||
| #define curlssl_close Curl_darwinssl_close | ||||
| #define curlssl_shutdown(x,y) 0 | ||||
| #define curlssl_set_engine(x,y) (x=x, y=y, CURLE_NOT_BUILT_IN) | ||||
| #define curlssl_set_engine_default(x) (x=x, CURLE_NOT_BUILT_IN) | ||||
| #define curlssl_engines_list(x) (x=x, (struct curl_slist *)NULL) | ||||
| #define curlssl_version Curl_darwinssl_version | ||||
| #define curlssl_check_cxn Curl_darwinssl_check_cxn | ||||
| #define curlssl_data_pending(x,y) Curl_darwinssl_data_pending(x, y) | ||||
| #define curlssl_random(x,y,z) Curl_darwinssl_random(x,y,z) | ||||
| #define curlssl_md5sum(a,b,c,d) Curl_darwinssl_md5sum(a,b,c,d) | ||||
|  | ||||
| #endif /* USE_DARWINSSL */ | ||||
| #endif /* HEADER_CURL_DARWINSSL_H */ | ||||
							
								
								
									
										82
									
								
								lib/curl_multibyte.c
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										82
									
								
								lib/curl_multibyte.c
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,82 @@ | ||||
| /*************************************************************************** | ||||
|  *                                  _   _ ____  _ | ||||
|  *  Project                     ___| | | |  _ \| | | ||||
|  *                             / __| | | | |_) | | | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
|  * are also available at http://curl.haxx.se/docs/copyright.html. | ||||
|  * | ||||
|  * You may opt to use, copy, modify, merge, publish, distribute and/or sell | ||||
|  * copies of the Software, and permit persons to whom the Software is | ||||
|  * furnished to do so, under the terms of the COPYING file. | ||||
|  * | ||||
|  * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY | ||||
|  * KIND, either express or implied. | ||||
|  * | ||||
|  ***************************************************************************/ | ||||
|  | ||||
| #include "setup.h" | ||||
|  | ||||
| #if defined(USE_WIN32_IDN) || (defined(USE_WINDOWS_SSPI) && defined(UNICODE)) | ||||
|  | ||||
|  /* | ||||
|   * MultiByte conversions using Windows kernel32 library. | ||||
|   */ | ||||
|  | ||||
| #include "curl_multibyte.h" | ||||
|  | ||||
| #define _MPRINTF_REPLACE /* use our functions only */ | ||||
| #include <curl/mprintf.h> | ||||
|  | ||||
| #include "curl_memory.h" | ||||
| /* The last #include file should be: */ | ||||
| #include "memdebug.h" | ||||
|  | ||||
| wchar_t *Curl_convert_UTF8_to_wchar(const char *str_utf8) | ||||
| { | ||||
|   wchar_t *str_w = NULL; | ||||
|  | ||||
|   if(str_utf8) { | ||||
|     int str_w_len = MultiByteToWideChar(CP_UTF8, MB_ERR_INVALID_CHARS, | ||||
|                                         str_utf8, -1, NULL, 0); | ||||
|     if(str_w_len > 0) { | ||||
|       str_w = malloc(str_w_len * sizeof(wchar_t)); | ||||
|       if(str_w) { | ||||
|         if(MultiByteToWideChar(CP_UTF8, 0, str_utf8, -1, str_w, | ||||
|                                str_w_len) == 0) { | ||||
|           Curl_safefree(str_w); | ||||
|         } | ||||
|       } | ||||
|     } | ||||
|   } | ||||
|  | ||||
|   return str_w; | ||||
| } | ||||
|  | ||||
| char *Curl_convert_wchar_to_UTF8(const wchar_t *str_w) | ||||
| { | ||||
|   char *str_utf8 = NULL; | ||||
|  | ||||
|   if(str_w) { | ||||
|     int str_utf8_len = WideCharToMultiByte(CP_UTF8, 0, str_w, -1, NULL, | ||||
|                                            0, NULL, NULL); | ||||
|     if(str_utf8_len > 0) { | ||||
|       str_utf8 = malloc(str_utf8_len * sizeof(wchar_t)); | ||||
|       if(str_utf8) { | ||||
|         if(WideCharToMultiByte(CP_UTF8, 0, str_w, -1, str_utf8, str_utf8_len, | ||||
|                                NULL, FALSE) == 0) { | ||||
|           Curl_safefree(str_utf8); | ||||
|         } | ||||
|       } | ||||
|     } | ||||
|   } | ||||
|  | ||||
|   return str_utf8; | ||||
| } | ||||
|  | ||||
| #endif /* USE_WIN32_IDN || (USE_WINDOWS_SSPI && UNICODE) */ | ||||
							
								
								
									
										90
									
								
								lib/curl_multibyte.h
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										90
									
								
								lib/curl_multibyte.h
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,90 @@ | ||||
| #ifndef HEADER_CURL_MULTIBYTE_H | ||||
| #define HEADER_CURL_MULTIBYTE_H | ||||
| /*************************************************************************** | ||||
|  *                                  _   _ ____  _ | ||||
|  *  Project                     ___| | | |  _ \| | | ||||
|  *                             / __| | | | |_) | | | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
|  * are also available at http://curl.haxx.se/docs/copyright.html. | ||||
|  * | ||||
|  * You may opt to use, copy, modify, merge, publish, distribute and/or sell | ||||
|  * copies of the Software, and permit persons to whom the Software is | ||||
|  * furnished to do so, under the terms of the COPYING file. | ||||
|  * | ||||
|  * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY | ||||
|  * KIND, either express or implied. | ||||
|  * | ||||
|  ***************************************************************************/ | ||||
| #include "setup.h" | ||||
|  | ||||
| #if defined(USE_WIN32_IDN) || (defined(USE_WINDOWS_SSPI) && defined(UNICODE)) | ||||
|  | ||||
|  /* | ||||
|   * MultiByte conversions using Windows kernel32 library. | ||||
|   */ | ||||
|  | ||||
| wchar_t *Curl_convert_UTF8_to_wchar(const char *str_utf8); | ||||
| char *Curl_convert_wchar_to_UTF8(const wchar_t *str_w); | ||||
|  | ||||
| #endif /* USE_WIN32_IDN || (USE_WINDOWS_SSPI && UNICODE) */ | ||||
|  | ||||
|  | ||||
| #if defined(USE_WIN32_IDN) || defined(USE_WINDOWS_SSPI) | ||||
|  | ||||
| /* | ||||
|  * Macros Curl_convert_UTF8_to_tchar(), Curl_convert_tchar_to_UTF8() | ||||
|  * and Curl_unicodefree() main purpose is to minimize the number of | ||||
|  * preprocessor conditional directives needed by code using these | ||||
|  * to differentiate UNICODE from non-UNICODE builds. | ||||
|  * | ||||
|  * When building with UNICODE defined, this two macros | ||||
|  * Curl_convert_UTF8_to_tchar() and Curl_convert_tchar_to_UTF8() | ||||
|  * return a pointer to a newly allocated memory area holding result. | ||||
|  * When the result is no longer needed, allocated memory is intended | ||||
|  * to be free'ed with Curl_unicodefree(). | ||||
|  * | ||||
|  * When building without UNICODE defined, this macros | ||||
|  * Curl_convert_UTF8_to_tchar() and Curl_convert_tchar_to_UTF8() | ||||
|  * return the pointer received as argument. Curl_unicodefree() does | ||||
|  * no actual free'ing of this pointer it is simply set to NULL. | ||||
|  */ | ||||
|  | ||||
| #ifdef UNICODE | ||||
|  | ||||
| #define Curl_convert_UTF8_to_tchar(ptr) Curl_convert_UTF8_to_wchar((ptr)) | ||||
| #define Curl_convert_tchar_to_UTF8(ptr) Curl_convert_wchar_to_UTF8((ptr)) | ||||
| #define Curl_unicodefree(ptr) \ | ||||
|   do {if((ptr)) {free((ptr)); (ptr) = NULL;}} WHILE_FALSE | ||||
|  | ||||
| typedef union { | ||||
|   unsigned short       *tchar_ptr; | ||||
|   const unsigned short *const_tchar_ptr; | ||||
|   unsigned short       *tbyte_ptr; | ||||
|   const unsigned short *const_tbyte_ptr; | ||||
| } xcharp_u; | ||||
|  | ||||
| #else | ||||
|  | ||||
| #define Curl_convert_UTF8_to_tchar(ptr) (ptr) | ||||
| #define Curl_convert_tchar_to_UTF8(ptr) (ptr) | ||||
| #define Curl_unicodefree(ptr) \ | ||||
|   do {(ptr) = NULL;} WHILE_FALSE | ||||
|  | ||||
| typedef union { | ||||
|   char                *tchar_ptr; | ||||
|   const char          *const_tchar_ptr; | ||||
|   unsigned char       *tbyte_ptr; | ||||
|   const unsigned char *const_tbyte_ptr; | ||||
| } xcharp_u; | ||||
|  | ||||
| #endif /* UNICODE */ | ||||
|  | ||||
| #endif /* USE_WIN32_IDN || USE_WINDOWS_SSPI */ | ||||
|  | ||||
| #endif /* HEADER_CURL_MULTIBYTE_H */ | ||||
| @@ -5,7 +5,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -82,6 +82,11 @@ | ||||
| #  include "curl_md4.h" | ||||
| #  define MD5_DIGEST_LENGTH MD5_LENGTH | ||||
|  | ||||
| #elif defined(USE_DARWINSSL) | ||||
|  | ||||
| #  include <CommonCrypto/CommonCryptor.h> | ||||
| #  include <CommonCrypto/CommonDigest.h> | ||||
|  | ||||
| #else | ||||
| #  error "Can't compile NTLM support without a crypto library." | ||||
| #endif | ||||
| @@ -221,7 +226,23 @@ fail: | ||||
|   return rv; | ||||
| } | ||||
|  | ||||
| #endif /* defined(USE_NSS) */ | ||||
| #elif defined(USE_DARWINSSL) | ||||
|  | ||||
| static bool encrypt_des(const unsigned char *in, unsigned char *out, | ||||
|                         const unsigned char *key_56) | ||||
| { | ||||
|   char key[8]; | ||||
|   size_t out_len; | ||||
|   CCCryptorStatus err; | ||||
|  | ||||
|   extend_key_56_to_64(key_56, key); | ||||
|   err = CCCrypt(kCCEncrypt, kCCAlgorithmDES, kCCOptionECBMode, key, | ||||
|                 kCCKeySizeDES, NULL, in, 8 /* inbuflen */, out, | ||||
|                 8 /* outbuflen */, &out_len); | ||||
|   return err == kCCSuccess; | ||||
| } | ||||
|  | ||||
| #endif /* defined(USE_DARWINSSL) */ | ||||
|  | ||||
| #endif /* defined(USE_SSLEAY) */ | ||||
|  | ||||
| @@ -273,7 +294,7 @@ void Curl_ntlm_core_lm_resp(const unsigned char *keys, | ||||
|   setup_des_key(keys + 14, &des); | ||||
|   gcry_cipher_encrypt(des, results + 16, 8, plaintext, 8); | ||||
|   gcry_cipher_close(des); | ||||
| #elif defined(USE_NSS) | ||||
| #elif defined(USE_NSS) || defined(USE_DARWINSSL) | ||||
|   encrypt_des(plaintext, results, keys); | ||||
|   encrypt_des(plaintext, results + 8, keys + 7); | ||||
|   encrypt_des(plaintext, results + 16, keys + 14); | ||||
| @@ -336,7 +357,7 @@ void Curl_ntlm_core_mk_lm_hash(struct SessionHandle *data, | ||||
|     setup_des_key(pw + 7, &des); | ||||
|     gcry_cipher_encrypt(des, lmbuffer + 8, 8, magic, 8); | ||||
|     gcry_cipher_close(des); | ||||
| #elif defined(USE_NSS) | ||||
| #elif defined(USE_NSS) || defined(USE_DARWINSSL) | ||||
|     encrypt_des(magic, lmbuffer, pw); | ||||
|     encrypt_des(magic, lmbuffer + 8, pw + 7); | ||||
| #endif | ||||
| @@ -399,6 +420,8 @@ CURLcode Curl_ntlm_core_mk_nt_hash(struct SessionHandle *data, | ||||
|     gcry_md_close(MD4pw); | ||||
| #elif defined(USE_NSS) | ||||
|     Curl_md4it(ntbuffer, pw, 2 * len); | ||||
| #elif defined(USE_DARWINSSL) | ||||
|     (void)CC_MD4(pw, 2 * len, ntbuffer); | ||||
| #endif | ||||
|  | ||||
|     memset(ntbuffer + 16, 0, 21 - 16); | ||||
|   | ||||
| @@ -33,64 +33,22 @@ | ||||
|  | ||||
| #define DEBUG_ME 0 | ||||
|  | ||||
| #ifdef USE_SSLEAY | ||||
|  | ||||
| #  ifdef USE_OPENSSL | ||||
| #    include <openssl/des.h> | ||||
| #    ifndef OPENSSL_NO_MD4 | ||||
| #      include <openssl/md4.h> | ||||
| #    endif | ||||
| #    include <openssl/md5.h> | ||||
| #    include <openssl/ssl.h> | ||||
| #    include <openssl/rand.h> | ||||
| #  else | ||||
| #    include <des.h> | ||||
| #    ifndef OPENSSL_NO_MD4 | ||||
| #      include <md4.h> | ||||
| #    endif | ||||
| #    include <md5.h> | ||||
| #    include <ssl.h> | ||||
| #    include <rand.h> | ||||
| #  endif | ||||
| #  include "ssluse.h" | ||||
|  | ||||
| #elif defined(USE_GNUTLS_NETTLE) | ||||
|  | ||||
| #  include <nettle/md5.h> | ||||
| #  include <gnutls/gnutls.h> | ||||
| #  include <gnutls/crypto.h> | ||||
| #  define MD5_DIGEST_LENGTH 16 | ||||
|  | ||||
| #elif defined(USE_GNUTLS) | ||||
|  | ||||
| #  include <gcrypt.h> | ||||
| #  include "gtls.h" | ||||
| #  define MD5_DIGEST_LENGTH 16 | ||||
| #  define MD4_DIGEST_LENGTH 16 | ||||
|  | ||||
| #elif defined(USE_NSS) | ||||
|  | ||||
| #  include <nss.h> | ||||
| #  include <pk11pub.h> | ||||
| #  include <hasht.h> | ||||
| #  include "nssg.h" | ||||
| #  include "curl_md4.h" | ||||
| #  define MD5_DIGEST_LENGTH MD5_LENGTH | ||||
|  | ||||
| #elif defined(USE_WINDOWS_SSPI) | ||||
| #  include "curl_sspi.h" | ||||
| #else | ||||
| #  error "Can't compile NTLM support without a crypto library." | ||||
| #endif | ||||
|  | ||||
| #include "urldata.h" | ||||
| #include "non-ascii.h" | ||||
| #include "sendf.h" | ||||
| #include "curl_base64.h" | ||||
| #include "curl_ntlm_core.h" | ||||
| #include "curl_gethostname.h" | ||||
| #include "curl_multibyte.h" | ||||
| #include "warnless.h" | ||||
| #include "curl_memory.h" | ||||
|  | ||||
| #ifdef USE_WINDOWS_SSPI | ||||
| #  include "curl_sspi.h" | ||||
| #endif | ||||
|  | ||||
| #include "sslgen.h" | ||||
|  | ||||
| #define BUILDING_CURL_NTLM_MSGS_C | ||||
| #include "curl_ntlm_msgs.h" | ||||
|  | ||||
| @@ -281,7 +239,7 @@ CURLcode Curl_ntlm_decode_type2_message(struct SessionHandle *data, | ||||
|     free(buffer); | ||||
|     return CURLE_OUT_OF_MEMORY; | ||||
|   } | ||||
|   ntlm->n_type_2 = (unsigned long)size; | ||||
|   ntlm->n_type_2 = curlx_uztoul(size); | ||||
|   memcpy(ntlm->type_2, buffer, size); | ||||
| #else | ||||
|   ntlm->flags = 0; | ||||
| @@ -315,19 +273,16 @@ CURLcode Curl_ntlm_decode_type2_message(struct SessionHandle *data, | ||||
| #ifdef USE_WINDOWS_SSPI | ||||
| void Curl_ntlm_sspi_cleanup(struct ntlmdata *ntlm) | ||||
| { | ||||
|   if(ntlm->type_2) { | ||||
|     free(ntlm->type_2); | ||||
|     ntlm->type_2 = NULL; | ||||
|   } | ||||
|   Curl_safefree(ntlm->type_2); | ||||
|   if(ntlm->has_handles) { | ||||
|     s_pSecFn->DeleteSecurityContext(&ntlm->c_handle); | ||||
|     s_pSecFn->FreeCredentialsHandle(&ntlm->handle); | ||||
|     ntlm->has_handles = 0; | ||||
|   } | ||||
|   if(ntlm->p_identity) { | ||||
|     if(ntlm->identity.User) free(ntlm->identity.User); | ||||
|     if(ntlm->identity.Password) free(ntlm->identity.Password); | ||||
|     if(ntlm->identity.Domain) free(ntlm->identity.Domain); | ||||
|     Curl_safefree(ntlm->identity.User); | ||||
|     Curl_safefree(ntlm->identity.Password); | ||||
|     Curl_safefree(ntlm->identity.Domain); | ||||
|     ntlm->p_identity = NULL; | ||||
|   } | ||||
| } | ||||
| @@ -359,7 +314,7 @@ static void unicodecpy(unsigned char *dest, | ||||
|  * userp   [in]     - The user name in the format User or Domain\User. | ||||
|  * passdwp [in]     - The user's password. | ||||
|  * ntlm    [in/out] - The ntlm data struct being used and modified. | ||||
|  * outptr  [in/out] - The adress where a pointer to newly allocated memory | ||||
|  * outptr  [in/out] - The address where a pointer to newly allocated memory | ||||
|  *                    holding the result will be stored upon completion. | ||||
|  * outlen  [out]    - The length of the output message. | ||||
|  * | ||||
| @@ -393,67 +348,94 @@ CURLcode Curl_ntlm_create_type1_message(const char *userp, | ||||
|   SecBuffer buf; | ||||
|   SecBufferDesc desc; | ||||
|   SECURITY_STATUS status; | ||||
|   ULONG attrs; | ||||
|   const char *dest = ""; | ||||
|   const char *user; | ||||
|   const char *domain = ""; | ||||
|   size_t userlen = 0; | ||||
|   unsigned long attrs; | ||||
|   xcharp_u useranddomain; | ||||
|   xcharp_u user, dup_user; | ||||
|   xcharp_u domain, dup_domain; | ||||
|   xcharp_u passwd, dup_passwd; | ||||
|   size_t domlen = 0; | ||||
|   size_t passwdlen = 0; | ||||
|   TimeStamp tsDummy; /* For Windows 9x compatibility of SSPI calls */ | ||||
|  | ||||
|   domain.const_tchar_ptr = TEXT(""); | ||||
|  | ||||
|   Curl_ntlm_sspi_cleanup(ntlm); | ||||
|  | ||||
|   user = strchr(userp, '\\'); | ||||
|   if(!user) | ||||
|     user = strchr(userp, '/'); | ||||
|   if(userp && *userp) { | ||||
|  | ||||
|   if(user) { | ||||
|     domain = userp; | ||||
|     domlen = user - userp; | ||||
|     user++; | ||||
|   } | ||||
|   else { | ||||
|     user = userp; | ||||
|     domain = ""; | ||||
|     domlen = 0; | ||||
|   } | ||||
|  | ||||
|   if(user) | ||||
|     userlen = strlen(user); | ||||
|  | ||||
|   if(passwdp) | ||||
|     passwdlen = strlen(passwdp); | ||||
|  | ||||
|   if(userlen > 0) { | ||||
|     /* note: initialize all of this before doing the mallocs so that | ||||
|      * it can be cleaned up later without leaking memory. | ||||
|      */ | ||||
|     /* null initialize ntlm identity's data to allow proper cleanup */ | ||||
|     ntlm->p_identity = &ntlm->identity; | ||||
|     memset(ntlm->p_identity, 0, sizeof(*ntlm->p_identity)); | ||||
|     if((ntlm->identity.User = (unsigned char *)strdup(user)) == NULL) | ||||
|  | ||||
|     useranddomain.tchar_ptr = Curl_convert_UTF8_to_tchar((char *)userp); | ||||
|     if(!useranddomain.tchar_ptr) | ||||
|       return CURLE_OUT_OF_MEMORY; | ||||
|  | ||||
|     ntlm->identity.UserLength = (unsigned long)userlen; | ||||
|     if((ntlm->identity.Password = (unsigned char *)strdup(passwdp)) == NULL) | ||||
|       return CURLE_OUT_OF_MEMORY; | ||||
|     user.const_tchar_ptr = _tcschr(useranddomain.const_tchar_ptr, TEXT('\\')); | ||||
|     if(!user.const_tchar_ptr) | ||||
|       user.const_tchar_ptr = _tcschr(useranddomain.const_tchar_ptr, TEXT('/')); | ||||
|  | ||||
|     ntlm->identity.PasswordLength = (unsigned long)strlen(passwdp); | ||||
|     if((ntlm->identity.Domain = malloc(domlen + 1)) == NULL) | ||||
|       return CURLE_OUT_OF_MEMORY; | ||||
|     if(user.tchar_ptr) { | ||||
|       domain.tchar_ptr = useranddomain.tchar_ptr; | ||||
|       domlen = user.tchar_ptr - useranddomain.tchar_ptr; | ||||
|       user.tchar_ptr++; | ||||
|     } | ||||
|     else { | ||||
|       user.tchar_ptr = useranddomain.tchar_ptr; | ||||
|       domain.const_tchar_ptr = TEXT(""); | ||||
|       domlen = 0; | ||||
|     } | ||||
|  | ||||
|     strncpy((char *)ntlm->identity.Domain, domain, domlen); | ||||
|     ntlm->identity.Domain[domlen] = '\0'; | ||||
|     ntlm->identity.DomainLength = (unsigned long)domlen; | ||||
|     ntlm->identity.Flags = SEC_WINNT_AUTH_IDENTITY_ANSI; | ||||
|     /* setup ntlm identity's user and length */ | ||||
|     dup_user.tchar_ptr = _tcsdup(user.tchar_ptr); | ||||
|     if(!dup_user.tchar_ptr) { | ||||
|       Curl_unicodefree(useranddomain.tchar_ptr); | ||||
|       return CURLE_OUT_OF_MEMORY; | ||||
|     } | ||||
|     ntlm->identity.User = dup_user.tbyte_ptr; | ||||
|     ntlm->identity.UserLength = curlx_uztoul(_tcslen(dup_user.tchar_ptr)); | ||||
|     dup_user.tchar_ptr = NULL; | ||||
|  | ||||
|     /* setup ntlm identity's domain and length */ | ||||
|     dup_domain.tchar_ptr = malloc(sizeof(TCHAR) * (domlen + 1)); | ||||
|     if(!dup_domain.tchar_ptr) { | ||||
|       Curl_unicodefree(useranddomain.tchar_ptr); | ||||
|       return CURLE_OUT_OF_MEMORY; | ||||
|     } | ||||
|     _tcsncpy(dup_domain.tchar_ptr, domain.tchar_ptr, domlen); | ||||
|     *(dup_domain.tchar_ptr + domlen) = TEXT('\0'); | ||||
|     ntlm->identity.Domain = dup_domain.tbyte_ptr; | ||||
|     ntlm->identity.DomainLength = curlx_uztoul(domlen); | ||||
|     dup_domain.tchar_ptr = NULL; | ||||
|  | ||||
|     Curl_unicodefree(useranddomain.tchar_ptr); | ||||
|  | ||||
|     /* setup ntlm identity's password and length */ | ||||
|     passwd.tchar_ptr = Curl_convert_UTF8_to_tchar((char *)passwdp); | ||||
|     if(!passwd.tchar_ptr) | ||||
|       return CURLE_OUT_OF_MEMORY; | ||||
|     dup_passwd.tchar_ptr = _tcsdup(passwd.tchar_ptr); | ||||
|     if(!dup_passwd.tchar_ptr) { | ||||
|       Curl_unicodefree(passwd.tchar_ptr); | ||||
|       return CURLE_OUT_OF_MEMORY; | ||||
|     } | ||||
|     ntlm->identity.Password = dup_passwd.tbyte_ptr; | ||||
|     ntlm->identity.PasswordLength = | ||||
|       curlx_uztoul(_tcslen(dup_passwd.tchar_ptr)); | ||||
|     dup_passwd.tchar_ptr = NULL; | ||||
|  | ||||
|     Curl_unicodefree(passwd.tchar_ptr); | ||||
|  | ||||
|     /* setup ntlm identity's flags */ | ||||
|     ntlm->identity.Flags = SECFLAG_WINNT_AUTH_IDENTITY; | ||||
|   } | ||||
|   else | ||||
|     ntlm->p_identity = NULL; | ||||
|  | ||||
|   status = s_pSecFn->AcquireCredentialsHandleA(NULL, (void *)"NTLM", | ||||
|                                                SECPKG_CRED_OUTBOUND, NULL, | ||||
|                                                ntlm->p_identity, NULL, NULL, | ||||
|                                                &ntlm->handle, &tsDummy); | ||||
|   status = s_pSecFn->AcquireCredentialsHandle(NULL, | ||||
|                                               (TCHAR *) TEXT("NTLM"), | ||||
|                                               SECPKG_CRED_OUTBOUND, NULL, | ||||
|                                               ntlm->p_identity, NULL, NULL, | ||||
|                                               &ntlm->handle, &tsDummy); | ||||
|   if(status != SEC_E_OK) | ||||
|     return CURLE_OUT_OF_MEMORY; | ||||
|  | ||||
| @@ -464,15 +446,15 @@ CURLcode Curl_ntlm_create_type1_message(const char *userp, | ||||
|   buf.BufferType = SECBUFFER_TOKEN; | ||||
|   buf.pvBuffer   = ntlmbuf; | ||||
|  | ||||
|   status = s_pSecFn->InitializeSecurityContextA(&ntlm->handle, NULL, | ||||
|                                                 (void *)dest, | ||||
|                                                 ISC_REQ_CONFIDENTIALITY | | ||||
|                                                 ISC_REQ_REPLAY_DETECT | | ||||
|                                                 ISC_REQ_CONNECTION, | ||||
|                                                 0, SECURITY_NETWORK_DREP, | ||||
|                                                 NULL, 0, | ||||
|                                                 &ntlm->c_handle, &desc, | ||||
|                                                 &attrs, &tsDummy); | ||||
|   status = s_pSecFn->InitializeSecurityContext(&ntlm->handle, NULL, | ||||
|                                                (TCHAR *) TEXT(""), | ||||
|                                                ISC_REQ_CONFIDENTIALITY | | ||||
|                                                ISC_REQ_REPLAY_DETECT | | ||||
|                                                ISC_REQ_CONNECTION, | ||||
|                                                0, SECURITY_NETWORK_DREP, | ||||
|                                                NULL, 0, | ||||
|                                                &ntlm->c_handle, &desc, | ||||
|                                                &attrs, &tsDummy); | ||||
|  | ||||
|   if(status == SEC_I_COMPLETE_AND_CONTINUE || | ||||
|      status == SEC_I_CONTINUE_NEEDED) | ||||
| @@ -580,7 +562,7 @@ CURLcode Curl_ntlm_create_type1_message(const char *userp, | ||||
|  * userp   [in]     - The user name in the format User or Domain\User. | ||||
|  * passdwp [in]     - The user's password. | ||||
|  * ntlm    [in/out] - The ntlm data struct being used and modified. | ||||
|  * outptr  [in/out] - The adress where a pointer to newly allocated memory | ||||
|  * outptr  [in/out] - The address where a pointer to newly allocated memory | ||||
|  *                    holding the result will be stored upon completion. | ||||
|  * outlen  [out]    - The length of the output message. | ||||
|  * | ||||
| @@ -615,13 +597,12 @@ CURLcode Curl_ntlm_create_type3_message(struct SessionHandle *data, | ||||
|   size_t size; | ||||
|  | ||||
| #ifdef USE_WINDOWS_SSPI | ||||
|   const char *dest = ""; | ||||
|   SecBuffer type_2; | ||||
|   SecBuffer type_3; | ||||
|   SecBufferDesc type_2_desc; | ||||
|   SecBufferDesc type_3_desc; | ||||
|   SECURITY_STATUS status; | ||||
|   ULONG attrs; | ||||
|   unsigned long attrs; | ||||
|   TimeStamp tsDummy; /* For Windows 9x compatibility of SSPI calls */ | ||||
|  | ||||
|   (void)passwdp; | ||||
| @@ -640,17 +621,17 @@ CURLcode Curl_ntlm_create_type3_message(struct SessionHandle *data, | ||||
|   type_3.pvBuffer   = ntlmbuf; | ||||
|   type_3.cbBuffer   = NTLM_BUFSIZE; | ||||
|  | ||||
|   status = s_pSecFn->InitializeSecurityContextA(&ntlm->handle, | ||||
|                                                 &ntlm->c_handle, | ||||
|                                                 (void *)dest, | ||||
|                                                 ISC_REQ_CONFIDENTIALITY | | ||||
|                                                 ISC_REQ_REPLAY_DETECT | | ||||
|                                                 ISC_REQ_CONNECTION, | ||||
|                                                 0, SECURITY_NETWORK_DREP, | ||||
|                                                 &type_2_desc, | ||||
|                                                 0, &ntlm->c_handle, | ||||
|                                                 &type_3_desc, | ||||
|                                                 &attrs, &tsDummy); | ||||
|   status = s_pSecFn->InitializeSecurityContext(&ntlm->handle, | ||||
|                                                &ntlm->c_handle, | ||||
|                                                (TCHAR *) TEXT(""), | ||||
|                                                ISC_REQ_CONFIDENTIALITY | | ||||
|                                                ISC_REQ_REPLAY_DETECT | | ||||
|                                                ISC_REQ_CONNECTION, | ||||
|                                                0, SECURITY_NETWORK_DREP, | ||||
|                                                &type_2_desc, | ||||
|                                                0, &ntlm->c_handle, | ||||
|                                                &type_3_desc, | ||||
|                                                &attrs, &tsDummy); | ||||
|   if(status != SEC_E_OK) | ||||
|     return CURLE_RECV_ERROR; | ||||
|  | ||||
| @@ -717,23 +698,7 @@ CURLcode Curl_ntlm_create_type3_message(struct SessionHandle *data, | ||||
|     unsigned char entropy[8]; | ||||
|  | ||||
|     /* Need to create 8 bytes random data */ | ||||
| #ifdef USE_SSLEAY | ||||
|     MD5_CTX MD5pw; | ||||
|     Curl_ossl_seed(data); /* Initiate the seed if not already done */ | ||||
|     RAND_bytes(entropy, 8); | ||||
| #elif defined(USE_GNUTLS_NETTLE) | ||||
|     struct md5_ctx MD5pw; | ||||
|     gnutls_rnd(GNUTLS_RND_RANDOM, entropy, 8); | ||||
| #elif defined(USE_GNUTLS) | ||||
|     gcry_md_hd_t MD5pw; | ||||
|     Curl_gtls_seed(data); /* Initiate the seed if not already done */ | ||||
|     gcry_randomize(entropy, 8, GCRY_STRONG_RANDOM); | ||||
| #elif defined(USE_NSS) | ||||
|     PK11Context *MD5pw; | ||||
|     unsigned int MD5len; | ||||
|     Curl_nss_seed(data);  /* Initiate the seed if not already done */ | ||||
|     PK11_GenerateRandom(entropy, 8); | ||||
| #endif | ||||
|     Curl_ssl_random(data, entropy, sizeof(entropy)); | ||||
|  | ||||
|     /* 8 bytes random data as challenge in lmresp */ | ||||
|     memcpy(lmresp, entropy, 8); | ||||
| @@ -745,25 +710,7 @@ CURLcode Curl_ntlm_create_type3_message(struct SessionHandle *data, | ||||
|     memcpy(tmp, &ntlm->nonce[0], 8); | ||||
|     memcpy(tmp + 8, entropy, 8); | ||||
|  | ||||
| #ifdef USE_SSLEAY | ||||
|     MD5_Init(&MD5pw); | ||||
|     MD5_Update(&MD5pw, tmp, 16); | ||||
|     MD5_Final(md5sum, &MD5pw); | ||||
| #elif defined(USE_GNUTLS_NETTLE) | ||||
|     md5_init(&MD5pw); | ||||
|     md5_update(&MD5pw, 16, tmp); | ||||
|     md5_digest(&MD5pw, 16, md5sum); | ||||
| #elif defined(USE_GNUTLS) | ||||
|     gcry_md_open(&MD5pw, GCRY_MD_MD5, 0); | ||||
|     gcry_md_write(MD5pw, tmp, MD5_DIGEST_LENGTH); | ||||
|     memcpy(md5sum, gcry_md_read (MD5pw, 0), MD5_DIGEST_LENGTH); | ||||
|     gcry_md_close(MD5pw); | ||||
| #elif defined(USE_NSS) | ||||
|     MD5pw = PK11_CreateDigestContext(SEC_OID_MD5); | ||||
|     PK11_DigestOp(MD5pw, tmp, 16); | ||||
|     PK11_DigestFinal(MD5pw, md5sum, &MD5len, MD5_DIGEST_LENGTH); | ||||
|     PK11_DestroyContext(MD5pw, PR_TRUE); | ||||
| #endif | ||||
|     Curl_ssl_md5sum(tmp, 16, md5sum, MD5_DIGEST_LENGTH); | ||||
|  | ||||
|     /* We shall only use the first 8 bytes of md5sum, but the des | ||||
|        code in Curl_ntlm_core_lm_resp only encrypt the first 8 bytes */ | ||||
|   | ||||
| @@ -7,7 +7,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -163,6 +163,14 @@ void Curl_ntlm_sspi_cleanup(struct ntlmdata *ntlm); | ||||
| #define NTLMFLAG_NEGOTIATE_56                    (1<<31) | ||||
| /* Indicates that 56-bit encryption is supported. */ | ||||
|  | ||||
| #ifdef UNICODE | ||||
| #  define SECFLAG_WINNT_AUTH_IDENTITY \ | ||||
|      (unsigned long)SEC_WINNT_AUTH_IDENTITY_UNICODE | ||||
| #else | ||||
| #  define SECFLAG_WINNT_AUTH_IDENTITY \ | ||||
|      (unsigned long)SEC_WINNT_AUTH_IDENTITY_ANSI | ||||
| #endif | ||||
|  | ||||
| #endif /* BUILDING_CURL_NTLM_MSGS_C */ | ||||
|  | ||||
| #endif /* USE_NTLM */ | ||||
|   | ||||
							
								
								
									
										504
									
								
								lib/curl_sasl.c
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										504
									
								
								lib/curl_sasl.c
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,504 @@ | ||||
| /*************************************************************************** | ||||
|  *                                  _   _ ____  _ | ||||
|  *  Project                     ___| | | |  _ \| | | ||||
|  *                             / __| | | | |_) | | | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
|  * are also available at http://curl.haxx.se/docs/copyright.html. | ||||
|  * | ||||
|  * You may opt to use, copy, modify, merge, publish, distribute and/or sell | ||||
|  * copies of the Software, and permit persons to whom the Software is | ||||
|  * furnished to do so, under the terms of the COPYING file. | ||||
|  * | ||||
|  * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY | ||||
|  * KIND, either express or implied. | ||||
|  * | ||||
|  * RFC2195 CRAM-MD5 authentication | ||||
|  * RFC2831 DIGEST-MD5 authentication | ||||
|  * RFC4616 PLAIN authentication | ||||
|  * | ||||
|  ***************************************************************************/ | ||||
|  | ||||
| #include "setup.h" | ||||
|  | ||||
| #include <curl/curl.h> | ||||
| #include "urldata.h" | ||||
|  | ||||
| #include "curl_base64.h" | ||||
| #include "curl_md5.h" | ||||
| #include "curl_rand.h" | ||||
| #include "curl_hmac.h" | ||||
| #include "curl_ntlm_msgs.h" | ||||
| #include "curl_sasl.h" | ||||
| #include "warnless.h" | ||||
| #include "curl_memory.h" | ||||
|  | ||||
| #define _MPRINTF_REPLACE /* use our functions only */ | ||||
| #include <curl/mprintf.h> | ||||
|  | ||||
| /* The last #include file should be: */ | ||||
| #include "memdebug.h" | ||||
|  | ||||
| #ifndef CURL_DISABLE_CRYPTO_AUTH | ||||
| /* Retrieves the value for a corresponding key from the challenge string | ||||
|  * returns TRUE if the key could be found, FALSE if it does not exists | ||||
|  */ | ||||
| static bool sasl_digest_get_key_value(const unsigned char *chlg, | ||||
|                                       const char *key, | ||||
|                                       char *value, | ||||
|                                       size_t max_val_len, | ||||
|                                       char end_char) | ||||
| { | ||||
|   char *find_pos; | ||||
|   size_t i; | ||||
|  | ||||
|   find_pos = strstr((const char *) chlg, key); | ||||
|   if(!find_pos) | ||||
|     return FALSE; | ||||
|  | ||||
|   find_pos += strlen(key); | ||||
|  | ||||
|   for(i = 0; *find_pos && *find_pos != end_char && i < max_val_len - 1; ++i) | ||||
|     value[i] = *find_pos++; | ||||
|   value[i] = '\0'; | ||||
|  | ||||
|   return TRUE; | ||||
| } | ||||
| #endif | ||||
|  | ||||
| /* | ||||
|  * Curl_sasl_create_plain_message() | ||||
|  * | ||||
|  * This is used to generate an already encoded PLAIN message ready | ||||
|  * for sending to the recipient. | ||||
|  * | ||||
|  * Parameters: | ||||
|  * | ||||
|  * data    [in]     - The session handle. | ||||
|  * userp   [in]     - The user name. | ||||
|  * passdwp [in]     - The user's password. | ||||
|  * outptr  [in/out] - The address where a pointer to newly allocated memory | ||||
|  *                    holding the result will be stored upon completion. | ||||
|  * outlen  [out]    - The length of the output message. | ||||
|  * | ||||
|  * Returns CURLE_OK on success. | ||||
|  */ | ||||
| CURLcode Curl_sasl_create_plain_message(struct SessionHandle *data, | ||||
|                                         const char* userp, | ||||
|                                         const char* passwdp, | ||||
|                                         char **outptr, size_t *outlen) | ||||
| { | ||||
|   char plainauth[2 * MAX_CURL_USER_LENGTH + MAX_CURL_PASSWORD_LENGTH]; | ||||
|   size_t ulen; | ||||
|   size_t plen; | ||||
|  | ||||
|   ulen = strlen(userp); | ||||
|   plen = strlen(passwdp); | ||||
|  | ||||
|   if(2 * ulen + plen + 2 > sizeof(plainauth)) { | ||||
|     *outlen = 0; | ||||
|     *outptr = NULL; | ||||
|  | ||||
|     /* Plainauth too small */ | ||||
|     return CURLE_OUT_OF_MEMORY; | ||||
|   } | ||||
|  | ||||
|   /* Calculate the reply */ | ||||
|   memcpy(plainauth, userp, ulen); | ||||
|   plainauth[ulen] = '\0'; | ||||
|   memcpy(plainauth + ulen + 1, userp, ulen); | ||||
|   plainauth[2 * ulen + 1] = '\0'; | ||||
|   memcpy(plainauth + 2 * ulen + 2, passwdp, plen); | ||||
|  | ||||
|   /* Base64 encode the reply */ | ||||
|   return Curl_base64_encode(data, plainauth, 2 * ulen + plen + 2, outptr, | ||||
|                             outlen); | ||||
| } | ||||
|  | ||||
| /* | ||||
|  * Curl_sasl_create_login_message() | ||||
|  * | ||||
|  * This is used to generate an already encoded LOGIN message containing the | ||||
|  * user name or password ready for sending to the recipient. | ||||
|  * | ||||
|  * Parameters: | ||||
|  * | ||||
|  * data    [in]     - The session handle. | ||||
|  * valuep  [in]     - The user name or user's password. | ||||
|  * outptr  [in/out] - The address where a pointer to newly allocated memory | ||||
|  *                    holding the result will be stored upon completion. | ||||
|  * outlen  [out]    - The length of the output message. | ||||
|  * | ||||
|  * Returns CURLE_OK on success. | ||||
|  */ | ||||
| CURLcode Curl_sasl_create_login_message(struct SessionHandle *data, | ||||
|                                         const char* valuep, char **outptr, | ||||
|                                         size_t *outlen) | ||||
| { | ||||
|   size_t vlen = strlen(valuep); | ||||
|  | ||||
|   if(!vlen) { | ||||
|     /* Calculate an empty reply */ | ||||
|     *outptr = strdup("="); | ||||
|     if(*outptr) { | ||||
|       *outlen = (size_t) 1; | ||||
|       return CURLE_OK; | ||||
|     } | ||||
|  | ||||
|     *outlen = 0; | ||||
|     return CURLE_OUT_OF_MEMORY; | ||||
|   } | ||||
|  | ||||
|   /* Base64 encode the value */ | ||||
|   return Curl_base64_encode(data, valuep, vlen, outptr, outlen); | ||||
| } | ||||
|  | ||||
| #ifndef CURL_DISABLE_CRYPTO_AUTH | ||||
| /* | ||||
|  * Curl_sasl_create_cram_md5_message() | ||||
|  * | ||||
|  * This is used to generate an already encoded CRAM-MD5 response message ready | ||||
|  * for sending to the recipient. | ||||
|  * | ||||
|  * Parameters: | ||||
|  * | ||||
|  * data    [in]     - The session handle. | ||||
|  * chlg64  [in]     - Pointer to the base64 encoded challenge buffer. | ||||
|  * userp   [in]     - The user name. | ||||
|  * passdwp [in]     - The user's password. | ||||
|  * outptr  [in/out] - The address where a pointer to newly allocated memory | ||||
|  *                    holding the result will be stored upon completion. | ||||
|  * outlen  [out]    - The length of the output message. | ||||
|  * | ||||
|  * Returns CURLE_OK on success. | ||||
|  */ | ||||
| CURLcode Curl_sasl_create_cram_md5_message(struct SessionHandle *data, | ||||
|                                            const char* chlg64, | ||||
|                                            const char* userp, | ||||
|                                            const char* passwdp, | ||||
|                                            char **outptr, size_t *outlen) | ||||
| { | ||||
|   CURLcode result = CURLE_OK; | ||||
|   size_t chlg64len = strlen(chlg64); | ||||
|   unsigned char *chlg = (unsigned char *) NULL; | ||||
|   size_t chlglen = 0; | ||||
|   HMAC_context *ctxt; | ||||
|   unsigned char digest[MD5_DIGEST_LEN]; | ||||
|   char response[MAX_CURL_USER_LENGTH + 2 * MD5_DIGEST_LEN + 1]; | ||||
|  | ||||
|   /* Decode the challenge if necessary */ | ||||
|   if(chlg64len && *chlg64 != '=') { | ||||
|     result = Curl_base64_decode(chlg64, &chlg, &chlglen); | ||||
|  | ||||
|     if(result) | ||||
|       return result; | ||||
|   } | ||||
|  | ||||
|   /* Compute the digest using the password as the key */ | ||||
|   ctxt = Curl_HMAC_init(Curl_HMAC_MD5, | ||||
|                         (const unsigned char *) passwdp, | ||||
|                         curlx_uztoui(strlen(passwdp))); | ||||
|  | ||||
|   if(!ctxt) { | ||||
|     Curl_safefree(chlg); | ||||
|     return CURLE_OUT_OF_MEMORY; | ||||
|   } | ||||
|  | ||||
|   /* Update the digest with the given challenge */ | ||||
|   if(chlglen > 0) | ||||
|     Curl_HMAC_update(ctxt, chlg, curlx_uztoui(chlglen)); | ||||
|  | ||||
|   Curl_safefree(chlg); | ||||
|  | ||||
|   /* Finalise the digest */ | ||||
|   Curl_HMAC_final(ctxt, digest); | ||||
|  | ||||
|   /* Prepare the response */ | ||||
|   snprintf(response, sizeof(response), | ||||
|       "%s %02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x", | ||||
|            userp, digest[0], digest[1], digest[2], digest[3], digest[4], | ||||
|            digest[5], digest[6], digest[7], digest[8], digest[9], digest[10], | ||||
|            digest[11], digest[12], digest[13], digest[14], digest[15]); | ||||
|  | ||||
|   /* Base64 encode the reply */ | ||||
|   return Curl_base64_encode(data, response, 0, outptr, outlen); | ||||
| } | ||||
|  | ||||
| /* | ||||
|  * Curl_sasl_create_digest_md5_message() | ||||
|  * | ||||
|  * This is used to generate an already encoded DIGEST-MD5 response message | ||||
|  * ready for sending to the recipient. | ||||
|  * | ||||
|  * Parameters: | ||||
|  * | ||||
|  * data    [in]     - The session handle. | ||||
|  * chlg64  [in]     - Pointer to the base64 encoded challenge buffer. | ||||
|  * userp   [in]     - The user name. | ||||
|  * passdwp [in]     - The user's password. | ||||
|  * service [in]     - The service type such as www, smtp or pop | ||||
|  * outptr  [in/out] - The address where a pointer to newly allocated memory | ||||
|  *                    holding the result will be stored upon completion. | ||||
|  * outlen  [out]    - The length of the output message. | ||||
|  * | ||||
|  * Returns CURLE_OK on success. | ||||
|  */ | ||||
| CURLcode Curl_sasl_create_digest_md5_message(struct SessionHandle *data, | ||||
|                                              const char* chlg64, | ||||
|                                              const char* userp, | ||||
|                                              const char* passwdp, | ||||
|                                              const char* service, | ||||
|                                              char **outptr, size_t *outlen) | ||||
| { | ||||
|   static const char table16[] = "0123456789abcdef"; | ||||
|  | ||||
|   CURLcode result = CURLE_OK; | ||||
|   unsigned char *chlg = (unsigned char *) NULL; | ||||
|   size_t chlglen = 0; | ||||
|   size_t i; | ||||
|   MD5_context *ctxt; | ||||
|   unsigned char digest[MD5_DIGEST_LEN]; | ||||
|   char HA1_hex[2 * MD5_DIGEST_LEN + 1]; | ||||
|   char HA2_hex[2 * MD5_DIGEST_LEN + 1]; | ||||
|   char resp_hash_hex[2 * MD5_DIGEST_LEN + 1]; | ||||
|  | ||||
|   char nonce[64]; | ||||
|   char realm[128]; | ||||
|   char alg[64]; | ||||
|   char nonceCount[] = "00000001"; | ||||
|   char cnonce[]     = "12345678"; /* will be changed */ | ||||
|   char method[]     = "AUTHENTICATE"; | ||||
|   char qop[]        = "auth"; | ||||
|   char uri[128]; | ||||
|   char response[512]; | ||||
|  | ||||
|   result = Curl_base64_decode(chlg64, &chlg, &chlglen); | ||||
|  | ||||
|   if(result) | ||||
|     return result; | ||||
|  | ||||
|   /* Retrieve nonce string from the challenge */ | ||||
|   if(!sasl_digest_get_key_value(chlg, "nonce=\"", nonce, | ||||
|                                 sizeof(nonce), '\"')) { | ||||
|     Curl_safefree(chlg); | ||||
|     return CURLE_LOGIN_DENIED; | ||||
|   } | ||||
|  | ||||
|   /* Retrieve realm string from the challenge */ | ||||
|   if(!sasl_digest_get_key_value(chlg, "realm=\"", realm, | ||||
|                                 sizeof(realm), '\"')) { | ||||
|     /* Challenge does not have a realm, set empty string [RFC2831] page 6 */ | ||||
|     strcpy(realm, ""); | ||||
|   } | ||||
|  | ||||
|   /* Retrieve algorithm string from the challenge */ | ||||
|   if(!sasl_digest_get_key_value(chlg, "algorithm=", alg, sizeof(alg), ',')) { | ||||
|     Curl_safefree(chlg); | ||||
|     return CURLE_LOGIN_DENIED; | ||||
|   } | ||||
|  | ||||
|   Curl_safefree(chlg); | ||||
|  | ||||
|   /* We do not support other algorithms */ | ||||
|   if(strcmp(alg, "md5-sess") != 0) | ||||
|     return CURLE_LOGIN_DENIED; | ||||
|  | ||||
|   /* Generate 64 bits of random data */ | ||||
|   for(i = 0; i < 8; i++) | ||||
|     cnonce[i] = table16[Curl_rand()%16]; | ||||
|  | ||||
|   /* So far so good, now calculate A1 and H(A1) according to RFC 2831 */ | ||||
|   ctxt = Curl_MD5_init(Curl_DIGEST_MD5); | ||||
|   if(!ctxt) | ||||
|     return CURLE_OUT_OF_MEMORY; | ||||
|  | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) userp, | ||||
|                   curlx_uztoui(strlen(userp))); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) ":", 1); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) realm, | ||||
|                   curlx_uztoui(strlen(realm))); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) ":", 1); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) passwdp, | ||||
|                   curlx_uztoui(strlen(passwdp))); | ||||
|   Curl_MD5_final(ctxt, digest); | ||||
|  | ||||
|   ctxt = Curl_MD5_init(Curl_DIGEST_MD5); | ||||
|   if(!ctxt) | ||||
|     return CURLE_OUT_OF_MEMORY; | ||||
|  | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) digest, MD5_DIGEST_LEN); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) ":", 1); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) nonce, | ||||
|                   curlx_uztoui(strlen(nonce))); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) ":", 1); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) cnonce, | ||||
|                   curlx_uztoui(strlen(cnonce))); | ||||
|   Curl_MD5_final(ctxt, digest); | ||||
|  | ||||
|   /* Convert calculated 16 octet hex into 32 bytes string */ | ||||
|   for(i = 0; i < MD5_DIGEST_LEN; i++) | ||||
|     snprintf(&HA1_hex[2 * i], 3, "%02x", digest[i]); | ||||
|  | ||||
|   /* Prepare the URL string */ | ||||
|   strcpy(uri, service); | ||||
|   strcat(uri, "/"); | ||||
|   strcat(uri, realm); | ||||
|  | ||||
|   /* Calculate H(A2) */ | ||||
|   ctxt = Curl_MD5_init(Curl_DIGEST_MD5); | ||||
|   if(!ctxt) | ||||
|     return CURLE_OUT_OF_MEMORY; | ||||
|  | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) method, | ||||
|                   curlx_uztoui(strlen(method))); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) ":", 1); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) uri, | ||||
|                   curlx_uztoui(strlen(uri))); | ||||
|   Curl_MD5_final(ctxt, digest); | ||||
|  | ||||
|   for(i = 0; i < MD5_DIGEST_LEN; i++) | ||||
|     snprintf(&HA2_hex[2 * i], 3, "%02x", digest[i]); | ||||
|  | ||||
|   /* Now calculate the response hash */ | ||||
|   ctxt = Curl_MD5_init(Curl_DIGEST_MD5); | ||||
|   if(!ctxt) | ||||
|     return CURLE_OUT_OF_MEMORY; | ||||
|  | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) HA1_hex, 2 * MD5_DIGEST_LEN); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) ":", 1); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) nonce, | ||||
|                   curlx_uztoui(strlen(nonce))); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) ":", 1); | ||||
|  | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) nonceCount, | ||||
|                   curlx_uztoui(strlen(nonceCount))); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) ":", 1); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) cnonce, | ||||
|                   curlx_uztoui(strlen(cnonce))); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) ":", 1); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) qop, | ||||
|                   curlx_uztoui(strlen(qop))); | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) ":", 1); | ||||
|  | ||||
|   Curl_MD5_update(ctxt, (const unsigned char *) HA2_hex, 2 * MD5_DIGEST_LEN); | ||||
|   Curl_MD5_final(ctxt, digest); | ||||
|  | ||||
|   for(i = 0; i < MD5_DIGEST_LEN; i++) | ||||
|     snprintf(&resp_hash_hex[2 * i], 3, "%02x", digest[i]); | ||||
|  | ||||
|   strcpy(response, "username=\""); | ||||
|   strcat(response, userp); | ||||
|   strcat(response, "\",realm=\""); | ||||
|   strcat(response, realm); | ||||
|   strcat(response, "\",nonce=\""); | ||||
|   strcat(response, nonce); | ||||
|   strcat(response, "\",cnonce=\""); | ||||
|   strcat(response, cnonce); | ||||
|   strcat(response, "\",nc="); | ||||
|   strcat(response, nonceCount); | ||||
|   strcat(response, ",digest-uri=\""); | ||||
|   strcat(response, uri); | ||||
|   strcat(response, "\",response="); | ||||
|   strcat(response, resp_hash_hex); | ||||
|  | ||||
|   /* Base64 encode the reply */ | ||||
|   return Curl_base64_encode(data, response, 0, outptr, outlen); | ||||
| } | ||||
| #endif | ||||
|  | ||||
| #ifdef USE_NTLM | ||||
| /* | ||||
|  * Curl_sasl_create_ntlm_type1_message() | ||||
|  * | ||||
|  * This is used to generate an already encoded NTLM type-1 message ready for | ||||
|  * sending to the recipient. | ||||
|  * | ||||
|  * Note: This is a simple wrapper of the NTLM function which means that any | ||||
|  * SASL based protocols don't have to include the NTLM functions directly. | ||||
|  * | ||||
|  * Parameters: | ||||
|  * | ||||
|  * userp   [in]     - The user name in the format User or Domain\User. | ||||
|  * passdwp [in]     - The user's password. | ||||
|  * ntlm    [in/out] - The ntlm data struct being used and modified. | ||||
|  * outptr  [in/out] - The address where a pointer to newly allocated memory | ||||
|  *                    holding the result will be stored upon completion. | ||||
|  * outlen  [out]    - The length of the output message. | ||||
|  * | ||||
|  * Returns CURLE_OK on success. | ||||
|  */ | ||||
| CURLcode Curl_sasl_create_ntlm_type1_message(const char *userp, | ||||
|                                              const char *passwdp, | ||||
|                                              struct ntlmdata *ntlm, | ||||
|                                              char **outptr, size_t *outlen) | ||||
| { | ||||
|   return Curl_ntlm_create_type1_message(userp, passwdp, ntlm, outptr, | ||||
|                                         outlen); | ||||
| } | ||||
|  | ||||
| /* | ||||
|  * Curl_sasl_create_ntlm_type3_message() | ||||
|  * | ||||
|  * This is used to generate an already encoded NTLM type-3 message ready for | ||||
|  * sending to the recipient. | ||||
|  * | ||||
|  * Parameters: | ||||
|  * | ||||
|  * data    [in]     - Pointer to session handle. | ||||
|  * header  [in]     - Pointer to the base64 encoded type-2 message buffer. | ||||
|  * userp   [in]     - The user name in the format User or Domain\User. | ||||
|  * passdwp [in]     - The user's password. | ||||
|  * ntlm    [in/out] - The ntlm data struct being used and modified. | ||||
|  * outptr  [in/out] - The address where a pointer to newly allocated memory | ||||
|  *                    holding the result will be stored upon completion. | ||||
|  * outlen  [out]    - The length of the output message. | ||||
|  * | ||||
|  * Returns CURLE_OK on success. | ||||
|  */ | ||||
| CURLcode Curl_sasl_create_ntlm_type3_message(struct SessionHandle *data, | ||||
|                                              const char *header, | ||||
|                                              const char *userp, | ||||
|                                              const char *passwdp, | ||||
|                                              struct ntlmdata *ntlm, | ||||
|                                              char **outptr, size_t *outlen) | ||||
| { | ||||
|   CURLcode result = Curl_ntlm_decode_type2_message(data, header, ntlm); | ||||
|  | ||||
|   if(!result) | ||||
|     result = Curl_ntlm_create_type3_message(data, userp, passwdp, ntlm, | ||||
|                                             outptr, outlen); | ||||
|  | ||||
|   return result; | ||||
| } | ||||
| #endif /* USE_NTLM */ | ||||
|  | ||||
| /* | ||||
|  * Curl_sasl_cleanup() | ||||
|  * | ||||
|  * This is used to cleanup any libraries or curl modules used by the sasl | ||||
|  * functions. | ||||
|  * | ||||
|  * Parameters: | ||||
|  * | ||||
|  * conn     [in]     - Pointer to the connection data. | ||||
|  * authused [in]     - The authentication mechanism used. | ||||
|  */ | ||||
| void Curl_sasl_cleanup(struct connectdata *conn, unsigned int authused) | ||||
| { | ||||
| #ifdef USE_NTLM | ||||
|   /* Cleanup the ntlm structure */ | ||||
|   if(authused == SASL_MECH_NTLM) { | ||||
|     Curl_ntlm_sspi_cleanup(&conn->ntlm); | ||||
|   } | ||||
|   (void)conn; | ||||
| #else | ||||
|   /* Reserved for future use */ | ||||
|   (void)conn; | ||||
|   (void)authused; | ||||
| #endif | ||||
| } | ||||
							
								
								
									
										88
									
								
								lib/curl_sasl.h
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										88
									
								
								lib/curl_sasl.h
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,88 @@ | ||||
| #ifndef HEADER_CURL_SASL_H | ||||
| #define HEADER_CURL_SASL_H | ||||
| /*************************************************************************** | ||||
|  *                                  _   _ ____  _ | ||||
|  *  Project                     ___| | | |  _ \| | | ||||
|  *                             / __| | | | |_) | | | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
|  * are also available at http://curl.haxx.se/docs/copyright.html. | ||||
|  * | ||||
|  * You may opt to use, copy, modify, merge, publish, distribute and/or sell | ||||
|  * copies of the Software, and permit persons to whom the Software is | ||||
|  * furnished to do so, under the terms of the COPYING file. | ||||
|  * | ||||
|  * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY | ||||
|  * KIND, either express or implied. | ||||
|  * | ||||
|  ***************************************************************************/ | ||||
|  | ||||
| #include "pingpong.h" | ||||
|  | ||||
| /* Authentication mechanism flags */ | ||||
| #define SASL_MECH_LOGIN         0x0001 | ||||
| #define SASL_MECH_PLAIN         0x0002 | ||||
| #define SASL_MECH_CRAM_MD5      0x0004 | ||||
| #define SASL_MECH_DIGEST_MD5    0x0008 | ||||
| #define SASL_MECH_GSSAPI        0x0010 | ||||
| #define SASL_MECH_EXTERNAL      0x0020 | ||||
| #define SASL_MECH_NTLM          0x0040 | ||||
|  | ||||
| /* This is used to generate a base64 encoded PLAIN authentication message */ | ||||
| CURLcode Curl_sasl_create_plain_message(struct SessionHandle *data, | ||||
|                                         const char* userp, | ||||
|                                         const char* passwdp, | ||||
|                                         char **outptr, size_t *outlen); | ||||
|  | ||||
| /* This is used to generate a base64 encoded LOGIN authentication message | ||||
|    containing either the user name or password details */ | ||||
| CURLcode Curl_sasl_create_login_message(struct SessionHandle *data, | ||||
|                                         const char* valuep, char **outptr, | ||||
|                                         size_t *outlen); | ||||
|  | ||||
| #ifndef CURL_DISABLE_CRYPTO_AUTH | ||||
| /* This is used to generate a base64 encoded CRAM-MD5 response message */ | ||||
| CURLcode Curl_sasl_create_cram_md5_message(struct SessionHandle *data, | ||||
|                                            const char* chlg64, | ||||
|                                            const char* user, | ||||
|                                            const char* passwdp, | ||||
|                                            char **outptr, size_t *outlen); | ||||
|  | ||||
| /* This is used to generate a base64 encoded DIGEST-MD5 response message */ | ||||
| CURLcode Curl_sasl_create_digest_md5_message(struct SessionHandle *data, | ||||
|                                              const char* chlg64, | ||||
|                                              const char* user, | ||||
|                                              const char* passwdp, | ||||
|                                              const char* service, | ||||
|                                              char **outptr, size_t *outlen); | ||||
| #endif | ||||
|  | ||||
| #ifdef USE_NTLM | ||||
| /* This is used to generate a base64 encoded NTLM type-1 message */ | ||||
| CURLcode Curl_sasl_create_ntlm_type1_message(const char *userp, | ||||
|                                              const char *passwdp, | ||||
|                                              struct ntlmdata *ntlm, | ||||
|                                              char **outptr, | ||||
|                                              size_t *outlen); | ||||
|  | ||||
| /* This is used to decode an incoming NTLM type-2 message and generate a | ||||
|    base64 encoded type-3 response */ | ||||
| CURLcode Curl_sasl_create_ntlm_type3_message(struct SessionHandle *data, | ||||
|                                              const char *header, | ||||
|                                              const char *userp, | ||||
|                                              const char *passwdp, | ||||
|                                              struct ntlmdata *ntlm, | ||||
|                                              char **outptr, size_t *outlen); | ||||
|  | ||||
| #endif /* USE_NTLM */ | ||||
|  | ||||
| /* This is used to cleanup any libraries or curl modules used by the sasl | ||||
|    functions */ | ||||
| void Curl_sasl_cleanup(struct connectdata *conn, unsigned int authused); | ||||
|  | ||||
| #endif /* HEADER_CURL_SASL_H */ | ||||
							
								
								
									
										1288
									
								
								lib/curl_schannel.c
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										1288
									
								
								lib/curl_schannel.c
									
									
									
									
									
										Normal file
									
								
							
										
											
												File diff suppressed because it is too large
												Load Diff
											
										
									
								
							
							
								
								
									
										139
									
								
								lib/curl_schannel.h
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										139
									
								
								lib/curl_schannel.h
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,139 @@ | ||||
| #ifndef HEADER_CURL_SCHANNEL_H | ||||
| #define HEADER_CURL_SCHANNEL_H | ||||
| /*************************************************************************** | ||||
|  *                                  _   _ ____  _ | ||||
|  *  Project                     ___| | | |  _ \| | | ||||
|  *                             / __| | | | |_) | | | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 2012, Marc Hoersken, <info@marc-hoersken.de>, et al. | ||||
|  * Copyright (C) 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
|  * are also available at http://curl.haxx.se/docs/copyright.html. | ||||
|  * | ||||
|  * You may opt to use, copy, modify, merge, publish, distribute and/or sell | ||||
|  * copies of the Software, and permit persons to whom the Software is | ||||
|  * furnished to do so, under the terms of the COPYING file. | ||||
|  * | ||||
|  * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY | ||||
|  * KIND, either express or implied. | ||||
|  * | ||||
|  ***************************************************************************/ | ||||
| #include "setup.h" | ||||
|  | ||||
| #ifdef USE_SCHANNEL | ||||
|  | ||||
| #include "urldata.h" | ||||
|  | ||||
| #ifndef UNISP_NAME_A | ||||
| #define UNISP_NAME_A "Microsoft Unified Security Protocol Provider" | ||||
| #endif | ||||
|  | ||||
| #ifndef UNISP_NAME_W | ||||
| #define UNISP_NAME_W L"Microsoft Unified Security Protocol Provider" | ||||
| #endif | ||||
|  | ||||
| #ifndef UNISP_NAME | ||||
| #ifdef UNICODE | ||||
| #define UNISP_NAME  UNISP_NAME_W | ||||
| #else | ||||
| #define UNISP_NAME  UNISP_NAME_A | ||||
| #endif | ||||
| #endif | ||||
|  | ||||
| #ifndef SP_PROT_SSL2_CLIENT | ||||
| #define SP_PROT_SSL2_CLIENT             0x00000008 | ||||
| #endif | ||||
|  | ||||
| #ifndef SP_PROT_SSL3_CLIENT | ||||
| #define SP_PROT_SSL3_CLIENT             0x00000008 | ||||
| #endif | ||||
|  | ||||
| #ifndef SP_PROT_TLS1_CLIENT | ||||
| #define SP_PROT_TLS1_CLIENT             0x00000080 | ||||
| #endif | ||||
|  | ||||
| #ifndef SP_PROT_TLS1_0_CLIENT | ||||
| #define SP_PROT_TLS1_0_CLIENT           SP_PROT_TLS1_CLIENT | ||||
| #endif | ||||
|  | ||||
| #ifndef SP_PROT_TLS1_1_CLIENT | ||||
| #define SP_PROT_TLS1_1_CLIENT           0x00000200 | ||||
| #endif | ||||
|  | ||||
| #ifndef SP_PROT_TLS1_2_CLIENT | ||||
| #define SP_PROT_TLS1_2_CLIENT           0x00000800 | ||||
| #endif | ||||
|  | ||||
| #ifndef SECBUFFER_ALERT | ||||
| #define SECBUFFER_ALERT                 17 | ||||
| #endif | ||||
|  | ||||
| #ifndef ISC_RET_REPLAY_DETECT | ||||
| #define ISC_RET_REPLAY_DETECT           0x00000004 | ||||
| #endif | ||||
|  | ||||
| #ifndef ISC_RET_SEQUENCE_DETECT | ||||
| #define ISC_RET_SEQUENCE_DETECT         0x00000008 | ||||
| #endif | ||||
|  | ||||
| #ifndef ISC_RET_CONFIDENTIALITY | ||||
| #define ISC_RET_CONFIDENTIALITY         0x00000010 | ||||
| #endif | ||||
|  | ||||
| #ifndef ISC_RET_ALLOCATED_MEMORY | ||||
| #define ISC_RET_ALLOCATED_MEMORY        0x00000100 | ||||
| #endif | ||||
|  | ||||
| #ifndef ISC_RET_STREAM | ||||
| #define ISC_RET_STREAM                  0x00008000 | ||||
| #endif | ||||
|  | ||||
|  | ||||
| #ifdef BUFSIZE | ||||
| #define CURL_SCHANNEL_BUFFER_INIT_SIZE  BUFSIZE | ||||
| #define CURL_SCHANNEL_BUFFER_FREE_SIZE  BUFSIZE/2 | ||||
| #else | ||||
| #define CURL_SCHANNEL_BUFFER_INIT_SIZE  4096 | ||||
| #define CURL_SCHANNEL_BUFFER_FREE_SIZE  2048 | ||||
| #endif | ||||
|  | ||||
| #define CURL_SCHANNEL_BUFFER_MAX_SIZE     CURL_SCHANNEL_BUFFER_INIT_SIZE*16 | ||||
| #define CURL_SCHANNEL_BUFFER_STEP_FACTOR  2 | ||||
|  | ||||
|  | ||||
| CURLcode Curl_schannel_connect(struct connectdata *conn, int sockindex); | ||||
|  | ||||
| CURLcode Curl_schannel_connect_nonblocking(struct connectdata *conn, | ||||
|                                            int sockindex, | ||||
|                                            bool *done); | ||||
|  | ||||
| bool Curl_schannel_data_pending(const struct connectdata *conn, int sockindex); | ||||
| void Curl_schannel_close(struct connectdata *conn, int sockindex); | ||||
| int Curl_schannel_shutdown(struct connectdata *conn, int sockindex); | ||||
| void Curl_schannel_session_free(void *ptr); | ||||
|  | ||||
| int Curl_schannel_init(void); | ||||
| void Curl_schannel_cleanup(void); | ||||
| size_t Curl_schannel_version(char *buffer, size_t size); | ||||
|  | ||||
| /* API setup for Schannel */ | ||||
| #define curlssl_init Curl_schannel_init | ||||
| #define curlssl_cleanup Curl_schannel_cleanup | ||||
| #define curlssl_connect Curl_schannel_connect | ||||
| #define curlssl_connect_nonblocking Curl_schannel_connect_nonblocking | ||||
| #define curlssl_session_free Curl_schannel_session_free | ||||
| #define curlssl_close_all(x) (x=x, CURLE_NOT_BUILT_IN) | ||||
| #define curlssl_close Curl_schannel_close | ||||
| #define curlssl_shutdown Curl_schannel_shutdown | ||||
| #define curlssl_set_engine(x,y) (x=x, y=y, CURLE_NOT_BUILT_IN) | ||||
| #define curlssl_set_engine_default(x) (x=x, CURLE_NOT_BUILT_IN) | ||||
| #define curlssl_engines_list(x) (x=x, (struct curl_slist *)NULL) | ||||
| #define curlssl_version Curl_schannel_version | ||||
| #define curlssl_check_cxn(x) (x=x, -1) | ||||
| #define curlssl_data_pending Curl_schannel_data_pending | ||||
| #endif /* USE_SCHANNEL */ | ||||
| #endif /* HEADER_CURL_SCHANNEL_H */ | ||||
| @@ -5,7 +5,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2009, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -35,16 +35,25 @@ | ||||
| /* The last #include file should be: */ | ||||
| #include "memdebug.h" | ||||
|  | ||||
|  | ||||
| /* We use our own typedef here since some headers might lack these */ | ||||
| typedef PSecurityFunctionTableA (APIENTRY *INITSECURITYINTERFACE_FN_A)(VOID); | ||||
| typedef PSecurityFunctionTable (APIENTRY *INITSECURITYINTERFACE_FN)(VOID); | ||||
|  | ||||
| /* See definition of SECURITY_ENTRYPOINT in sspi.h */ | ||||
| #ifdef UNICODE | ||||
| #  ifdef _WIN32_WCE | ||||
| #    define SECURITYENTRYPOINT L"InitSecurityInterfaceW" | ||||
| #  else | ||||
| #    define SECURITYENTRYPOINT "InitSecurityInterfaceW" | ||||
| #  endif | ||||
| #else | ||||
| #  define SECURITYENTRYPOINT "InitSecurityInterfaceA" | ||||
| #endif | ||||
|  | ||||
| /* Handle of security.dll or secur32.dll, depending on Windows version */ | ||||
| HMODULE s_hSecDll = NULL; | ||||
|  | ||||
| /* Pointer to SSPI dispatch table */ | ||||
| PSecurityFunctionTableA s_pSecFn = NULL; | ||||
|  | ||||
| PSecurityFunctionTable s_pSecFn = NULL; | ||||
|  | ||||
| /* | ||||
|  * Curl_sspi_global_init() | ||||
| @@ -57,20 +66,18 @@ PSecurityFunctionTableA s_pSecFn = NULL; | ||||
|  * Once this function has been executed, Windows SSPI functions can be | ||||
|  * called through the Security Service Provider Interface dispatch table. | ||||
|  */ | ||||
|  | ||||
| CURLcode | ||||
| Curl_sspi_global_init(void) | ||||
| CURLcode Curl_sspi_global_init(void) | ||||
| { | ||||
|   OSVERSIONINFO osver; | ||||
|   INITSECURITYINTERFACE_FN_A pInitSecurityInterface; | ||||
|   INITSECURITYINTERFACE_FN pInitSecurityInterface; | ||||
|  | ||||
|   /* If security interface is not yet initialized try to do this */ | ||||
|   if(s_hSecDll == NULL) { | ||||
|   if(!s_hSecDll) { | ||||
|  | ||||
|     /* Find out Windows version */ | ||||
|     memset(&osver, 0, sizeof(osver)); | ||||
|     osver.dwOSVersionInfoSize = sizeof(osver); | ||||
|     if(! GetVersionEx(&osver)) | ||||
|     if(!GetVersionEx(&osver)) | ||||
|       return CURLE_FAILED_INIT; | ||||
|  | ||||
|     /* Security Service Provider Interface (SSPI) functions are located in | ||||
| @@ -80,36 +87,34 @@ Curl_sspi_global_init(void) | ||||
|     /* Load SSPI dll into the address space of the calling process */ | ||||
|     if(osver.dwPlatformId == VER_PLATFORM_WIN32_NT | ||||
|       && osver.dwMajorVersion == 4) | ||||
|       s_hSecDll = LoadLibrary("security.dll"); | ||||
|       s_hSecDll = LoadLibrary(TEXT("security.dll")); | ||||
|     else | ||||
|       s_hSecDll = LoadLibrary("secur32.dll"); | ||||
|     if(! s_hSecDll) | ||||
|       s_hSecDll = LoadLibrary(TEXT("secur32.dll")); | ||||
|     if(!s_hSecDll) | ||||
|       return CURLE_FAILED_INIT; | ||||
|  | ||||
|     /* Get address of the InitSecurityInterfaceA function from the SSPI dll */ | ||||
|     pInitSecurityInterface = (INITSECURITYINTERFACE_FN_A) | ||||
|       GetProcAddress(s_hSecDll, "InitSecurityInterfaceA"); | ||||
|     if(! pInitSecurityInterface) | ||||
|     pInitSecurityInterface = (INITSECURITYINTERFACE_FN) | ||||
|       GetProcAddress(s_hSecDll, SECURITYENTRYPOINT); | ||||
|     if(!pInitSecurityInterface) | ||||
|       return CURLE_FAILED_INIT; | ||||
|  | ||||
|     /* Get pointer to Security Service Provider Interface dispatch table */ | ||||
|     s_pSecFn = pInitSecurityInterface(); | ||||
|     if(! s_pSecFn) | ||||
|     if(!s_pSecFn) | ||||
|       return CURLE_FAILED_INIT; | ||||
|  | ||||
|   } | ||||
|  | ||||
|   return CURLE_OK; | ||||
| } | ||||
|  | ||||
|  | ||||
| /* | ||||
|  * Curl_sspi_global_cleanup() | ||||
|  * | ||||
|  * This deinitializes the Security Service Provider Interface from libcurl. | ||||
|  */ | ||||
|  | ||||
| void | ||||
| Curl_sspi_global_cleanup(void) | ||||
| void Curl_sspi_global_cleanup(void) | ||||
| { | ||||
|   if(s_hSecDll) { | ||||
|     FreeLibrary(s_hSecDll); | ||||
|   | ||||
							
								
								
									
										266
									
								
								lib/curl_sspi.h
									
									
									
									
									
								
							
							
						
						
									
										266
									
								
								lib/curl_sspi.h
									
									
									
									
									
								
							| @@ -7,7 +7,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2010, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -40,34 +40,254 @@ | ||||
| #include <sspi.h> | ||||
| #include <rpc.h> | ||||
|  | ||||
| /* Provide some definitions missing in MinGW's headers */ | ||||
|  | ||||
| #ifndef SEC_I_CONTEXT_EXPIRED | ||||
| # define SEC_I_CONTEXT_EXPIRED ((HRESULT)0x00090317L) | ||||
| #endif | ||||
| #ifndef SEC_E_BUFFER_TOO_SMALL | ||||
| # define SEC_E_BUFFER_TOO_SMALL ((HRESULT)0x80090321L) | ||||
| #endif | ||||
| #ifndef SEC_E_CONTEXT_EXPIRED | ||||
| # define SEC_E_CONTEXT_EXPIRED ((HRESULT)0x80090317L) | ||||
| #endif | ||||
| #ifndef SEC_E_CRYPTO_SYSTEM_INVALID | ||||
| # define SEC_E_CRYPTO_SYSTEM_INVALID ((HRESULT)0x80090337L) | ||||
| #endif | ||||
| #ifndef SEC_E_MESSAGE_ALTERED | ||||
| # define SEC_E_MESSAGE_ALTERED ((HRESULT)0x8009030FL) | ||||
| #endif | ||||
| #ifndef SEC_E_OUT_OF_SEQUENCE | ||||
| # define SEC_E_OUT_OF_SEQUENCE ((HRESULT)0x80090310L) | ||||
| #endif | ||||
|  | ||||
| CURLcode Curl_sspi_global_init(void); | ||||
| void Curl_sspi_global_cleanup(void); | ||||
|  | ||||
| /* Forward-declaration of global variables defined in curl_sspi.c */ | ||||
|  | ||||
| extern HMODULE s_hSecDll; | ||||
| extern PSecurityFunctionTableA s_pSecFn; | ||||
| extern PSecurityFunctionTable s_pSecFn; | ||||
|  | ||||
| /* Provide some definitions missing in old headers */ | ||||
|  | ||||
| #ifndef SEC_E_INSUFFICIENT_MEMORY | ||||
| # define SEC_E_INSUFFICIENT_MEMORY             ((HRESULT)0x80090300L) | ||||
| #endif | ||||
| #ifndef SEC_E_INVALID_HANDLE | ||||
| # define SEC_E_INVALID_HANDLE                  ((HRESULT)0x80090301L) | ||||
| #endif | ||||
| #ifndef SEC_E_UNSUPPORTED_FUNCTION | ||||
| # define SEC_E_UNSUPPORTED_FUNCTION            ((HRESULT)0x80090302L) | ||||
| #endif | ||||
| #ifndef SEC_E_TARGET_UNKNOWN | ||||
| # define SEC_E_TARGET_UNKNOWN                  ((HRESULT)0x80090303L) | ||||
| #endif | ||||
| #ifndef SEC_E_INTERNAL_ERROR | ||||
| # define SEC_E_INTERNAL_ERROR                  ((HRESULT)0x80090304L) | ||||
| #endif | ||||
| #ifndef SEC_E_SECPKG_NOT_FOUND | ||||
| # define SEC_E_SECPKG_NOT_FOUND                ((HRESULT)0x80090305L) | ||||
| #endif | ||||
| #ifndef SEC_E_NOT_OWNER | ||||
| # define SEC_E_NOT_OWNER                       ((HRESULT)0x80090306L) | ||||
| #endif | ||||
| #ifndef SEC_E_CANNOT_INSTALL | ||||
| # define SEC_E_CANNOT_INSTALL                  ((HRESULT)0x80090307L) | ||||
| #endif | ||||
| #ifndef SEC_E_INVALID_TOKEN | ||||
| # define SEC_E_INVALID_TOKEN                   ((HRESULT)0x80090308L) | ||||
| #endif | ||||
| #ifndef SEC_E_CANNOT_PACK | ||||
| # define SEC_E_CANNOT_PACK                     ((HRESULT)0x80090309L) | ||||
| #endif | ||||
| #ifndef SEC_E_QOP_NOT_SUPPORTED | ||||
| # define SEC_E_QOP_NOT_SUPPORTED               ((HRESULT)0x8009030AL) | ||||
| #endif | ||||
| #ifndef SEC_E_NO_IMPERSONATION | ||||
| # define SEC_E_NO_IMPERSONATION                ((HRESULT)0x8009030BL) | ||||
| #endif | ||||
| #ifndef SEC_E_LOGON_DENIED | ||||
| # define SEC_E_LOGON_DENIED                    ((HRESULT)0x8009030CL) | ||||
| #endif | ||||
| #ifndef SEC_E_UNKNOWN_CREDENTIALS | ||||
| # define SEC_E_UNKNOWN_CREDENTIALS             ((HRESULT)0x8009030DL) | ||||
| #endif | ||||
| #ifndef SEC_E_NO_CREDENTIALS | ||||
| # define SEC_E_NO_CREDENTIALS                  ((HRESULT)0x8009030EL) | ||||
| #endif | ||||
| #ifndef SEC_E_MESSAGE_ALTERED | ||||
| # define SEC_E_MESSAGE_ALTERED                 ((HRESULT)0x8009030FL) | ||||
| #endif | ||||
| #ifndef SEC_E_OUT_OF_SEQUENCE | ||||
| # define SEC_E_OUT_OF_SEQUENCE                 ((HRESULT)0x80090310L) | ||||
| #endif | ||||
| #ifndef SEC_E_NO_AUTHENTICATING_AUTHORITY | ||||
| # define SEC_E_NO_AUTHENTICATING_AUTHORITY     ((HRESULT)0x80090311L) | ||||
| #endif | ||||
| #ifndef SEC_E_BAD_PKGID | ||||
| # define SEC_E_BAD_PKGID                       ((HRESULT)0x80090316L) | ||||
| #endif | ||||
| #ifndef SEC_E_CONTEXT_EXPIRED | ||||
| # define SEC_E_CONTEXT_EXPIRED                 ((HRESULT)0x80090317L) | ||||
| #endif | ||||
| #ifndef SEC_E_INCOMPLETE_MESSAGE | ||||
| # define SEC_E_INCOMPLETE_MESSAGE              ((HRESULT)0x80090318L) | ||||
| #endif | ||||
| #ifndef SEC_E_INCOMPLETE_CREDENTIALS | ||||
| # define SEC_E_INCOMPLETE_CREDENTIALS          ((HRESULT)0x80090320L) | ||||
| #endif | ||||
| #ifndef SEC_E_BUFFER_TOO_SMALL | ||||
| # define SEC_E_BUFFER_TOO_SMALL                ((HRESULT)0x80090321L) | ||||
| #endif | ||||
| #ifndef SEC_E_WRONG_PRINCIPAL | ||||
| # define SEC_E_WRONG_PRINCIPAL                 ((HRESULT)0x80090322L) | ||||
| #endif | ||||
| #ifndef SEC_E_TIME_SKEW | ||||
| # define SEC_E_TIME_SKEW                       ((HRESULT)0x80090324L) | ||||
| #endif | ||||
| #ifndef SEC_E_UNTRUSTED_ROOT | ||||
| # define SEC_E_UNTRUSTED_ROOT                  ((HRESULT)0x80090325L) | ||||
| #endif | ||||
| #ifndef SEC_E_ILLEGAL_MESSAGE | ||||
| # define SEC_E_ILLEGAL_MESSAGE                 ((HRESULT)0x80090326L) | ||||
| #endif | ||||
| #ifndef SEC_E_CERT_UNKNOWN | ||||
| # define SEC_E_CERT_UNKNOWN                    ((HRESULT)0x80090327L) | ||||
| #endif | ||||
| #ifndef SEC_E_CERT_EXPIRED | ||||
| # define SEC_E_CERT_EXPIRED                    ((HRESULT)0x80090328L) | ||||
| #endif | ||||
| #ifndef SEC_E_ENCRYPT_FAILURE | ||||
| # define SEC_E_ENCRYPT_FAILURE                 ((HRESULT)0x80090329L) | ||||
| #endif | ||||
| #ifndef SEC_E_DECRYPT_FAILURE | ||||
| # define SEC_E_DECRYPT_FAILURE                 ((HRESULT)0x80090330L) | ||||
| #endif | ||||
| #ifndef SEC_E_ALGORITHM_MISMATCH | ||||
| # define SEC_E_ALGORITHM_MISMATCH              ((HRESULT)0x80090331L) | ||||
| #endif | ||||
| #ifndef SEC_E_SECURITY_QOS_FAILED | ||||
| # define SEC_E_SECURITY_QOS_FAILED             ((HRESULT)0x80090332L) | ||||
| #endif | ||||
| #ifndef SEC_E_UNFINISHED_CONTEXT_DELETED | ||||
| # define SEC_E_UNFINISHED_CONTEXT_DELETED      ((HRESULT)0x80090333L) | ||||
| #endif | ||||
| #ifndef SEC_E_NO_TGT_REPLY | ||||
| # define SEC_E_NO_TGT_REPLY                    ((HRESULT)0x80090334L) | ||||
| #endif | ||||
| #ifndef SEC_E_NO_IP_ADDRESSES | ||||
| # define SEC_E_NO_IP_ADDRESSES                 ((HRESULT)0x80090335L) | ||||
| #endif | ||||
| #ifndef SEC_E_WRONG_CREDENTIAL_HANDLE | ||||
| # define SEC_E_WRONG_CREDENTIAL_HANDLE         ((HRESULT)0x80090336L) | ||||
| #endif | ||||
| #ifndef SEC_E_CRYPTO_SYSTEM_INVALID | ||||
| # define SEC_E_CRYPTO_SYSTEM_INVALID           ((HRESULT)0x80090337L) | ||||
| #endif | ||||
| #ifndef SEC_E_MAX_REFERRALS_EXCEEDED | ||||
| # define SEC_E_MAX_REFERRALS_EXCEEDED          ((HRESULT)0x80090338L) | ||||
| #endif | ||||
| #ifndef SEC_E_MUST_BE_KDC | ||||
| # define SEC_E_MUST_BE_KDC                     ((HRESULT)0x80090339L) | ||||
| #endif | ||||
| #ifndef SEC_E_STRONG_CRYPTO_NOT_SUPPORTED | ||||
| # define SEC_E_STRONG_CRYPTO_NOT_SUPPORTED     ((HRESULT)0x8009033AL) | ||||
| #endif | ||||
| #ifndef SEC_E_TOO_MANY_PRINCIPALS | ||||
| # define SEC_E_TOO_MANY_PRINCIPALS             ((HRESULT)0x8009033BL) | ||||
| #endif | ||||
| #ifndef SEC_E_NO_PA_DATA | ||||
| # define SEC_E_NO_PA_DATA                      ((HRESULT)0x8009033CL) | ||||
| #endif | ||||
| #ifndef SEC_E_PKINIT_NAME_MISMATCH | ||||
| # define SEC_E_PKINIT_NAME_MISMATCH            ((HRESULT)0x8009033DL) | ||||
| #endif | ||||
| #ifndef SEC_E_SMARTCARD_LOGON_REQUIRED | ||||
| # define SEC_E_SMARTCARD_LOGON_REQUIRED        ((HRESULT)0x8009033EL) | ||||
| #endif | ||||
| #ifndef SEC_E_SHUTDOWN_IN_PROGRESS | ||||
| # define SEC_E_SHUTDOWN_IN_PROGRESS            ((HRESULT)0x8009033FL) | ||||
| #endif | ||||
| #ifndef SEC_E_KDC_INVALID_REQUEST | ||||
| # define SEC_E_KDC_INVALID_REQUEST             ((HRESULT)0x80090340L) | ||||
| #endif | ||||
| #ifndef SEC_E_KDC_UNABLE_TO_REFER | ||||
| # define SEC_E_KDC_UNABLE_TO_REFER             ((HRESULT)0x80090341L) | ||||
| #endif | ||||
| #ifndef SEC_E_KDC_UNKNOWN_ETYPE | ||||
| # define SEC_E_KDC_UNKNOWN_ETYPE               ((HRESULT)0x80090342L) | ||||
| #endif | ||||
| #ifndef SEC_E_UNSUPPORTED_PREAUTH | ||||
| # define SEC_E_UNSUPPORTED_PREAUTH             ((HRESULT)0x80090343L) | ||||
| #endif | ||||
| #ifndef SEC_E_DELEGATION_REQUIRED | ||||
| # define SEC_E_DELEGATION_REQUIRED             ((HRESULT)0x80090345L) | ||||
| #endif | ||||
| #ifndef SEC_E_BAD_BINDINGS | ||||
| # define SEC_E_BAD_BINDINGS                    ((HRESULT)0x80090346L) | ||||
| #endif | ||||
| #ifndef SEC_E_MULTIPLE_ACCOUNTS | ||||
| # define SEC_E_MULTIPLE_ACCOUNTS               ((HRESULT)0x80090347L) | ||||
| #endif | ||||
| #ifndef SEC_E_NO_KERB_KEY | ||||
| # define SEC_E_NO_KERB_KEY                     ((HRESULT)0x80090348L) | ||||
| #endif | ||||
| #ifndef SEC_E_CERT_WRONG_USAGE | ||||
| # define SEC_E_CERT_WRONG_USAGE                ((HRESULT)0x80090349L) | ||||
| #endif | ||||
| #ifndef SEC_E_DOWNGRADE_DETECTED | ||||
| # define SEC_E_DOWNGRADE_DETECTED              ((HRESULT)0x80090350L) | ||||
| #endif | ||||
| #ifndef SEC_E_SMARTCARD_CERT_REVOKED | ||||
| # define SEC_E_SMARTCARD_CERT_REVOKED          ((HRESULT)0x80090351L) | ||||
| #endif | ||||
| #ifndef SEC_E_ISSUING_CA_UNTRUSTED | ||||
| # define SEC_E_ISSUING_CA_UNTRUSTED            ((HRESULT)0x80090352L) | ||||
| #endif | ||||
| #ifndef SEC_E_REVOCATION_OFFLINE_C | ||||
| # define SEC_E_REVOCATION_OFFLINE_C            ((HRESULT)0x80090353L) | ||||
| #endif | ||||
| #ifndef SEC_E_PKINIT_CLIENT_FAILURE | ||||
| # define SEC_E_PKINIT_CLIENT_FAILURE           ((HRESULT)0x80090354L) | ||||
| #endif | ||||
| #ifndef SEC_E_SMARTCARD_CERT_EXPIRED | ||||
| # define SEC_E_SMARTCARD_CERT_EXPIRED          ((HRESULT)0x80090355L) | ||||
| #endif | ||||
| #ifndef SEC_E_NO_S4U_PROT_SUPPORT | ||||
| # define SEC_E_NO_S4U_PROT_SUPPORT             ((HRESULT)0x80090356L) | ||||
| #endif | ||||
| #ifndef SEC_E_CROSSREALM_DELEGATION_FAILURE | ||||
| # define SEC_E_CROSSREALM_DELEGATION_FAILURE   ((HRESULT)0x80090357L) | ||||
| #endif | ||||
| #ifndef SEC_E_REVOCATION_OFFLINE_KDC | ||||
| # define SEC_E_REVOCATION_OFFLINE_KDC          ((HRESULT)0x80090358L) | ||||
| #endif | ||||
| #ifndef SEC_E_ISSUING_CA_UNTRUSTED_KDC | ||||
| # define SEC_E_ISSUING_CA_UNTRUSTED_KDC        ((HRESULT)0x80090359L) | ||||
| #endif | ||||
| #ifndef SEC_E_KDC_CERT_EXPIRED | ||||
| # define SEC_E_KDC_CERT_EXPIRED                ((HRESULT)0x8009035AL) | ||||
| #endif | ||||
| #ifndef SEC_E_KDC_CERT_REVOKED | ||||
| # define SEC_E_KDC_CERT_REVOKED                ((HRESULT)0x8009035BL) | ||||
| #endif | ||||
| #ifndef SEC_E_INVALID_PARAMETER | ||||
| # define SEC_E_INVALID_PARAMETER               ((HRESULT)0x8009035DL) | ||||
| #endif | ||||
| #ifndef SEC_E_DELEGATION_POLICY | ||||
| # define SEC_E_DELEGATION_POLICY               ((HRESULT)0x8009035EL) | ||||
| #endif | ||||
| #ifndef SEC_E_POLICY_NLTM_ONLY | ||||
| # define SEC_E_POLICY_NLTM_ONLY                ((HRESULT)0x8009035FL) | ||||
| #endif | ||||
|  | ||||
| #ifndef SEC_I_CONTINUE_NEEDED | ||||
| # define SEC_I_CONTINUE_NEEDED                 ((HRESULT)0x00090312L) | ||||
| #endif | ||||
| #ifndef SEC_I_COMPLETE_NEEDED | ||||
| # define SEC_I_COMPLETE_NEEDED                 ((HRESULT)0x00090313L) | ||||
| #endif | ||||
| #ifndef SEC_I_COMPLETE_AND_CONTINUE | ||||
| # define SEC_I_COMPLETE_AND_CONTINUE           ((HRESULT)0x00090314L) | ||||
| #endif | ||||
| #ifndef SEC_I_LOCAL_LOGON | ||||
| # define SEC_I_LOCAL_LOGON                     ((HRESULT)0x00090315L) | ||||
| #endif | ||||
| #ifndef SEC_I_CONTEXT_EXPIRED | ||||
| # define SEC_I_CONTEXT_EXPIRED                 ((HRESULT)0x00090317L) | ||||
| #endif | ||||
| #ifndef SEC_I_INCOMPLETE_CREDENTIALS | ||||
| # define SEC_I_INCOMPLETE_CREDENTIALS          ((HRESULT)0x00090320L) | ||||
| #endif | ||||
| #ifndef SEC_I_RENEGOTIATE | ||||
| # define SEC_I_RENEGOTIATE                     ((HRESULT)0x00090321L) | ||||
| #endif | ||||
| #ifndef SEC_I_NO_LSA_CONTEXT | ||||
| # define SEC_I_NO_LSA_CONTEXT                  ((HRESULT)0x00090323L) | ||||
| #endif | ||||
| #ifndef SEC_I_SIGNATURE_NEEDED | ||||
| # define SEC_I_SIGNATURE_NEEDED                ((HRESULT)0x0009035CL) | ||||
| #endif | ||||
|  | ||||
| #endif /* USE_WINDOWS_SSPI */ | ||||
| #endif /* HEADER_CURL_SSPI_H */ | ||||
|   | ||||
| @@ -132,7 +132,7 @@ cyassl_connect_step1(struct connectdata *conn, | ||||
|       if(data->set.ssl.verifypeer) { | ||||
|         /* Fail if we insiste on successfully verifying the server. */ | ||||
|         failf(data,"error setting certificate verify locations:\n" | ||||
|               "  CAfile: %s\n  CApath: %s\n", | ||||
|               "  CAfile: %s\n  CApath: %s", | ||||
|               data->set.str[STRING_SSL_CAFILE]? | ||||
|               data->set.str[STRING_SSL_CAFILE]: "none", | ||||
|               data->set.str[STRING_SSL_CAPATH]? | ||||
|   | ||||
| @@ -5,7 +5,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -1239,7 +1239,7 @@ CURLcode Curl_getformdata(struct SessionHandle *data, | ||||
|         } | ||||
|         else { | ||||
|           if(data) | ||||
|             failf(data, "couldn't open file \"%s\"\n", file->contents); | ||||
|             failf(data, "couldn't open file \"%s\"", file->contents); | ||||
|           *finalform = NULL; | ||||
|           result = CURLE_READ_ERROR; | ||||
|         } | ||||
|   | ||||
| @@ -3674,8 +3674,11 @@ static CURLcode ftp_do_more(struct connectdata *conn, bool *complete) | ||||
|         /* It looks data connection is established */ | ||||
|         result = AcceptServerConnect(conn); | ||||
|         ftpc->wait_data_conn = FALSE; | ||||
|         if(result == CURLE_OK) | ||||
|         if(!result) | ||||
|           result = InitiateTransfer(conn); | ||||
|  | ||||
|         if(result) | ||||
|           return result; | ||||
|       } | ||||
|     } | ||||
|     else if(data->set.upload) { | ||||
|   | ||||
| @@ -5,7 +5,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -37,16 +37,18 @@ | ||||
|  | ||||
| #include "setup.h" | ||||
|  | ||||
| #include "ftplistparser.h" | ||||
| #include "curl_fnmatch.h" | ||||
| #ifndef CURL_DISABLE_FTP | ||||
|  | ||||
| #include <curl/curl.h> | ||||
|  | ||||
| #include "urldata.h" | ||||
| #include "ftp.h" | ||||
| #include "fileinfo.h" | ||||
| #include "llist.h" | ||||
| #include "strtoofft.h" | ||||
| #include "rawstr.h" | ||||
| #include "ftp.h" | ||||
| #include "ftplistparser.h" | ||||
| #include "curl_fnmatch.h" | ||||
|  | ||||
| #define _MPRINTF_REPLACE /* use our functions only */ | ||||
| #include <curl/mprintf.h> | ||||
| @@ -1044,3 +1046,5 @@ size_t Curl_ftp_parselist(char *buffer, size_t size, size_t nmemb, | ||||
|  | ||||
|   return bufflen; | ||||
| } | ||||
|  | ||||
| #endif /* CURL_DISABLE_FTP */ | ||||
|   | ||||
| @@ -7,7 +7,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2010, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -21,8 +21,9 @@ | ||||
|  * KIND, either express or implied. | ||||
|  * | ||||
|  ***************************************************************************/ | ||||
| #include "setup.h" | ||||
|  | ||||
| #include <curl/curl.h> | ||||
| #ifndef CURL_DISABLE_FTP | ||||
|  | ||||
| /* WRITEFUNCTION callback for parsing LIST responses */ | ||||
| size_t Curl_ftp_parselist(char *buffer, size_t size, size_t nmemb, | ||||
| @@ -36,4 +37,5 @@ struct ftp_parselist_data *Curl_ftp_parselist_data_alloc(void); | ||||
|  | ||||
| void Curl_ftp_parselist_data_free(struct ftp_parselist_data **pl_data); | ||||
|  | ||||
| #endif /* CURL_DISABLE_FTP */ | ||||
| #endif /* HEADER_CURL_FTPLISTPARSER_H */ | ||||
|   | ||||
| @@ -5,7 +5,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2009, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -42,7 +42,7 @@ char *GetEnv(const char *variable) | ||||
|   char *temp = getenv(variable); | ||||
|   env[0] = '\0'; | ||||
|   if(temp != NULL) | ||||
|     ExpandEnvironmentStrings(temp, env, sizeof(env)); | ||||
|     ExpandEnvironmentStringsA(temp, env, sizeof(env)); | ||||
|   return (env[0] != '\0')?strdup(env):NULL; | ||||
| #else | ||||
|   char *env = getenv(variable); | ||||
|   | ||||
							
								
								
									
										303
									
								
								lib/getinfo.c
									
									
									
									
									
								
							
							
						
						
									
										303
									
								
								lib/getinfo.c
									
									
									
									
									
								
							| @@ -72,61 +72,62 @@ CURLcode Curl_initinfo(struct SessionHandle *data) | ||||
|   return CURLE_OK; | ||||
| } | ||||
|  | ||||
| CURLcode Curl_getinfo(struct SessionHandle *data, CURLINFO info, ...) | ||||
| static CURLcode getinfo_char(struct SessionHandle *data, CURLINFO info, | ||||
|                              char **param_charp) | ||||
| { | ||||
|   va_list arg; | ||||
|   long *param_longp=NULL; | ||||
|   double *param_doublep=NULL; | ||||
|   char **param_charp=NULL; | ||||
|   struct curl_slist **param_slistp=NULL; | ||||
|   int type; | ||||
|   curl_socket_t sockfd; | ||||
|   switch(info) { | ||||
|   case CURLINFO_EFFECTIVE_URL: | ||||
|     *param_charp = data->change.url?data->change.url:(char *)""; | ||||
|     break; | ||||
|   case CURLINFO_CONTENT_TYPE: | ||||
|     *param_charp = data->info.contenttype; | ||||
|     break; | ||||
|   case CURLINFO_PRIVATE: | ||||
|     *param_charp = (char *) data->set.private_data; | ||||
|     break; | ||||
|   case CURLINFO_FTP_ENTRY_PATH: | ||||
|     /* Return the entrypath string from the most recent connection. | ||||
|        This pointer was copied from the connectdata structure by FTP. | ||||
|        The actual string may be free()ed by subsequent libcurl calls so | ||||
|        it must be copied to a safer area before the next libcurl call. | ||||
|        Callers must never free it themselves. */ | ||||
|     *param_charp = data->state.most_recent_ftp_entrypath; | ||||
|     break; | ||||
|   case CURLINFO_REDIRECT_URL: | ||||
|     /* Return the URL this request would have been redirected to if that | ||||
|        option had been enabled! */ | ||||
|     *param_charp = data->info.wouldredirect; | ||||
|     break; | ||||
|   case CURLINFO_PRIMARY_IP: | ||||
|     /* Return the ip address of the most recent (primary) connection */ | ||||
|     *param_charp = data->info.conn_primary_ip; | ||||
|     break; | ||||
|   case CURLINFO_LOCAL_IP: | ||||
|     /* Return the source/local ip address of the most recent (primary) | ||||
|        connection */ | ||||
|     *param_charp = data->info.conn_local_ip; | ||||
|     break; | ||||
|   case CURLINFO_RTSP_SESSION_ID: | ||||
|     *param_charp = data->set.str[STRING_RTSP_SESSION_ID]; | ||||
|     break; | ||||
|  | ||||
|   union { | ||||
|     struct curl_certinfo * to_certinfo; | ||||
|     struct curl_slist    * to_slist; | ||||
|   } ptr; | ||||
|   default: | ||||
|     return CURLE_BAD_FUNCTION_ARGUMENT; | ||||
|   } | ||||
|   return CURLE_OK; | ||||
| } | ||||
|  | ||||
| static CURLcode getinfo_long(struct SessionHandle *data, CURLINFO info, | ||||
|                              long *param_longp) | ||||
| { | ||||
|   curl_socket_t sockfd; | ||||
|  | ||||
|   union { | ||||
|     unsigned long *to_ulong; | ||||
|     long          *to_long; | ||||
|   } lptr; | ||||
|  | ||||
|   if(!data) | ||||
|     return CURLE_BAD_FUNCTION_ARGUMENT; | ||||
|  | ||||
|   va_start(arg, info); | ||||
|  | ||||
|   type = CURLINFO_TYPEMASK & (int)info; | ||||
|   switch(type) { | ||||
|   case CURLINFO_STRING: | ||||
|     param_charp = va_arg(arg, char **); | ||||
|     if(NULL == param_charp) | ||||
|       return CURLE_BAD_FUNCTION_ARGUMENT; | ||||
|     break; | ||||
|   case CURLINFO_LONG: | ||||
|     param_longp = va_arg(arg, long *); | ||||
|     if(NULL == param_longp) | ||||
|       return CURLE_BAD_FUNCTION_ARGUMENT; | ||||
|     break; | ||||
|   case CURLINFO_DOUBLE: | ||||
|     param_doublep = va_arg(arg, double *); | ||||
|     if(NULL == param_doublep) | ||||
|       return CURLE_BAD_FUNCTION_ARGUMENT; | ||||
|     break; | ||||
|   case CURLINFO_SLIST: | ||||
|     param_slistp = va_arg(arg, struct curl_slist **); | ||||
|     if(NULL == param_slistp) | ||||
|       return CURLE_BAD_FUNCTION_ARGUMENT; | ||||
|     break; | ||||
|   default: | ||||
|     return CURLE_BAD_FUNCTION_ARGUMENT; | ||||
|   } | ||||
|  | ||||
|   switch(info) { | ||||
|   case CURLINFO_EFFECTIVE_URL: | ||||
|     *param_charp = data->change.url?data->change.url:(char *)""; | ||||
|     break; | ||||
|   case CURLINFO_RESPONSE_CODE: | ||||
|     *param_longp = data->info.httpcode; | ||||
|     break; | ||||
| @@ -142,6 +143,70 @@ CURLcode Curl_getinfo(struct SessionHandle *data, CURLINFO info, ...) | ||||
|   case CURLINFO_REQUEST_SIZE: | ||||
|     *param_longp = data->info.request_size; | ||||
|     break; | ||||
|   case CURLINFO_SSL_VERIFYRESULT: | ||||
|     *param_longp = data->set.ssl.certverifyresult; | ||||
|     break; | ||||
|   case CURLINFO_REDIRECT_COUNT: | ||||
|     *param_longp = data->set.followlocation; | ||||
|     break; | ||||
|   case CURLINFO_HTTPAUTH_AVAIL: | ||||
|     lptr.to_long = param_longp; | ||||
|     *lptr.to_ulong = data->info.httpauthavail; | ||||
|     break; | ||||
|   case CURLINFO_PROXYAUTH_AVAIL: | ||||
|     lptr.to_long = param_longp; | ||||
|     *lptr.to_ulong = data->info.proxyauthavail; | ||||
|     break; | ||||
|   case CURLINFO_OS_ERRNO: | ||||
|     *param_longp = data->state.os_errno; | ||||
|     break; | ||||
|   case CURLINFO_NUM_CONNECTS: | ||||
|     *param_longp = data->info.numconnects; | ||||
|     break; | ||||
|   case CURLINFO_LASTSOCKET: | ||||
|     sockfd = Curl_getconnectinfo(data, NULL); | ||||
|  | ||||
|     /* note: this is not a good conversion for systems with 64 bit sockets and | ||||
|        32 bit longs */ | ||||
|     if(sockfd != CURL_SOCKET_BAD) | ||||
|       *param_longp = (long)sockfd; | ||||
|     else | ||||
|       /* this interface is documented to return -1 in case of badness, which | ||||
|          may not be the same as the CURL_SOCKET_BAD value */ | ||||
|       *param_longp = -1; | ||||
|     break; | ||||
|   case CURLINFO_PRIMARY_PORT: | ||||
|     /* Return the (remote) port of the most recent (primary) connection */ | ||||
|     *param_longp = data->info.conn_primary_port; | ||||
|     break; | ||||
|   case CURLINFO_LOCAL_PORT: | ||||
|     /* Return the local port of the most recent (primary) connection */ | ||||
|     *param_longp = data->info.conn_local_port; | ||||
|     break; | ||||
|   case CURLINFO_CONDITION_UNMET: | ||||
|     /* return if the condition prevented the document to get transferred */ | ||||
|     *param_longp = data->info.timecond; | ||||
|     break; | ||||
|   case CURLINFO_RTSP_CLIENT_CSEQ: | ||||
|     *param_longp = data->state.rtsp_next_client_CSeq; | ||||
|     break; | ||||
|   case CURLINFO_RTSP_SERVER_CSEQ: | ||||
|     *param_longp = data->state.rtsp_next_server_CSeq; | ||||
|     break; | ||||
|   case CURLINFO_RTSP_CSEQ_RECV: | ||||
|     *param_longp = data->state.rtsp_CSeq_recv; | ||||
|     break; | ||||
|  | ||||
|   default: | ||||
|     return CURLE_BAD_FUNCTION_ARGUMENT; | ||||
|   } | ||||
|   return CURLE_OK; | ||||
| } | ||||
|  | ||||
| static CURLcode getinfo_double(struct SessionHandle *data, CURLINFO info, | ||||
|                                double *param_doublep) | ||||
| { | ||||
|   switch(info) { | ||||
|   case CURLINFO_TOTAL_TIME: | ||||
|     *param_doublep = data->progress.timespent; | ||||
|     break; | ||||
| @@ -172,9 +237,6 @@ CURLcode Curl_getinfo(struct SessionHandle *data, CURLINFO info, ...) | ||||
|   case CURLINFO_SPEED_UPLOAD: | ||||
|     *param_doublep = (double)data->progress.ulspeed; | ||||
|     break; | ||||
|   case CURLINFO_SSL_VERIFYRESULT: | ||||
|     *param_longp = data->set.ssl.certverifyresult; | ||||
|     break; | ||||
|   case CURLINFO_CONTENT_LENGTH_DOWNLOAD: | ||||
|     *param_doublep = (data->progress.flags & PGRS_DL_SIZE_KNOWN)? | ||||
|       (double)data->progress.size_dl:-1; | ||||
| @@ -186,102 +248,83 @@ CURLcode Curl_getinfo(struct SessionHandle *data, CURLINFO info, ...) | ||||
|   case CURLINFO_REDIRECT_TIME: | ||||
|     *param_doublep =  data->progress.t_redirect; | ||||
|     break; | ||||
|   case CURLINFO_REDIRECT_COUNT: | ||||
|     *param_longp = data->set.followlocation; | ||||
|     break; | ||||
|   case CURLINFO_CONTENT_TYPE: | ||||
|     *param_charp = data->info.contenttype; | ||||
|     break; | ||||
|   case CURLINFO_PRIVATE: | ||||
|     *param_charp = (char *) data->set.private_data; | ||||
|     break; | ||||
|   case CURLINFO_HTTPAUTH_AVAIL: | ||||
|     lptr.to_long = param_longp; | ||||
|     *lptr.to_ulong = data->info.httpauthavail; | ||||
|     break; | ||||
|   case CURLINFO_PROXYAUTH_AVAIL: | ||||
|     lptr.to_long = param_longp; | ||||
|     *lptr.to_ulong = data->info.proxyauthavail; | ||||
|     break; | ||||
|   case CURLINFO_OS_ERRNO: | ||||
|     *param_longp = data->state.os_errno; | ||||
|     break; | ||||
|   case CURLINFO_NUM_CONNECTS: | ||||
|     *param_longp = data->info.numconnects; | ||||
|     break; | ||||
|  | ||||
|   default: | ||||
|     return CURLE_BAD_FUNCTION_ARGUMENT; | ||||
|   } | ||||
|   return CURLE_OK; | ||||
| } | ||||
|  | ||||
| static CURLcode getinfo_slist(struct SessionHandle *data, CURLINFO info, | ||||
|                               struct curl_slist **param_slistp) | ||||
| { | ||||
|   union { | ||||
|     struct curl_certinfo * to_certinfo; | ||||
|     struct curl_slist    * to_slist; | ||||
|   } ptr; | ||||
|  | ||||
|   switch(info) { | ||||
|   case CURLINFO_SSL_ENGINES: | ||||
|     *param_slistp = Curl_ssl_engines_list(data); | ||||
|     break; | ||||
|   case CURLINFO_COOKIELIST: | ||||
|     *param_slistp = Curl_cookie_list(data); | ||||
|     break; | ||||
|   case CURLINFO_FTP_ENTRY_PATH: | ||||
|     /* Return the entrypath string from the most recent connection. | ||||
|        This pointer was copied from the connectdata structure by FTP. | ||||
|        The actual string may be free()ed by subsequent libcurl calls so | ||||
|        it must be copied to a safer area before the next libcurl call. | ||||
|        Callers must never free it themselves. */ | ||||
|     *param_charp = data->state.most_recent_ftp_entrypath; | ||||
|     break; | ||||
|   case CURLINFO_LASTSOCKET: | ||||
|     sockfd = Curl_getconnectinfo(data, NULL); | ||||
|  | ||||
|     /* note: this is not a good conversion for systems with 64 bit sockets and | ||||
|        32 bit longs */ | ||||
|     if(sockfd != CURL_SOCKET_BAD) | ||||
|       *param_longp = (long)sockfd; | ||||
|     else | ||||
|       /* this interface is documented to return -1 in case of badness, which | ||||
|          may not be the same as the CURL_SOCKET_BAD value */ | ||||
|       *param_longp = -1; | ||||
|     break; | ||||
|   case CURLINFO_REDIRECT_URL: | ||||
|     /* Return the URL this request would have been redirected to if that | ||||
|        option had been enabled! */ | ||||
|     *param_charp = data->info.wouldredirect; | ||||
|     break; | ||||
|   case CURLINFO_PRIMARY_IP: | ||||
|     /* Return the ip address of the most recent (primary) connection */ | ||||
|     *param_charp = data->info.conn_primary_ip; | ||||
|     break; | ||||
|   case CURLINFO_PRIMARY_PORT: | ||||
|     /* Return the (remote) port of the most recent (primary) connection */ | ||||
|     *param_longp = data->info.conn_primary_port; | ||||
|     break; | ||||
|   case CURLINFO_LOCAL_IP: | ||||
|     /* Return the source/local ip address of the most recent (primary) | ||||
|        connection */ | ||||
|     *param_charp = data->info.conn_local_ip; | ||||
|     break; | ||||
|   case CURLINFO_LOCAL_PORT: | ||||
|     /* Return the local port of the most recent (primary) connection */ | ||||
|     *param_longp = data->info.conn_local_port; | ||||
|     break; | ||||
|   case CURLINFO_CERTINFO: | ||||
|     /* Return the a pointer to the certinfo struct. Not really an slist | ||||
|        pointer but we can pretend it is here */ | ||||
|     ptr.to_certinfo = &data->info.certs; | ||||
|     *param_slistp = ptr.to_slist; | ||||
|     break; | ||||
|   case CURLINFO_CONDITION_UNMET: | ||||
|     /* return if the condition prevented the document to get transferred */ | ||||
|     *param_longp = data->info.timecond; | ||||
|     break; | ||||
|   case CURLINFO_RTSP_SESSION_ID: | ||||
|     *param_charp = data->set.str[STRING_RTSP_SESSION_ID]; | ||||
|     break; | ||||
|   case CURLINFO_RTSP_CLIENT_CSEQ: | ||||
|     *param_longp = data->state.rtsp_next_client_CSeq; | ||||
|     break; | ||||
|   case CURLINFO_RTSP_SERVER_CSEQ: | ||||
|     *param_longp = data->state.rtsp_next_server_CSeq; | ||||
|     break; | ||||
|   case CURLINFO_RTSP_CSEQ_RECV: | ||||
|     *param_longp = data->state.rtsp_CSeq_recv; | ||||
|     break; | ||||
|  | ||||
|   default: | ||||
|     return CURLE_BAD_FUNCTION_ARGUMENT; | ||||
|   } | ||||
|   return CURLE_OK; | ||||
| } | ||||
|  | ||||
| CURLcode Curl_getinfo(struct SessionHandle *data, CURLINFO info, ...) | ||||
| { | ||||
|   va_list arg; | ||||
|   long *param_longp=NULL; | ||||
|   double *param_doublep=NULL; | ||||
|   char **param_charp=NULL; | ||||
|   struct curl_slist **param_slistp=NULL; | ||||
|   int type; | ||||
|   /* default return code is to error out! */ | ||||
|   CURLcode ret = CURLE_BAD_FUNCTION_ARGUMENT; | ||||
|  | ||||
|   if(!data) | ||||
|     return ret; | ||||
|  | ||||
|   va_start(arg, info); | ||||
|  | ||||
|   type = CURLINFO_TYPEMASK & (int)info; | ||||
|   switch(type) { | ||||
|   case CURLINFO_STRING: | ||||
|     param_charp = va_arg(arg, char **); | ||||
|     if(NULL != param_charp) | ||||
|       ret = getinfo_char(data, info, param_charp); | ||||
|     break; | ||||
|   case CURLINFO_LONG: | ||||
|     param_longp = va_arg(arg, long *); | ||||
|     if(NULL != param_longp) | ||||
|       ret = getinfo_long(data, info, param_longp); | ||||
|     break; | ||||
|   case CURLINFO_DOUBLE: | ||||
|     param_doublep = va_arg(arg, double *); | ||||
|     if(NULL != param_doublep) | ||||
|       ret = getinfo_double(data, info, param_doublep); | ||||
|     break; | ||||
|   case CURLINFO_SLIST: | ||||
|     param_slistp = va_arg(arg, struct curl_slist **); | ||||
|     if(NULL != param_slistp) | ||||
|       ret = getinfo_slist(data, info, param_slistp); | ||||
|     break; | ||||
|   default: | ||||
|     break; | ||||
|   } | ||||
|  | ||||
|   va_end(arg); | ||||
|   return ret; | ||||
| } | ||||
|   | ||||
							
								
								
									
										34
									
								
								lib/gtls.c
									
									
									
									
									
								
							
							
						
						
									
										34
									
								
								lib/gtls.c
									
									
									
									
									
								
							| @@ -413,7 +413,7 @@ gtls_connect_step1(struct connectdata *conn, | ||||
|                                               data->set.ssl.CRLfile, | ||||
|                                               GNUTLS_X509_FMT_PEM); | ||||
|     if(rc < 0) { | ||||
|       failf(data, "error reading crl file %s (%s)\n", | ||||
|       failf(data, "error reading crl file %s (%s)", | ||||
|             data->set.ssl.CRLfile, gnutls_strerror(rc)); | ||||
|       return CURLE_SSL_CRL_BADFILE; | ||||
|     } | ||||
| @@ -1060,4 +1060,36 @@ int Curl_gtls_seed(struct SessionHandle *data) | ||||
|   return 0; | ||||
| } | ||||
|  | ||||
| void Curl_gtls_random(struct SessionHandle *data, | ||||
|                       unsigned char *entropy, | ||||
|                       size_t length) | ||||
| { | ||||
| #if defined(USE_GNUTLS_NETTLE) | ||||
|   (void)data; | ||||
|   gnutls_rnd(GNUTLS_RND_RANDOM, entropy, length); | ||||
| #elif defined(USE_GNUTLS) | ||||
|   Curl_gtls_seed(data); /* Initiate the seed if not already done */ | ||||
|   gcry_randomize(entropy, length, GCRY_STRONG_RANDOM); | ||||
| #endif | ||||
| } | ||||
|  | ||||
| void Curl_gtls_md5sum(unsigned char *tmp, /* input */ | ||||
|                       size_t tmplen, | ||||
|                       unsigned char *md5sum, /* output */ | ||||
|                       size_t md5len) | ||||
| { | ||||
| #if defined(USE_GNUTLS_NETTLE) | ||||
|   struct md5_ctx MD5pw; | ||||
|   md5_init(&MD5pw); | ||||
|   md5_update(&MD5pw, tmplen, tmp); | ||||
|   md5_digest(&MD5pw, md5len, md5sum); | ||||
| #elif defined(USE_GNUTLS) | ||||
|   gcry_md_hd_t MD5pw; | ||||
|   gcry_md_open(&MD5pw, GCRY_MD_MD5, 0); | ||||
|   gcry_md_write(MD5pw, tmp, tmplen); | ||||
|   memcpy(md5sum, gcry_md_read (MD5pw, 0), md5len); | ||||
|   gcry_md_close(MD5pw); | ||||
| #endif | ||||
| } | ||||
|  | ||||
| #endif /* USE_GNUTLS */ | ||||
|   | ||||
							
								
								
									
										12
									
								
								lib/gtls.h
									
									
									
									
									
								
							
							
						
						
									
										12
									
								
								lib/gtls.h
									
									
									
									
									
								
							| @@ -7,7 +7,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -47,6 +47,14 @@ size_t Curl_gtls_version(char *buffer, size_t size); | ||||
| int Curl_gtls_shutdown(struct connectdata *conn, int sockindex); | ||||
| int Curl_gtls_seed(struct SessionHandle *data); | ||||
|  | ||||
| void Curl_gtls_random(struct SessionHandle *data, | ||||
|                       unsigned char *entropy, | ||||
|                       size_t length); | ||||
| void Curl_gtls_md5sum(unsigned char *tmp, /* input */ | ||||
|                       size_t tmplen, | ||||
|                       unsigned char *md5sum, /* output */ | ||||
|                       size_t md5len); | ||||
|  | ||||
| /* API setup for GnuTLS */ | ||||
| #define curlssl_init Curl_gtls_init | ||||
| #define curlssl_cleanup Curl_gtls_cleanup | ||||
| @@ -62,6 +70,8 @@ int Curl_gtls_seed(struct SessionHandle *data); | ||||
| #define curlssl_version Curl_gtls_version | ||||
| #define curlssl_check_cxn(x) (x=x, -1) | ||||
| #define curlssl_data_pending(x,y) (x=x, y=y, 0) | ||||
| #define curlssl_random(x,y,z) Curl_gtls_random(x,y,z) | ||||
| #define curlssl_md5sum(a,b,c,d) Curl_gtls_md5sum(a,b,c,d) | ||||
|  | ||||
| #endif /* USE_GNUTLS */ | ||||
| #endif /* HEADER_CURL_GTLS_H */ | ||||
|   | ||||
							
								
								
									
										58
									
								
								lib/http.c
									
									
									
									
									
								
							
							
						
						
									
										58
									
								
								lib/http.c
									
									
									
									
									
								
							| @@ -1371,9 +1371,10 @@ static CURLcode https_connecting(struct connectdata *conn, bool *done) | ||||
| } | ||||
| #endif | ||||
|  | ||||
| #if defined(USE_SSLEAY) || defined(USE_GNUTLS) | ||||
| /* This function is for OpenSSL and GnuTLS only. It should be made to query | ||||
|    the generic SSL layer instead. */ | ||||
| #if defined(USE_SSLEAY) || defined(USE_GNUTLS) || defined(USE_SCHANNEL) || \ | ||||
|     defined(USE_DARWINSSL) | ||||
| /* This function is for OpenSSL, GnuTLS, darwinssl, and schannel only. | ||||
|    It should be made to query the generic SSL layer instead. */ | ||||
| static int https_getsock(struct connectdata *conn, | ||||
|                          curl_socket_t *socks, | ||||
|                          int numsocks) | ||||
| @@ -1398,8 +1399,7 @@ static int https_getsock(struct connectdata *conn, | ||||
|   return CURLE_OK; | ||||
| } | ||||
| #else | ||||
| #if defined(USE_NSS) || defined(USE_QSOSSL) || \ | ||||
|   defined(USE_POLARSSL) || defined(USE_AXTLS) || defined(USE_CYASSL) | ||||
| #ifdef USE_SSL | ||||
| static int https_getsock(struct connectdata *conn, | ||||
|                          curl_socket_t *socks, | ||||
|                          int numsocks) | ||||
| @@ -1409,8 +1409,8 @@ static int https_getsock(struct connectdata *conn, | ||||
|   (void)numsocks; | ||||
|   return GETSOCK_BLANK; | ||||
| } | ||||
| #endif /* USE_AXTLS || USE_POLARSSL || USE_QSOSSL || USE_NSS */ | ||||
| #endif /* USE_SSLEAY || USE_GNUTLS */ | ||||
| #endif /* USE_SSL */ | ||||
| #endif /* USE_SSLEAY || USE_GNUTLS || USE_SCHANNEL */ | ||||
|  | ||||
| /* | ||||
|  * Curl_http_done() gets called from Curl_done() after a single HTTP request | ||||
| @@ -1602,7 +1602,7 @@ CURLcode Curl_add_timecondition(struct SessionHandle *data, | ||||
|  | ||||
|   result = Curl_gmtime(data->set.timevalue, &keeptime); | ||||
|   if(result) { | ||||
|     failf(data, "Invalid TIMEVALUE\n"); | ||||
|     failf(data, "Invalid TIMEVALUE"); | ||||
|     return result; | ||||
|   } | ||||
|   tm = &keeptime; | ||||
| @@ -2727,6 +2727,42 @@ static CURLcode header_append(struct SessionHandle *data, | ||||
|   return CURLE_OK; | ||||
| } | ||||
|  | ||||
| static void print_http_error(struct SessionHandle *data) | ||||
| { | ||||
|   struct SingleRequest *k = &data->req; | ||||
|   char *beg = k->p; | ||||
|  | ||||
|   /* make sure that data->req.p points to the HTTP status line */ | ||||
|   if(!strncmp(beg, "HTTP", 4)) { | ||||
|  | ||||
|     /* skip to HTTP status code */ | ||||
|     beg = strchr(beg, ' '); | ||||
|     if(beg && *++beg) { | ||||
|  | ||||
|       /* find trailing CR */ | ||||
|       char end_char = '\r'; | ||||
|       char *end = strchr(beg, end_char); | ||||
|       if(!end) { | ||||
|         /* try to find LF (workaround for non-compliant HTTP servers) */ | ||||
|         end_char = '\n'; | ||||
|         end = strchr(beg, end_char); | ||||
|       } | ||||
|  | ||||
|       if(end) { | ||||
|         /* temporarily replace CR or LF by NUL and print the error message */ | ||||
|         *end = '\0'; | ||||
|         failf(data, "The requested URL returned error: %s", beg); | ||||
|  | ||||
|         /* restore the previously replaced CR or LF */ | ||||
|         *end = end_char; | ||||
|         return; | ||||
|       } | ||||
|     } | ||||
|   } | ||||
|  | ||||
|   /* fall-back to printing the HTTP status code only */ | ||||
|   failf(data, "The requested URL returned error: %d", k->httpcode); | ||||
| } | ||||
|  | ||||
| /* | ||||
|  * Read any HTTP header lines from the server and pass them to the client app. | ||||
| @@ -2852,7 +2888,8 @@ CURLcode Curl_http_readwrite_headers(struct SessionHandle *data, | ||||
|  | ||||
|         if((k->size == -1) && !k->chunk && !conn->bits.close && | ||||
|            (conn->httpversion >= 11) && | ||||
|            !(conn->handler->protocol & CURLPROTO_RTSP)) { | ||||
|            !(conn->handler->protocol & CURLPROTO_RTSP) && | ||||
|            data->set.httpreq != HTTPREQ_HEAD) { | ||||
|           /* On HTTP 1.1, when connection is not to get closed, but no | ||||
|              Content-Length nor Content-Encoding chunked have been | ||||
|              received, according to RFC2616 section 4.4 point 5, we | ||||
| @@ -3114,8 +3151,7 @@ CURLcode Curl_http_readwrite_headers(struct SessionHandle *data, | ||||
|           } | ||||
|           else { | ||||
|             /* serious error, go home! */ | ||||
|             failf (data, "The requested URL returned error: %d", | ||||
|                    k->httpcode); | ||||
|             print_http_error(data); | ||||
|             return CURLE_HTTP_RETURNED_ERROR; | ||||
|           } | ||||
|         } | ||||
|   | ||||
| @@ -477,7 +477,7 @@ CURLcode Curl_output_digest(struct connectdata *conn, | ||||
|                "uri=\"%s\", " | ||||
|                "cnonce=\"%s\", " | ||||
|                "nc=%08x, " | ||||
|                "qop=\"%s\", " | ||||
|                "qop=%s, " | ||||
|                "response=\"%s\"", | ||||
|                proxy?"Proxy-":"", | ||||
|                userp, | ||||
|   | ||||
| @@ -33,6 +33,7 @@ | ||||
| #include "curl_base64.h" | ||||
| #include "http_negotiate.h" | ||||
| #include "curl_memory.h" | ||||
| #include "curl_multibyte.h" | ||||
|  | ||||
| #define _MPRINTF_REPLACE /* use our functions only */ | ||||
| #include <curl/mprintf.h> | ||||
| @@ -88,9 +89,9 @@ int Curl_input_negotiate(struct connectdata *conn, bool proxy, | ||||
|   SecBuffer         out_sec_buff; | ||||
|   SecBufferDesc     in_buff_desc; | ||||
|   SecBuffer         in_sec_buff; | ||||
|   ULONG             context_attributes; | ||||
|   unsigned long     context_attributes; | ||||
|   TimeStamp         lifetime; | ||||
|  | ||||
|   TCHAR             *sname; | ||||
|   int ret; | ||||
|   size_t len = 0, input_token_len = 0; | ||||
|   bool gss = FALSE; | ||||
| @@ -137,7 +138,7 @@ int Curl_input_negotiate(struct connectdata *conn, bool proxy, | ||||
|  | ||||
|   if(!neg_ctx->output_token) { | ||||
|     PSecPkgInfo SecurityPackage; | ||||
|     ret = s_pSecFn->QuerySecurityPackageInfo((SEC_CHAR *)"Negotiate", | ||||
|     ret = s_pSecFn->QuerySecurityPackageInfo((TCHAR *) TEXT("Negotiate"), | ||||
|                                              &SecurityPackage); | ||||
|     if(ret != SEC_E_OK) | ||||
|       return -1; | ||||
| @@ -166,7 +167,8 @@ int Curl_input_negotiate(struct connectdata *conn, bool proxy, | ||||
|       return -1; | ||||
|  | ||||
|     neg_ctx->status = | ||||
|       s_pSecFn->AcquireCredentialsHandle(NULL, (SEC_CHAR *)"Negotiate", | ||||
|       s_pSecFn->AcquireCredentialsHandle(NULL, | ||||
|                                          (TCHAR *) TEXT("Negotiate"), | ||||
|                                          SECPKG_CRED_OUTBOUND, NULL, NULL, | ||||
|                                          NULL, NULL, neg_ctx->credentials, | ||||
|                                          &lifetime); | ||||
| @@ -205,10 +207,14 @@ int Curl_input_negotiate(struct connectdata *conn, bool proxy, | ||||
|     in_sec_buff.pvBuffer   = input_token; | ||||
|   } | ||||
|  | ||||
|   sname = Curl_convert_UTF8_to_tchar(neg_ctx->server_name); | ||||
|   if(!sname) | ||||
|     return CURLE_OUT_OF_MEMORY; | ||||
|  | ||||
|   neg_ctx->status = s_pSecFn->InitializeSecurityContext( | ||||
|     neg_ctx->credentials, | ||||
|     input_token ? neg_ctx->context : 0, | ||||
|     neg_ctx->server_name, | ||||
|     sname, | ||||
|     ISC_REQ_CONFIDENTIALITY, | ||||
|     0, | ||||
|     SECURITY_NATIVE_DREP, | ||||
| @@ -219,6 +225,8 @@ int Curl_input_negotiate(struct connectdata *conn, bool proxy, | ||||
|     &context_attributes, | ||||
|     &lifetime); | ||||
|  | ||||
|   Curl_unicodefree(sname); | ||||
|  | ||||
|   if(GSS_ERROR(neg_ctx->status)) | ||||
|     return -1; | ||||
|  | ||||
|   | ||||
| @@ -65,10 +65,14 @@ CURLcode Curl_proxy_connect(struct connectdata *conn) | ||||
|      * to change the member temporarily for connecting to the HTTP | ||||
|      * proxy. After Curl_proxyCONNECT we have to set back the member to the | ||||
|      * original pointer | ||||
|      * | ||||
|      * This function might be called several times in the multi interface case | ||||
|      * if the proxy's CONNTECT response is not instant. | ||||
|      */ | ||||
|     prot_save = conn->data->state.proto.generic; | ||||
|     memset(&http_proxy, 0, sizeof(http_proxy)); | ||||
|     conn->data->state.proto.http = &http_proxy; | ||||
|     conn->bits.close = FALSE; | ||||
|     result = Curl_proxyCONNECT(conn, FIRSTSOCKET, | ||||
|                                conn->host.name, conn->remote_port); | ||||
|     conn->data->state.proto.generic = prot_save; | ||||
| @@ -357,6 +361,8 @@ CURLcode Curl_proxyCONNECT(struct connectdata *conn, | ||||
|                   /* we're done reading chunks! */ | ||||
|                   infof(data, "chunk reading DONE\n"); | ||||
|                   keepon = FALSE; | ||||
|                   /* we did the full CONNECT treatment, go COMPLETE */ | ||||
|                   conn->tunnel_state[sockindex] = TUNNEL_COMPLETE; | ||||
|                 } | ||||
|                 else | ||||
|                   infof(data, "Read %zd bytes of chunk, continue\n", | ||||
| @@ -445,6 +451,9 @@ CURLcode Curl_proxyCONNECT(struct connectdata *conn, | ||||
|                           /* we're done reading chunks! */ | ||||
|                           infof(data, "chunk reading DONE\n"); | ||||
|                           keepon = FALSE; | ||||
|                           /* we did the full CONNECT treatment, go to | ||||
|                              COMPLETE */ | ||||
|                           conn->tunnel_state[sockindex] = TUNNEL_COMPLETE; | ||||
|                         } | ||||
|                         else | ||||
|                           infof(data, "Read %zd bytes of chunk, continue\n", | ||||
| @@ -466,6 +475,8 @@ CURLcode Curl_proxyCONNECT(struct connectdata *conn, | ||||
|                                 gotbytes - (i+1)); | ||||
|                       } | ||||
|                     } | ||||
|                     /* we did the full CONNECT treatment, go to COMPLETE */ | ||||
|                     conn->tunnel_state[sockindex] = TUNNEL_COMPLETE; | ||||
|                     break; /* breaks out of for-loop, not switch() */ | ||||
|                   } | ||||
|  | ||||
| @@ -544,6 +555,17 @@ CURLcode Curl_proxyCONNECT(struct connectdata *conn, | ||||
|         break; | ||||
|       } | ||||
|     } /* END NEGOTIATION PHASE */ | ||||
|  | ||||
|     /* If we are supposed to continue and request a new URL, which basically | ||||
|      * means the HTTP authentication is still going on so if the tunnel | ||||
|      * is complete we start over in INIT state */ | ||||
|     if(data->req.newurl && | ||||
|        (TUNNEL_COMPLETE == conn->tunnel_state[sockindex])) { | ||||
|       conn->tunnel_state[sockindex] = TUNNEL_INIT; | ||||
|       infof(data, "TUNNEL_STATE switched to: %d\n", | ||||
|             conn->tunnel_state[sockindex]); | ||||
|     } | ||||
|  | ||||
|   } while(data->req.newurl); | ||||
|  | ||||
|   if(200 != data->req.httpcode) { | ||||
|   | ||||
| @@ -5,7 +5,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -28,66 +28,21 @@ | ||||
|  | ||||
| #ifdef USE_WIN32_IDN | ||||
|  | ||||
| #include <tchar.h> | ||||
| #include "curl_multibyte.h" | ||||
|  | ||||
| #ifdef WANT_IDN_PROTOTYPES | ||||
| WINBASEAPI int WINAPI IdnToAscii(DWORD, LPCWSTR, int, LPWSTR, int); | ||||
| WINBASEAPI int WINAPI IdnToUnicode(DWORD, LPCWSTR, int, LPWSTR, int); | ||||
| WINBASEAPI int WINAPI IdnToAscii(DWORD, const WCHAR *, int, WCHAR *, int); | ||||
| WINBASEAPI int WINAPI IdnToUnicode(DWORD, const WCHAR *, int, WCHAR *, int); | ||||
| #endif | ||||
|  | ||||
| #define IDN_MAX_LENGTH 255 | ||||
|  | ||||
| static wchar_t *_curl_win32_UTF8_to_wchar(const char *str_utf8) | ||||
| { | ||||
|   wchar_t *str_w = NULL; | ||||
|  | ||||
|   if(str_utf8) { | ||||
|     int str_w_len = MultiByteToWideChar(CP_UTF8, MB_ERR_INVALID_CHARS, | ||||
|                                         str_utf8, -1, NULL, 0); | ||||
|     if(str_w_len) { | ||||
|       str_w = malloc(str_w_len * sizeof(wchar_t)); | ||||
|       if(str_w) { | ||||
|         if(MultiByteToWideChar(CP_UTF8, 0, str_utf8, -1, str_w, | ||||
|                                 str_w_len) == 0) { | ||||
|           free(str_w); | ||||
|           str_w = NULL; | ||||
|         } | ||||
|       } | ||||
|     } | ||||
|   } | ||||
|  | ||||
|   return str_w; | ||||
| } | ||||
|  | ||||
| static const char *_curl_win32_wchar_to_UTF8(const wchar_t *str_w) | ||||
| { | ||||
|   char *str_utf8 = NULL; | ||||
|  | ||||
|   if(str_w) { | ||||
|     size_t str_utf8_len = WideCharToMultiByte(CP_UTF8, 0, str_w, -1, NULL, | ||||
|                                               0, NULL, NULL); | ||||
|     if(str_utf8_len) { | ||||
|       str_utf8 = malloc(str_utf8_len * sizeof(wchar_t)); | ||||
|       if(str_utf8) { | ||||
|         if(WideCharToMultiByte(CP_UTF8, 0, str_w, -1, str_utf8, str_utf8_len, | ||||
|                                 NULL, FALSE) == 0) { | ||||
|           (void) GetLastError(); | ||||
|           free((void *)str_utf8); | ||||
|           str_utf8 = NULL; | ||||
|         } | ||||
|       } | ||||
|     } | ||||
|     else { | ||||
|       (void) GetLastError(); | ||||
|     } | ||||
|   } | ||||
|  | ||||
|   return str_utf8; | ||||
| } | ||||
| int curl_win32_idn_to_ascii(const char *in, char **out); | ||||
| int curl_win32_ascii_to_idn(const char *in, size_t in_len, char **out_utf8); | ||||
|  | ||||
| int curl_win32_idn_to_ascii(const char *in, char **out) | ||||
| { | ||||
|   wchar_t *in_w = _curl_win32_UTF8_to_wchar(in); | ||||
|   wchar_t *in_w = Curl_convert_UTF8_to_wchar(in); | ||||
|   if(in_w) { | ||||
|     wchar_t punycode[IDN_MAX_LENGTH]; | ||||
|     if(IdnToAscii(0, in_w, -1, punycode, IDN_MAX_LENGTH) == 0) { | ||||
| @@ -97,16 +52,16 @@ int curl_win32_idn_to_ascii(const char *in, char **out) | ||||
|     } | ||||
|     free(in_w); | ||||
|  | ||||
|     *out = (char *)_curl_win32_wchar_to_UTF8(punycode); | ||||
|     if(!(*out)) { | ||||
|     *out = Curl_convert_wchar_to_UTF8(punycode); | ||||
|     if(!*out) | ||||
|       return 0; | ||||
|     } | ||||
|   } | ||||
|   return 1; | ||||
| } | ||||
|  | ||||
| int curl_win32_ascii_to_idn(const char *in, size_t in_len, char **out_utf8) | ||||
| { | ||||
|   (void)in_len; /* unused */ | ||||
|   if(in) { | ||||
|     WCHAR unicode[IDN_MAX_LENGTH]; | ||||
|  | ||||
| @@ -115,10 +70,9 @@ int curl_win32_ascii_to_idn(const char *in, size_t in_len, char **out_utf8) | ||||
|       return 0; | ||||
|     } | ||||
|     else { | ||||
|       const char *out_utf8 = _curl_win32_wchar_to_UTF8(unicode); | ||||
|       if(!out_utf8) { | ||||
|       *out_utf8 = Curl_convert_wchar_to_UTF8(unicode); | ||||
|       if(!*out_utf8) | ||||
|         return 0; | ||||
|       } | ||||
|     } | ||||
|   } | ||||
|   return 1; | ||||
|   | ||||
| @@ -77,7 +77,6 @@ | ||||
| #include "multiif.h" | ||||
| #include "url.h" | ||||
| #include "rawstr.h" | ||||
| #include "strtoofft.h" | ||||
|  | ||||
| #define _MPRINTF_REPLACE /* use our functions only */ | ||||
| #include <curl/mprintf.h> | ||||
|   | ||||
| @@ -1,56 +0,0 @@ | ||||
| # | ||||
| # Definition file for the NLM version of the LIBCURL library from curl | ||||
| # | ||||
| #	(LIBCURL) | ||||
| 	curl_easy_cleanup, | ||||
| 	curl_easy_escape, | ||||
| 	curl_easy_unescape, | ||||
| 	curl_easy_getinfo, | ||||
| 	curl_easy_init, | ||||
| 	curl_easy_pause, | ||||
| 	curl_easy_perform, | ||||
| 	curl_easy_recv, | ||||
| 	curl_easy_send, | ||||
| 	curl_easy_setopt, | ||||
| 	curl_escape, | ||||
| 	curl_unescape, | ||||
| 	curl_formfree, | ||||
| 	curl_getdate, | ||||
| 	curl_getenv, | ||||
| 	curl_global_cleanup, | ||||
| 	curl_global_init, | ||||
| 	curl_slist_append, | ||||
| 	curl_slist_free_all, | ||||
| 	curl_version, | ||||
| 	curl_maprintf, | ||||
| 	curl_mfprintf, | ||||
| 	curl_mprintf, | ||||
| 	curl_msprintf, | ||||
| 	curl_msnprintf, | ||||
| 	curl_mvaprintf, | ||||
| 	curl_mvfprintf, | ||||
| 	curl_mvsnprintf, | ||||
| 	curl_strequal, | ||||
| 	curl_strnequal, | ||||
| 	curl_easy_duphandle, | ||||
| 	curl_formadd, | ||||
| 	curl_multi_init, | ||||
| 	curl_multi_add_handle, | ||||
| 	curl_multi_remove_handle, | ||||
| 	curl_multi_fdset, | ||||
| 	curl_multi_perform, | ||||
| 	curl_multi_cleanup, | ||||
| 	curl_multi_info_read, | ||||
| 	curl_multi_setopt, | ||||
| 	curl_multi_timeout, | ||||
| 	curl_free, | ||||
| 	curl_version_info, | ||||
| 	curl_share_init, | ||||
| 	curl_share_setopt, | ||||
| 	curl_share_cleanup, | ||||
| 	curl_global_init_mem, | ||||
| 	curl_easy_strerror, | ||||
| 	curl_multi_strerror, | ||||
| 	curl_share_strerror, | ||||
| 	curl_easy_reset | ||||
|  | ||||
							
								
								
									
										15
									
								
								lib/multi.c
									
									
									
									
									
								
							
							
						
						
									
										15
									
								
								lib/multi.c
									
									
									
									
									
								
							| @@ -5,7 +5,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -984,6 +984,16 @@ static CURLMcode multi_runsingle(struct Curl_multi *multi, | ||||
|       break; | ||||
|     } | ||||
|  | ||||
|     if(!easy->easy_conn && | ||||
|        easy->state > CURLM_STATE_CONNECT && | ||||
|        easy->state < CURLM_STATE_DONE) { | ||||
|       /* In all these states, the code will blindly access 'easy->easy_conn' | ||||
|          so this is precaution that it isn't NULL. And it silences static | ||||
|          analyzers. */ | ||||
|       failf(data, "In state %d with no easy_conn, bail out!\n", easy->state); | ||||
|       return CURLM_INTERNAL_ERROR; | ||||
|     } | ||||
|  | ||||
|     if(easy->easy_conn && easy->state > CURLM_STATE_CONNECT && | ||||
|        easy->state < CURLM_STATE_COMPLETED) | ||||
|       /* Make sure we set the connection's current owner */ | ||||
| @@ -2018,12 +2028,13 @@ static void singlesocket(struct Curl_multi *multi, | ||||
|         remove_sock_from_hash = FALSE; | ||||
|  | ||||
|       if(remove_sock_from_hash) { | ||||
|         /* in this case 'entry' is always non-NULL */ | ||||
|         if(multi->socket_cb) | ||||
|           multi->socket_cb(easy->easy_handle, | ||||
|                            s, | ||||
|                            CURL_POLL_REMOVE, | ||||
|                            multi->socket_userp, | ||||
|                            entry ? entry->socketp : NULL); | ||||
|                            entry->socketp); | ||||
|         sh_delentry(multi->sockhash, s); | ||||
|       } | ||||
|  | ||||
|   | ||||
							
								
								
									
										11
									
								
								lib/netrc.c
									
									
									
									
									
								
							
							
						
						
									
										11
									
								
								lib/netrc.c
									
									
									
									
									
								
							| @@ -5,7 +5,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -51,10 +51,7 @@ | ||||
| enum host_lookup_state { | ||||
|   NOTHING, | ||||
|   HOSTFOUND,    /* the 'machine' keyword was found */ | ||||
|   HOSTCOMPLETE, /* the machine name following the keyword was found too */ | ||||
|   HOSTVALID,    /* this is "our" machine! */ | ||||
|  | ||||
|   HOSTEND /* LAST enum */ | ||||
|   HOSTVALID     /* this is "our" machine! */ | ||||
| }; | ||||
|  | ||||
| /* | ||||
| @@ -174,10 +171,6 @@ int Curl_parsenetrc(const char *host, | ||||
|             state_our_login = FALSE; | ||||
|           } | ||||
|           break; | ||||
|         case HOSTCOMPLETE: | ||||
|         case HOSTEND: | ||||
|             /* Should not be reached. */ | ||||
|             DEBUGASSERT(0); | ||||
|         } /* switch (state) */ | ||||
|  | ||||
|         tok = strtok_r(NULL, " \t\n", &tok_buf); | ||||
|   | ||||
							
								
								
									
										164
									
								
								lib/nss.c
									
									
									
									
									
								
							
							
						
						
									
										164
									
								
								lib/nss.c
									
									
									
									
									
								
							| @@ -27,6 +27,8 @@ | ||||
|  | ||||
| #include "setup.h" | ||||
|  | ||||
| #ifdef USE_NSS | ||||
|  | ||||
| #ifdef HAVE_SYS_SOCKET_H | ||||
| #include <sys/socket.h> | ||||
| #endif | ||||
| @@ -44,8 +46,6 @@ | ||||
| #define _MPRINTF_REPLACE /* use the internal *printf() functions */ | ||||
| #include <curl/mprintf.h> | ||||
|  | ||||
| #ifdef USE_NSS | ||||
|  | ||||
| #include "nssg.h" | ||||
| #include <nspr.h> | ||||
| #include <nss.h> | ||||
| @@ -66,6 +66,7 @@ | ||||
|  | ||||
| #include "curl_memory.h" | ||||
| #include "rawstr.h" | ||||
| #include "warnless.h" | ||||
|  | ||||
| /* The last #include file should be: */ | ||||
| #include "memdebug.h" | ||||
| @@ -186,6 +187,11 @@ static const char* nss_error_to_name(PRErrorCode code) | ||||
|   return "unknown error"; | ||||
| } | ||||
|  | ||||
| static void nss_print_error_message(struct SessionHandle *data, PRUint32 err) | ||||
| { | ||||
|   failf(data, "%s", PR_ErrorToString(err, PR_LANGUAGE_I_DEFAULT)); | ||||
| } | ||||
|  | ||||
| static SECStatus set_ciphers(struct SessionHandle *data, PRFileDesc * model, | ||||
|                              char *cipher_list) | ||||
| { | ||||
| @@ -612,69 +618,13 @@ static SECStatus nss_auth_cert_hook(void *arg, PRFileDesc *fd, PRBool checksig, | ||||
|   return SSL_AuthCertificate(CERT_GetDefaultCertDB(), fd, checksig, isServer); | ||||
| } | ||||
|  | ||||
| static SECStatus BadCertHandler(void *arg, PRFileDesc *sock) | ||||
| { | ||||
|   SECStatus result = SECFailure; | ||||
|   struct connectdata *conn = (struct connectdata *)arg; | ||||
|   PRErrorCode err = PR_GetError(); | ||||
|   CERTCertificate *cert = NULL; | ||||
|   char *subject, *subject_cn, *issuer; | ||||
|  | ||||
|   conn->data->set.ssl.certverifyresult=err; | ||||
|   cert = SSL_PeerCertificate(sock); | ||||
|   subject = CERT_NameToAscii(&cert->subject); | ||||
|   subject_cn = CERT_GetCommonName(&cert->subject); | ||||
|   issuer = CERT_NameToAscii(&cert->issuer); | ||||
|   CERT_DestroyCertificate(cert); | ||||
|  | ||||
|   switch(err) { | ||||
|   case SEC_ERROR_CA_CERT_INVALID: | ||||
|     infof(conn->data, "Issuer certificate is invalid: '%s'\n", issuer); | ||||
|     break; | ||||
|   case SEC_ERROR_UNTRUSTED_ISSUER: | ||||
|     infof(conn->data, "Certificate is signed by an untrusted issuer: '%s'\n", | ||||
|           issuer); | ||||
|     break; | ||||
|   case SSL_ERROR_BAD_CERT_DOMAIN: | ||||
|     if(conn->data->set.ssl.verifyhost) { | ||||
|       failf(conn->data, "SSL: certificate subject name '%s' does not match " | ||||
|             "target host name '%s'", subject_cn, conn->host.dispname); | ||||
|     } | ||||
|     else { | ||||
|       result = SECSuccess; | ||||
|       infof(conn->data, "warning: SSL: certificate subject name '%s' does not " | ||||
|             "match target host name '%s'\n", subject_cn, conn->host.dispname); | ||||
|     } | ||||
|     break; | ||||
|   case SEC_ERROR_EXPIRED_CERTIFICATE: | ||||
|     infof(conn->data, "Remote Certificate has expired.\n"); | ||||
|     break; | ||||
|   case SEC_ERROR_UNKNOWN_ISSUER: | ||||
|     infof(conn->data, "Peer's certificate issuer is not recognized: '%s'\n", | ||||
|           issuer); | ||||
|     break; | ||||
|   default: | ||||
|     infof(conn->data, "Bad certificate received. Subject = '%s', " | ||||
|           "Issuer = '%s'\n", subject, issuer); | ||||
|     break; | ||||
|   } | ||||
|   if(result == SECSuccess) | ||||
|     infof(conn->data, "SSL certificate verify ok.\n"); | ||||
|   PR_Free(subject); | ||||
|   PR_Free(subject_cn); | ||||
|   PR_Free(issuer); | ||||
|  | ||||
|   return result; | ||||
| } | ||||
|  | ||||
| /** | ||||
|  * Inform the application that the handshake is complete. | ||||
|  */ | ||||
| static SECStatus HandshakeCallback(PRFileDesc *sock, void *arg) | ||||
| static void HandshakeCallback(PRFileDesc *sock, void *arg) | ||||
| { | ||||
|   (void)sock; | ||||
|   (void)arg; | ||||
|   return SECSuccess; | ||||
| } | ||||
|  | ||||
| static void display_cert_info(struct SessionHandle *data, | ||||
| @@ -729,6 +679,31 @@ static void display_conn_info(struct connectdata *conn, PRFileDesc *sock) | ||||
|   return; | ||||
| } | ||||
|  | ||||
| static SECStatus BadCertHandler(void *arg, PRFileDesc *sock) | ||||
| { | ||||
|   struct connectdata *conn = (struct connectdata *)arg; | ||||
|   struct SessionHandle *data = conn->data; | ||||
|   PRErrorCode err = PR_GetError(); | ||||
|   CERTCertificate *cert; | ||||
|  | ||||
|   /* remember the cert verification result */ | ||||
|   data->set.ssl.certverifyresult = err; | ||||
|  | ||||
|   if(err == SSL_ERROR_BAD_CERT_DOMAIN && !data->set.ssl.verifyhost) | ||||
|     /* we are asked not to verify the host name */ | ||||
|     return SECSuccess; | ||||
|  | ||||
|   /* print only info about the cert, the error is printed off the callback */ | ||||
|   cert = SSL_PeerCertificate(sock); | ||||
|   if(cert) { | ||||
|     infof(data, "Server certificate:\n"); | ||||
|     display_cert_info(data, cert); | ||||
|     CERT_DestroyCertificate(cert); | ||||
|   } | ||||
|  | ||||
|   return SECFailure; | ||||
| } | ||||
|  | ||||
| /** | ||||
|  * | ||||
|  * Check that the Peer certificate's issuer certificate matches the one found | ||||
| @@ -1109,20 +1084,17 @@ int Curl_nss_close_all(struct SessionHandle *data) | ||||
|   return 0; | ||||
| } | ||||
|  | ||||
| /* handle client certificate related errors if any; return false otherwise */ | ||||
| static bool handle_cc_error(PRInt32 err, struct SessionHandle *data) | ||||
| /* return true if the given error code is related to a client certificate */ | ||||
| static bool is_cc_error(PRInt32 err) | ||||
| { | ||||
|   switch(err) { | ||||
|   case SSL_ERROR_BAD_CERT_ALERT: | ||||
|     failf(data, "SSL error: SSL_ERROR_BAD_CERT_ALERT"); | ||||
|     return true; | ||||
|  | ||||
|   case SSL_ERROR_REVOKED_CERT_ALERT: | ||||
|     failf(data, "SSL error: SSL_ERROR_REVOKED_CERT_ALERT"); | ||||
|     return true; | ||||
|  | ||||
|   case SSL_ERROR_EXPIRED_CERT_ALERT: | ||||
|     failf(data, "SSL error: SSL_ERROR_EXPIRED_CERT_ALERT"); | ||||
|     return true; | ||||
|  | ||||
|   default: | ||||
| @@ -1341,12 +1313,10 @@ CURLcode Curl_nss_connect(struct connectdata *conn, int sockindex) | ||||
|     goto error; | ||||
|  | ||||
|   data->set.ssl.certverifyresult=0; /* not checked yet */ | ||||
|   if(SSL_BadCertHook(model, (SSLBadCertHandler) BadCertHandler, conn) | ||||
|      != SECSuccess) { | ||||
|   if(SSL_BadCertHook(model, BadCertHandler, conn) != SECSuccess) | ||||
|     goto error; | ||||
|   } | ||||
|   if(SSL_HandshakeCallback(model, (SSLHandshakeCallback) HandshakeCallback, | ||||
|                            NULL) != SECSuccess) | ||||
|  | ||||
|   if(SSL_HandshakeCallback(model, HandshakeCallback, NULL) != SECSuccess) | ||||
|     goto error; | ||||
|  | ||||
|   if(data->set.ssl.verifypeer) { | ||||
| @@ -1463,10 +1433,14 @@ CURLcode Curl_nss_connect(struct connectdata *conn, int sockindex) | ||||
|   data->state.ssl_connect_retry = FALSE; | ||||
|  | ||||
|   err = PR_GetError(); | ||||
|   if(handle_cc_error(err, data)) | ||||
|   if(is_cc_error(err)) | ||||
|     curlerr = CURLE_SSL_CERTPROBLEM; | ||||
|   else | ||||
|     infof(data, "NSS error %d (%s)\n", err, nss_error_to_name(err)); | ||||
|  | ||||
|   /* print the error number and error string */ | ||||
|   infof(data, "NSS error %d (%s)\n", err, nss_error_to_name(err)); | ||||
|  | ||||
|   /* print a human-readable message describing the error if available */ | ||||
|   nss_print_error_message(data, err); | ||||
|  | ||||
|   if(model) | ||||
|     PR_Close(model); | ||||
| @@ -1499,12 +1473,17 @@ static ssize_t nss_send(struct connectdata *conn,  /* connection data */ | ||||
|     PRInt32 err = PR_GetError(); | ||||
|     if(err == PR_WOULD_BLOCK_ERROR) | ||||
|       *curlcode = CURLE_AGAIN; | ||||
|     else if(handle_cc_error(err, conn->data)) | ||||
|       *curlcode = CURLE_SSL_CERTPROBLEM; | ||||
|     else { | ||||
|       /* print the error number and error string */ | ||||
|       const char *err_name = nss_error_to_name(err); | ||||
|       failf(conn->data, "SSL write: error %d (%s)", err, err_name); | ||||
|       *curlcode = CURLE_SEND_ERROR; | ||||
|       infof(conn->data, "SSL write: error %d (%s)\n", err, err_name); | ||||
|  | ||||
|       /* print a human-readable message describing the error if available */ | ||||
|       nss_print_error_message(conn->data, err); | ||||
|  | ||||
|       *curlcode = (is_cc_error(err)) | ||||
|         ? CURLE_SSL_CERTPROBLEM | ||||
|         : CURLE_SEND_ERROR; | ||||
|     } | ||||
|     return -1; | ||||
|   } | ||||
| @@ -1526,12 +1505,17 @@ static ssize_t nss_recv(struct connectdata * conn, /* connection data */ | ||||
|  | ||||
|     if(err == PR_WOULD_BLOCK_ERROR) | ||||
|       *curlcode = CURLE_AGAIN; | ||||
|     else if(handle_cc_error(err, conn->data)) | ||||
|       *curlcode = CURLE_SSL_CERTPROBLEM; | ||||
|     else { | ||||
|       /* print the error number and error string */ | ||||
|       const char *err_name = nss_error_to_name(err); | ||||
|       failf(conn->data, "SSL read: errno %d (%s)", err, err_name); | ||||
|       *curlcode = CURLE_RECV_ERROR; | ||||
|       infof(conn->data, "SSL read: errno %d (%s)\n", err, err_name); | ||||
|  | ||||
|       /* print a human-readable message describing the error if available */ | ||||
|       nss_print_error_message(conn->data, err); | ||||
|  | ||||
|       *curlcode = (is_cc_error(err)) | ||||
|         ? CURLE_SSL_CERTPROBLEM | ||||
|         : CURLE_RECV_ERROR; | ||||
|     } | ||||
|     return -1; | ||||
|   } | ||||
| @@ -1550,4 +1534,24 @@ int Curl_nss_seed(struct SessionHandle *data) | ||||
|   return 0; | ||||
| } | ||||
|  | ||||
| void Curl_nss_random(struct SessionHandle *data, | ||||
|                      unsigned char *entropy, | ||||
|                      size_t length) | ||||
| { | ||||
|   Curl_nss_seed(data);  /* Initiate the seed if not already done */ | ||||
|   PK11_GenerateRandom(entropy, curlx_uztosi(length)); | ||||
| } | ||||
|  | ||||
| void Curl_nss_md5sum(unsigned char *tmp, /* input */ | ||||
|                      size_t tmplen, | ||||
|                      unsigned char *md5sum, /* output */ | ||||
|                      size_t md5len) | ||||
| { | ||||
|   PK11Context *MD5pw = PK11_CreateDigestContext(SEC_OID_MD5); | ||||
|   unsigned int MD5out; | ||||
|   PK11_DigestOp(MD5pw, tmp, curlx_uztoui(tmplen)); | ||||
|   PK11_DigestFinal(MD5pw, md5sum, &MD5out, curlx_uztoui(md5len)); | ||||
|   PK11_DestroyContext(MD5pw, PR_TRUE); | ||||
| } | ||||
|  | ||||
| #endif /* USE_NSS */ | ||||
|   | ||||
							
								
								
									
										13
									
								
								lib/nssg.h
									
									
									
									
									
								
							
							
						
						
									
										13
									
								
								lib/nssg.h
									
									
									
									
									
								
							| @@ -7,7 +7,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -51,6 +51,15 @@ int Curl_nss_seed(struct SessionHandle *data); | ||||
| /* initialize NSS library if not already */ | ||||
| CURLcode Curl_nss_force_init(struct SessionHandle *data); | ||||
|  | ||||
| void Curl_nss_random(struct SessionHandle *data, | ||||
|                      unsigned char *entropy, | ||||
|                      size_t length); | ||||
|  | ||||
| void Curl_nss_md5sum(unsigned char *tmp, /* input */ | ||||
|                      size_t tmplen, | ||||
|                      unsigned char *md5sum, /* output */ | ||||
|                      size_t md5len); | ||||
|  | ||||
| /* API setup for NSS */ | ||||
| #define curlssl_init Curl_nss_init | ||||
| #define curlssl_cleanup Curl_nss_cleanup | ||||
| @@ -68,6 +77,8 @@ CURLcode Curl_nss_force_init(struct SessionHandle *data); | ||||
| #define curlssl_version Curl_nss_version | ||||
| #define curlssl_check_cxn(x) Curl_nss_check_cxn(x) | ||||
| #define curlssl_data_pending(x,y) (x=x, y=y, 0) | ||||
| #define curlssl_random(x,y,z) Curl_nss_random(x,y,z) | ||||
| #define curlssl_md5sum(a,b,c,d) Curl_nss_md5sum(a,b,c,d) | ||||
|  | ||||
| #endif /* USE_NSS */ | ||||
| #endif /* HEADER_CURL_NSSG_H */ | ||||
|   | ||||
| @@ -171,6 +171,8 @@ static CURLcode ldap_setup(struct connectdata *conn) | ||||
|   ldap_free_urldesc(lud); | ||||
|  | ||||
|   li = calloc(1, sizeof(ldapconninfo)); | ||||
|   if(!li) | ||||
|     return CURLE_OUT_OF_MEMORY; | ||||
|   li->proto = proto; | ||||
|   conn->proto.generic = li; | ||||
|   conn->bits.close = FALSE; | ||||
| @@ -386,6 +388,8 @@ static CURLcode ldap_do(struct connectdata *conn, bool *done) | ||||
|     return CURLE_LDAP_SEARCH_FAILED; | ||||
|   } | ||||
|   lr = calloc(1,sizeof(ldapreqinfo)); | ||||
|   if(!lr) | ||||
|     return CURLE_OUT_OF_MEMORY; | ||||
|   lr->msgid = msgid; | ||||
|   data->state.proto.generic = lr; | ||||
|   Curl_setup_transfer(conn, FIRSTSOCKET, -1, FALSE, NULL, -1, NULL); | ||||
|   | ||||
| @@ -6,6 +6,7 @@ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 2010, 2011, Hoi-Ho Chan, <hoiho.chan@gmail.com> | ||||
|  * Copyright (C) 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -90,7 +91,7 @@ static void polarssl_debug(void *context, int level, char *line) | ||||
|  | ||||
|   data = (struct SessionHandle *)context; | ||||
|  | ||||
|   infof(data, "%s", line); | ||||
|   infof(data, "%s\n", line); | ||||
| } | ||||
| #else | ||||
| #endif | ||||
| @@ -289,7 +290,7 @@ polarssl_connect_step2(struct connectdata *conn, | ||||
|  | ||||
|   if(ret && data->set.ssl.verifypeer) { | ||||
|     if(ret & BADCERT_EXPIRED) | ||||
|       failf(data, "Cert verify failed: BADCERT_EXPIRED\n"); | ||||
|       failf(data, "Cert verify failed: BADCERT_EXPIRED"); | ||||
|  | ||||
|     if(ret & BADCERT_REVOKED) { | ||||
|       failf(data, "Cert verify failed: BADCERT_REVOKED"); | ||||
|   | ||||
							
								
								
									
										856
									
								
								lib/pop3.c
									
									
									
									
									
								
							
							
						
						
									
										856
									
								
								lib/pop3.c
									
									
									
									
									
								
							
										
											
												File diff suppressed because it is too large
												Load Diff
											
										
									
								
							
							
								
								
									
										57
									
								
								lib/pop3.h
									
									
									
									
									
								
							
							
						
						
									
										57
									
								
								lib/pop3.h
									
									
									
									
									
								
							| @@ -26,38 +26,59 @@ | ||||
|  * POP3 unique setup | ||||
|  ***************************************************************************/ | ||||
| typedef enum { | ||||
|   POP3_STOP,        /* do nothing state, stops the state machine */ | ||||
|   POP3_SERVERGREET, /* waiting for the initial greeting immediately after | ||||
|                        a connect */ | ||||
|   POP3_STOP,         /* do nothing state, stops the state machine */ | ||||
|   POP3_SERVERGREET,  /* waiting for the initial greeting immediately after | ||||
|                         a connect */ | ||||
|   POP3_STARTTLS, | ||||
|   POP3_CAPA, | ||||
|   POP3_AUTH_PLAIN, | ||||
|   POP3_AUTH_LOGIN, | ||||
|   POP3_AUTH_LOGIN_PASSWD, | ||||
|   POP3_AUTH_CRAMMD5, | ||||
|   POP3_AUTH_DIGESTMD5, | ||||
|   POP3_AUTH_DIGESTMD5_RESP, | ||||
|   POP3_AUTH_NTLM, | ||||
|   POP3_AUTH_NTLM_TYPE2MSG, | ||||
|   POP3_AUTH, | ||||
|   POP3_APOP, | ||||
|   POP3_USER, | ||||
|   POP3_PASS, | ||||
|   POP3_STARTTLS, | ||||
|   POP3_COMMAND, | ||||
|   POP3_QUIT, | ||||
|   POP3_LAST  /* never used */ | ||||
|   POP3_LAST          /* never used */ | ||||
| } pop3state; | ||||
|  | ||||
| /* pop3_conn is used for struct connection-oriented data in the connectdata | ||||
|    struct */ | ||||
| struct pop3_conn { | ||||
|   struct pingpong pp; | ||||
|   char *mailbox;     /* message id */ | ||||
|   char *custom;      /* custom request */ | ||||
|   size_t eob;        /* number of bytes of the EOB (End Of Body) that has been | ||||
|                         received thus far */ | ||||
|   size_t strip;      /* number of bytes from the start to ignore as non-body */ | ||||
|   pop3state state;   /* always use pop3.c:state() to change state! */ | ||||
|   char *mailbox;          /* Message ID */ | ||||
|   char *custom;           /* Custom Request */ | ||||
|   size_t eob;             /* Number of bytes of the EOB (End Of Body) that | ||||
|                              have been received so far */ | ||||
|   size_t strip;           /* Number of bytes from the start to ignore as | ||||
|                              non-body */ | ||||
|   unsigned int authtypes; /* Supported authentication types */ | ||||
|   unsigned int authmechs; /* Accepted SASL authentication mechanisms */ | ||||
|   unsigned int authused;  /* SASL auth mechanism used for the connection */ | ||||
|   char *apoptimestamp;    /* APOP timestamp from the server greeting */ | ||||
|   pop3state state;        /* Always use pop3.c:state() to change state! */ | ||||
| }; | ||||
|  | ||||
| extern const struct Curl_handler Curl_handler_pop3; | ||||
| extern const struct Curl_handler Curl_handler_pop3s; | ||||
|  | ||||
| /* | ||||
|  * This function scans the body after the end-of-body and writes everything | ||||
|  * until the end is found. | ||||
|  */ | ||||
| CURLcode Curl_pop3_write(struct connectdata *conn, | ||||
|                          char *str, | ||||
|                          size_t nread); | ||||
| /* Authentication type flags */ | ||||
| #define POP3_TYPE_CLEARTEXT 0x0001 | ||||
| #define POP3_TYPE_APOP      0x0002 | ||||
| #define POP3_TYPE_SASL      0x0004 | ||||
|  | ||||
| /* This is the 5-bytes End-Of-Body marker for POP3 */ | ||||
| #define POP3_EOB "\x0d\x0a\x2e\x0d\x0a" | ||||
| #define POP3_EOB_LEN 5 | ||||
|  | ||||
| /* This function scans the body after the end-of-body and writes everything | ||||
|  * until the end is found */ | ||||
| CURLcode Curl_pop3_write(struct connectdata *conn, char *str, size_t nread); | ||||
|  | ||||
| #endif /* HEADER_CURL_POP3_H */ | ||||
|   | ||||
| @@ -131,11 +131,14 @@ static char *max5data(curl_off_t bytes, char *max5) | ||||
|  | ||||
| */ | ||||
|  | ||||
| void Curl_pgrsDone(struct connectdata *conn) | ||||
| int Curl_pgrsDone(struct connectdata *conn) | ||||
| { | ||||
|   int rc; | ||||
|   struct SessionHandle *data = conn->data; | ||||
|   data->progress.lastshow=0; | ||||
|   Curl_pgrsUpdate(conn); /* the final (forced) update */ | ||||
|   rc = Curl_pgrsUpdate(conn); /* the final (forced) update */ | ||||
|   if(rc) | ||||
|     return rc; | ||||
|  | ||||
|   if(!(data->progress.flags & PGRS_HIDE) && | ||||
|      !data->progress.callback) | ||||
| @@ -144,6 +147,7 @@ void Curl_pgrsDone(struct connectdata *conn) | ||||
|     fprintf(data->set.err, "\n"); | ||||
|  | ||||
|   data->progress.speeder_c = 0; /* reset the progress meter display */ | ||||
|   return 0; | ||||
| } | ||||
|  | ||||
| /* reset all times except redirect, and reset the known transfer sizes */ | ||||
| @@ -241,6 +245,10 @@ void Curl_pgrsSetUploadSize(struct SessionHandle *data, curl_off_t size) | ||||
|     data->progress.flags &= ~PGRS_UL_SIZE_KNOWN; | ||||
| } | ||||
|  | ||||
| /* | ||||
|  * Curl_pgrsUpdate() returns 0 for success or the value returned by the | ||||
|  * progress callback! | ||||
|  */ | ||||
| int Curl_pgrsUpdate(struct connectdata *conn) | ||||
| { | ||||
|   struct timeval now; | ||||
|   | ||||
| @@ -39,7 +39,7 @@ typedef enum { | ||||
|   TIMER_LAST /* must be last */ | ||||
| } timerid; | ||||
|  | ||||
| void Curl_pgrsDone(struct connectdata *); | ||||
| int Curl_pgrsDone(struct connectdata *); | ||||
| void Curl_pgrsStartNow(struct SessionHandle *data); | ||||
| void Curl_pgrsSetDownloadSize(struct SessionHandle *data, curl_off_t size); | ||||
| void Curl_pgrsSetUploadSize(struct SessionHandle *data, curl_off_t size); | ||||
|   | ||||
							
								
								
									
										10
									
								
								lib/rtsp.c
									
									
									
									
									
								
							
							
						
						
									
										10
									
								
								lib/rtsp.c
									
									
									
									
									
								
							| @@ -5,7 +5,7 @@ | ||||
|  *                            | (__| |_| |  _ <| |___ | ||||
|  *                             \___|\___/|_| \_\_____| | ||||
|  * | ||||
|  * Copyright (C) 1998 - 2011, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. | ||||
|  * | ||||
|  * This software is licensed as described in the file COPYING, which | ||||
|  * you should have received as part of this distribution. The terms | ||||
| @@ -747,13 +747,7 @@ CURLcode Curl_rtsp_parseheader(struct connectdata *conn, | ||||
|  | ||||
|   if(checkprefix("CSeq:", header)) { | ||||
|     /* Store the received CSeq. Match is verified in rtsp_done */ | ||||
|     int nc; | ||||
|     char *temp = strdup(header); | ||||
|     if(!temp) | ||||
|       return CURLE_OUT_OF_MEMORY; | ||||
|     Curl_strntoupper(temp, temp, sizeof(temp)); | ||||
|     nc = sscanf(temp, "CSEQ: %ld", &CSeq); | ||||
|     free(temp); | ||||
|     int nc = sscanf(&header[4], ": %ld", &CSeq); | ||||
|     if(nc == 1) { | ||||
|       data->state.proto.rtsp->CSeq_recv = CSeq; /* mark the request */ | ||||
|       data->state.rtsp_CSeq_recv = CSeq; /* update the handle */ | ||||
|   | ||||
							
								
								
									
										24
									
								
								lib/setup.h
									
									
									
									
									
								
							
							
						
						
									
										24
									
								
								lib/setup.h
									
									
									
									
									
								
							| @@ -223,6 +223,12 @@ | ||||
|  */ | ||||
|  | ||||
| #ifdef HAVE_WINDOWS_H | ||||
| #  if defined(UNICODE) && !defined(_UNICODE) | ||||
| #    define _UNICODE | ||||
| #  endif | ||||
| #  if defined(_UNICODE) && !defined(UNICODE) | ||||
| #    define UNICODE | ||||
| #  endif | ||||
| #  ifndef WIN32_LEAN_AND_MEAN | ||||
| #    define WIN32_LEAN_AND_MEAN | ||||
| #  endif | ||||
| @@ -237,6 +243,7 @@ | ||||
| #      include <winsock.h> | ||||
| #    endif | ||||
| #  endif | ||||
| #  include <tchar.h> | ||||
| #endif | ||||
|  | ||||
| /* | ||||
| @@ -349,11 +356,13 @@ | ||||
| #  include <io.h> | ||||
| #  include <sys/types.h> | ||||
| #  include <sys/stat.h> | ||||
| #  undef  lseek | ||||
| #  define lseek(fdes,offset,whence)  _lseek(fdes, (long)offset, whence) | ||||
| #  define fstat(fdes,stp)            _fstat(fdes, stp) | ||||
| #  define stat(fname,stp)            _stat(fname, stp) | ||||
| #  define struct_stat                struct _stat | ||||
| #  ifndef _WIN32_WCE | ||||
| #    undef  lseek | ||||
| #    define lseek(fdes,offset,whence)  _lseek(fdes, (long)offset, whence) | ||||
| #    define fstat(fdes,stp)            _fstat(fdes, stp) | ||||
| #    define stat(fname,stp)            _stat(fname, stp) | ||||
| #    define struct_stat                struct _stat | ||||
| #  endif | ||||
| #  define LSEEK_ERROR                (long)-1 | ||||
| #endif | ||||
|  | ||||
| @@ -579,7 +588,8 @@ int netware_init(void); | ||||
|  | ||||
| #if defined(USE_GNUTLS) || defined(USE_SSLEAY) || defined(USE_NSS) || \ | ||||
|     defined(USE_QSOSSL) || defined(USE_POLARSSL) || defined(USE_AXTLS) || \ | ||||
|     defined(USE_CYASSL) | ||||
|     defined(USE_CYASSL) || defined(USE_SCHANNEL) || \ | ||||
|     defined(USE_DARWINSSL) | ||||
| #define USE_SSL    /* SSL support has been enabled */ | ||||
| #endif | ||||
|  | ||||
| @@ -590,7 +600,7 @@ int netware_init(void); | ||||
| /* Single point where USE_NTLM definition might be done */ | ||||
| #if !defined(CURL_DISABLE_HTTP) && !defined(CURL_DISABLE_NTLM) | ||||
| #if defined(USE_SSLEAY) || defined(USE_WINDOWS_SSPI) || \ | ||||
|    defined(USE_GNUTLS) || defined(USE_NSS) | ||||
|     defined(USE_GNUTLS) || defined(USE_NSS) || defined(USE_DARWINSSL) | ||||
| #define USE_NTLM | ||||
| #endif | ||||
| #endif | ||||
|   | ||||
Some files were not shown because too many files have changed in this diff Show More
		Reference in New Issue
	
	Block a user