Skip to content


Subversion checkout URL

You can clone with
Download ZIP
Commits on Jul 2, 2015
  1. @dfandrich
  2. @dfandrich
Commits on Jul 1, 2015
  1. @moparisthebest

    SSL: Pinned public key hash support

    moparisthebest authored committed
  2. @wb8tyw

    OpenVMS: VMS Software, Inc now the supplier.

    wb8tyw authored committed
    setup-vms.h: Symbol case fixups submitted by Michael Steve VSI aka as VMS Software, is now the
    supplier of new versions of VMS.  The install kit needs to accept
    VSI as a producer.
Commits on Jun 30, 2015
  1. @jay

    multi: Move http2 push function declarations to header end

    jay authored
    This change necessary for binary compatibility.
    Prior to this change test 1135 failed due to the order of functions.
  2. @jay

    symbols-in-versions: Add new http2 push symbols

    jay authored
    Prior to this change test 1119 failed due to the missing symbols.
Commits on Jun 29, 2015
  1. RELEASE-NOTES: synced with e674905

  2. configure: disable libidn by default

    For security reasons, until there is a fix.
    Reported-by: Gustavo Grieco, Feist Josselin
  3. added

    Just to underscore how we treat each other in this project. Nothing new
    really, but could be useful for newcomers and outsiders to see our
Commits on Jun 25, 2015
  1. tool_header_cb: fflush the header stream

    Flush the header stream when -D is used so that they are sent off
    Bug: #324
    Reported-by: Cédric Connes
  2. @rleigh-dundee
Commits on Jun 24, 2015
  1. CURLOPT_FAILONERROR.3: mention that it closes the connection

    Reported-by: bemoody
    Bug: #325
  2. @tatsuhiro-t
  3. @tatsuhiro-t

    http2: Harden header validation for curl_pushheader_byname

    tatsuhiro-t authored committed
    Since we do prefix match using given header by application code
    against header name pair in format "NAME:VALUE", and VALUE part can
    contain ":", we have to careful about existence of ":" in header
    parameter.  ":" should be allowed to match HTTP/2 pseudo-header field,
    and other use of ":" in header must be treated as error, and
    curl_pushheader_byname should return NULL.  This commit implements
    this behaviour.
  4. @tatsuhiro-t

    CURLMOPT_PUSHFUNCTION.3: Remove unused variable

    tatsuhiro-t authored committed
  5. test1531: verify POSTFIELDSIZE set after add_handle

    Following the fix made in 903b6e0.
  6. pretransfer: init state.infilesize here, not in add_handle

    ... to properly support that options are set to the handle after it is
    added to the multi handle.
    Reported-by: Stefan Bühler
Commits on Jun 21, 2015
  1. @kaplanlior @jay

    tool_help: fix --tlsv1 help text to use >= for TLSv1

    kaplanlior authored jay committed
Commits on Jun 20, 2015
  1. @jay

    INSTALL: Advise use of non-native SSL for Windows <= XP

    jay authored
    Advise that WinSSL in versions <= XP will not be able to connect to
    servers that no longer support the legacy handshakes and algorithms used
    by those versions, and to use an alternate backend like OpenSSL instead.
    Bug: #253
    Reported-by: zenden2k <>
Commits on Jun 19, 2015
  1. @kdudka

    curl_easy_setopt.3: restore contents removed by mistake

    kdudka authored
    ... in commit curl-7_43_0-18-g570076e
Commits on Jun 18, 2015
  1. @jay

    cookie: Fix bug in export if any-domain cookie is present

    jay authored
    In 3013bb6 I had changed cookie export to ignore any-domain cookies,
    however the logic I used to do so was incorrect, and would lead to a
    busy loop in the case of exporting a cookie list that contained
    any-domain cookies. The result of that is worse though, because in that
    case the other cookies would not be written resulting in an empty file
    once the application is terminated to stop the busy loop.
Something went wrong with that request. Please try again.