luo980/curl
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
ca6ea6d9be
curl/lib
History
Daniel Stenberg ca6ea6d9be TLS: make SSL_VERIFYSTATUS work again 
The CURLOPT_SSL_VERIFYSTATUS option was not properly handled by libcurl
and thus even if the status couldn't be verified, the connection would
be allowed and the user would not be told about the failed verification.

Regression since cb4e2be7c6

CVE-2017-2629
Bug: https://curl.haxx.se/docs/adv_20170222.html

Reported-by: Marcus Hoffmann
2017-02-21 08:33:18 +01:00
..
vauth digest_sspi: Handle 'stale=TRUE' directive in HTTP digest 2017-02-21 01:04:59 -05:00
vtls axtls: adapt to API changes 2017-02-15 08:27:35 +01:00
.gitignore VC: remove the makefile.vc6 build infra 2017-01-23 14:27:32 +01:00
amigaos.c s/cURL/curl 2016-10-18 13:59:54 +02:00
amigaos.h
arpa_telnet.h
asyn-ares.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
asyn-thread.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
asyn.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
base64.c base64: check for integer overflow on large input 2016-10-31 08:46:35 +01:00
checksrc.pl tests: checksrc compliance 2016-12-19 02:31:59 -05:00
CMakeLists.txt CMake: Try to (un-)hide private library symbols 2016-09-10 00:35:38 +02:00
config-amigaos.h config-amigaos.h: (embarrassed) made the line shorter 2016-12-18 23:46:17 +01:00
config-dos.h
config-mac.h
config-os400.h
config-riscos.h
config-symbian.h checksrc: white space edits to comply to stricter checksrc 2016-11-24 23:58:22 +01:00
config-tpf.h
config-vxworks.h
config-win32.h
config-win32ce.h
conncache.c string formatting: fix 4 printf-style format strings 2017-02-19 14:13:42 +01:00
conncache.h
connect.c http_proxy: Fix proxy CONNECT hang on pending data 2016-12-19 02:26:52 -05:00
connect.h http_proxy: Fix proxy CONNECT hang on pending data 2016-12-19 02:26:52 -05:00
content_encoding.c content_encoding: change return code on a failure 2016-12-29 11:31:01 +01:00
content_encoding.h
cookie.c cookies: do not assume a valid domain has a dot 2017-01-27 13:32:02 +01:00
cookie.h cookies: getlist() now holds deep copies of all cookies 2016-10-31 08:46:35 +01:00
curl_addrinfo.c addrinfo: fix compiler warning on offsetof() use 2017-01-14 00:00:07 +01:00
curl_addrinfo.h unix_socket: add support for abstract unix domain socket 2017-01-13 16:25:20 +01:00
curl_base64.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
curl_config.h.cmake cmake: Support curl --xattr when built with cmake 2017-02-01 01:11:52 -05:00
curl_des.c use *.sourceforge.io and misc URL updates 2017-02-06 19:21:05 +00:00
curl_des.h
curl_endian.c Declare endian read functions argument as a const pointer. 2016-11-24 16:14:21 +01:00
curl_endian.h Declare endian read functions argument as a const pointer. 2016-11-24 16:14:21 +01:00
curl_fnmatch.c memdebug: Ensure curl/curl.h is included before curl_memory.h 2016-04-01 13:21:12 +01:00
curl_fnmatch.h
curl_gethostname.c checksrc: move open braces to comply with function declaration style 2016-11-24 23:58:22 +01:00
curl_gethostname.h
curl_gssapi.c checksrc: white space edits to comply to stricter checksrc 2016-11-24 23:58:22 +01:00
curl_gssapi.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
curl_hmac.h checksrc: code style: use 'char *name' style 2016-11-24 23:58:22 +01:00
curl_ldap.h
curl_md4.h
curl_md5.h
curl_memory.h includes: avoid duplicate memory callback typdefs even harder 2016-04-18 15:04:17 +02:00
curl_memrchr.c memdebug: Ensure curl/curl.h is included before curl_memory.h 2016-04-01 13:21:12 +01:00
curl_memrchr.h
curl_multibyte.c curl_multibyte: fix compiler error 2016-05-20 16:50:04 +02:00
curl_multibyte.h
curl_ntlm_core.c string formatting: fix 4 printf-style format strings 2017-02-19 14:13:42 +01:00
curl_ntlm_core.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
curl_ntlm_wb.c use *.sourceforge.io and misc URL updates 2017-02-06 19:21:05 +00:00
curl_ntlm_wb.h
curl_printf.h
curl_rtmp.c
curl_rtmp.h
curl_sasl.c checksrc: code style: use 'char *name' style 2016-11-24 23:58:22 +01:00
curl_sasl.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
curl_sec.h checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
curl_setup_once.h
curl_setup.h checksrc: code style: use 'char *name' style 2016-11-24 23:58:22 +01:00
curl_sspi.c curl_sspi.c: Updated function description comments 2016-08-31 11:57:28 +01:00
curl_sspi.h
curl_threads.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
curl_threads.h checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
curlx.h strcase: make the tool use curl_str[n]equal instead 2016-10-31 21:51:19 +01:00
dict.c strcasecompare: all case insensitive string compares ignore locale now 2016-10-31 08:46:35 +01:00
dict.h
dotdot.c memdebug: Ensure curl/curl.h is included before curl_memory.h 2016-04-01 13:21:12 +01:00
dotdot.h
easy.c CURLOPT_BUFFERSIZE: support enlarging receive buffer 2017-01-19 23:38:04 +01:00
easyif.h typedefs: use the full structs in internal code... 2016-06-22 10:28:41 +02:00
escape.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
escape.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
file.c CURLOPT_BUFFERSIZE: support enlarging receive buffer 2017-01-19 23:38:04 +01:00
file.h
fileinfo.c
fileinfo.h
firefox-db2pem.sh
formdata.c formdata: use NULL, not 0, when returning pointers 2016-12-25 10:36:29 +01:00
formdata.h checksrc: code style: use 'char *name' style 2016-11-24 23:58:22 +01:00
ftp.c CURLOPT_BUFFERSIZE: support enlarging receive buffer 2017-01-19 23:38:04 +01:00
ftp.h checksrc: code style: use 'char *name' style 2016-11-24 23:58:22 +01:00
ftplistparser.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
ftplistparser.h
getenv.c win: Basic support for Universal Windows Platform apps 2016-08-21 13:56:22 +02:00
getinfo.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
getinfo.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
gopher.c strcasecompare: all case insensitive string compares ignore locale now 2016-10-31 08:46:35 +01:00
gopher.h
hash.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
hash.h checksrc: code style: use 'char *name' style 2016-11-24 23:58:22 +01:00
hmac.c checksrc: code style: use 'char *name' style 2016-11-24 23:58:22 +01:00
hostasyn.c internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
hostcheck.c schannel: fix wildcard cert name validation on Win CE 2016-12-19 07:53:20 +01:00
hostcheck.h
hostip4.c checksrc: white space edits to comply to stricter checksrc 2016-11-24 23:58:22 +01:00
hostip6.c internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
hostip.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
hostip.h checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
hostsyn.c internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
http2.c http2: fix memory-leak when denying push streams 2017-02-13 10:35:18 +01:00
http2.h http2: Fix crashes when parent stream gets aborted 2016-11-28 15:06:17 +01:00
http_chunks.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
http_chunks.h
http_digest.c lib: fix MSVC compiler warnings 2016-12-21 11:07:26 +01:00
http_digest.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
http_negotiate.c proxy: Support HTTPS proxy and SOCKS+HTTP(s) 2016-11-24 23:41:44 +01:00
http_negotiate.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
http_ntlm.c use *.sourceforge.io and misc URL updates 2017-02-06 19:21:05 +00:00
http_ntlm.h
http_proxy.c proxy: fix hostname resolution and IDN conversion 2017-02-18 15:04:43 +01:00
http_proxy.h proxy: Support HTTPS proxy and SOCKS+HTTP(s) 2016-11-24 23:41:44 +01:00
http.c http: fix missing 'Content-Length: 0' while negotiating auth 2017-02-17 02:32:16 -05:00
http.h http2: disable server push if not requested 2017-01-15 11:45:32 +00:00
idn_win32.c
if2ip.c checksrc: code style: use 'char *name' style 2016-11-24 23:58:22 +01:00
if2ip.h
imap.c URL: only accept ";options" in SMTP/POP3/IMAP URL schemes 2017-02-10 14:51:53 +01:00
imap.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
inet_ntop.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
inet_ntop.h
inet_pton.c checksrc: warn for assignments within if() expressions 2016-12-14 01:29:44 +01:00
inet_pton.h
krb5.c checksrc: white space edits to comply to stricter checksrc 2016-11-24 23:58:22 +01:00
ldap.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
libcurl.def
libcurl.plist
libcurl.rc *.rc: escape non-ASCII/non-UTF-8 character for clarity 2017-01-19 11:35:48 +00:00
libcurl.vers.in
llist.c memdebug: Ensure curl/curl.h is included before curl_memory.h 2016-04-01 13:21:12 +01:00
llist.h
Makefile.am VC: remove the makefile.vc6 build infra 2017-01-23 14:27:32 +01:00
makefile.amiga
Makefile.b32
makefile.dj
Makefile.inc Curl_rand: fixed and moved to rand.c 2016-11-14 08:23:52 +01:00
Makefile.m32 makefile.m32: add crypt32 for winssl builds 2016-06-01 10:39:13 +02:00
Makefile.netware s/cURL/curl 2016-11-07 10:36:23 +01:00
Makefile.vxworks
Makefile.Watcom
md4.c checksrc: warn for assignments within if() expressions 2016-12-14 01:29:44 +01:00
md5.c checksrc: warn for assignments within if() expressions 2016-12-14 01:29:44 +01:00
memdebug.c checksrc: code style: use 'char *name' style 2016-11-24 23:58:22 +01:00
memdebug.h memdebug.h: remove inclusion of other headers 2016-04-29 15:33:46 +02:00
mk-ca-bundle.pl mk-ca-bundle.vbs: Fix UTF-8 output 2016-10-30 01:01:29 -04:00
mk-ca-bundle.vbs mk-ca-bundle.vbs: Fix UTF-8 output 2016-10-30 01:01:29 -04:00
mprintf.c lib: fix MSVC compiler warnings 2016-12-21 11:07:26 +01:00
multi.c speed caps: update the timeouts if the speed is too low/high 2017-02-18 18:09:17 +01:00
multihandle.h proxy: Support HTTPS proxy and SOCKS+HTTP(s) 2016-11-24 23:41:44 +01:00
multiif.h lib: fix compiler warnings after de4de4e3c7 2016-11-18 10:11:55 +01:00
netrc.c strcasecompare: all case insensitive string compares ignore locale now 2016-10-31 08:46:35 +01:00
netrc.h
non-ascii.c checksrc: white space edits to comply to stricter checksrc 2016-11-24 23:58:22 +01:00
non-ascii.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
nonblock.c
nonblock.h
nwlib.c checksrc: warn for assignments within if() expressions 2016-12-14 01:29:44 +01:00
nwos.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
objnames-test08.sh
objnames-test10.sh
objnames.inc
openldap.c internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
parsedate.c strcasecompare: all case insensitive string compares ignore locale now 2016-10-31 08:46:35 +01:00
parsedate.h
pingpong.c proxy: Support HTTPS proxy and SOCKS+HTTP(s) 2016-11-24 23:41:44 +01:00
pingpong.h lib: fix compiler warnings after de4de4e3c7 2016-11-18 10:11:55 +01:00
pipeline.c strcasecompare: all case insensitive string compares ignore locale now 2016-10-31 08:46:35 +01:00
pipeline.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
pop3.c URL: only accept ";options" in SMTP/POP3/IMAP URL schemes 2017-02-10 14:51:53 +01:00
pop3.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
progress.c time_t fix: follow-up to de4de4e3c7 2016-11-13 23:09:45 +01:00
progress.h speed caps: not based on average speeds anymore 2016-09-04 13:11:23 +02:00
rand.c randit: store the value in the buffer 2016-12-21 23:42:43 +01:00
rand.h rand: pass in number of randoms as an unsigned argument 2016-11-21 07:51:42 +01:00
rtsp.c Curl_getconnectinfo: avoid checking if the connection is closed 2016-12-18 12:47:10 +01:00
rtsp.h
security.c ftp-gss: check for init before use 2016-12-24 23:35:43 +01:00
select.c lib: fix compiler warnings after de4de4e3c7 2016-11-18 10:11:55 +01:00
select.h lib: fix compiler warnings after de4de4e3c7 2016-11-18 10:11:55 +01:00
sendf.c Curl_recv_has_postponed_data: silence compiler warnings 2016-12-19 09:20:54 +01:00
sendf.h http_proxy: Fix proxy CONNECT hang on pending data 2016-12-19 02:26:52 -05:00
setup-os400.h checksrc: code style: use 'char *name' style 2016-11-24 23:58:22 +01:00
setup-vms.h checksrc: move open braces to comply with function declaration style 2016-11-24 23:58:22 +01:00
share.c typedefs: use the full structs in internal code... 2016-06-22 10:28:41 +02:00
share.h checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
sigpipe.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
slist.c memdebug: Ensure curl/curl.h is included before curl_memory.h 2016-04-01 13:21:12 +01:00
slist.h
smb.c smb: use getpid replacement for windows UWP builds 2017-02-20 10:27:51 +01:00
smb.h
smtp.c URL: only accept ";options" in SMTP/POP3/IMAP URL schemes 2017-02-10 14:51:53 +01:00
smtp.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
sockaddr.h
socks_gssapi.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
socks_sspi.c checksrc: code style: use 'char *name' style 2016-11-24 23:58:22 +01:00
socks.c checksrc: white space edits to comply to stricter checksrc 2016-11-24 23:58:22 +01:00
socks.h proxy: Support HTTPS proxy and SOCKS+HTTP(s) 2016-11-24 23:41:44 +01:00
speedcheck.c timeval: prefer time_t to hold seconds instead of long 2016-11-12 13:32:21 +01:00
speedcheck.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
splay.c
splay.h code: style updates 2016-04-03 22:38:36 +02:00
ssh.c sftp: improved checks for create dir failures 2017-02-20 08:01:53 +01:00
ssh.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
strcase.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
strcase.h proxy: Support HTTPS proxy and SOCKS+HTTP(s) 2016-11-24 23:41:44 +01:00
strdup.c realloc: use Curl_saferealloc to avoid common mistakes 2016-11-11 10:03:48 +01:00
strdup.h realloc: use Curl_saferealloc to avoid common mistakes 2016-11-11 10:03:48 +01:00
strerror.c checksrc: warn for assignments within if() expressions 2016-12-14 01:29:44 +01:00
strerror.h idn: switch to libidn2 use and IDNA2008 support 2016-10-31 08:46:35 +01:00
strtok.c
strtok.h
strtoofft.c checksrc: code style: use 'char *name' style 2016-11-24 23:58:22 +01:00
strtoofft.h
system_win32.c win: fix Universal Windows Platform build 2016-10-16 12:09:12 +02:00
system_win32.h win32: Introduced centralised verify windows version function 2016-06-04 21:24:09 +01:00
telnet.c telnet: Fix typos 2017-02-07 02:39:16 -05:00
telnet.h
tftp.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
tftp.h
timeval.c timeval: prefer time_t to hold seconds instead of long 2016-11-12 13:32:21 +01:00
timeval.h timeval: prefer time_t to hold seconds instead of long 2016-11-12 13:32:21 +01:00
transfer.c transfer: only retry nobody-requests for HTTP 2017-02-07 08:57:33 +01:00
transfer.h speed caps: not based on average speeds anymore 2016-09-04 13:11:23 +02:00
url.c TLS: make SSL_VERIFYSTATUS work again 2017-02-21 08:33:18 +01:00
url.h url: proxy: Use 443 as default port for https proxies 2016-11-25 10:01:58 +01:00
urldata.h digest_sspi: Fix nonce-count generation in HTTP digest 2017-02-20 00:53:01 -05:00
version.c curl_version_info: add CURL_VERSION_HTTPS_PROXY 2016-11-26 17:28:53 +01:00
warnless.c
warnless.h
wildcard.c lib: include curl_printf.h as one of the last headers 2016-04-29 22:32:49 +02:00
wildcard.h internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
x509asn1.c checksrc: stricter no-space-before-paren enforcement 2016-12-13 23:39:11 +01:00
x509asn1.h checksrc: code style: use 'char *name' style 2016-11-24 23:58:22 +01:00