+2005-05-12 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * url.c (rewrite_shorthand_url): Don't rewrite "https://host" to
+ "ftp://https//host" when SSL is not used.
+
+2005-05-11 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * openssl.c (ssl_check_server_identity): Renamed to
+ ssl_check_certificate because it does more than just checking the
+ server's identity.
+ (ssl_check_certificate): Tell the user about
+ --no-check-certificate.
+
+2005-05-11 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * openssl.c (ssl_init): Always use SSL_VERIFY_NONE, so that the
+ handshake finishes even if the certificate is invalid. That way
+ ssl_check_server_identity can provide better diagnostics on why
+ the verification failed.
+
+2005-05-11 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * openssl.c (pattern_match): New function.
+ (ssl_check_server_identity): Treat peer certificate common name as
+ wildcard.
+
+2005-05-10 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * openssl.c (ssl_check_server_identity): Print certificate subject
+ and issuer.
+
+2005-05-10 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * res.c (res_register_specs): Correctly pass pointers to
+ hash_table_get_pair.
+
+2005-05-10 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * http.c (gethttp): Call ssl_check_server_identity.
+
+ * openssl.c (ssl_check_server_identity): New function, verifies
+ that the host name in the certificate matches the actual host
+ name.
+ (verify_cert_callback): Removed, since it didn't do anything
+ except returning the preverify_ok argument.
+
+ * connect.c (fd_transport_context): Allow retrieval of the context
+ pointer registered with fd_register_transport.
+
+2005-05-09 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * openssl.c (verify_cert_callback): Renamed from verify_callback.
+ Always return the received "ok" value. Print the X509 name in
+ debug mode.
+ (ssl_init): Enable partial writes in SSL context.
+
+2005-05-08 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * http.c (http_loop): Check for wildcards in the URL path
+ component, not in the whole URL.
+
+ * ftp.c (ftp_loop): Check for wildcards in URL path before
+ unescaping, so the users can escape globbing metacharacters with %
+ escapes.
+
+2005-05-08 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * init.c (run_command): Correctly interpret the return value of
+ parse_line.
+ (commands): Re-alphabetize.
+
+2005-05-08 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * netrc.c (parse_netrc): Explicitly check for assignment != NULL
+ to silence warning from Borland C.
+
+ * url.c (sync_path): Don't unnecessarily increment p.
+ (url_parse): Don't unnecessarily set url_encode to NULL just
+ prior to return from the function.
+
+2005-05-08 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * log.c (escnonprint_internal): Place variable declarations
+ before other statements.
+
+2005-05-08 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * html-url.c: Include recur.h.
+
+ * http.c (request_new): Define as accepting no args.
+
+2005-05-07 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * url.c (strpbrk_or_eos): Made inline. Use strchr(s, '\0') for
+ finding the NUL char position.
+
+2005-05-07 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * url.c (decide_copy_method): Renamed to char_needs_escaping.
+ Since it now returns only two possible values, change it to return
+ boolean (int).
+
+2005-05-07 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * ftp-basic.c (ftp_request): Prevent newlines in VALUE causing
+ inadvertent sending of multiple FTP commands.
+
+2005-05-07 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * url.c (decide_copy_method): Never cause reencode_escapes to
+ decode % escapes; it is too intrusive and breaks some servers.
+
+2005-05-07 Hrvoje Niksic <hniksic@xemacs.org>
+
+ * http.c (gethttp): When tunnelling SSL traffic over proxy with
+ CONNECT, we're really talking to the remote server directly.
+ Because of this, the request-line argument must be the URL path
+ rather than the whole URL, as it would be when using regular
+ proxies.
+ Reported by Charles Lane.
+
2005-05-06 Hrvoje Niksic <hniksic@xemacs.org>
* init.c (cmd_spec_useragent): Allow empty User-Agent.
projects / wget / blobdiff