Lines Matching +full:- +full:- +full:enable +full:- +full:ldap
23 1.4 alt-svc sharing
25 1.6 thread-safe sharing
28 1.10 auto-detect proxy
31 1.13 c-ares and CURLOPT_OPENSOCKETFUNCTION
50 2. libcurl - multi interface
51 2.1 More non-blocking
53 2.3 Non-blocking curl_multi_remove_handle()
55 2.5 Edge-triggered sockets should work
72 5.2 Obey Retry-After in redirects
76 5.6 alt-svc should fallback if alt-svc does not work
81 6.2 ditch telnet-specific select
97 10. LDAP
100 10.3 Paged searches on LDAP server
101 10.4 Certificate-Based Authentication
110 12.1 Directory listing on non-POSIX
113 13.1 TLS-PSK with OpenSSL
124 13.13 Make sure we forbid TLS 1.3 post-handshake authentication
132 15.2 Extend support for the --ciphers option
150 18.4 --proxycommand
151 18.5 UTF-8 filenames in Content-Disposition
152 18.6 Option to make -Z merge lined based outputs on stdout
153 18.7 specify which response codes that make -f/--fail return error
159 18.14 --dry-run
160 18.15 --retry should resume
161 18.17 consider filename from the redirected URL with -O ?
165 18.21 retry on the redirected-to URL
170 18.27 -J and -O with %-encoded filenames
171 18.28 -J with -C -
172 18.29 --retry and transfer timeouts
175 19.2 Enable PIE and RELRO by default
178 19.5 make configure use --cache-file more and better
187 20.8 Run web-platform-tests URL tests
190 21.1 Support rate-limiting
227 1.4 alt-svc sharing
229 The share interface could benefit from allowing the alt-svc cache to be
236 still not thread-safe when used shared.
241 share a HSTS cache, but this is not thread-safe.
246 https://insanecoding.blogspot.com/2007/11/pathmax-simply-isnt.html
252 1.6 thread-safe sharing
256 share between multiple concurrent threads. Fixing this would enable more
272 1.10 auto-detect proxy
277 The pull-request to use libproxy for this was deferred due to doubts on the
286 We can create a system with loadable modules/plug-ins, where these modules
302 1.13 c-ares and CURLOPT_OPENSOCKETFUNCTION
305 close them with the CURLOPT_CLOSESOCKETFUNCTION callback. However, c-ares
307 This means that when curl passes the c-ares socket to the
350 IRIs (RFC 3987) allow localized, non-ASCII, names in the URL. To properly
369 time-stamps (CURLINFO_*_TIME). When curl is following redirects, those
409 It sets the close-on-exec flag for the file descriptor, which causes the file
411 exec-family functions succeed. Should probably be set by default?
425 parsing a config file like curl's -K/--config option to allow applications to
442 that does not use threads and does not depend on c-ares. The getaddrinfo_a
457 for DoH without a DoH-specific option. For example:
463 2. libcurl - multi interface
465 2.1 More non-blocking
467 Make sure we do not ever loop because of non-blocking sockets returning
470 - Name resolves on non-Windows unless c-ares or the threaded resolver is used.
472 - The threaded resolver may block on cleanup:
475 - file:// transfers
477 - TELNET transfers
479 - GSSAPI authentication for FTP transfers
481 - The "DONE" operation (post transfer protocol-specific actions) for the
484 - curl_multi_remove_handle for any of the above. See section 2.3.
486 - Calling curl_ws_send() from a callback
496 2.3 Non-blocking curl_multi_remove_handle()
501 everything in a non-blocking manner and signals when something is done. A
511 2.5 Edge-triggered sockets should work
513 The multi_socket API should work with edge-triggered socket events. One of
554 servers named-based virtual hosting:
568 via third-party GSS-API libraries, such as Heimdal or MIT Kerberos, also add
601 5.2 Obey Retry-After in redirects
603 The Retry-After is said to dicate "the minimum time that the user agent is
638 --user test:pass;auth=NTLM or --user test:pass --ntlm from the command line.
642 5.6 alt-svc should fallback if alt-svc does not work
644 The alt-svc: header provides a set of alternative services for curl to use
666 6.2 ditch telnet-specific select
682 curl -s --connect-timeout 2 telnet://example.com:80 </dev/null
703 specifying this data as the URL is non-standard and to be honest a bit of a
704 hack ;-)
707 https://curl.se/mail/lib-2012-05/0178.html
730 10. LDAP
734 Currently the LDAP module only supports ldap_simple_bind_s() in order to bind
735 to an LDAP server. However, this function sends username and password details
747 10.3 Paged searches on LDAP server
751 10.4 Certificate-Based Authentication
753 LDAPS not possible with macOS and Windows with Certificate-Based Authentication
776 that does not exist on the server, just like --ftp-create-dirs.
781 12.1 Directory listing on non-POSIX
789 13.1 TLS-PSK with OpenSSL
791 Transport Layer Security pre-shared key ciphersuites (TLS-PSK) is a set of
792 cryptographic protocols that provide secure communication based on pre-shared
793 keys (PSKs). These pre-shared keys are symmetric keys shared in advance among
805 GSS-API or SCRAM, or in custom approaches like custom HTTP Authentication
808 For TLS 1.2, the binding type is usually tls-unique, and for TLS 1.3 it is
809 tls-exporter.
834 the state from such a buffer at a later date - this is used by mod_ssl for
852 DNS-Based Authentication of Named Entities (DANE) is a way to provide SSL
854 https://www.rfc-editor.org/rfc/rfc6698.txt
857 (https://curl.se/mail/lib-2013-03/0075.html) but it was a too simple
859 https://curl.se/mail/lib-2013-03/0103.html . libunbound may be the
887 provided for the server and not for HTTPS proxies. --proxy-tls-max,
888 --proxy-tlsv1.3, --proxy-curves and a few more.
890 https://curl.se/libcurl/c/tls-options.html
894 13.13 Make sure we forbid TLS 1.3 post-handshake authentication
897 post-handshake authentication. We should make sure to live up to that.
928 The feature matrix at https://curl.se/libcurl/c/tls-options.html shows which
936 The existing support for the -E/--cert and --key options could be
938 - Getting a Certificate for Schannel
939 https://msdn.microsoft.com/en-us/library/windows/desktop/aa375447.aspx
941 15.2 Extend support for the --ciphers option
943 The existing support for the --ciphers option could be extended
945 - Specifying Schannel Ciphers and Cipher Strengths
946 https://msdn.microsoft.com/en-us/library/windows/desktop/aa380161.aspx
962 GSS-SPNEGO and others.
967 (Authentication), whilst Kerberos V5 supports both auth-int (Authentication
968 with integrity protection) and auth-conf (Authentication with integrity and
1025 "curl --sync http://example.com/feed[1-100].rss" or
1026 "curl --sync http://example.net/{index,calendar,history}.html"
1029 remote file is newer than the local file. A Last-Modified HTTP date header
1034 Globbing support for -d and -F, as in 'curl -d "name=foo[0-9]" URL'.
1037 18.4 --proxycommand
1042 curl --proxycommand 'ssh pi@raspberrypi.local -W 10.1.1.75 80' \
1047 18.5 UTF-8 filenames in Content-Disposition
1049 RFC 6266 documents how UTF-8 names can be passed to a client in the
1050 Content-Disposition header, and curl does not support this.
1054 18.6 Option to make -Z merge lined based outputs on stdout
1056 When a user requests multiple lined based files using -Z and sends them to
1062 18.7 specify which response codes that make -f/--fail return error
1108 https://datatracker.ietf.org/doc/draft-ietf-httpapi-ratelimit-headers/
1112 18.14 --dry-run
1119 18.15 --retry should resume
1121 When --retry is used and curl actually retries transfer, it should use the
1128 18.17 consider filename from the redirected URL with -O ?
1130 When a user gives a URL and uses -O, and curl follows a redirect to a new
1131 URL, the filename is not extracted and used from the newly redirected-to URL
1136 could allow for this or maybe -J should imply such a treatment as well as -J
1149 The --retry option retries transfers on "transient failures". We later added
1150 --retry-connrefused to also retry for "connection refused" errors.
1169 default .curlrc could a specific user-agent only when doing requests against
1172 18.21 retry on the redirected-to URL
1174 When curl is told to --retry a failed transfer and follows redirects, it
1175 might get an HTTP 429 response from the redirected-to URL and not the
1199 - First start getting the full file as transfer A
1200 - If after N seconds have passed and the transfer is expected to continue for
1203 - If splitting up the work improves the transfer rate, it could then be done
1214 curl could offer an option to make escape sequence either non-functional or
1225 many-times-a-second frequency curl can end up doing it with now.
1227 18.27 -J and -O with %-encoded filenames
1229 -J/--remote-header-name does not decode %-encoded filenames. RFC 6266 details
1237 -O also does not decode %-encoded names, and while it has even less
1238 information about the charset involved the process is similar to the -J case.
1240 Note that we do not decode -O without the user asking for it with some other
1241 means, since -O has always been documented to use the name exactly as
1244 18.28 -J with -C -
1246 When using -J (with -O), automatically resumed downloading together with "-C
1247 -" fails. Without -J the same command line works. This happens because the
1249 pre-transfer size) has been figured out. This can be improved.
1253 18.29 --retry and transfer timeouts
1255 If using --retry and the transfer timeouts (possibly due to using -m or
1256 -y/-Y) the next attempt does not resume the transfer properly from what was
1259 https://curl.se/mail/lib-2008-01/0080.html and Mandriva bug report
1265 19.2 Enable PIE and RELRO by default
1271 different binary sections like the GOT as read-only and thus kills a handful
1279 When compiling curl on OpenBSD with "--enable-debug" it gives linking errors
1292 19.5 make configure use --cache-file more and better
1303 Make our own version of stunnel for simple port forwarding to enable HTTPS
1304 and FTP-SSL tests without the stunnel dependency, and it could allow us to
1332 https://github.com/abarth/http-state/tree/master/tests
1338 20.8 Run web-platform-tests URL tests
1340 Run web-platform-tests URL tests and compare results with browsers on wpt.fyi
1349 21.1 Support rate-limiting
1351 The rate-limiting logic is done in the PERFORMING state in multi.c but MQTT
1359 `CURL_DBG_SOCK_WBLOCK=90 ./runtests.pl -a mqtt` makes several
1378 `CURL_DBG_SOCK_WBLOCK=90 ./runtests.pl -a 1200 to 1300` makes several