Latest notes, articles, and news
This new version includes the following updates and fixes: A bug introduced in v9.5.0.40 in the Socket.AcceptNextConnection method (for SSL/TLS) has been fixed. The bug caused the server certificates to not be sent during the SSL handshake. Internal FTP workarounds to automatically compensate for NonStop Tandem FTP server oddities. Fixes relating to the use of the hz-gb-2312 charset in email […]
This new version includes the following updates/fixes: Fix relating to DSA signature verification internal to PKCS7. SFTP: The PreserveDate property now affects both uploads and downloads. Starting in v9.5.0.40, the UploadFileByName method will preserve the last-mod date/time for the file that is uploaded. Note: The SyncTreeUpload/Download methods already preserve the last-mod date/times regardless of the PreserveDate property setting. Fixed SendEmail […]
Added the ability to use the RSA-SHA1 signature method for OAUTH (v1) authentication. The allowable values for the Http.OAuthSigMethod property are now “HMAC-SHA1” and “RSA-SHA1”. If RSA-SHA1 is chosen, then the newly added Http.SetOAuthRsaKey should be called to provide the RSA private key.
This new version includes the following updates/fixes: Added the TrustedRoots class to allow for programss to globally specify a specific set of trusted root CA certificates for PKCS7 certificate signature verification and for SSL/TLS server certificate trust. Added the RequireSslCertVerify property to Http, IMAP, Socket, and MHT. Added the CrcFile and CrcBytes methods to the Crypt2 API. Added a new […]
It was found that in some cases, OpenSSL may produce MIME with a mixture of both bare-LF line-endings and CRLF line-endings. MIME documents *should* always use CRLF line endings. The mixing of both line-ending types in a single MIME document caused the LoadMimeBytes method to skip past the end of the top-level header (terminated by a double bare-LF) and instead […]
A problem in handling XHTML responses w.r.t. recognizing charset encodings was fixed. Also, the handling of image URLs that include params (such as http://c.s-microsoft.com/de-de/CMSImages/CloseButtonWhite.png?version=a83f6b77-9d8f-c696-27dd-cfd779da1a95 ) was fixed.
The PercentDone callback always began at 0 when resuming a download. If a partial file exists locally, and the download is resumed, the percent done now begins at the place based on the size of the partial file. (If 50% of the file already exists, then the percent done begins at 50%) Also, the Socket.BuildHttpGetRequest method was re-introduced. This is […]
The internal Chilkat SSL/TLS implementation now supports the TLS_DHE_RSA_WITH_AES_256_CBC_SHA and TLS_DHE_RSA_WITH_AES_128_CBC_SHA cipher suites. These allow for perfect forward secrecy. Note: This is implemented on the client-side for all protocols using SSL/TLS. The SSL/TLS client provides the server with a list of algorithms it supports, and it is the server that decides which is to be used. These new algorithms are […]
A security-related bug was fixed in FTP2. If the KeepSessionLog property was turned on, the password used for authentication was logged to the in-memory SessionLog property. The fix is to instead log “****” in place of the password.
For HTTP requests that have KeepAlive indicated in the response header, the internal connection is not closed so that a subsequent request may continue using the existing connection. However, when the client application aborts in the middle of receiving the response, the connection must be closed to avoid being left in an invalid state (where the some of the remainder […]