cURL / Mailing Lists / curl-users / Single Mail

curl-users

RE: Re: curl --accert

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Sat, 24 Mar 2001 19:40:46 +0100 (MET)

On Fri, 23 Mar 2001, Clement Ng wrote:

> curl --cacert verign.crt -L https://www.securesite.com
>
> it works fine. However, I replace the versign.crt with myownCA.crt and
> it works too. The funny thing is that https://www.securesite.com 's
> certificate is using versign NOT myownCA. Have I done something wrong?

Hm, I don't think you do something wrong, but I suspect curl does.

Could you patch your lib/ssluse.c line 228 (the last line of the
cert_verify_callback function) to look like:

  return ok;

instead of the current:

  return 1;

... and see if that works better?

-- 
  Daniel Stenberg -- curl project maintainer -- http://curl.haxx.se/
Received on 2001-03-24