cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: Does curl REALLY ignore CURLOPT_SSL_VERIFYPEER / CURLOPT_SSL_VERIFYHOST?

From: paranoid paranoia <paranoid.paranoia_at_gmail.com>
Date: Tue, 4 Dec 2007 01:41:25 +0100

On Nov 30, 2007 11:12 AM, Daniel Stenberg <daniel_at_haxx.se> wrote:
> On Tue, 27 Nov 2007, paranoid paranoia wrote:
>
> > sure... this is probably the simplest fix:
>
> I prefer something like the attached instead, since it tries to retain the
> current output if there is a certificate but still shouldn't cause an error if
> there is none.

Khmm... you mean it shouldn't cause an error if verifypeer was set to 0, right?

> What do you say about this?

I haven't got a chance to try it, since the patch curiously fails to
apply against
every single version of curl I tried (7.16.4, 7.17.1,
7.17.2-20071202), but it looks
fine to me. I'm not sure why anyone who doesn't care to get the peer verified
would care to see the diagnostic info about the peer's certificate (even if one
existed), but it certainly doesn't hurt to have the option to see
what's going on.

--pp
Received on 2007-12-04