cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: Support for openssl trusted_first flag

From: Dan Fandrich <dan_at_coneharvesters.com>
Date: Tue, 20 Dec 2011 10:10:46 -0800

On Tue, Dec 20, 2011 at 05:47:11PM +0000, Robert Foreman wrote:
> Openssl defines a flag, -trusted_first, which causes it to verify
> certificates using a trusted certificate store, even if an untrusted
> store is also available. This is described in a patch at
> <http://marc.info/?l=openssl-cvs&m=126710063626226>.
>
> I've created a patch for cURL that adds a --trusted_first flag,
> allowing (lib)curl to use this openssl functionality.

Is there any reason to make this configurable at run-time rather than having
it enabled all the time?

>>> Dan
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2011-12-20

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: [PATCH] curl.h: add __ANDROID__ macro check"
Previous message: Dan Fandrich: "Re: [PATCH] curl.h: add __ANDROID__ macro check"
In reply to: Robert Foreman: "Support for openssl trusted_first flag"
Next in thread: Robert Foreman: "Re: Support for openssl trusted_first flag"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]