cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: [curl:bugs] #1404 Certificate verification fails using DarwinSSL (fwd)

From: Nick Zitzmann <nick_at_chronosnet.com>
Date: Wed, 6 Aug 2014 19:18:39 -0500

On Aug 6, 2014, at 7:07 AM, Daniel Stenberg <daniel_at_haxx.se> wrote:

> We could use some Mac devs to check this out... It suggests commit cd2cedf002a broke functionality in the darwinssl backend.
>
> See https://sourceforge.net/p/curl/bugs/1404/

I cannot reproduce this problem. I just pulled the latest code and cleaned and rebuilt, and it worked fine for me:

> % src/curl -v https://www.apple.com/
> * STATE: INIT => CONNECT handle 0x7fc8a2804c08; line 1028 (connection #-5000)
> * Hostname was NOT found in DNS cache
> * Trying 23.194.116.205...
> * STATE: CONNECT => WAITCONNECT handle 0x7fc8a2804c08; line 1076 (connection #0)
> * Connected to www.apple.com (23.194.116.205) port 443 (#0)
> * Marked for [keep alive]: HTTP default
> * STATE: WAITCONNECT => PROTOCONNECT handle 0x7fc8a2804c08; line 1193 (connection #0)
> * TLS 1.2 connection using TLS_RSA_WITH_AES_256_CBC_SHA
> * Server certificate: www.apple.com
> * Server certificate: Symantec Class 3 EV SSL CA - G3
> * Server certificate: VeriSign Class 3 Public Primary Certification Authority - G5
> * STATE: PROTOCONNECT => DO handle 0x7fc8a2804c08; line 1212 (connection #0)
> > GET / HTTP/1.1
> > User-Agent: curl/7.38.0-DEV
> > Host: www.apple.com
> > Accept: */*
> >
> * STATE: DO => DO_DONE handle 0x7fc8a2804c08; line 1285 (connection #0)
> * STATE: DO_DONE => WAITPERFORM handle 0x7fc8a2804c08; line 1411 (connection #0)
> * STATE: WAITPERFORM => PERFORM handle 0x7fc8a2804c08; line 1424 (connection #0)
> * HTTP 1.1 or later with persistent connection, pipelining supported
> < HTTP/1.1 200 OK
[...]

Nick Zitzmann
<http://www.chronosnet.com/>

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2014-08-07