cURL / Mailing Lists / curl-library / Single Mail

curl-library

RE: VerifyPeer in OpenSSL vs DarwinSSL

From: Vincas Razma <Vincas.Razma_at_bentley.com>
Date: Thu, 17 Mar 2016 10:33:37 +0000

>> Only way to do that would be to use OpenSSL and generate cert bundle
>> using by getting certificates from Android APIs separately

> Is that possible? Have you done it? If so, can you share the resulting bundle?

I have only investigated that and seems there are APIs for getting root certs from OS, but did not have time to have full implementation. Main idea is to avoid delivering cert bundle that could outdate or be compromised (app developer thus being responsible for it being always valid)

-------------------------------------------------------------------
List admin: https://cool.haxx.se/list/listinfo/curl-library
Etiquette: https://curl.haxx.se/mail/etiquette.html
Received on 2016-03-17