Mailing Lists
|
|
cURL Mailing List Monthly Index Single Mail
curl-tracker Archives
[curl:bugs] #1290 Client code, ADH, servercert, and NULL certifcate
From: Jeffrey Walton <noloader_at_users.sf.net>
Date: Sun, 13 Oct 2013 20:48:13 +0000
> I don't understand what you're saying.
If key exchange is Anonymous Diffie-Hellman (as opposed to Fixed Diffie-Hellman or Ephemeral Diffie-Hellman), then `server_cert` will be `NULL`. In this case, everything is functioning as expected.
--- ** [bugs:#1290] Client code, ADH, servercert, and NULL certifcate** **Status:** open **Created:** Sun Oct 13, 2013 09:12 AM UTC by Jeffrey Walton **Last Updated:** Sun Oct 13, 2013 09:15 AM UTC **Owner:** Daniel Stenberg // From ssluse.c, around line 2127 connssl->server_cert = SSL_get_peer_certificate(connssl->handle); if(!connssl->server_cert) { if(strict) failf(data, "SSL: couldn't get peer certificate!"); return CURLE_PEER_FAILED_VERIFICATION; } In client code, `SSL_get_peer_certificate` will return `NULL` in the case of ADH *if* the server does not have a certificate to offer. If the user asked for ADH, then the return value might be misleading or even incorrect. --- Sent from sourceforge.net because curl-tracker@cool.haxx.se is subscribed to https://sourceforge.net/p/curl/bugs/ To unsubscribe from further messages, a project admin can change settings at https://sourceforge.net/p/curl/admin/bugs/options. Or, if this is a mailing list, you can unsubscribe from the mailing list.Received on 2013-10-13 These mail archives are generated by hypermail. |
Page updated May 06, 2013.
web site info