openssl: don't fail if no server cert is presented and strict checking is disabled #392

Closed
wants to merge 1 commit into
from

Projects

None yet

1 participant

@ghedo
Member
ghedo commented Aug 21, 2015

If strict certificate checking is disabled (CURLOPT_SSL_VERIFYPEER and/or
CURLOPT_SSL_VERIFYHOST are disabled) do not fail if the server doesn't
present a certificate at all.

Also see discussion at frenche@84a400f#commitcomment-12826078

@ghedo ghedo openssl: don't fail if no server cert is presented and strict checkin…
…g is disabled

If strict certificate checking is disabled (CURLOPT_SSL_VERIFYPEER and/or
CURLOPT_SSL_VERIFYHOST are disabled) do not fail if the server doesn't
present a certificate at all.
e86d9a1
@bagder bagder added a commit that closed this pull request Aug 21, 2015
@ghedo @bagder ghedo + bagder openssl: handle lack of server cert when strict checking disabled
If strict certificate checking is disabled (CURLOPT_SSL_VERIFYPEER
and CURLOPT_SSL_VERIFYHOST are disabled) do not fail if the server
doesn't present a certificate at all.

Closes #392
8363656
@bagder bagder closed this in 8363656 Aug 21, 2015
@jgsogo jgsogo added a commit to jgsogo/curl that referenced this pull request Oct 19, 2015
@ghedo @jgsogo ghedo + jgsogo openssl: handle lack of server cert when strict checking disabled
If strict certificate checking is disabled (CURLOPT_SSL_VERIFYPEER
and CURLOPT_SSL_VERIFYHOST are disabled) do not fail if the server
doesn't present a certificate at all.

Closes #392
cdf3df9
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment