Skip to content

openssl: don't fail if no server cert is presented and strict checking is disabled#392

Closed
ghedo wants to merge 1 commit intocurl:masterfrom
ghedo:openssl_strict
Closed

openssl: don't fail if no server cert is presented and strict checking is disabled#392
ghedo wants to merge 1 commit intocurl:masterfrom
ghedo:openssl_strict

Conversation

@ghedo
Copy link
Contributor

@ghedo ghedo commented Aug 21, 2015

If strict certificate checking is disabled (CURLOPT_SSL_VERIFYPEER and/or
CURLOPT_SSL_VERIFYHOST are disabled) do not fail if the server doesn't
present a certificate at all.

Also see discussion at iboukris@84a400f#commitcomment-12826078

@ghedo
openssl: don't fail if no server cert is presented and strict checkin…
e86d9a1 
…g is disabled

If strict certificate checking is disabled (CURLOPT_SSL_VERIFYPEER and/or
CURLOPT_SSL_VERIFYHOST are disabled) do not fail if the server doesn't
present a certificate at all.
@bagder bagder closed this in 8363656 Aug 21, 2015
jgsogo pushed a commit to jgsogo/curl that referenced this pull request Oct 19, 2015
@ghedo @jgsogo
openssl: handle lack of server cert when strict checking disabled
cdf3df9 
If strict certificate checking is disabled (CURLOPT_SSL_VERIFYPEER
and CURLOPT_SSL_VERIFYHOST are disabled) do not fail if the server
doesn't present a certificate at all.

Closes curl#392
@lock lock bot locked as resolved and limited conversation to collaborators Jan 19, 2019
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ghedo