cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: certificate verification against system cert (?) when custom CAINFO is set

From: Dima Tisnek <dimaqq_at_gmail.com>
Date: Fri, 12 Apr 2013 09:53:06 +0300

On 11 April 2013 23:39, Daniel Stenberg <daniel_at_haxx.se> wrote:
> On Thu, 11 Apr 2013, Dima Tisnek wrote:
>
>> I'm trying to use curl with custom CA's only, but it seems server
>> certificate gets verified against system CA's too.
>
>
> I don't remember the exact details right now, but Apple has added some magic
> for certificate verification in their OpenSSL version.

oh that makes sense, I did see TrustevaluationAgent get loaded right
after openssl.
I guess it's not a bug, but a feature then....

I'm not in a hurry to work around it on osx, perhaps it's enough to
document this behaviour.
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2013-04-12

This message: [ Message body ]
Next message: Daniel Stenberg: "[RELEASE] curl and libcurl 7.30.0"
Previous message: Mohammad_Alsaleh: "Re: Only retrieve the headers of a GET reply and return?"
In reply to: Daniel Stenberg: "Re: certificate verification against system cert (?) when custom CAINFO is set"
Next in thread: Richard Michael: "Re: certificate verification against system cert (?) when custom CAINFO is set"
Reply: Richard Michael: "Re: certificate verification against system cert (?) when custom CAINFO is set"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]