curl / Mailing Lists / curl-library / Single Mail

curl-library

RE: Fetching the detail of SSL Host verification failure

From: Basuke Suzuki via curl-library <curl-library_at_cool.haxx.se>
Date: Tue, 27 Nov 2018 01:08:42 +0000

> > Let me make understanding clear who you proposed.
> >
> > - Add new CURLINFO_SSL_VERIFIED.
> > - Basically similar to existing CURLINFO_SSL_VERIFYRESULT
> > - Returns only CURLcode
>
> I think it should introduce a new line of TLS error codes that provide additional
> information for the case when CURLE_PEER_FAILED_VERIFICATION is returned.
>
> Something like:
>
> CURLVERIFIED_HOSTFAIL,
> CURLVERIFIED_SIGNATUREFAIL,
> ...
>
> > - All backend need to implement this by hand
>
> We could perhaps have a CURLVERIFIED_MISSING code to return for the
> backends that don't yet have additional details implemented.
>
> > Are these what you proposed?
>
> Yes, with my minor clarifications here.

Thank you! I'll prepare PR based on the conversation here.

See you on GitHub.

-----
Basuke Suzuki
SONY PlayStation

-------------------------------------------------------------------
Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library
Etiquette: https://curl.haxx.se/mail/etiquette.html
Received on 2018-11-27

This message: [ Message body ]
Next message: Sumedha Gawarikar via curl-library: "my client is not able to get 301 when server sends 301 with custom header(X-******)"
Previous message: Daniel Stenberg via curl-library: "to bounty or not to bounty"
In reply to: Daniel Stenberg via curl-library: "RE: Fetching the detail of SSL Host verification failure"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]