RE: Does libcurl 7.18.2 support OpenSSL 1.0.0c?

Wed, 19 Jan 2011 00:04:18 -0800 

Thanks for reply. Basically, I want the client program to trust the server 
identity. So I set following option 

        if (curl_global_init(CURL_GLOBAL_ALL) != CURLE_OK)
                throw Exception("curl_global_init() failed");
        if ((curl = curl_easy_init()) == NULL)
        {
                curl_global_cleanup();
                throw Exception("curl_easy_init() failed");
        }

        OpenSSL_add_all_ciphers();
        OpenSSL_add_all_digests();

        curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, 0L);
...
...
...

And get this message and didn't connect

Info ==> : About to connect() to myserver port 9302 (#0)

Info ==> :   Trying xx.x.xx.xx... 
Info ==> : connected

Info ==> : Connected to myserver (xx.x.xx.xx) port 9302 (#0)

Info ==> : error setting certificate verify locations, continuing anyway:

Info ==> :   CAfile: /usr/share/ssl/certs/ca-bundle.crt
  CApath: none

Thanks for your help.
anv

-----Original Message-----
From: [email protected] 
[mailto:[email protected]] On Behalf Of Daniel Stenberg
Sent: Tuesday, January 18, 2011 11:34 PM
To: libcurl development
Subject: Re: Does libcurl 7.18.2 support OpenSSL 1.0.0c?

On Wed, 19 Jan 2011, [email protected] wrote:

> Does Libcurl 7.18.2 supports OpenSSL 1.0.0c?

libcurl 7.18.2 is old, OpenSSL 1.0.0c is fairly new. We don't really support 
or work with that old libcurl releases. If you must use it, then you're on 
your own.

A good approach is always to try out the latest version first to see if that 
works.

> I can compile fine but having problem during runtime as following option has 
> no effect
>
> curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, 0L);

Let me repeat Dan's words in his reply just a few hours ago that you seemed to 
have missed:

You'll first have to share with us some more information. Specifically, what
effect DOES the option have?  The default for this option is 1, so setting
it to 0 should have some effect in the appropriate situation.  You can start
by including a libcurl debug log and explaining what lines you feel are
incorrect.

> According to document, this option would not verify the server 
> certificate/identity but it attempts to validate and failed to connect.

I think you somehow believe CURLOPT_SSL_VERIFYPEER is the only option that 
controls what libcurl checks but if you read the docs it does clarify:

http://curl.haxx.se/libcurl/c/curl_easy_setopt.html#CURLOPTSSLVERIFYPEER

-- 

  / daniel.haxx.se
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette:  http://curl.haxx.se/mail/etiquette.html

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette:  http://curl.haxx.se/mail/etiquette.html

Reply via email to