On Sat, 22 Aug 2020, baldzhang via fpc-devel wrote:
certificate verify issue of tfphttpclient with openssl
patch file attached,
some explain:
a) sslsockets.pp
the TVerifyCertificateEvent shall allow to modify the "Allow" param, for
compatibility reason,
function DoVerifyCert: Boolean may change to virtual
b) fppoenssl.pp
FingerPrint always genarate by MD5, can be SHA1 or SHA256
c) opensslsockets.pp
export SSL: TSSL for more lower level control
in Connect():
Result and VerifyPeerCert check are duplicated
alway give a chance to let user do the certificate verifing.
Patch checked and applied in rev. 46540
谢谢您,这个很有用!
Michael.
_______________________________________________
fpc-devel maillist - fpc-devel@lists.freepascal.org
https://lists.freepascal.org/cgi-bin/mailman/listinfo/fpc-devel
