diff options
| author | Vincent Sanders <vince@kyllikki.org> | 2019-08-10 12:50:23 +0100 |
|---|---|---|
| committer | Vincent Sanders <vince@kyllikki.org> | 2019-08-10 12:50:23 +0100 |
| commit | 98f45250734fc7a2826753a143d7c37fc522f604 (patch) | |
| tree | 1826b42c9a1e3456ccbaf0790b566225945a2faa /content/fetchers/curl.c | |
| parent | c6a2c76867cbb6f108eb31e8eb9df0db51114dd5 (diff) | |
| download | netsurf-98f45250734fc7a2826753a143d7c37fc522f604.tar.gz netsurf-98f45250734fc7a2826753a143d7c37fc522f604.tar.bz2 | |
add common name ssl certificate error
This adds an ssl faliure code and explanation why curl fetcher
does not currently set it.
Diffstat (limited to 'content/fetchers/curl.c')
| -rw-r--r-- | content/fetchers/curl.c | 19 |
1 files changed, 16 insertions, 3 deletions
diff --git a/content/fetchers/curl.c b/content/fetchers/curl.c index 345f16ce1..db41b32cb 100644 --- a/content/fetchers/curl.c +++ b/content/fetchers/curl.c @@ -1180,9 +1180,22 @@ static void fetch_curl_done(CURL *curl_handle, CURLcode result) */ ; } else if (result == CURLE_SSL_PEER_CERTIFICATE || - result == CURLE_SSL_CACERT) { - /* CURLE_SSL_PEER_CERTIFICATE renamed to - * CURLE_PEER_FAILED_VERIFICATION + result == CURLE_SSL_CACERT) { + /* + * curl in 7.63.0 (https://github.com/curl/curl/pull/3291) + * unified *all* SSL errors into the single + * CURLE_PEER_FAILED_VERIFICATION depricating + * CURLE_SSL_PEER_CERTIFICATE and CURLE_SSL_CACERT + * + * This change complete removed the ability to + * distinguish between certificate errors, host + * verification errors or any other failure reason + * using the curl result code. + * + * The result is when certificate error message is + * sent there is currently no way of informing the + * llcache about host verification faliures as the + * certificate chain has no error codes set. */ cert = true; } else { |