History log of /aoo42x/main/ucb/source/ucp/webdav/CurlSession.hxx (Results 1 - 2 of 2)
Revision (<<< Hide revision tags) (Show revision tags >>>) Date Author Comments
# 0ec0f743 21-Apr-2024 Damjan Jovanovic

Override OpenSSL's certificate verification with our own, instead of
using its verification and selectively overriding the result.
- A nonsense self-signed expired certificate is fed into Cur

Override OpenSSL's certificate verification with our own, instead of
using its verification and selectively overriding the result.
- A nonsense self-signed expired certificate is fed into Curl to get it
to initialize even when the certificates in its expected system path
are missing or elsewhere.
- In Curl's CURLOPT_SSL_CTX_FUNCTION, our Curl_SSLContextCallback, we
then completely override OpenSSL's verification process with ours,
using SSL_CTX_set_cert_verify_callback() (instead of the previous
SSL_CTX_set_verify() which just allows us to override OpenSSL's
verification result).
- The verification is largely the same as before, we just have to call
slightly different functions to retrieve the certificate to verify and
the untrusted chain.
- Create components using the component context, not the legacy multi
service factory.
- Various other cleanups, better logging, etc. were made in the process.

Patch by: me

(cherry picked from commit f7b97bf7d9139c8b602d3da3aadbeef0631e39c1)

show more ...


Revision tags: AOO420-Dev5-m5, AOO4115-GA, AOO4114-GA, AOO420-Dev4-m4, AOO4113-GA
# 9646dec5 04-Apr-2022 Damjan Jovanovic

Port our WebDAV content provider from serf/apr/apr-util, to curl.

Patch by: me

(adapted from commit 51ba086bf122dbb5b50fd813e5b9a81c051aa16b by Arrigo
Marchiori)