On Thu, 30 Dec 2010 15:16:47 -0200 Raphael Kubo da Costa <k...@profusion.mobi> wrote:
> On Thursday 30 December 2010 14:32:30 PnB wrote: > > Hello, > > > > With the ecore_con_url module, an application can take advantage of > > SSL/TLS connections (using HTTPS requests for instance) in order to > > exchange sensitive data with a server. However, the connection will > > always fail if the server certificate isn't signed by a certificate > > authority (CA) that is trusted by the system on which the application is > > run. There's no way to specify a custom CA to identify a specific > > server, or to disable CA validation for a specific connection. Also, > > it's not always possible (or a good solution) to add CAs to the ones the > > target system trusts, because admin rights are needed to do so most of > > the time. > > > > The attached patch adds a method to specify custom CAs to be used for > > validating the server certificate of a specific SSL-based request in > > order to fix the above-mentioned issue. That method may also be used to > > completely disable CA validation for the server certificate when server > > identification isn't needed. > > The javascript binding for that method is also included at the end of > > the patch. > > > > Please, consider that patch for inclusion in the trunk. > > >From what I see, it will replace the CA bundle it originally uses, right? > Doesn't it mean the original certificates will not be read anymore? > > Coding style-wise, the "}" for the else in ecore_con_url_ssl_ca_set is not > aligned correctly. > > Trunk-wise, I wonder if this will have to wait for 1.0 to be included, as it > is a new feature? > Feature. Freeze. Save it before Vincent attacks you :) -- Mike Blumenkrantz Zentific: We run the three-legged race individually. ------------------------------------------------------------------------------ Learn how Oracle Real Application Clusters (RAC) One Node allows customers to consolidate database storage, standardize their database environment, and, should the need arise, upgrade to a full multi-node Oracle RAC database without downtime or disruption http://p.sf.net/sfu/oracle-sfdevnl _______________________________________________ enlightenment-devel mailing list enlightenment-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/enlightenment-devel
