On Thu, 30 Dec 2010 15:16:47 -0200
Raphael Kubo da Costa <k...@profusion.mobi> wrote:

> On Thursday 30 December 2010 14:32:30 PnB wrote:
> > Hello,
> > 
> > With the ecore_con_url module, an application can take advantage of
> > SSL/TLS connections (using HTTPS requests for instance) in order to
> > exchange sensitive data with a server. However, the connection will
> > always fail if the server certificate isn't signed by a certificate
> > authority (CA) that is trusted by the system on which the application is
> > run. There's no way to specify a custom CA to identify a specific
> > server, or to disable CA validation for a specific connection. Also,
> > it's not always possible (or a good solution) to add CAs to the ones the
> > target system trusts, because admin rights are needed to do so most of
> > the time.
> > 
> > The attached patch adds a method to specify custom CAs to be used for
> > validating the server certificate of a specific SSL-based request in
> > order to fix the above-mentioned issue. That method may also be used to
> > completely disable CA validation for the server certificate when server
> > identification isn't needed.
> > The javascript binding for that method is also included at the end of
> > the patch.
> > 
> > Please, consider that patch for inclusion in the trunk.
> 
> >From what I see, it will replace the CA bundle it originally uses, right? 
> Doesn't it mean the original certificates will not be read anymore?
> 
> Coding style-wise, the "}" for the else in ecore_con_url_ssl_ca_set is not 
> aligned correctly.
> 
> Trunk-wise, I wonder if this will have to wait for 1.0 to be included, as it 
> is a new feature?
> 
Feature.  Freeze.  Save it before Vincent attacks you :)

-- 
Mike Blumenkrantz
Zentific: We run the three-legged race individually.

------------------------------------------------------------------------------
Learn how Oracle Real Application Clusters (RAC) One Node allows customers
to consolidate database storage, standardize their database environment, and, 
should the need arise, upgrade to a full multi-node Oracle RAC database 
without downtime or disruption
http://p.sf.net/sfu/oracle-sfdevnl
_______________________________________________
enlightenment-devel mailing list
enlightenment-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/enlightenment-devel

Reply via email to