aboutsummaryrefslogtreecommitdiff
path: root/lib/gtls.h
diff options
context:
space:
mode:
authorKamil Dudka <kdudka@redhat.com>2011-03-15 14:52:26 +0100
committerKamil Dudka <kdudka@redhat.com>2011-03-15 15:48:24 +0100
commit806dbb022b8a595405a740131a30fa0cf4523645 (patch)
tree2e8b7c861c078903d57acb67c1d08c33b73920fe /lib/gtls.h
parent5a433a033ffc8b489a8edc14c4505d0c47a63df6 (diff)
nss: do not ignore value of CURLOPT_SSL_VERIFYPEER
When NSS-powered libcurl connected to a SSL server with CURLOPT_SSL_VERIFYPEER equal to zero, NSS remembered that the peer certificate was accepted by libcurl and did not ask the second time when connecting to the same server with CURLOPT_SSL_VERIFYPEER equal to one. This patch turns off the SSL session cache for the particular SSL socket if peer verification is disabled. In order to avoid any performance impact, the peer verification is completely skipped in that case, which makes it even faster than before. Bug: https://bugzilla.redhat.com/678580
Diffstat (limited to 'lib/gtls.h')
0 files changed, 0 insertions, 0 deletions