aboutsummaryrefslogtreecommitdiff
path: root/lib/vtls/vtls.c
diff options
context:
space:
mode:
authorDaniel Stenberg <daniel@haxx.se>2014-09-10 12:14:13 +0200
committerDaniel Stenberg <daniel@haxx.se>2014-09-10 12:14:13 +0200
commitdf0a48005875e0a0f4bd40070315f64fc3d2f4bb (patch)
treee7c55f750c89c0a7355db24e1197e2fd2fc94149 /lib/vtls/vtls.c
parente3be3e69c0a4fa9329fbb3c00c8a3d49043cf089 (diff)
mk-ca-bundle.pl: first, try downloading HTTPS with curl
As a sort of step forward, this script will now first try to get the data from the HTTPS URL using curl, and only if that fails it will switch back to the HTTP transfer using perl's native LWP functionality. To reduce the risk of this script being tricked. Using HTTPS to get a cert bundle introduces a chicken-and-egg problem so we can't really ever completely disable HTTP, but chances are that most users already have a ca cert bundle that trusts the mozilla.org site that this script downloads from. A future version of this script will probably switch to require a dedicated "insecure" command line option to allow downloading over HTTP (or unverified HTTPS).
Diffstat (limited to 'lib/vtls/vtls.c')
0 files changed, 0 insertions, 0 deletions