SSL: Add an option to disable certificate revocation checks

New tool option --ssl-no-revoke. New value CURLSSLOPT_NO_REVOKE for CURLOPT_SSL_OPTIONS. Currently this option applies only to WinSSL where we have automatic certificate revocation checking by default. According to the ssl-compared chart there are other backends that have automatic checking (NSS, wolfSSL and DarwinSSL) so we could possibly accommodate them at some later point. Bug: https://github.com/bagder/curl/issues/264 Reported-by: zenden2k <zenden2k@gmail.com>
author: Jay Satiro <raysatiro@yahoo.com> 2015-07-17 02:40:16 -0400
committer: Jay Satiro <raysatiro@yahoo.com> 2015-07-17 02:40:16 -0400
commit: 172b2beba6b89b632c09be7a88645e3a0607cfe9 (patch)
tree: 96d0a159f3ce04f202fb20a939d5999fd3a3eca5 /tests/data/test2043
parent: 606b29fe0d07144ff13c3a731eef299b72060f91 (diff)
1 files changed, 33 insertions, 0 deletions
diff --git a/tests/data/test2043 b/tests/data/test2043
new file mode 100644
index 000000000..7a91f5b60
--- /dev/null
+++ b/tests/data/test2043
@@ -0,0 +1,33 @@
+<testcase>
+<info>
+<keywords>
+HTTPS
+HTTP GET
+</keywords>
+</info>
+
+#
+# Client-side
+<client>
+<features>
+WinSSL
+</features>
+<server>
+none
+</server>
+ <name>
+Disable certificate revocation checks
+ </name>
+ <command>
+--ssl-no-revoke -I https://revoked.grc.com/
+</command>
+</client>
+
+#
+# Verify data after the test has been "shot"
+<verify>
+<errorcode>
+0
+</errorcode>
+</verify>
+</testcase>
author	Jay Satiro <raysatiro@yahoo.com>	2015-07-17 02:40:16 -0400
committer	Jay Satiro <raysatiro@yahoo.com>	2015-07-17 02:40:16 -0400
commit	172b2beba6b89b632c09be7a88645e3a0607cfe9 (patch)
tree	96d0a159f3ce04f202fb20a939d5999fd3a3eca5 /tests/data/test2043
parent	606b29fe0d07144ff13c3a731eef299b72060f91 (diff)