git.ipfire.org Git - thirdparty/curl.git/commit

]> git.ipfire.org Git - thirdparty/curl.git/commit

projects / thirdparty / curl.git / commit

author	Stefan Eissing <stefan@eissing.org>
	Fri, 31 Oct 2025 16:57:53 +0000 (17:57 +0100)
committer	Daniel Stenberg <daniel@haxx.se>
	Fri, 31 Oct 2025 22:10:35 +0000 (23:10 +0100)
commit	b4630ed8faef1834e2b64f30acc24e5101d4d2fb
tree	949abd3358e2cab46af4197480f90ac353ecc090	tree \| snapshot
parent	d646d5a130993b8c438aa193463556e5efb2a54b	commit \| diff

sectrust: fix verifystatus via sectrust

When openssl does not verify the certificate, but apple sectrust
does, we also pass it the ocsp stapled response when configured and
available.

When openssl does not verify the cert chain, it will also not be able
to verify the ocsp stapling. Do not call it if sectrust is the
verifier of the cert chain.

Fixes #19307
Reported-by: Harry Sintonen
Closes #19308

lib/vtls/openssl.c

diff | blob | blame | history

Mirror of https://github.com/curl/curl.git

RSS Atom