[fpc-devel] certificate verify issue of tfphttpclient with openssl
Michael Van Canneyt
michael at freepascal.org
Sat Aug 22 00:28:55 CEST 2020
On Sat, 22 Aug 2020, baldzhang via fpc-devel wrote:
> certificate verify issue of tfphttpclient with openssl
>
>
> patch file attached,
> some explain:
>
> a) sslsockets.pp
> the TVerifyCertificateEvent shall allow to modify the "Allow" param, for compatibility reason,
> function DoVerifyCert: Boolean may change to virtual
>
> b) fppoenssl.pp
> FingerPrint always genarate by MD5, can be SHA1 or SHA256
>
> c) opensslsockets.pp
> export SSL: TSSL for more lower level control
> in Connect():
> Result and VerifyPeerCert check are duplicated
> alway give a chance to let user do the certificate verifing.
Patch checked and applied in rev. 46540
谢谢您,这个很有用!
Michael.
More information about the fpc-devel
mailing list