[asterisk-users] CURL function with SSL

Wenbin Zhang wenbin at freeyourdata.net
Fri Aug 14 16:04:08 CDT 2009


Tilghman Lesher wrote:
> On Friday 14 August 2009 15:48:08 Tilghman Lesher wrote:
>   
>> On Friday 14 August 2009 15:09:27 Wenbin Zhang wrote:
>>     
>>> Tilghman Lesher wrote:
>>>       
>>>> On Friday 14 August 2009 10:48:08 Wenbin Zhang wrote:
>>>>         
>>>>> David Gibbons wrote:
>>>>>           
>>>>>> You probably want to set the option
>>>>>>
>>>>>> CURLOPT_SSL_VERIFYPEER to FALSE.
>>>>>>
>>>>>> Especially with chained certificates (cheapos from godaddy, etc), I
>>>>>> have had lots of trouble with CURL being able to validate a cert.
>>>>>> That's probably because I didn't tell it where the root certs were...
>>>>>> but either way.
>>>>>>             
>>>>> Thanks David. Your help is appreciated. But can I ask you one more
>>>>> thing? I am wondering where I should set CURLOPT_SSL_VERIFYPEER to
>>>>> FALSE? Thank you very mcuh.
>>>>>           
>>>> I'm not aware that you can set that independently right now.  In 1.6.2,
>>>> it's at least a possibility, with the introduction of the CURLOPT()
>>>> dialplan function, but even then, that's not one of the included
>>>> options (yet). Starting with the first release candidate, though, it
>>>> should be.
>>>>         
>>> Thank you very much Tilghman. I am using asterisk 1.4 version. So if
>>> CURL can not get the data from the SSL server, is there any other way to
>>> make this purpose done? Thank you very much.
>>>       
>> Well, the above was a workaround, should you not be able  to get the
>> certificates lined up exactly right.  If you actually got the certificates
>> configured correctly with the libcurl configuration, then there isn't an
>> issue.
>>     
>
> And the way to do this is in step 3 or 5 of the following URL:
> http://curl.haxx.se/docs/sslcerts.html
>
>   
Thank you very much Tilghman. I will try that.




More information about the asterisk-users mailing list