diff options
| author | Evan Prodromou <evan@status.net> | 2010-08-03 16:04:54 -0700 |
|---|---|---|
| committer | Evan Prodromou <evan@status.net> | 2010-08-03 16:04:54 -0700 |
| commit | 004e42e3e0606f0f9e5c8b6cd4512e5d870cd56e (patch) | |
| tree | ab895f7609c8afeeadf3439c860b69d0cffcbb5e /lib/httpclient.php | |
| parent | d2234580357349a6887a2321e69d11de7bb29106 (diff) | |
| parent | fdd9aa58e3caf87096e1c1dcfa8b2f286b04e4b1 (diff) | |
Merge remote branch 'gitorious/1.0.x' into 1.0.x
Diffstat (limited to 'lib/httpclient.php')
| -rw-r--r-- | lib/httpclient.php | 14 |
1 files changed, 13 insertions, 1 deletions
diff --git a/lib/httpclient.php b/lib/httpclient.php index 384626ae0..b69f718e5 100644 --- a/lib/httpclient.php +++ b/lib/httpclient.php @@ -132,7 +132,19 @@ class HTTPClient extends HTTP_Request2 // ought to be investigated to see if we can handle // it gracefully in that case as well. $this->config['protocol_version'] = '1.0'; - + + // Default state of OpenSSL seems to have no trusted + // SSL certificate authorities, which breaks hostname + // verification and means we have a hard time communicating + // with other sites' HTTPS interfaces. + // + // Turn off verification unless we've configured a CA bundle. + if (common_config('http', 'ssl_cafile')) { + $this->config['ssl_cafile'] = common_config('http', 'ssl_cafile'); + } else { + $this->config['ssl_verify_peer'] = false; + } + parent::__construct($url, $method, $config); $this->setHeader('User-Agent', $this->userAgent()); } |