From 681643ea9e6e196c449f1974cd50e1f400da3450 Mon Sep 17 00:00:00 2001 From: Max Kellermann Date: Fri, 11 Jul 2014 16:39:42 +0200 Subject: input/curl: options "verify_peer" and "verify_host" --- src/input/plugins/CurlInputPlugin.cxx | 8 ++++++++ 1 file changed, 8 insertions(+) (limited to 'src/input/plugins') diff --git a/src/input/plugins/CurlInputPlugin.cxx b/src/input/plugins/CurlInputPlugin.cxx index 46961d08f..4d7671cc2 100644 --- a/src/input/plugins/CurlInputPlugin.cxx +++ b/src/input/plugins/CurlInputPlugin.cxx @@ -245,6 +245,8 @@ static struct curl_slist *http_200_aliases; static const char *proxy, *proxy_user, *proxy_password; static unsigned proxy_port; +static bool verify_peer, verify_host; + static CurlMulti *curl_multi; static constexpr Domain http_domain("http"); @@ -562,6 +564,9 @@ input_curl_init(const config_param ¶m, Error &error) ""); } + verify_peer = param.GetBlockValue("verify_peer", true); + verify_host = param.GetBlockValue("verify_host", true); + CURLM *multi = curl_multi_init(); if (multi == nullptr) { curl_slist_free_all(http_200_aliases); @@ -740,6 +745,9 @@ CurlInputStream::InitEasy(Error &error) curl_easy_setopt(easy, CURLOPT_PROXYUSERPWD, proxy_auth_str); } + curl_easy_setopt(easy, CURLOPT_SSL_VERIFYPEER, verify_peer ? 1l : 0l); + curl_easy_setopt(easy, CURLOPT_SSL_VERIFYHOST, verify_host ? 2l : 0l); + CURLcode code = curl_easy_setopt(easy, CURLOPT_URL, GetURI()); if (code != CURLE_OK) { error.Format(curl_domain, code, -- cgit v1.2.3