Github user apiri commented on a diff in the pull request:
https://github.com/apache/nifi-minifi-cpp/pull/279#discussion_r174443984
--- Diff: extensions/http-curl/client/HTTPClient.cpp ---
@@ -334,6 +334,8 @@ void HTTPClient::configure_secure_connection(CURL
*http_session) {
logger_->log_debug("Using certificate file %s",
ssl_context_service_->getCertificateFile());
curl_easy_setopt(http_session, CURLOPT_SSL_CTX_FUNCTION,
&configure_ssl_context);
curl_easy_setopt(http_session, CURLOPT_SSL_CTX_DATA,
static_cast<void*>(ssl_context_service_.get()));
+ curl_easy_setopt(http_session, CURLOPT_CAINFO, 0);
--- End diff --
I was able to find in the curl docs
(https://curl.haxx.se/libcurl/c/CURLOPT_CAINFO.html) for what this behavior
does for NSS and curl 7.55+ and get how this applies but didn't see any such
docs for openssl variants or other versions. Is the behavior pretty consistent
from that standpoint?
---
