Change Details

* create `/google_com.pem` file with the following content (contents of the file obtained via `openssl s_client -connect www.google.com:443 -showcerts` command): ``` -----BEGIN CERTIFICATE----- MIIEhzCCA2+gAwIBAgIRANAl55oQCQDSCl57rviQ5P0wDQYJKoZIhvcNAQELBQAw RjELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBM TEMxEzARBgNVBAMTCkdUUyBDQSAxQzMwHhcNMjQwNTIxMDYzMjE1WhcNMjQwODEz MDYzMjE0WjAZMRcwFQYDVQQDEw53d3cuZ29vZ2xlLmNvbTBZMBMGByqGSM49AgEG CCqGSM49AwEHA0IABMQutMlTrVfS7NSBDkEIsa3UtLoaupuQaQ8ARV2LKeOzqPqi THMgfuRC/3l89OyHsb22zgNfxc6z/AXNIp3tmJejggJmMIICYjAOBgNVHQ8BAf8E BAMCB4AwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUQM+X9cI4+yqFpiMkzgFaHuARTO8wHwYDVR0jBBgwFoAUinR/r4XN7pXNPZzQ 4kYU83E1HScwagYIKwYBBQUHAQEEXjBcMCcGCCsGAQUFBzABhhtodHRwOi8vb2Nz cC5wa2kuZ29vZy9ndHMxYzMwMQYIKwYBBQUHMAKGJWh0dHA6Ly9wa2kuZ29vZy9y ZXBvL2NlcnRzL2d0czFjMy5kZXIwGQYDVR0RBBIwEIIOd3d3Lmdvb2dsZS5jb20w IQYDVR0gBBowGDAIBgZngQwBAgEwDAYKKwYBBAHWeQIFAzA8BgNVHR8ENTAzMDGg L6AthitodHRwOi8vY3Jscy5wa2kuZ29vZy9ndHMxYzMvemRBVHQwRXhfRmsuY3Js MIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp 3GhCCp/mZ0xaOnQAAAGPmhCxegAABAMARzBFAiEAswyDmINTwhVC6hrmcfIcI9F4 CUd3c4UiO+cEh4QQDQYCIBiU4jYs0PhMT41JI8SLt+5SBxY64UdM9ud1hbQqa9/M AHUAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGPmhCxZQAABAMA RjBEAiBiuWLFOap3rfbiP3cU4ABlejB+RL6r5P0ql4vIjeN6gQIgVoWAFHZuO/+T Htv2XBLFeprI+vKum63WVnrhse+jy+8wDQYJKoZIhvcNAQELBQADggEBAFW4zXZJ cHHxlfTwctHOGprOk/TXRiPFIfmJ0kMaWi8egoWLHvc3tPym5nVya0iDoxuux7qR +X0OcStL5oh7c3HxrHPvKvB/gz3qWT0ChzNRlDxxx+UFqYUaBdotmXz5P+nLvYui pT2pmKNXh+e5lDOJb0EnspQvkplGMb8JevhKzluoQQhJhUbWtiCGpQi48webYP0A 31G/5YiUyR14mTqxULf0Qv76oL3MpYdZK6y4aK8vvJrqOGzRtZm/jzg3aKfOFgiF 8Iy2wE9a29y49kO3c3oYj/C3By6Nknn4bt5JBuKXfs2KNZ3QcvSG1pSCbyh6wYV7 NCGZSD1FQ+hAEu4= -----END CERTIFICATE----- ``` * in the `/index.php` file add this code after `$application->Init();` line: ``` lang=php /** @var kCurlHelper $curl_helper */ $curl_helper = $application->recallObject('CurlHelper'); $output = $curl_helper->Send('https://wrong.host.badssl.com/'); echo 'Test 1 (default behavior; wrong cert failure): ' . ($output === false && $curl_helper->lastErrorCode !== 0 ? 'Passed' : 'Failed') . ' '; $output = $curl_helper->Send('https://www.google.com/'); echo 'Test 2 (default behavior; correct cert success): ' . ($output !== false && $curl_helper->lastErrorCode === 0 ? 'Passed' : 'Failed') . ' '; $curl_helper->disableSslCertificateVerification(); $output = $curl_helper->Send('https://wrong.host.badssl.com/'); echo 'Test 3 (wrong cert success): ' . ($output !== false && $curl_helper->lastErrorCode === 0 ? 'Passed' : 'Failed') . ' '; $curl_helper->enableSslCertificateVerification(__DIR__ . '/google_com.pem'); $output = $curl_helper->Send('https://www.google.com/'); echo 'Test 4 (correct custom cert success): ' . ($output !== false && $curl_helper->lastErrorCode === 0 ? 'Passed' : 'Failed') . ' '; $curl_helper->enableSslCertificateVerification(__DIR__ . '/google_com.pem'); $output = $curl_helper->Send('https://www.php.net/'); echo 'Test 5 (correct custom cert failure): ' . ($output === false && $curl_helper->lastErrorCode !== 0 ? 'Passed' : 'Failed') . ' '; ``` * in the `/index.php` file comment-out the `$application->Run();` and `$application->Done();` line * run the `/index.php` file in the Web Browser * confirm, that output contains: ``` Test 1 (default behavior; wrong cert failure): Passed Test 2 (default behavior; correct cert success): Passed Test 3 (wrong cert success): Passed Test 4 (correct custom cert success): Passed Test 5 (correct custom cert failure): Passed ```

TODO* create `/google_com.pem` file with the following content (contents of the file obtained via `openssl s_client -connect www.google.com:443 -showcerts` command): ``` -----BEGIN CERTIFICATE----- MIIEhzCCA2+gAwIBAgIRANAl55oQCQDSCl57rviQ5P0wDQYJKoZIhvcNAQELBQAw RjELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBM TEMxEzARBgNVBAMTCkdUUyBDQSAxQzMwHhcNMjQwNTIxMDYzMjE1WhcNMjQwODEz MDYzMjE0WjAZMRcwFQYDVQQDEw53d3cuZ29vZ2xlLmNvbTBZMBMGByqGSM49AgEG CCqGSM49AwEHA0IABMQutMlTrVfS7NSBDkEIsa3UtLoaupuQaQ8ARV2LKeOzqPqi THMgfuRC/3l89OyHsb22zgNfxc6z/AXNIp3tmJejggJmMIICYjAOBgNVHQ8BAf8E BAMCB4AwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUQM+X9cI4+yqFpiMkzgFaHuARTO8wHwYDVR0jBBgwFoAUinR/r4XN7pXNPZzQ 4kYU83E1HScwagYIKwYBBQUHAQEEXjBcMCcGCCsGAQUFBzABhhtodHRwOi8vb2Nz cC5wa2kuZ29vZy9ndHMxYzMwMQYIKwYBBQUHMAKGJWh0dHA6Ly9wa2kuZ29vZy9y ZXBvL2NlcnRzL2d0czFjMy5kZXIwGQYDVR0RBBIwEIIOd3d3Lmdvb2dsZS5jb20w IQYDVR0gBBowGDAIBgZngQwBAgEwDAYKKwYBBAHWeQIFAzA8BgNVHR8ENTAzMDGg L6AthitodHRwOi8vY3Jscy5wa2kuZ29vZy9ndHMxYzMvemRBVHQwRXhfRmsuY3Js MIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp 3GhCCp/mZ0xaOnQAAAGPmhCxegAABAMARzBFAiEAswyDmINTwhVC6hrmcfIcI9F4 CUd3c4UiO+cEh4QQDQYCIBiU4jYs0PhMT41JI8SLt+5SBxY64UdM9ud1hbQqa9/M AHUAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGPmhCxZQAABAMA RjBEAiBiuWLFOap3rfbiP3cU4ABlejB+RL6r5P0ql4vIjeN6gQIgVoWAFHZuO/+T Htv2XBLFeprI+vKum63WVnrhse+jy+8wDQYJKoZIhvcNAQELBQADggEBAFW4zXZJ cHHxlfTwctHOGprOk/TXRiPFIfmJ0kMaWi8egoWLHvc3tPym5nVya0iDoxuux7qR +X0OcStL5oh7c3HxrHPvKvB/gz3qWT0ChzNRlDxxx+UFqYUaBdotmXz5P+nLvYui pT2pmKNXh+e5lDOJb0EnspQvkplGMb8JevhKzluoQQhJhUbWtiCGpQi48webYP0A 31G/5YiUyR14mTqxULf0Qv76oL3MpYdZK6y4aK8vvJrqOGzRtZm/jzg3aKfOFgiF 8Iy2wE9a29y49kO3c3oYj/C3By6Nknn4bt5JBuKXfs2KNZ3QcvSG1pSCbyh6wYV7 NCGZSD1FQ+hAEu4= -----END CERTIFICATE----- ``` * in the `/index.php` file add this code after `$application->Init();` line: ``` lang=php /** @var kCurlHelper $curl_helper */ $curl_helper = $application->recallObject('CurlHelper'); $output = $curl_helper->Send('https://wrong.host.badssl.com/'); echo 'Test 1 (default behavior; wrong cert failure): ' . ($output === false && $curl_helper->lastErrorCode !== 0 ? 'Passed' : 'Failed') . ' '; $output = $curl_helper->Send('https://www.google.com/'); echo 'Test 2 (default behavior; correct cert success): ' . ($output !== false && $curl_helper->lastErrorCode === 0 ? 'Passed' : 'Failed') . ' '; $curl_helper->disableSslCertificateVerification(); $output = $curl_helper->Send('https://wrong.host.badssl.com/'); echo 'Test 3 (wrong cert success): ' . ($output !== false && $curl_helper->lastErrorCode === 0 ? 'Passed' : 'Failed') . ' '; $curl_helper->enableSslCertificateVerification(__DIR__ . '/google_com.pem'); $output = $curl_helper->Send('https://www.google.com/'); echo 'Test 4 (correct custom cert success): ' . ($output !== false && $curl_helper->lastErrorCode === 0 ? 'Passed' : 'Failed') . ' '; $curl_helper->enableSslCertificateVerification(__DIR__ . '/google_com.pem'); $output = $curl_helper->Send('https://www.php.net/'); echo 'Test 5 (correct custom cert failure): ' . ($output === false && $curl_helper->lastErrorCode !== 0 ? 'Passed' : 'Failed') . ' '; ``` * in the `/index.php` file comment-out the `$application->Run();` and `$application->Done();` line * run the `/index.php` file in the Web Browser * confirm, that output contains: ``` Test 1 (default behavior; wrong cert failure): Passed Test 2 (default behavior; correct cert success): Passed Test 3 (wrong cert success): Passed Test 4 (correct custom cert success): Passed Test 5 (correct custom cert failure): Passed ```