Inclusion of SSL Blacklisting in HTTP Transport Tests
|Reported by:||sivel||Owned by:|
|Severity:||normal||Keywords:||has-patch tested commit|
We are currently doing ssl blacklisting for certain transports by tacking on some logic to the if statements in the transport selection.
I'd like to add the ssl blacklisting to the test functions an update it a bit.
Since we are blacklisting transports that cannot do ssl verification, we should allow these transports to accept ssl if https_ssl_verify or https_local_ssl_verify are set to false by filters or if the call is made using 'sslverify' => 'false'
fsockopen can still not handle invalid ssl certs so it is ssl blacklisted no matter what.