[Feature Request] Https request failed, libcurl error: 60 (SSL peer certificate or SSH remote key was not OK)

TheSubZer0 · January 19, 2025, 3:04pm

HTTP request: How to bypass bad certificate blocking in the request?

LogHttp: Warning: 000008B851392300: request failed, libcurl error: 60 (SSL peer certificate or SSH remote key was not OK)
[2025.01.19-14.01.23:359][592]LogHttp: Warning: 000008B851392300: libcurl info message cache 0 ( Trying 192.168.1.107:447…)
[2025.01.19-14.01.23:359][592]LogHttp: Warning: 000008B851392300: libcurl info message cache 1 (Connected to 192.168.1.107 (192.168.1.107) port 447)
[2025.01.19-14.01.23:360][592]LogHttp: Warning: 000008B851392300: libcurl info message cache 2 (ALPN: curl offers http/1.1)
[2025.01.19-14.01.23:360][592]LogHttp: Warning: 000008B851392300: libcurl info message cache 3 (TLSv1.3 (OUT), TLS handshake, Client hello (1)
[2025.01.19-14.01.23:361][592]LogHttp: Warning: 000008B851392300: libcurl info message cache 4 (TLSv1.3 (IN), TLS handshake, Server hello (2)
[2025.01.19-14.01.23:361][592]LogHttp: Warning: 000008B851392300: libcurl info message cache 5 (TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8)
[2025.01.19-14.01.23:363][592]LogHttp: Warning: 000008B851392300: libcurl info message cache 6 (TLSv1.3 (IN), TLS handshake, Certificate (11)
[2025.01.19-14.01.23:363][592]LogHttp: Warning: 000008B851392300: libcurl info message cache 7 (TLSv1.3 (IN), TLS handshake, CERT verify (15)
[2025.01.19-14.01.23:364][592]LogHttp: Warning: 000008B851392300: libcurl info message cache 8 (TLSv1.3 (IN), TLS handshake, Finished (20)

It’s a python server with FLASK json request, I used my own ssl certificate with key just for encryption, I don’t want to pay for an enterprise certificate verified by an authority just for a local API…

3dRaven · January 19, 2025, 4:02pm

I unfortunately get a crash when trying to contact my custom https server on a different port, but I did notice it crashes calling curl. Maybe turning off verify peer could help skip the ssl check in your case.

Tooltip

TheSubZer0 · January 19, 2025, 5:15pm

I tried this, it didn’t work, I’m trying some way to edit the plugin or pass a parameter curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, 0); reference .But I don’t know where I change it @3dRaven

3dRaven · January 19, 2025, 5:48pm

These are direct settings for Curl that aren’t accessible via the blueprint. I’ll try to dig into the plugin and see where it can be changed.

TheSubZer0 · January 19, 2025, 5:49pm

Thank you! I’ll also be trying here on my side, I’ll be waiting

3dRaven · January 21, 2025, 11:10pm

HttpNoValid.zip (65.3 KB)
Custom curl function that allows to skip cert check.