/usr/share/fusioninventory/lib/FusionInventory/Agent/HTTP/Protocol/https.pm is in fusioninventory-agent 1:2.3.10.1-1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 | package FusionInventory::Agent::HTTP::Protocol::https;
use strict;
use warnings;
use base qw(LWP::Protocol::https);
use IO::Socket::SSL qw(SSL_VERIFY_NONE SSL_VERIFY_PEER);
sub import {
my ($class, %params) = @_;
# set default context
IO::Socket::SSL::set_ctx_defaults(ca_file => $params{ca_cert_file})
if $params{ca_cert_file};
IO::Socket::SSL::set_ctx_defaults(ca_path => $params{ca_cert_dir})
if $params{ca_cert_dir};
}
sub _extra_sock_opts {
my ($self, $host) = @_;
return (
SSL_verify_mode => $self->{ua}->{ssl_check} ?
SSL_VERIFY_PEER : SSL_VERIFY_NONE,
SSL_verifycn_scheme => 'http',
SSL_verifycn_name => $host
);
}
## no critic (ProhibitMultiplePackages)
package FusionInventory::Agent::HTTP::Protocol::https::Socket;
use base qw(Net::HTTPS LWP::Protocol::http::SocketMethods);
1;
__END__
=head1 NAME
FusionInventory::Agent::HTTP::Protocol::https - HTTPS protocol handler for LWP
=head1 DESCRIPTION
This is an overrided HTTPS protocol handler for LWP, allowing to use
subjectAltNames for checking server certificate.
|