curl-library
Re: Certs in Linux 6.4 (Santiago) 7.19.7 default release from RH
Date: Wed, 11 Feb 2015 22:48:56 +0000 (UTC)
Thank you, I will look more at the documentation. Windows was easier to do than Linux. Thanks for the heads up.
On Wednesday, February 11, 2015 2:46 PM, Dan Fandrich <dan_at_coneharvesters.com> wrote:
On Wed, Feb 11, 2015 at 10:22:54PM +0000, Fred Jones via curl-library wrote:
> Really??? No idea or where to look/read. Thanks.
>
>
> On Monday, February 9, 2015 2:40 PM, Fred Jones via curl-library
> <curl-library_at_cool.haxx.se> wrote:
>
>
> Still having issues with Linux trying to use certs, have everything in Windows
> working but here is my error.
>
> curl -H "Content-Type: text/xml" -H "SOAPAction: http://sap.com/xi/WebService/
> soap1.1" -H "https://serverpath/info/etc" -d @/tmp/1715165193.xml -v --cert /
> Certs/cert/at.cer --key /Certs/cert/at.key --capath /Certs/cert --cacert /Certs
> /cert/at_chain.cer -v
>
> * Initializing NSS with certpath: sql:/etc/pki/nssdb
> * failed to load '/Certs/cert/at.key' from CURLOPT_CAPATH
> * failed to load '/Certs/cert/test.txt' from CURLOPT_CAPATH
> * failed to load '/Certs/cert/1715165193.xml' from CURLOPT_CAPATH
> * CAfile: /Certs/cert/aticts_chain.cer
> CApath: /ATICTS/cert
> * NSS: client certificate not found: /Certs/cert/at.cer
> * SSL connection using TLS_RSA_WITH_AES_128_CBC_SHA
> * Server certificate:
>
> rest connection left off, why does it not find where I have put my certs etc?
Did you read the manual for the --cert option?
If curl is built against the NSS SSL library then this option can tell
curl the nickname of the certificate to use within the NSS database
defined by the environment variable SSL_DIR (or by default
/etc/pki/nssdb). If the NSS PEM PKCS#11 module (libnsspem.so) is avail‐
able then PEM files may be loaded. If you want to use a file from the
current directory, please precede it with "./" prefix, in order to
avoid confusion with a nickname. If the nickname contains ":", it
needs to be preceded by "\" so that it is not recognized as password
delimiter. If the nickname contains "\", it needs to be escaped as
"\\" so that it is not recognized as an escape character.
>>> Dan
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2015-02-11