cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: Certs in Linux 6.4 (Santiago) 7.19.7 default release from RH

From: Fred Jones via curl-library <curl-library_at_cool.haxx.se>
Date: Wed, 11 Feb 2015 22:48:56 +0000 (UTC)

Thank you, I will look more at the documentation. Windows was easier to do than Linux. Thanks for the heads up.
 

     On Wednesday, February 11, 2015 2:46 PM, Dan Fandrich <dan_at_coneharvesters.com> wrote:
   

 On Wed, Feb 11, 2015 at 10:22:54PM +0000, Fred Jones via curl-library wrote:
> Really??? No idea or where to look/read. Thanks.
>
>
> On Monday, February 9, 2015 2:40 PM, Fred Jones via curl-library
> <curl-library_at_cool.haxx.se> wrote:
>
>
> Still having issues with Linux trying to use certs, have everything in Windows
> working but here is my error.
>
> curl -H "Content-Type: text/xml" -H "SOAPAction: http://sap.com/xi/WebService/
> soap1.1" -H "https://serverpath/info/etc" -d @/tmp/1715165193.xml -v --cert /
> Certs/cert/at.cer --key /Certs/cert/at.key --capath /Certs/cert --cacert /Certs
> /cert/at_chain.cer -v
>
> * Initializing NSS with certpath: sql:/etc/pki/nssdb
> * failed to load '/Certs/cert/at.key' from CURLOPT_CAPATH
> * failed to load '/Certs/cert/test.txt' from CURLOPT_CAPATH
> * failed to load '/Certs/cert/1715165193.xml' from CURLOPT_CAPATH
> *  CAfile: /Certs/cert/aticts_chain.cer
>  CApath: /ATICTS/cert
> * NSS: client certificate not found: /Certs/cert/at.cer
> * SSL connection using TLS_RSA_WITH_AES_128_CBC_SHA
> * Server certificate:
>
> rest connection left off, why does it not find where I have put my certs etc?

Did you read the manual for the --cert option?

      If curl is built against the NSS SSL library then this option can  tell
      curl  the  nickname  of  the certificate to use within the NSS database
      defined  by  the  environment  variable  SSL_DIR  (or  by  default
      /etc/pki/nssdb). If the NSS PEM PKCS#11 module (libnsspem.so) is avail‐
      able then PEM files may be loaded. If you want to use a file  from  the
      current  directory,  please  precede  it  with "./" prefix, in order to
      avoid confusion with a nickname.  If  the  nickname  contains  ":",  it
      needs  to  be  preceded by "\" so that it is not recognized as password
      delimiter.  If the nickname contains "\", it needs  to  be  escaped  as
      "\\" so that it is not recognized as an escape character.

>>> Dan
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette:  http://curl.haxx.se/mail/etiquette.html

   

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2015-02-11