cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: API to include cacert using a C string

From: Thomas Glanzmann <thomas_at_glanzmann.de>
Date: Sat, 9 Jan 2016 08:19:27 +0100

Hello Daniel,

> I will gladly accept patches that introduce it. Have you considered
> the API/option for passing the cacert bundle to libcurl?

I have thought about this as well. I think we have two options:

        - Make CURLOPT_CAINFO and/or CURLOPT_CAPATH not only accept a
          path as they do today but also let them accept one or more
          X509 PEM encoded certificates. Try to write a generic wrapper
          function that works with all SSL backends, if that it is not
          possible write one per SSL backend.

- Introduce a new CURLOPT which only accepts one or more X509
PEM certificates. Maybe CURLOPT_EMBEDCA or something similar.

Maybe you have another and better idea, than let me know.

Cheers,
Thomas
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2016-01-09

This message: [ Message body ]
Next message: bch: "Re: API to include cacert using a C string"
Previous message: Daniel Stenberg: "Re: API to include cacert using a C string"
In reply to: Daniel Stenberg: "Re: API to include cacert using a C string"
Next in thread: bch: "Re: API to include cacert using a C string"
Reply: bch: "Re: API to include cacert using a C string"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]