Download
Browse source Changelog
Documentation
Project   Help us   Known bugs   TODO Protocols   CA bundle   HTTP Cookies   HTTP/2   SSL Certs Releases   Security   Version numbers   Vulnerabilities curl tool   man page   Tutorial   HTTP scripting Who and Why
libcurl
ABI API Competitors Examples Features Mailing list Related libs Using libcurl Tutorial Testimonials
Get Help
curl-library curl-users curl-announce curl-commits Book: Everything curl Report a bug Mail Etiquette
Development
Autobuilds Code Style Contribute Internals Release Notes Release Procedure Roadmap Run Tests Security Specifications Test curl
News
Changelog Release table
curl / Mailing Lists / curl-library / Single Mail

curl-library

Re: libcurl usage outputs entire CA cert bundle

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Thu, 26 Oct 2017 23:29:26 +0200 (CEST)

On Thu, 26 Oct 2017, Andrew Gale wrote:

> When making a POST request as follows, every certificate in the cacert.pem
> bundle is output before the response:

...

> Could this be caused by the server instead of libcurl?

Curious!

I'd blame the SSL library. That's the only component involved that actually
knows of the entire CA cert bundle. libcurl lets the SSL library deal with it
and never gets to know the entire thing, and the server is completely in the
dark as it only sends its own certificate(s) in the handshake. 

-- 
  / daniel.haxx.se
-------------------------------------------------------------------
Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library
Etiquette:   https://curl.haxx.se/mail/etiquette.html
Received on 2017-10-26