curl / Mailing Lists / curl-library / Single Mail

Buy commercial curl support from WolfSSL. We help you work out your issues, debug your libcurl applications, use the API, port to new platforms, add new features and more. With a team lead by the curl founder himself.

Re: Get for CURLOPT_CAINFO, CURLOPT_CAPTH?

From: Daniel Stenberg via curl-library <curl-library_at_cool.haxx.se>
Date: Fri, 27 Mar 2020 11:34:28 +0100 (CET)

On Thu, 26 Mar 2020, Timothe Litt wrote:

> Note that OpenSSL has SSL_CERT_DIR and SSL_CERT_FILE.� And it evaluates them
> in the library - see
> https://www.openssl.org/docs/man1.1.0/man3/SSL_CTX_set_default_verify_paths.html

A default libcurl-openssl build never calls
SSL_CTX_set_default_verify_paths().

> Is that unique to the command line, or does libcurl do all or some of the
> work?

libcurl doesn't read any environment variables to find any certificates
(unless you build libcurl to use OpenSSL, with CURL_CA_FALLBACK enabled, don't
have a default path and don't set one in your application!!)

-- 
  / daniel.haxx.se | Commercial curl support up to 24x7 is available!
                   | Private help, bug fixes, support, ports, new features
                   | https://www.wolfssl.com/contact/

-------------------------------------------------------------------
Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library
Etiquette: https://curl.haxx.se/mail/etiquette.html
Received on 2020-03-27

This message: [ Message body ]
Next message: BLank Ennis via curl-library: "Grease"
Previous message: Daniel Stenberg via curl-library: "Re: common libcurl mistakes?"
In reply to: Timothe Litt: "Re: Get for CURLOPT_CAINFO, CURLOPT_CAPTH?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]