mirror of
https://github.com/curl/curl.git
synced 2025-01-24 14:15:18 +08:00
8a3740bc8e
Add the ability to embed a CA bundle into the curl binary. It is used when no other runtime or build-time option set one. This helps curl-for-win macOS and Linux builds to run standalone, and also helps Windows builds to avoid picking up the CA bundle from an arbitrary (possibly world-writable) location (though this behaviour is not currently disablable). Usage: - cmake: `-DCURL_CA_EMBED=/path/to/curl-ca-bundle.crt` - autotools: `--with-ca-embed=/path/to/curl-ca-bundle.crt` - Makefile.mk: `CURL_CA_EMBED=/path/to/curl-ca-bundle.crt` Also add new command-line option `--dump-ca-embed` to dump the embedded CA bundle to standard output. Closes #14059
29 lines
704 B
Markdown
29 lines
704 B
Markdown
---
|
|
c: Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al.
|
|
SPDX-License-Identifier: curl
|
|
Long: proxy-cacert
|
|
Help: CA certificates to verify proxy against
|
|
Arg: <file>
|
|
Added: 7.52.0
|
|
Category: proxy tls
|
|
Multi: single
|
|
See-also:
|
|
- proxy-capath
|
|
- cacert
|
|
- capath
|
|
- dump-ca-embed
|
|
- proxy
|
|
Example:
|
|
- --proxy-cacert CA-file.txt -x https://proxy $URL
|
|
---
|
|
|
|
# `--proxy-cacert`
|
|
|
|
Use the specified certificate file to verify the HTTPS proxy. The file may
|
|
contain multiple CA certificates. The certificate(s) must be in PEM format.
|
|
|
|
This allows you to use a different trust for the proxy compared to the remote
|
|
server connected to via the proxy.
|
|
|
|
Equivalent to --cacert but used in HTTPS proxy context.
|