mirror of
https://github.com/curl/curl.git
synced 2024-12-27 06:59:43 +08:00
2bc1d775f5
- they are mostly pointless in all major jurisdictions - many big corporations and projects already don't use them - saves us from pointless churn - git keeps history for us - the year range is kept in COPYING checksrc is updated to allow non-year using copyright statements Closes #10205
20 lines
704 B
D
20 lines
704 B
D
c: Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al.
|
|
SPDX-License-Identifier: curl
|
|
Long: cert-status
|
|
Protocols: TLS
|
|
Added: 7.41.0
|
|
Help: Verify the status of the server cert via OCSP-staple
|
|
Category: tls
|
|
See-also: pinnedpubkey
|
|
Example: --cert-status $URL
|
|
Multi: boolean
|
|
---
|
|
Tells curl to verify the status of the server certificate by using the
|
|
Certificate Status Request (aka. OCSP stapling) TLS extension.
|
|
|
|
If this option is enabled and the server sends an invalid (e.g. expired)
|
|
response, if the response suggests that the server certificate has been
|
|
revoked, or no response at all is received, the verification fails.
|
|
|
|
This is currently only implemented in the OpenSSL, GnuTLS and NSS backends.
|