mirror of
https://github.com/curl/curl.git
synced 2024-12-21 06:50:10 +08:00
9ad23c38e5
These are two boolean options to ask curl to use the native OS's CA store when verifying TLS servers. For peers and for proxies respectively. They currently only have an effect for curl on Windows when built to use OpenSSL for TLS. Closes #11049
20 lines
707 B
Makefile
20 lines
707 B
Makefile
c: Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al.
|
|
SPDX-License-Identifier: curl
|
|
Long: ca-native
|
|
Help: Use CA certificates from the native OS
|
|
Protocols: TLS
|
|
Category: tls
|
|
See-also: cacert capath insecure
|
|
Example: --ca-native $URL
|
|
Added: 8.2.0
|
|
Multi: boolean
|
|
---
|
|
Tells curl to use the CA store from the native operating system to verify the
|
|
peer. By default, curl will otherwise use a CA store provided in a single file
|
|
or directory, but when using this option it will interface the operating
|
|
system's own vault.
|
|
|
|
This option only works for curl on Windows when built to use OpenSSL. When
|
|
curl on Windows is built to use Schannel, this feature is implied and curl
|
|
then only uses the native CA store.
|