cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: Question regarding CURLOPT_SSLCERT

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Fri, 23 Jan 2015 00:02:22 +0100 (CET)

On Thu, 22 Jan 2015, Sachin Nikumbh wrote:

> I am using libcurl to write a C/C++ client and looking into supporting https
> requests. My question is about the file referred to by CURLOPT_SSLCERT
> option in the context of multi-level PKI. If I have intermediate certificate
> authorities on the way to the root CA, do I put all the certificates in this
> file?

CURLOPT_SSLCERT is for *client* certificates. That's why the docs for it say
nothing about CAs at all.

You're probably looking for CURLOPT_CAINFO.

> My guess is yes as I don't see any other option that can contain the
> client's certificate chain.

Yes, the answer is yes when you use the correct option! =)

-- 
  / daniel.haxx.se
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette:  http://curl.haxx.se/mail/etiquette.html
Received on 2015-01-23