cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: Certs in Linux 6.4 (Santiago) 7.19.7 default release from RH

From: Dan Fandrich <dan_at_coneharvesters.com>
Date: Wed, 11 Feb 2015 23:37:51 +0100

On Wed, Feb 11, 2015 at 10:22:54PM +0000, Fred Jones via curl-library wrote:
> Really??? No idea or where to look/read. Thanks.
>
>
> On Monday, February 9, 2015 2:40 PM, Fred Jones via curl-library
> <curl-library_at_cool.haxx.se> wrote:
>
>
> Still having issues with Linux trying to use certs, have everything in Windows
> working but here is my error.
>
> curl -H "Content-Type: text/xml" -H "SOAPAction: http://sap.com/xi/WebService/
> soap1.1" -H "https://serverpath/info/etc" -d @/tmp/1715165193.xml -v --cert /
> Certs/cert/at.cer --key /Certs/cert/at.key --capath /Certs/cert --cacert /Certs
> /cert/at_chain.cer -v
>
> * Initializing NSS with certpath: sql:/etc/pki/nssdb
> * failed to load '/Certs/cert/at.key' from CURLOPT_CAPATH
> * failed to load '/Certs/cert/test.txt' from CURLOPT_CAPATH
> * failed to load '/Certs/cert/1715165193.xml' from CURLOPT_CAPATH
> * CAfile: /Certs/cert/aticts_chain.cer
> CApath: /ATICTS/cert
> * NSS: client certificate not found: /Certs/cert/at.cer
> * SSL connection using TLS_RSA_WITH_AES_128_CBC_SHA
> * Server certificate:
>
> rest connection left off, why does it not find where I have put my certs etc?

Did you read the manual for the --cert option?

      If curl is built against the NSS SSL library then this option can tell
      curl the nickname of the certificate to use within the NSS database
      defined by the environment variable SSL_DIR (or by default
      /etc/pki/nssdb). If the NSS PEM PKCS#11 module (libnsspem.so) is avail‐
      able then PEM files may be loaded. If you want to use a file from the
      current directory, please precede it with "./" prefix, in order to
      avoid confusion with a nickname. If the nickname contains ":", it
      needs to be preceded by "\" so that it is not recognized as password
      delimiter. If the nickname contains "\", it needs to be escaped as
      "\\" so that it is not recognized as an escape character.

>>> Dan
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2015-02-11

This message: [ Message body ]
Next message: Fred Jones via curl-library: "Re: Certs in Linux 6.4 (Santiago) 7.19.7 default release from RH"
Previous message: Daniel Stenberg: "Re: about https proxy queston"
In reply to: Fred Jones via curl-library: "Re: Certs in Linux 6.4 (Santiago) 7.19.7 default release from RH"
Next in thread: Fred Jones via curl-library: "Re: Certs in Linux 6.4 (Santiago) 7.19.7 default release from RH"
Reply: Fred Jones via curl-library: "Re: Certs in Linux 6.4 (Santiago) 7.19.7 default release from RH"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]