docs: update the comments about loading CA certs with NSS
Bug: https://bugzilla.redhat.com/696783
This commit is contained in:
Родитель
0494da830b
Коммит
11dde6ac72
|
@ -423,11 +423,8 @@ The windows version of curl will automatically look for a CA certs file named
|
|||
\'curl-ca-bundle.crt\', either in the same directory as curl.exe, or in the
|
||||
Current Working Directory, or in any folder along your PATH.
|
||||
|
||||
If curl is built against the NSS SSL library then this option tells
|
||||
curl the nickname of the CA certificate to use within the NSS database
|
||||
defined by the environment variable SSL_DIR (or by default /etc/pki/nssdb).
|
||||
If the NSS PEM PKCS#11 module (libnsspem.so) is available then PEM files
|
||||
may be loaded.
|
||||
If curl is built against the NSS SSL library, the NSS PEM PKCS#11 module
|
||||
(libnsspem.so) needs to be available for this option to work properly.
|
||||
|
||||
If this option is used several times, the last one will be used.
|
||||
.IP "--capath <CA certificate directory>"
|
||||
|
|
|
@ -2260,8 +2260,8 @@ even indicate an accessible file.
|
|||
This option is by default set to the system path where libcurl's cacert bundle
|
||||
is assumed to be stored, as established at build time.
|
||||
|
||||
When built against NSS, this is the directory that the NSS certificate
|
||||
database resides in.
|
||||
If curl is built against the NSS SSL library, the NSS PEM PKCS#11 module
|
||||
(libnsspem.so) needs to be available for this option to work properly.
|
||||
.IP CURLOPT_ISSUERCERT
|
||||
Pass a char * to a zero terminated string naming a file holding a CA
|
||||
certificate in PEM format. If the option is set, an additional check against
|
||||
|
|
Загрузка…
Ссылка в новой задаче