2335cbaa21
- Add that the native CA store is used to verify certs in addition to the other certificate location settings. Basically clarify that --ca-native does not override --cacert etc. Prior to this change that behavior was only documented in CURLSSLOPT_NATIVE_CA which is what --ca-native maps to. Ref: https://github.com/curl/curl/pull/16181#issuecomment-2663998865 Closes https://github.com/curl/curl/pull/16373
733 B
733 B
| c | SPDX-License-Identifier | Long | Help | Protocols | Category | Added | Multi | See-also | Example | ||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al. | curl | proxy-ca-native | Load CA certs from the OS to verify proxy | TLS | tls | 8.2.0 | boolean |
|
|
--proxy-ca-native
Use the operating system's native CA store for certificate verification of the HTTPS proxy.
This option is independent of other HTTPS proxy CA certificate locations set at run time or build time. Those locations are searched in addition to the native CA store.
Equivalent to --ca-native but used in HTTPS proxy context. Refer to --ca-native for TLS backend limitations.