mirror/curl
1
0
Fork 0
mirror of https://github.com/curl/curl.git synced 2026-01-26 15:03:21 +00:00
Code Issues Packages Projects Releases Wiki Activity

docs: mention env vars not used by schannel

Browse Source 
Ref: #12704

Co-authored-by: Jay Satiro <raysatiro@yahoo.com>

Closes #12711
This commit is contained in:
Daniel Stenberg 2024-01-15 23:39:55 +01:00
parent ae9f01f336
commit 9034a16d97
No known key found for this signature in database
GPG Key ID: 5CC908FDB71E12C2
3 changed files with 12 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
docs/SSLCERTS.md
View File

@ -103,9 +103,9 @@ server, do one of the following:
certificate store or use it stand-alone as described. Just remember that
the security is no better than the way you obtained the certificate.
4. If you are using the curl command line tool, you can specify your own CA
cert file by setting the environment variable `CURL_CA_BUNDLE` to the path
of your choice.
4. If you are using the curl command line tool and the TLS backend is not
Schannel then you can specify your own CA cert file by setting the
environment variable `CURL_CA_BUNDLE` to the path of your choice.
If you are using the curl command line tool on Windows, curl will search
for a CA cert file named "curl-ca-bundle.crt" in these directories and in

6
docs/cmdline-opts/cacert.d
View File

@ -15,9 +15,9 @@ may contain multiple CA certificates. The certificate(s) must be in PEM
format. Normally curl is built to use a default file for this, so this option
is typically used to alter that default file.
curl recognizes the environment variable named 'CURL_CA_BUNDLE' if it is
set, and uses the given path as a path to a CA cert bundle. This option
overrides that variable.
curl recognizes the environment variable named 'CURL_CA_BUNDLE' if it is set
and the TLS backend is not Schannel, and uses the given path as a path to a CA
cert bundle. This option overrides that variable.
The windows version of curl automatically looks for a CA certs file named
'curl-ca-bundle.crt', either in the same directory as curl.exe, or in the

9
docs/cmdline-opts/page-footer
View File

@ -49,7 +49,8 @@ If set, the specified number of characters is used as the terminal width when
the alternative progress-bar is shown. If not set, curl tries to figure it out
using other ways.
.IP "CURL_CA_BUNDLE <file>"
If set, it is used as the --cacert value.
If set, it is used as the --cacert value. This environment variable is ignored
if Schannel is used as the TLS backend.
.IP "CURL_HOME <dir>"
If set, is the first variable curl checks when trying to find its home
directory. If not set, it continues to check *XDG_CONFIG_HOME*
@ -74,9 +75,11 @@ files can become rather large. Works with the ngtcp2 and quiche QUIC backends.
.IP SHELL
Used on VMS when trying to detect if using a **DCL** or a **unix** shell.
.IP "SSL_CERT_DIR <dir>"
If set, it is used as the --capath value.
If set, it is used as the --capath value. This environment variable is ignored
if Schannel is used as the TLS backend.
.IP "SSL_CERT_FILE <path>"
If set, it is used as the --cacert value.
If set, it is used as the --cacert value. This environment variable is ignored
if Schannel is used as the TLS backend.
.IP "SSLKEYLOGFILE <file name>"
If you set this environment variable to a file name, curl stores TLS secrets
from its connections in that file when invoked to enable you to analyze the