ホーム エクスプローラ ヘルプ
サインイン
dream
/
Android_verify
1
1
フォーク 0
ファイル 課題 0 プルリクエスト 0 Wiki
ツリー: 29346bed58
ブランチ タグ
Android_verify
/
lib
/
curl
/
share
/
man
/
man3
/
CURLOPT_CAINFO.3

CURLOPT_CAINFO.3 2.3 KB
履歴 Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768 
  1. .\" generated by cd2nroff 0.1 from CURLOPT_CAINFO.md
    2. 

  2. .TH CURLOPT_CAINFO 3 "2025-01-17" libcurl
    3. 

  3. .SH NAME
    4. 

  4. CURLOPT_CAINFO \- path to Certificate Authority (CA) bundle
    5. 

  5. .SH SYNOPSIS
    6. 

  6. .nf
    7. 

  7. #include <curl/curl.h>
    8. 

  8. 

  9. CURLcode curl_easy_setopt(CURL *handle, CURLOPT_CAINFO, char *path);
    10. 

  10. .fi
    11. 

  11. .SH DESCRIPTION
    12. 

  12. Pass a char pointer to a null\-terminated string naming a file holding one or
    13. 

  13. more certificates to verify the peer with.
    14. 

  14. 

  15. If \fICURLOPT_SSL_VERIFYPEER(3)\fP is zero and you avoid verifying the
    16. 

  16. server\(aqs certificate, \fICURLOPT_CAINFO(3)\fP need not even indicate an
    17. 

  17. accessible file.
    18. 

  18. 

  19. This option is by default set to the system path where libcurl\(aqs CA
    20. 

  20. certificate bundle is assumed to be stored, as established at build time.
    21. 

  21. 

  22. (iOS and macOS) When curl uses Secure Transport this option is supported. If
    23. 

  23. the option is not set, then curl uses the certificates in the system and user
    24. 

  24. Keychain to verify the peer.
    25. 

  25. 

  26. (Schannel) This option is supported for Schannel in Windows 7 or later but we
    27. 

  27. recommend not using it until Windows 8 since it works better starting then.
    28. 

  28. If the option is not set, then curl uses the certificates in the Windows\(aq
    29. 

  29. store of root certificates (the default for Schannel).
    30. 

  30. 

  31. The application does not have to keep the string around after setting this
    32. 

  32. option.
    33. 

  33. 

  34. The default value for this can be figured out with \fICURLINFO_CAINFO(3)\fP.
    35. 

  35. .SH DEFAULT
    36. 

  36. Built\-in system specific. When curl is built with Secure Transport or
    37. 

  37. Schannel, this option is not set by default.
    38. 

  38. .SH PROTOCOLS
    39. 

  39. This functionality affects all TLS based protocols: HTTPS, FTPS, IMAPS, POP3S, SMTPS etc.
    40. 

  40. 

  41. All TLS backends support this option.
    42. 

  42. .SH EXAMPLE
    43. 

  43. .nf
    44. 

  44. int main(void)
    45. 

  45. {
    46. 

  46.   CURL *curl = curl_easy_init();
    47. 

  47.   if(curl) {
    48. 

  48.     curl_easy_setopt(curl, CURLOPT_URL, "https://example.com/");
    49. 

  49.     curl_easy_setopt(curl, CURLOPT_CAINFO, "/etc/certs/cabundle.pem");
    50. 

  50.     curl_easy_perform(curl);
    51. 

  51.     curl_easy_cleanup(curl);
    52. 

  52.   }
    53. 

  53. }
    54. 

  54. .fi
    55. 

  55. .SH HISTORY
    56. 

  56. Schannel support added in libcurl 7.60.
    57. 

  57. .SH AVAILABILITY
    58. 

  58. Added in curl 7.4.2
    59. 

  59. .SH RETURN VALUE
    60. 

  60. Returns CURLE_OK if the option is supported, CURLE_UNKNOWN_OPTION if not, or
    61. 

  61. CURLE_OUT_OF_MEMORY if there was insufficient heap space.
    62. 

  62. .SH SEE ALSO
    63. 

  63. .BR CURLINFO_CAINFO (3),
    64. 

  64. .BR CURLOPT_CAINFO_BLOB (3),
    65. 

  65. .BR CURLOPT_CAPATH (3),
    66. 

  66. .BR CURLOPT_CA_CACHE_TIMEOUT (3),
    67. 

  67. .BR CURLOPT_SSL_VERIFYHOST (3),
    68. 

  68. .BR CURLOPT_SSL_VERIFYPEER (3)
    69.