On Thu, 26 Mar 2020, Timothe Litt wrote:
Note that OpenSSL has SSL_CERT_DIR and SSL_CERT_FILE. And it evaluates them
in the library - see
https://www.openssl.org/docs/man1.1.0/man3/SSL_CTX_set_default_verify_paths.html
A default libcurl-openssl build never calls
SSL_CTX_set_default_verify_paths().
Is that unique to the command line, or does libcurl do all or some of the
work?
libcurl doesn't read any environment variables to find any certificates
(unless you build libcurl to use OpenSSL, with CURL_CA_FALLBACK enabled, don't
have a default path and don't set one in your application!!)
--
/ daniel.haxx.se | Commercial curl support up to 24x7 is available!
| Private help, bug fixes, support, ports, new features
| https://www.wolfssl.com/contact/-------------------------------------------------------------------
Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library
Etiquette: https://curl.haxx.se/mail/etiquette.html
