Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

rustls: CURLOPT_CAINFO_BLOB support #8255

Closed
wants to merge 1 commit into from

Conversation

sagebind
Copy link
Contributor

@sagebind sagebind commented Jan 9, 2022

Add support for CURLOPT_CAINFO_BLOB and CURLOPT_PROXY_CAINFO_BLOB to the rustls TLS backend. Multiple certificates in a single PEM string are supported just like OpenSSL does with this option.

This is compatible at least with rustls-ffi 0.8+ which is our new minimum version anyway.

I was able to build and run this on Windows, pulling trusted certs from the system and then add them to rustls by setting CURLOPT_CAINFO_BLOB. Handy!

Add support for `CURLOPT_CAINFO_BLOB` `CURLOPT_PROXY_CAINFO_BLOB` to the rustls TLS backend. Multiple certificates in a single PEM string are supported just like OpenSSL does with this option.

This is compatible at least with rustls-ffi 0.8+ which is our new minimum version anyway.

I was able to build and run this on Windows, pulling trusted certs from the system and then add them to rustls by setting `CURLOPT_CAINFO_BLOB`. Handy!
bagder
bagder approved these changes Jan 9, 2022
@bagder
Copy link
Member

@bagder bagder commented Jan 10, 2022

Thanks!

@bagder bagder closed this in 3be94d8 Jan 10, 2022
@sagebind sagebind deleted the rustls-blob-support branch Jan 26, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

Successfully merging this pull request may close these issues.

None yet

2 participants