| 123456789101112131415161718192021222324252627 |
- Long: pinnedpubkey
- Arg: <hashes>
- Help: FILE/HASHES Public key to verify peer against
- Protocols: TLS
- ---
- Tells curl to use the specified public key file (or hashes) to verify the
- peer. This can be a path to a file which contains a single public key in PEM
- or DER format, or any number of base64 encoded sha256 hashes preceded by
- \'sha256//\' and separated by \';\'
- When negotiating a TLS or SSL connection, the server sends a certificate
- indicating its identity. A public key is extracted from this certificate and
- if it does not exactly match the public key provided to this option, curl will
- abort the connection before sending or receiving any data.
- PEM/DER support:
- 7.39.0: OpenSSL, GnuTLS and GSKit
- 7.43.0: NSS and wolfSSL/CyaSSL
- 7.47.0: mbedtls
- 7.49.0: PolarSSL
- sha256 support:
- 7.44.0: OpenSSL, GnuTLS, NSS and wolfSSL/CyaSSL.
- 7.47.0: mbedtls
- 7.49.0: PolarSSL
- Other SSL backends not supported.
- If this option is used several times, the last one will be used.
|
