proxy-pinnedpubkey.md (1007B)
1 --- 2 c: Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al. 3 SPDX-License-Identifier: curl 4 Long: proxy-pinnedpubkey 5 Arg: <hashes> 6 Help: FILE/HASHES public key to verify proxy with 7 Protocols: TLS 8 Category: proxy tls 9 Added: 7.59.0 10 Multi: single 11 See-also: 12 - pinnedpubkey 13 - proxy 14 Example: 15 - --proxy-pinnedpubkey keyfile $URL 16 - --proxy-pinnedpubkey 'sha256//ce118b51897f4452dc' $URL 17 --- 18 19 # `--proxy-pinnedpubkey` 20 21 Use the specified public key file (or hashes) to verify the proxy. This can be 22 a path to a file which contains a single public key in PEM or DER format, or 23 any number of base64 encoded sha256 hashes preceded by 'sha256//' and 24 separated by ';'. 25 26 When negotiating a TLS or SSL connection, the server sends a certificate 27 indicating its identity. A public key is extracted from this certificate and 28 if it does not exactly match the public key provided to this option, curl 29 aborts the connection before sending or receiving any data. 30 31 Before curl 8.10.0 this option did not work due to a bug.