mirror of
https://github.com/curl/curl.git
synced 2026-04-11 12:01:42 +08:00
1f0f0bdb19
- protocols MUST match one in the accept-list - protocols are typically all uppercase - drop All - use SCP and SFTP instead of SSH - add Protocols: to some options previously missing one Closes #18675
828 B
828 B
| c | SPDX-License-Identifier | Long | Help | Added | Category | Protocols | Multi | See-also | Example | ||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al. | curl | doh-cert-status | Verify DoH server cert status OCSP-staple | 7.76.0 | dns tls | DNS | boolean |
|
|
--doh-cert-status
Same as --cert-status but used for DoH (DNS-over-HTTPS).
Verify the status of the DoH servers' certificate by using the Certificate Status Request (aka. OCSP stapling) TLS extension.
If this option is enabled and the DoH server sends an invalid (e.g. expired) response, if the response suggests that the server certificate has been revoked, or no response at all is received, the verification fails.
This support is currently only implemented in the OpenSSL and GnuTLS backends.