summaryrefslogtreecommitdiff
path: root/docs/cmdline-opts/cert-status.d
diff options
context:
space:
mode:
authorDaniel Stenberg <daniel@haxx.se>2016-11-15 23:44:58 +0100
committerDaniel Stenberg <daniel@haxx.se>2016-11-16 10:42:51 +0100
commit41b1f649bf63e3663fcf3d4a678fef37688e32b7 (patch)
tree4fe54a49307d30025a67a5c83807d857f4bcbeba /docs/cmdline-opts/cert-status.d
parent81e61cda396da7eefb15dcf20b9e8be7ada37283 (diff)
downloadcurl-41b1f649bf63e3663fcf3d4a678fef37688e32b7.tar.gz
cmdline-docs: more options converted over
Diffstat (limited to 'docs/cmdline-opts/cert-status.d')
-rw-r--r--docs/cmdline-opts/cert-status.d13
1 files changed, 13 insertions, 0 deletions
diff --git a/docs/cmdline-opts/cert-status.d b/docs/cmdline-opts/cert-status.d
new file mode 100644
index 000000000..f1aaa2174
--- /dev/null
+++ b/docs/cmdline-opts/cert-status.d
@@ -0,0 +1,13 @@
+Long: cert-status
+Protocols: TLS
+Added: 7.41.0
+Help: Verify the status of the server certificate
+---
+Tells curl to verify the status of the server certificate by using the
+Certificate Status Request (aka. OCSP stapling) TLS extension.
+
+If this option is enabled and the server sends an invalid (e.g. expired)
+response, if the response suggests that the server certificate has been revoked,
+or no response at all is received, the verification fails.
+
+This is currently only implemented in the OpenSSL, GnuTLS and NSS backends.