From: Quentin Pradet <quentin.pradet@gmail.com>
Date: Wed, 17 Feb 2021 10:11:08 +0000 (+0400)
Subject: Explain SSL_CERT_DIR specific format (#1470)
X-Git-Tag: 0.17.0~4
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=645ae4ed9c5fe35788ca13b9bd9d264b2dfb2784;p=thirdparty%2Fhttpx.git

Explain SSL_CERT_DIR specific format (#1470)

It's easy to believe that any .pem files there will get picked up automatically, but that's not the case.
---

diff --git a/docs/environment_variables.md b/docs/environment_variables.md
index 1cc5ff34..d9cc89a5 100644
--- a/docs/environment_variables.md
+++ b/docs/environment_variables.md
@@ -122,11 +122,9 @@ SSL_CERT_FILE=/path/to/ca-certs/ca-bundle.crt python -c "import httpx; httpx.get
 
 ## `SSL_CERT_DIR`
 
-Valid values: a directory
+Valid values: a directory following an [OpenSSL specific layout](https://www.openssl.org/docs/manmaster/man3/SSL_CTX_load_verify_locations.html).
 
-If this environment variable is set then HTTPX will load
-CA certificates from the specified location instead of the default
-location.
+If this environment variable is set and the directory follows an [OpenSSL specific layout](https://www.openssl.org/docs/manmaster/man3/SSL_CTX_load_verify_locations.html) (ie. you ran `c_rehash`) then HTTPX will load CA certificates from this directory instead of the default location.
 
 Example: