Adds BUN_TLS_CA_STORE env var to select CA storeansg191/system-store

BUN_TLS_CA_STORE is a comma seperated list of CA store sources for bun
to retrieve certificates from. The options are currently `mozilla` for
embedded Mozilla certs & `system` for loading certs from the native
platform store. Defaults to `mozilla`.

1 files changed, 2 insertions, 0 deletions

diff --git a/src/cli/upgrade_command.zig b/src/cli/upgrade_command.zig
index d865d990d..78bab4500 100644
--- a/src/cli/upgrade_command.zig
+++ b/src/cli/upgrade_command.zig
@@ -244,6 +244,7 @@ pub const UpgradeCommand = struct {
             HTTP.FetchRedirect.follow,
         );
         async_http.client.reject_unauthorized = env_loader.getTLSRejectUnauthorized();
+        async_http.client.ca_store = env_loader.getTLSCAStore();
 
         if (!silent) async_http.client.progress_node = progress;
         const response = try async_http.sendSync(true);
@@ -491,6 +492,7 @@ pub const UpgradeCommand = struct {
             async_http.client.timeout = timeout;
             async_http.client.progress_node = progress;
             async_http.client.reject_unauthorized = env_loader.getTLSRejectUnauthorized();
+            async_http.client.ca_store = env_loader.getTLSCAStore();
 
             const response = try async_http.sendSync(true);