Topics   All   MacOS (Only)   Windows (Only)   Linux (Only, Not)   iOS (Only, Not)  
Components   Crossplatform Mac & Win   Server   Client   Old   Deprecated   Guides   Examples   Videos
New in version: 12.1   12.2   12.3   12.4   12.5   13.0   13.1   13.2   13.3   13.4    Statistic    FMM    Blog  

CURL.SetOptionSSLOptions

Enable/disable specific SSL features with a bitmask.

Component Version macOS Windows Linux Server iOS SDK
CURL 8.2 ✅ Yes ✅ Yes ✅ Yes ✅ Yes ✅ Yes
MBS( "CURL.SetOptionSSLOptions"; curl; Value )   More

Parameters

Parameter Description Example
curl The CURL session handle. $curl
Value The option value. 16

Result

Returns OK or error.

Description

Enable/disable specific SSL features with a bitmask.
Combine the nunmeric values and e.g. pass 1+2+4.

NameValueDescription
CURLSSLOPT_ALLOW_BEAST1tells libcurl to allow the BEAST SSL vulnerability in the name of improving interoperability with older servers. Some SSL libraries have introduced work-arounds for this flaw but those work-arounds sometimes make the SSL communication fail. To regain functionality with those broken servers, a user can this way allow the vulnerability back.
CURLSSLOPT_NO_REVOKE2tells libcurl to disable certificate revocation checks for those SSL backends where such behavior is present.
CURLSSLOPT_NO_PARTIALCHAIN4tells libcurl to *NOT* accept a partial certificate chain if possible. The OpenSSL backend has this ability.
CURLSSLOPT_REVOKE_BEST_EFFORT8tells libcurl to ignore certificate revocation offline checks and ignore missing revocation list for those SSL backends where such behavior is present.
CURLSSLOPT_NATIVE_CA16tells libcurl to use standard certificate store of operating system. Currently implemented under MS-Windows.

See also SSL_OPTIONS option in CURL manual.

See also

Created 15th April 2018, last changed 24th June 2020


CURL.SetOptionSSLKeyType - CURL.SetOptionSSLSessionIDCache

💬 Ask a question or report a problem