Topics
All
MacOS
(Only)
Windows
(Only)
Linux
(Only, Not)
iOS
(Only, Not)
Components
Crossplatform Mac & Win
Server
Client
Old
Deprecated
Guides
Examples
Videos
New in version:
12.1
12.2
12.3
12.4
12.5
13.0
13.1
13.2
13.3
13.4
Statistic
FMM
Blog
Enable/disable specific SSL features with a bitmask.
Component | Version | macOS | Windows | Linux | Server | iOS SDK |
CURL | 8.2 | ✅ Yes | ✅ Yes | ✅ Yes | ✅ Yes | ✅ Yes |
Parameter | Description | Example |
---|---|---|
curl | The CURL session handle. | $curl |
Value | The option value. | 16 |
Returns OK or error.
Name | Value | Description |
CURLSSLOPT_ALLOW_BEAST | 1 | tells libcurl to allow the BEAST SSL vulnerability in the name of improving interoperability with older servers. Some SSL libraries have introduced work-arounds for this flaw but those work-arounds sometimes make the SSL communication fail. To regain functionality with those broken servers, a user can this way allow the vulnerability back. |
CURLSSLOPT_NO_REVOKE | 2 | tells libcurl to disable certificate revocation checks for those SSL backends where such behavior is present. |
CURLSSLOPT_NO_PARTIALCHAIN | 4 | tells libcurl to *NOT* accept a partial certificate chain if possible. The OpenSSL backend has this ability. |
CURLSSLOPT_REVOKE_BEST_EFFORT | 8 | tells libcurl to ignore certificate revocation offline checks and ignore missing revocation list for those SSL backends where such behavior is present. |
CURLSSLOPT_NATIVE_CA | 16 | tells libcurl to use standard certificate store of operating system. Currently implemented under MS-Windows. |
See also SSL_OPTIONS option in CURL manual.
Created 15th April 2018, last changed 24th June 2020