Components All New MacOS Windows Linux iOS
Examples Mac & Win Server Client Guides Statistic FMM Blog Deprecated Old

CURL.SetOptionSSLOptions

Enable/disable specific SSL features with a bitmask.

Component Version macOS Windows Linux Server iOS SDK
CURL 8.2 ✅ Yes ✅ Yes ✅ Yes ✅ Yes ✅ Yes
MBS( "CURL.SetOptionSSLOptions"; curl; Value )   More

Parameters

Parameter Description Example
curl The CURL session handle. $curl
Value The option value. 16

Result

Returns OK or error.

Description

Enable/disable specific SSL features with a bitmask.
Combine the nunmeric values and e.g. pass 1+2+4.

NameValueDescription
CURLSSLOPT_ALLOW_BEAST1tells libcurl to allow the BEAST SSL vulnerability in the name of improving interoperability with older servers. Some SSL libraries have introduced work-arounds for this flaw but those work-arounds sometimes make the SSL communication fail. To regain functionality with those broken servers, a user can this way allow the vulnerability back.
CURLSSLOPT_NO_REVOKE2tells libcurl to disable certificate revocation checks for those SSL backends where such behavior is present.
CURLSSLOPT_NO_PARTIALCHAIN4tells libcurl to *NOT* accept a partial certificate chain if possible. The OpenSSL backend has this ability.
CURLSSLOPT_REVOKE_BEST_EFFORT8tells libcurl to ignore certificate revocation offline checks and ignore missing revocation list for those SSL backends where such behavior is present.
CURLSSLOPT_NATIVE_CA16tells libcurl to use standard certificate store of operating system. Currently implemented under MS-Windows.

See also SSL_OPTIONS option in CURL manual.

See also

Created 15th April 2018, last changed 24th June 2020


CURL.SetOptionSSLKeyType - CURL.SetOptionSSLSessionIDCache