/

CURLOPT_SSL_OPTIONS (3) Linux Manual Page

ByLinux Manual Posted on Updated on

CURLOPT_SSL_OPTIONS – set SSL behavior options

Synopsis

#include <curl/curl.h>

CURLcode curl_easy_setopt(CURL *handle, CURLOPT_SSL_OPTIONS, long bitmask);

Description

Pass a long with a bitmask to tell libcurl about specific SSL behaviors.

CURLSSLOPT_ALLOW_BEAST is the only supported bit and by setting this the user will tell libcurl to not attempt to use any workarounds for a security flaw in the SSL3 and TLS1.0 protocols. If this option isn’t used or this bit is set to 0, the SSL layer libcurl uses may use a work-around for this flaw although it might cause interoperability problems with some (older) SSL implementations. WARNING: avoiding this work-around lessens the security, and by setting this option to 1 you ask for exactly that.

Default

0

Protocols

All TLS-based protocols

Example

TODO

Availability

Added in 7.25.0

Return Value

Returns CURLE_OK if the option is supported, and CURLE_UNKNOWN_OPTION if not.

See Also

CURLOPT_SSLVERSION(3), CURLOPT_SSL_CIPHER_LIST(3),

Leave a Reply

Your email address will not be published. Required fields are marked *