Domovská stránka Prehľadávať Pomoc
Prihlásiť sa
OWEALs
/
curl
zrkadlo https://github.com/curl/curl.git
2
0
Fork 0
Súbory Issues 8 Wiki
Strom: 00f8f9c22b
Branche Tagy
curl
/
docs
/
libcurl
/
opts
/
CURLOPT_SSLVERSION.3

CURLOPT_SSLVERSION.3 4.3 KB
História Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119 
  1. .\" **************************************************************************
    2. 

  2. .\" *                                  _   _ ____  _
    3. 

  3. .\" *  Project                     ___| | | |  _ \| |
    4. 

  4. .\" *                             / __| | | | |_) | |
    5. 

  5. .\" *                            | (__| |_| |  _ <| |___
    6. 

  6. .\" *                             \___|\___/|_| \_\_____|
    7. 

  7. .\" *
    8. 

  8. .\" * Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al.
    9. 

  9. .\" *
    10. 

  10. .\" * This software is licensed as described in the file COPYING, which
    11. 

  11. .\" * you should have received as part of this distribution. The terms
    12. 

  12. .\" * are also available at https://curl.se/docs/copyright.html.
    13. 

  13. .\" *
    14. 

  14. .\" * You may opt to use, copy, modify, merge, publish, distribute and/or sell
    15. 

  15. .\" * copies of the Software, and permit persons to whom the Software is
    16. 

  16. .\" * furnished to do so, under the terms of the COPYING file.
    17. 

  17. .\" *
    18. 

  18. .\" * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
    19. 

  19. .\" * KIND, either express or implied.
    20. 

  20. .\" *
    21. 

  21. .\" * SPDX-License-Identifier: curl
    22. 

  22. .\" *
    23. 

  23. .\" **************************************************************************
    24. 

  24. .\"
    25. 

  25. .TH CURLOPT_SSLVERSION 3 "17 Jun 2014" libcurl libcurl
    26. 

  26. .SH NAME
    27. 

  27. CURLOPT_SSLVERSION \- preferred TLS/SSL version
    28. 

  28. .SH SYNOPSIS
    29. 

  29. .nf
    30. 

  30. #include <curl/curl.h>
    31. 

  31. 

  32. CURLcode curl_easy_setopt(CURL *handle, CURLOPT_SSLVERSION, long version);
    33. 

  33. .fi
    34. 

  34. .SH DESCRIPTION
    35. 

  35. Pass a long as parameter to control which version range of SSL/TLS versions to
    36. 

  36. use.
    37. 

  37. 

  38. The SSL and TLS versions have typically developed from the most insecure
    39. 

  39. version to be more and more secure in this order through history: SSL v2,
    40. 

  40. SSLv3, TLS v1.0, TLS v1.1, TLS v1.2 and the most recent TLS v1.3.
    41. 

  41. 

  42. Use one of the available defines for this purpose. The available options are:
    43. 

  43. .RS
    44. 

  44. .IP CURL_SSLVERSION_DEFAULT
    45. 

  45. The default acceptable version range. The minimum acceptable version is by
    46. 

  46. default TLS v1.0 since 7.39.0 (unless the TLS library has a stricter rule).
    47. 

  47. .IP CURL_SSLVERSION_TLSv1
    48. 

  48. TLS v1.0 or later
    49. 

  49. .IP CURL_SSLVERSION_SSLv2
    50. 

  50. SSL v2 - refused
    51. 

  51. .IP CURL_SSLVERSION_SSLv3
    52. 

  52. SSL v3 - refused
    53. 

  53. .IP CURL_SSLVERSION_TLSv1_0
    54. 

  54. TLS v1.0 or later (Added in 7.34.0)
    55. 

  55. .IP CURL_SSLVERSION_TLSv1_1
    56. 

  56. TLS v1.1 or later (Added in 7.34.0)
    57. 

  57. .IP CURL_SSLVERSION_TLSv1_2
    58. 

  58. TLS v1.2 or later (Added in 7.34.0)
    59. 

  59. .IP CURL_SSLVERSION_TLSv1_3
    60. 

  60. TLS v1.3 or later (Added in 7.52.0)
    61. 

  61. .RE
    62. 

  62. 

  63. The maximum TLS version can be set by using \fIone\fP of the
    64. 

  64. CURL_SSLVERSION_MAX_ macros below. It is also possible to OR \fIone\fP of the
    65. 

  65. CURL_SSLVERSION_ macros with \fIone\fP of the CURL_SSLVERSION_MAX_ macros.
    66. 

  66. The MAX macros are not supported for WolfSSL.
    67. 

  67. .RS
    68. 

  68. .IP CURL_SSLVERSION_MAX_DEFAULT
    69. 

  69. The flag defines the maximum supported TLS version by libcurl, or the default
    70. 

  70. value from the SSL library is used. libcurl will use a sensible default
    71. 

  71. maximum, which was TLS v1.2 up to before 7.61.0 and is TLS v1.3 since then -
    72. 

  72. assuming the TLS library support it. (Added in 7.54.0)
    73. 

  73. .IP CURL_SSLVERSION_MAX_TLSv1_0
    74. 

  74. The flag defines maximum supported TLS version as TLS v1.0.
    75. 

  75. (Added in 7.54.0)
    76. 

  76. .IP CURL_SSLVERSION_MAX_TLSv1_1
    77. 

  77. The flag defines maximum supported TLS version as TLS v1.1.
    78. 

  78. (Added in 7.54.0)
    79. 

  79. .IP CURL_SSLVERSION_MAX_TLSv1_2
    80. 

  80. The flag defines maximum supported TLS version as TLS v1.2.
    81. 

  81. (Added in 7.54.0)
    82. 

  82. .IP CURL_SSLVERSION_MAX_TLSv1_3
    83. 

  83. The flag defines maximum supported TLS version as TLS v1.3.
    84. 

  84. (Added in 7.54.0)
    85. 

  85. .RE
    86. 

  86. 

  87. In versions of curl prior to 7.54 the CURL_SSLVERSION_TLS options were
    88. 

  88. documented to allow \fIonly\fP the specified TLS version, but behavior was
    89. 

  89. inconsistent depending on the TLS library.
    90. 

  90. 

  91. .SH DEFAULT
    92. 

  92. CURL_SSLVERSION_DEFAULT
    93. 

  93. .SH PROTOCOLS
    94. 

  94. All TLS based protocols: HTTPS, FTPS, IMAPS, POP3S, SMTPS etc.
    95. 

  95. .SH EXAMPLE
    96. 

  96. .nf
    97. 

  97. CURL *curl = curl_easy_init();
    98. 

  98. if(curl) {
    99. 

  99.   curl_easy_setopt(curl, CURLOPT_URL, "https://example.com");
    100. 

  100. 

  101.   /* ask libcurl to use TLS version 1.0 or later */
    102. 

  102.   curl_easy_setopt(curl, CURLOPT_SSLVERSION, (long)CURL_SSLVERSION_TLSv1);
    103. 

  103. 

  104.   /* Perform the request */
    105. 

  105.   curl_easy_perform(curl);
    106. 

  106. }
    107. 

  107. .fi
    108. 

  108. .SH AVAILABILITY
    109. 

  109. SSLv2 and SSLv3 are refused completely since curl 7.77.0
    110. 

  110. 

  111. SSLv2 is disabled by default since 7.18.1. Other SSL versions availability may
    112. 

  112. vary depending on which backend libcurl has been built to use.
    113. 

  113. 

  114. SSLv3 is disabled by default since 7.39.0.
    115. 

  115. .SH RETURN VALUE
    116. 

  116. Returns CURLE_OK if the option is supported, and CURLE_UNKNOWN_OPTION if not.
    117. 

  117. .SH "SEE ALSO"
    118. 

  118. .BR CURLOPT_USE_SSL "(3), " CURLOPT_HTTP_VERSION "(3), "
    119. 

  119. .BR CURLOPT_PROXY_SSLVERSION "(3), " CURLOPT_IPRESOLVE "(3) "
    120.