1*6236dae4SAndroid Build Coastguard Worker--- 2*6236dae4SAndroid Build Coastguard Workerc: Copyright (C) Daniel Stenberg, <[email protected]>, et al. 3*6236dae4SAndroid Build Coastguard WorkerSPDX-License-Identifier: curl 4*6236dae4SAndroid Build Coastguard WorkerTitle: CURLOPT_CERTINFO 5*6236dae4SAndroid Build Coastguard WorkerSection: 3 6*6236dae4SAndroid Build Coastguard WorkerSource: libcurl 7*6236dae4SAndroid Build Coastguard WorkerSee-also: 8*6236dae4SAndroid Build Coastguard Worker - CURLINFO_CAINFO (3) 9*6236dae4SAndroid Build Coastguard Worker - CURLINFO_CAPATH (3) 10*6236dae4SAndroid Build Coastguard Worker - CURLINFO_CERTINFO (3) 11*6236dae4SAndroid Build Coastguard Worker - CURLOPT_CAINFO (3) 12*6236dae4SAndroid Build Coastguard Worker - CURLOPT_SSL_VERIFYPEER (3) 13*6236dae4SAndroid Build Coastguard WorkerProtocol: 14*6236dae4SAndroid Build Coastguard Worker - TLS 15*6236dae4SAndroid Build Coastguard WorkerTLS-backend: 16*6236dae4SAndroid Build Coastguard Worker - OpenSSL 17*6236dae4SAndroid Build Coastguard Worker - GnuTLS 18*6236dae4SAndroid Build Coastguard Worker - Schannel 19*6236dae4SAndroid Build Coastguard Worker - Secure Transport 20*6236dae4SAndroid Build Coastguard WorkerAdded-in: 7.19.1 21*6236dae4SAndroid Build Coastguard Worker--- 22*6236dae4SAndroid Build Coastguard Worker 23*6236dae4SAndroid Build Coastguard Worker# NAME 24*6236dae4SAndroid Build Coastguard Worker 25*6236dae4SAndroid Build Coastguard WorkerCURLOPT_CERTINFO - request SSL certificate information 26*6236dae4SAndroid Build Coastguard Worker 27*6236dae4SAndroid Build Coastguard Worker# SYNOPSIS 28*6236dae4SAndroid Build Coastguard Worker 29*6236dae4SAndroid Build Coastguard Worker~~~c 30*6236dae4SAndroid Build Coastguard Worker#include <curl/curl.h> 31*6236dae4SAndroid Build Coastguard Worker 32*6236dae4SAndroid Build Coastguard WorkerCURLcode curl_easy_setopt(CURL *handle, CURLOPT_CERTINFO, long certinfo); 33*6236dae4SAndroid Build Coastguard Worker~~~ 34*6236dae4SAndroid Build Coastguard Worker 35*6236dae4SAndroid Build Coastguard Worker# DESCRIPTION 36*6236dae4SAndroid Build Coastguard Worker 37*6236dae4SAndroid Build Coastguard WorkerPass a long set to 1 to enable libcurl's certificate chain info gatherer. With 38*6236dae4SAndroid Build Coastguard Workerthis enabled, libcurl extracts lots of information and data about the 39*6236dae4SAndroid Build Coastguard Workercertificates in the certificate chain used in the SSL connection. This data 40*6236dae4SAndroid Build Coastguard Workermay then be retrieved after a transfer using curl_easy_getinfo(3) and 41*6236dae4SAndroid Build Coastguard Workerits option CURLINFO_CERTINFO(3). 42*6236dae4SAndroid Build Coastguard Worker 43*6236dae4SAndroid Build Coastguard Worker# DEFAULT 44*6236dae4SAndroid Build Coastguard Worker 45*6236dae4SAndroid Build Coastguard Worker0 46*6236dae4SAndroid Build Coastguard Worker 47*6236dae4SAndroid Build Coastguard Worker# %PROTOCOLS% 48*6236dae4SAndroid Build Coastguard Worker 49*6236dae4SAndroid Build Coastguard Worker# EXAMPLE 50*6236dae4SAndroid Build Coastguard Worker 51*6236dae4SAndroid Build Coastguard Worker~~~c 52*6236dae4SAndroid Build Coastguard Workerint main(void) 53*6236dae4SAndroid Build Coastguard Worker{ 54*6236dae4SAndroid Build Coastguard Worker CURL *curl = curl_easy_init(); 55*6236dae4SAndroid Build Coastguard Worker if(curl) { 56*6236dae4SAndroid Build Coastguard Worker CURLcode res; 57*6236dae4SAndroid Build Coastguard Worker curl_easy_setopt(curl, CURLOPT_URL, "https://www.example.com/"); 58*6236dae4SAndroid Build Coastguard Worker 59*6236dae4SAndroid Build Coastguard Worker /* connect to any HTTPS site, trusted or not */ 60*6236dae4SAndroid Build Coastguard Worker curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, 0L); 61*6236dae4SAndroid Build Coastguard Worker curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, 0L); 62*6236dae4SAndroid Build Coastguard Worker 63*6236dae4SAndroid Build Coastguard Worker curl_easy_setopt(curl, CURLOPT_CERTINFO, 1L); 64*6236dae4SAndroid Build Coastguard Worker 65*6236dae4SAndroid Build Coastguard Worker res = curl_easy_perform(curl); 66*6236dae4SAndroid Build Coastguard Worker 67*6236dae4SAndroid Build Coastguard Worker if(!res) { 68*6236dae4SAndroid Build Coastguard Worker struct curl_certinfo *ci; 69*6236dae4SAndroid Build Coastguard Worker res = curl_easy_getinfo(curl, CURLINFO_CERTINFO, &ci); 70*6236dae4SAndroid Build Coastguard Worker 71*6236dae4SAndroid Build Coastguard Worker if(!res) { 72*6236dae4SAndroid Build Coastguard Worker int i; 73*6236dae4SAndroid Build Coastguard Worker printf("%d certs!\n", ci->num_of_certs); 74*6236dae4SAndroid Build Coastguard Worker 75*6236dae4SAndroid Build Coastguard Worker for(i = 0; i < ci->num_of_certs; i++) { 76*6236dae4SAndroid Build Coastguard Worker struct curl_slist *slist; 77*6236dae4SAndroid Build Coastguard Worker 78*6236dae4SAndroid Build Coastguard Worker for(slist = ci->certinfo[i]; slist; slist = slist->next) 79*6236dae4SAndroid Build Coastguard Worker printf("%s\n", slist->data); 80*6236dae4SAndroid Build Coastguard Worker } 81*6236dae4SAndroid Build Coastguard Worker } 82*6236dae4SAndroid Build Coastguard Worker } 83*6236dae4SAndroid Build Coastguard Worker curl_easy_cleanup(curl); 84*6236dae4SAndroid Build Coastguard Worker } 85*6236dae4SAndroid Build Coastguard Worker} 86*6236dae4SAndroid Build Coastguard Worker~~~ 87*6236dae4SAndroid Build Coastguard Worker 88*6236dae4SAndroid Build Coastguard Worker# HISTORY 89*6236dae4SAndroid Build Coastguard Worker 90*6236dae4SAndroid Build Coastguard WorkerSchannel support added in 7.50.0. Secure Transport support added in 7.79.0. 91*6236dae4SAndroid Build Coastguard WorkermbedTLS support added in 8.9.0. 92*6236dae4SAndroid Build Coastguard Worker 93*6236dae4SAndroid Build Coastguard Worker# %AVAILABILITY% 94*6236dae4SAndroid Build Coastguard Worker 95*6236dae4SAndroid Build Coastguard Worker# RETURN VALUE 96*6236dae4SAndroid Build Coastguard Worker 97*6236dae4SAndroid Build Coastguard WorkerReturns CURLE_OK if the option is supported, and CURLE_UNKNOWN_OPTION if not. 98