Commit 4dcd25e1 authored by Alessandro Ghedini's avatar Alessandro Ghedini Committed by Kamil Dudka
Browse files

url: add CURLOPT_SSL_FALSESTART option 

This option can be used to enable/disable TLS False Start defined in the RFC
draft-bmoeller-tls-falsestart.
parent a332922a

docs/libcurl/curl_easy_setopt.3

+2 −0
Original line number Diff line number Diff line
@@ -436,6 +436,8 @@ Enable use of NPN. See \fICURLOPT_SSL_ENABLE_NPN(3)\fP 
Use identifier with SSL engine. See \fICURLOPT_SSLENGINE(3)\fP

.IP CURLOPT_SSLENGINE_DEFAULT

Default SSL engine. See \fICURLOPT_SSLENGINE_DEFAULT(3)\fP

.IP CURLOPT_SSL_FALSESTART

Enable TLS False Start. See \fICURLOPT_SSL_FALSESTART(3)\fP

.IP CURLOPT_SSLVERSION

SSL version to use. See \fICURLOPT_SSLVERSION(3)\fP

.IP CURLOPT_SSL_VERIFYHOST

docs/libcurl/opts/CURLOPT_SSL_FALSESTART.3

0 → 100644
+48 −0
Original line number Diff line number Diff line 
.\" **************************************************************************

.\" *                                  _   _ ____  _

.\" *  Project                     ___| | | |  _ \| |

.\" *                             / __| | | | |_) | |

.\" *                            | (__| |_| |  _ <| |___

.\" *                             \___|\___/|_| \_\_____|

.\" *

.\" * Copyright (C) 1998 - 2015, Daniel Stenberg, <daniel@haxx.se>, et al.

.\" *

.\" * This software is licensed as described in the file COPYING, which

.\" * you should have received as part of this distribution. The terms

.\" * are also available at http://curl.haxx.se/docs/copyright.html.

.\" *

.\" * You may opt to use, copy, modify, merge, publish, distribute and/or sell

.\" * copies of the Software, and permit persons to whom the Software is

.\" * furnished to do so, under the terms of the COPYING file.

.\" *

.\" * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY

.\" * KIND, either express or implied.

.\" *

.\" **************************************************************************

.\"

.TH CURLOPT_SSL_FALSESTART 3 "14 Feb 2015" "libcurl 7.41.0" "curl_easy_setopt options"

.SH NAME

CURLOPT_SSL_FALSESTART \- enable TLS false start

.SH SYNOPSIS

#include <curl/curl.h>



CURLcode curl_easy_setopt(CURL *handle, CURLOPT_SSL_FALSESTART, long enable);

.SH DESCRIPTION

Pass a long as parameter set to 1 to enable or 0 to disable.



This option determines whether libcurl should use false start during the TLS

handshake. False start is a mode where a TLS client will start sending

application data before verifying the server's Finished message, thus saving a

round trip when performing a full handshake.

.SH DEFAULT

0

.SH PROTOCOLS

All TLS based protocols: HTTPS, FTPS, IMAPS, POP3, SMTPS etc.

.SH EXAMPLE

TODO

.SH AVAILABILITY

Added in 7.42.0. This option is currently only supported by the NSS TLS

backend.

.SH RETURN VALUE

Returns CURLE_OK if false start is supported by the SSL backend, otherwise

returns CURLE_NOT_BUILT_IN.

docs/libcurl/opts/Makefile.am

+6 −5
Original line number Diff line number Diff line
@@ -90,7 +90,8 @@ man_MANS = CURLOPT_ACCEPT_ENCODING.3 CURLOPT_ACCEPTTIMEOUT_MS.3 \ 
 CURLOPT_SSLCERT.3 CURLOPT_SSLCERTTYPE.3 CURLOPT_SSL_CIPHER_LIST.3	\

 CURLOPT_SSL_CTX_DATA.3 CURLOPT_SSL_CTX_FUNCTION.3			\

 CURLOPT_SSL_ENABLE_ALPN.3 CURLOPT_SSL_ENABLE_NPN.3 CURLOPT_SSLENGINE.3	\

 CURLOPT_SSLENGINE_DEFAULT.3 CURLOPT_SSLKEY.3 CURLOPT_SSLKEYTYPE.3	\

 CURLOPT_SSLENGINE_DEFAULT.3 CURLOPT_SSL_FALSESTART.3			\

 CURLOPT_SSLKEY.3 CURLOPT_SSLKEYTYPE.3					\

 CURLOPT_SSL_OPTIONS.3 CURLOPT_SSL_SESSIONID_CACHE.3			\

 CURLOPT_SSL_VERIFYHOST.3 CURLOPT_SSL_VERIFYPEER.3			\

 CURLOPT_SSL_VERIFYSTATUS.3 CURLOPT_SSLVERSION.3 CURLOPT_STDERR.3	\
@@ -193,8 +194,8 @@ HTMLPAGES = CURLOPT_ACCEPT_ENCODING.html CURLOPT_ACCEPTTIMEOUT_MS.html \ 
 CURLOPT_SSL_CIPHER_LIST.html CURLOPT_SSL_CTX_DATA.html			\

 CURLOPT_SSL_CTX_FUNCTION.html CURLOPT_SSL_ENABLE_ALPN.html		\

 CURLOPT_SSL_ENABLE_NPN.html CURLOPT_SSLENGINE.html			\

 CURLOPT_SSLENGINE_DEFAULT.html CURLOPT_SSLKEY.html			\

 CURLOPT_SSLKEYTYPE.html CURLOPT_SSL_OPTIONS.html			\

 CURLOPT_SSLENGINE_DEFAULT.html CURLOPT_SSL_FALSESTART.html		\

 CURLOPT_SSLKEY.html CURLOPT_SSLKEYTYPE.html CURLOPT_SSL_OPTIONS.html	\

 CURLOPT_SSL_SESSIONID_CACHE.html CURLOPT_SSL_VERIFYHOST.html		\

 CURLOPT_SSL_VERIFYPEER.html CURLOPT_SSL_VERIFYSTATUS.html		\

 CURLOPT_SSLVERSION.html CURLOPT_STDERR.html CURLOPT_TCP_KEEPALIVE.html	\
@@ -296,8 +297,8 @@ PDFPAGES = CURLOPT_ACCEPT_ENCODING.pdf CURLOPT_ACCEPTTIMEOUT_MS.pdf \ 
 CURLOPT_SSL_CIPHER_LIST.pdf CURLOPT_SSL_CTX_DATA.pdf			\

 CURLOPT_SSL_CTX_FUNCTION.pdf CURLOPT_SSL_ENABLE_ALPN.pdf		\

 CURLOPT_SSL_ENABLE_NPN.pdf CURLOPT_SSLENGINE.pdf			\

 CURLOPT_SSLENGINE_DEFAULT.pdf CURLOPT_SSLKEY.pdf			\

 CURLOPT_SSLKEYTYPE.pdf CURLOPT_SSL_OPTIONS.pdf				\

 CURLOPT_SSLENGINE_DEFAULT.pdf CURLOPT_SSL_FALSESTART.pdf		\

 CURLOPT_SSLKEY.pdf CURLOPT_SSLKEYTYPE.pdf CURLOPT_SSL_OPTIONS.pdf	\

 CURLOPT_SSL_SESSIONID_CACHE.pdf CURLOPT_SSL_VERIFYHOST.pdf		\

 CURLOPT_SSL_VERIFYPEER.pdf CURLOPT_SSL_VERIFYSTATUS.pdf		\

 CURLOPT_SSLVERSION.pdf CURLOPT_STDERR.pdf CURLOPT_TCP_KEEPALIVE.pdf	\

docs/libcurl/symbols-in-versions

+1 −0
Original line number Diff line number Diff line
@@ -510,6 +510,7 @@ CURLOPT_SSL_CTX_DATA 7.10.6 
CURLOPT_SSL_CTX_FUNCTION        7.10.6

CURLOPT_SSL_ENABLE_ALPN         7.36.0

CURLOPT_SSL_ENABLE_NPN          7.36.0

CURLOPT_SSL_FALSESTART          7.42.0

CURLOPT_SSL_OPTIONS             7.25.0

CURLOPT_SSL_SESSIONID_CACHE     7.16.0

CURLOPT_SSL_VERIFYHOST          7.8.1

include/curl/curl.h

+3 −0
Original line number Diff line number Diff line
@@ -1626,6 +1626,9 @@ typedef enum { 
  /* Set if we should verify the certificate status. */

  CINIT(SSL_VERIFYSTATUS, LONG, 232),



  /* Set if we should enable TLS false start. */

  CINIT(SSL_FALSESTART, LONG, 233),



  CURLOPT_LASTENTRY /* the last unused */

} CURLoption;