SSL_CONF_CTX_set_flags.3ssl man page

SSL_CONF_CTX_set_flags, SSL_CONF_CTX_clear_flags — Set of clear SSL configuration context flags


 #include <openssl/ssl.h>

 unsigned int SSL_CONF_CTX_set_flags(SSL_CONF_CTX *cctx, unsigned int flags);
 unsigned int SSL_CONF_CTX_clear_flags(SSL_CONF_CTX *cctx, unsigned int flags);


The function SSL_CONF_CTX_set_flags() sets flags in the context cctx.

The function SSL_CONF_CTX_clear_flags() clears flags in the context cctx.


The flags set affect how subsequent calls to SSL_CONF_cmd() or SSL_CONF_argv() behave.

Currently the following flags values are recognised:


recognise options intended for command line or configuration file use. At least one of these flags must be set.


recognise options intended for use in SSL/TLS clients or servers. One or both of these flags must be set.


recognise certificate and private key options.


If this option is set then if a private key is not specified for a certificate it will attempt to load a private key from the certificate file when SSL_CONF_CTX_finish() is called. If a key cannot be loaded from the certificate file an error occurs.


indicate errors relating to unrecognised options or missing arguments in the error queue. If this option isn't set such errors are only reflected in the return values of SSL_CONF_set_cmd() or SSL_CONF_set_argv()

Return Values

SSL_CONF_CTX_set_flags() and SSL_CONF_CTX_clear_flags() returns the new flags value after setting or clearing flags.

See Also

SSL_CONF_CTX_new(3), SSL_CONF_CTX_set_ssl_ctx(3), SSL_CONF_CTX_set1_prefix(3), SSL_CONF_cmd(3), SSL_CONF_cmd_argv(3)


These functions were first added to OpenSSL 1.0.2

Referenced By

SSL_CONF_cmd.3ssl(3), SSL_CONF_cmd_argv.3ssl(3), SSL_CONF_CTX_new.3ssl(3), SSL_CONF_CTX_set1_prefix.3ssl(3), SSL_CONF_CTX_set_ssl_ctx.3ssl(3).

2017-11-02 1.1.0g OpenSSL