201 Sets the SSL context id. It can be given any string value. If this option
208 the client. With the B<-verify> option a certificate is requested but the
209 client does not have to send one, with the B<-Verify> option the client
213 anonymous cipher suite or PSK) this option has no effect.
234 certificate chain related to the certificate specified via the B<-cert> option.
286 server certificate chain when a certificate specified via the B<-dcert> option
312 This option translated a line feed from the terminal into CR+LF.
392 If this option is set then no certificate is used. This restricts the
412 The output is in HTML format so this option can be used with a web browser.
423 If the B<-WWW> option is used,
429 information like the B<-www> option.
433 When acting as web-server (using option B<-WWW> or B<-HTTP>) open files requested
447 option is enabled the peer does not need to send the close_notify alert and a
486 If this option is used, then verification errors close the connection.
516 Use the B<-cert_chain> option to specify the certificate of the server's
544 server certificate. Without this option an error is returned if the server
576 is also used via the B<-engine> option. For test purposes the dummy async engine
615 option enables various workarounds.
634 This option was introduced in OpenSSL 1.1.0.
638 option will have no effect without also changing the security level. Use the
639 B<-cipher> option to change the security level. See L<openssl-ciphers(1)> for
644 Disable RFC4507bis session ticket support. This option has no effect if TLSv1.3
650 handshake in TLSv1.3. The default number of tickets is 2. This option does not
663 Set the B<SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION> option.
734 This option must be provided in order to use a PSK cipher.
744 This option is deprecated.
749 This option is deprecated.
753 This option can only be used in conjunction with one of the DTLS options above.
754 With this option, this command will listen on a UDP port for incoming
765 conjunction with B<-dtls>, B<-dtls1> or B<-dtls1_2>. This option is only
773 implementations. Must be used in conjunction with B<-sctp>. This option is only
782 If this option is set then no DH parameters will be loaded effectively
799 This option was introduced in OpenSSL 3.2.0.
804 If this option is set and KTLS is enabled, SSL_sendfile() will be used
806 This option is only valid when B<-ktls> along with B<-WWW> or B<-HTTP>
811 If this option is set, SSL_sendfile() will use the zerocopy TX mode, which gives
814 This option depends on B<-sendfile>; when used alone, B<-sendfile> is implied,
881 proceed unless the B<-verify_return_error> option is used.
908 B<-www> nor the B<-WWW> option has been used then normally any data received
999 The -no_alt_chains option was added in OpenSSL 1.1.0.
1005 option were deprecated in OpenSSL 3.0.

Last Index update Fri Nov 22 14:03:13 UTC 2024

Dedicated to & Maintained by Room-11