cURL / Mailing Lists / curl-library / Single Mail


Re: cCURL failed setting cipher list

From: Ray Satiro via curl-library <>
Date: Tue, 15 Dec 2015 00:13:19 -0500

On 12/14/2015 9:12 PM, Indtiny S wrote:
> I need to configure the cCURL client to specifically use the cipher
> TLS_RSA_WITH_AES_256_CBC_SHA256. so I used the below curl option
> curl_easy_setopt(curl, CURLOPT_SSL_CIPHER_LIST,
> Code Compiles properly but I get the below error during handshake,
> * Connected to ( port 8888 (#0)
> * failed setting cipher list: TLS_RSA_WITH_AES_256_CBC_SHA256
> * Closing connection 0
> 201: failed setting cipher list: TLS_RSA_WITH_AES_256_CBC_SHA256
> Curl Easy perform() failed: Couldn't use specified SSL cipher
> error59
> But if I comment this option request goes fine, but the Client Hello
> Includes all the chipers list .
> Since I know the cipher at the server and the one I want to use, How
> to configure the curl so that it can start a handshake with that
> cipher only?
> Am running my client on Ubuntu PC.

There's no universal cipher notation iirc, it depends on the SSL
backend. Check curl -V to see what it's using. If it's OpenSSL the
cipher short name for TLS_RSA_WITH_AES_256_CBC_SHA256 is AES256-SHA256.
None of this says anything about whether your server supports it though.
curl --ciphers AES256-SHA256

List admin:
Received on 2015-12-15