curl / Mailing Lists / curl-library / Single Mail


CURLOPT_SSL_VERIFYHOST and Wildcard Certificates

From: Paul D Rotter <>
Date: Thu, 12 Jan 2017 19:52:40 +0000


This question pertains to a C++ implementation of libCurl version 7.33.0.

I am implementing some security upgrades to our software including turning
on CURLOPT_SSL_VERIFYHOST (setting to value 2). Some of the server
certificates we receive are wildcard certs. I was expecting to see
failures after turning on the CURLOPT_SSL_VERIFYHOST, but libCurl it is
happily going about performing the HTTPS request. I'm not sure what the
expected behavior is here.


If I try to connect to should a certificate for
* pass this verification or no?





List admin:
Received on 2017-01-12