diff options
Diffstat (limited to 'docs/cmdline-opts/curves.md')
-rw-r--r-- | docs/cmdline-opts/curves.md | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/docs/cmdline-opts/curves.md b/docs/cmdline-opts/curves.md new file mode 100644 index 000000000..99f1ad48a --- /dev/null +++ b/docs/cmdline-opts/curves.md @@ -0,0 +1,28 @@ +--- +c: Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al. +SPDX-License-Identifier: curl +Long: curves +Arg: <algorithm list> +Help: (EC) TLS key exchange algorithm(s) to request +Protocols: TLS +Added: 7.73.0 +Category: tls +Multi: single +See-also: + - ciphers +Example: + - --curves X25519 $URL +--- + +# `--curves` + +Tells curl to request specific curves to use during SSL session establishment +according to RFC 8422, 5.1. Multiple algorithms can be provided by separating +them with `:` (e.g. `X25519:P-521`). The parameter is available identically in +the OpenSSL `s_client` and `s_server` utilities. + +--curves allows a OpenSSL powered curl to make SSL-connections with exactly +the (EC) curve requested by the client, avoiding nontransparent client/server +negotiations. + +If this option is set, the default curves list built into OpenSSL are ignored. |