sigalgs.md (1062B)
1 --- 2 c: Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al. 3 SPDX-License-Identifier: curl 4 Long: sigalgs 5 Arg: <list> 6 Help: TLS signature algorithms to use 7 Protocols: TLS 8 Added: 8.14.0 9 Category: tls 10 Multi: single 11 See-also: 12 - ciphers 13 Example: 14 - --sigalgs ecdsa_secp256r1_sha256 $URL 15 --- 16 17 # `--sigalgs` 18 19 Set specific signature algorithms to use during SSL session establishment according to RFC 20 5246, 7.4.1.4.1. 21 22 An algorithm can use either a signature algorithm and a hash algorithm pair separated by a 23 `+` (e.g. `ECDSA+SHA224`), or its TLS 1.3 signature scheme name (e.g. `ed25519`). 24 25 Multiple algorithms can be provided by separating them with `:` 26 (e.g. `DSA+SHA256:rsa_pss_pss_sha256`). The parameter is available as `-sigalgs` in the 27 OpenSSL `s_client` and `s_server` utilities. 28 29 `--sigalgs` allows a OpenSSL powered curl to make SSL-connections with exactly 30 the signature algorithms requested by the client, avoiding nontransparent client/server 31 negotiations. 32 33 If this option is set, the default signature algorithm list built into OpenSSL are ignored.