2abfc759b9
Option cleanups: --get is not upload --form* are post - added several options into ldap, smtp, imap and pop3 - shortened the category descriptions in the list category curl fixes: --create-dirs removed from 'curl' --ftp-create-dirs removed from 'curl' --netrc moved to 'auth' from 'curl' --netrc-file moved to 'auth' from 'curl' --netrc-optional moved to 'auth' from 'curl' --no-buffer moved to 'output' from 'curl' --no-clobber removed from 'curl' --output removed from 'curl' --output-dir removed from 'curl' --remove-on-error removed from 'curl' Add a "global" category: - Made all "global" options set this category Add a "deprecated" category: - Moved the deprecated options to it (maybe they should not be in any category long term) Add a 'timeout' category - Put a number of appropriate options in it Add an 'ldap' category - Put the LDAP related option in there Remove categories "ECH" and "ipfs" - They should not be categories. Had only one single option each. Remove category "misc" - It should not be a category as it is impossible to know when to browse it. --use-ascii moved to ftp and output --xattr moved to output --service-name moved to auth Managen fixes: - errors if an option is given a category name that is not already setup for in code - verifies that options set `scope: global` also is put in category `global´ Closes #14101
54 lines
992 B
Markdown
54 lines
992 B
Markdown
---
|
|
c: Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al.
|
|
SPDX-License-Identifier: curl
|
|
Long: ech
|
|
Arg: <config>
|
|
Help: Configure ECH
|
|
Added: 8.8.0
|
|
Category: tls
|
|
Protocols: HTTPS
|
|
Multi: single
|
|
See-also:
|
|
- doh-url
|
|
Example:
|
|
- --ech true $URL
|
|
---
|
|
|
|
# `--ech`
|
|
|
|
Specifies how to do ECH (Encrypted Client Hello).
|
|
|
|
The values allowed for \<config\> can be:
|
|
|
|
## "false"
|
|
Do not attempt ECH
|
|
|
|
## "grease"
|
|
|
|
Send a GREASE ECH extension
|
|
|
|
## "true"
|
|
|
|
Attempt ECH if possible, but do not fail if ECH is not attempted.
|
|
(The connection fails if ECH is attempted but fails.)
|
|
|
|
## "hard"
|
|
|
|
Attempt ECH and fail if that is not possible.
|
|
ECH only works with TLS 1.3 and also requires using
|
|
DoH or providing an ECHConfigList on the command line.
|
|
|
|
## "ecl:<b64val>"
|
|
|
|
A base64 encoded ECHConfigList that is used for ECH.
|
|
|
|
## "pn:<name>"
|
|
|
|
A name to use to over-ride the `public_name` field of an ECHConfigList
|
|
(only available with OpenSSL TLS support)
|
|
|
|
## Errors
|
|
|
|
Most errors cause error
|
|
*CURLE_ECH_REQUIRED* (101).
|