Specifies whether to expect "close notify" from the peer before shutting down the connection.
ssloOpenSSLDTLSWorkaround = 2
ssloOpenSSLDTLSWorkaround
f_ssloOpenSSLDTLSWorkaround = 2
Enables/disables a workaround to correctly handle DTLS implementation in some old versions of OpenSSL. Only in one occasion in a thousand should users switch this option.
ssloDisableKexLengthAlignment = 4
ssloDisableKexLengthAlignment
f_ssloDisableKexLengthAlignment = 4
Some implementations of TLS require equal lengths for public and encrypted keys, hence the encrypted key should be extended with zeroes in some cases. ssloDisableKexLengthAlignment switches the key length alignment. Normally, users should not switch this option.
ssloForceUseOfClientCertHashAlg = 8
ssloForceUseOfClientCertHashAlg
f_ssloForceUseOfClientCertHashAlg = 8
When this option is set, TElSSLClient will use the same hash algorithm as used by the client's certificate.
ssloAutoAddServerNameExtension = 16
ssloAutoAddServerNameExtension
f_ssloAutoAddServerNameExtension = 16
Defines whether to automatically use the Server Name extension.
ssloAcceptTrustedSRPPrimesOnly = 32
ssloAcceptTrustedSRPPrimesOnly
f_ssloAcceptTrustedSRPPrimesOnly = 32
If this option is set, SRP credentials are only accepted by the client if the server's prime is "trusted" as defined in RFC 5054. Otherwise, SSRPPrimeNotTrusted error is thrown.