From fea0120312f0e6a74b9dcc2a194c76c87c727ffe Mon Sep 17 00:00:00 2001
From: georgeok <giorgos.n.oikonomou@gmail.com>
Date: Wed, 10 Jul 2019 14:34:17 +0300
Subject: CIPHERS.md: Explain Schannel error SEC_E_ALGORITHM_MISMATCH

If the SSL backend is Schannel and the user specifies an Schannel CALG_
that is not supported by the protocol or the server then curl returns
CURLE_SSL_CONNECT_ERROR (35) SEC_E_ALGORITHM_MISMATCH.

Fixes https://github.com/curl/curl/issues/3389
Closes https://github.com/curl/curl/pull/4106
---
 docs/CIPHERS.md | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'docs')

diff --git a/docs/CIPHERS.md b/docs/CIPHERS.md
index 5b2dde189..19aedf36f 100644
--- a/docs/CIPHERS.md
+++ b/docs/CIPHERS.md
@@ -461,6 +461,12 @@ specific ciphersuites. They are
 [defined](https://docs.microsoft.com/windows/desktop/SecCrypto/alg-id) by
 Microsoft.
 
+There is also the case that the selected algorithm is not supported by the
+protocol or does not match the ciphers offered by the server during the SSL
+negotiation. In this case curl will return error
+`CURLE_SSL_CONNECT_ERROR (35) SEC_E_ALGORITHM_MISMATCH`
+and the request will fail.
+
 `CALG_MD2`,
 `CALG_MD4`,
 `CALG_MD5`,
-- 
cgit v1.2.3