From e0ca3e128329e5aaba192054d32e6054b9075549 Mon Sep 17 00:00:00 2001
From: jvoisin
Date: Wed, 13 May 2026 14:45:57 +0200
Subject: Add yet another disable_functions bypass

---
 config/default.rules | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/config/default.rules b/config/default.rules
index 0fa4878..818e73d 100644
--- a/config/default.rules
+++ b/config/default.rules
@@ -73,6 +73,14 @@ sp.cookie.name("PHPSESSID").samesite("lax");
     sp.disable_function.function("putenv").param("assignment").value_r("GCONV_").drop()
 @end_condition;
 
+# https://github.com/php/php-src/issues/22035
+# CURLOPT_SSLENGINE = 10089 
+@condition PHP_VERSION_ID < 80000;
+    sp.disable_function.function("curl_setopt").param("option").value("10089").drop()
+@condition PHP_VERSION_ID >= 80000;
+    sp.disable_function.function("curl_setopt").param("option").value("10089").drop()
+@end_condition;
+
 # Since people are stupid enough to use `extract` on things like $_GET or $_POST, we might as well mitigate this vector
 @condition PHP_VERSION_ID < 80000;
 sp.disable_function.function("extract").pos("0").value_r("^_").drop()
-- 
cgit v1.3