diff options
| author | Daniel Stenberg <daniel@haxx.se> | 2016-11-10 11:16:25 +0100 |
|---|---|---|
| committer | Daniel Stenberg <daniel@haxx.se> | 2016-11-10 11:16:25 +0100 |
| commit | ea80a2dcfcdc280ff412489dc3928600ec76296c (patch) | |
| tree | 4781b744e89f26dd32316cab8936aba529115b7a | |
| parent | f43b7b6cb6724792b9680dd6d744648b4a7e5b59 (diff) | |
openssl: raise the max_version to 1.3 if asked for
Now I've managed to negotiate TLS 1.3 with https://enabled.tls13.com/ when
using boringssl.
| -rw-r--r-- | lib/vtls/openssl.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/lib/vtls/openssl.c b/lib/vtls/openssl.c index 66fa731dd..74e5915c3 100644 --- a/lib/vtls/openssl.c +++ b/lib/vtls/openssl.c @@ -1925,6 +1925,7 @@ static CURLcode ossl_connect_step1(struct connectdata *conn, int sockindex) case CURL_SSLVERSION_TLSv1_3: #ifdef TLS1_3_VERSION + SSL_CTX_set_max_proto_version(connssl->ctx, TLS1_3_VERSION); ctx_options |= SSL_OP_NO_SSLv2; ctx_options |= SSL_OP_NO_SSLv3; ctx_options |= SSL_OP_NO_TLSv1; |