vtls: add options to specify range of enabled TLS versions

This commit introduces the CURL_SSLVERSION_MAX_* constants as well as the --tls-max option of the curl tool. Closes https://github.com/curl/curl/pull/1166
author: Jozef Kralik <jozef.kralik@eset.sk> 2016-12-13 21:10:00 +0100
committer: Kamil Dudka <kdudka@redhat.com> 2017-03-08 15:54:07 +0100
commit: 6448f98c1857de521fb2dd3f9d4e5659845b5474 (patch)
tree: 183b4febdb062f32be9113ae170e3b57f44a4b28 /lib/vtls/axtls.c
parent: b66690733642d764199eeb1b64aaaa2513c13db3 (diff)
1 files changed, 6 insertions, 0 deletions
diff --git a/lib/vtls/axtls.c b/lib/vtls/axtls.c
index 1de758b0c..af01fe314 100644
--- a/lib/vtls/axtls.c
+++ b/lib/vtls/axtls.c
@@ -156,6 +156,12 @@ static CURLcode connect_prep(struct connectdata *conn, int sockindex)
        same connection */
     return CURLE_OK;
 
+  if(SSL_CONN_CONFIG(version_max) != CURL_SSLVERSION_MAX_NONE) {
+    failf(data, "axtls does not support CURL_SSLVERSION_MAX");
+    return CURLE_SSL_CONNECT_ERROR;
+  }
+
+
   /* axTLS only supports TLSv1 */
   /* check to see if we've been told to use an explicit SSL/TLS version */
   switch(SSL_CONN_CONFIG(version)) {
author	Jozef Kralik <jozef.kralik@eset.sk>	2016-12-13 21:10:00 +0100
committer	Kamil Dudka <kdudka@redhat.com>	2017-03-08 15:54:07 +0100
commit	6448f98c1857de521fb2dd3f9d4e5659845b5474 (patch)
tree	183b4febdb062f32be9113ae170e3b57f44a4b28 /lib/vtls/axtls.c
parent	b66690733642d764199eeb1b64aaaa2513c13db3 (diff)