diff options
author | Kamil Dudka <kdudka@redhat.com> | 2016-10-27 14:57:11 +0200 |
---|---|---|
committer | Kamil Dudka <kdudka@redhat.com> | 2016-11-07 11:52:07 +0100 |
commit | 6ad3add60654182a747f5971afb40817488ef0e8 (patch) | |
tree | 7e45ea9851feb2bc253503c35967a46098f438b5 /lib/vtls/gtls.c | |
parent | 5d45ced7a45ea38e32f1cbf73d7c63a3e4f241e7 (diff) |
vtls: support TLS 1.3 via CURL_SSLVERSION_TLSv1_3
Fully implemented with the NSS backend only for now.
Reviewed-by: Ray Satiro
Diffstat (limited to 'lib/vtls/gtls.c')
-rw-r--r-- | lib/vtls/gtls.c | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/lib/vtls/gtls.c b/lib/vtls/gtls.c index 5c87c7fe3..d47d80fc5 100644 --- a/lib/vtls/gtls.c +++ b/lib/vtls/gtls.c @@ -569,6 +569,9 @@ gtls_connect_step1(struct connectdata *conn, break; case CURL_SSLVERSION_TLSv1_2: protocol_priority[0] = GNUTLS_TLS1_2; + case CURL_SSLVERSION_TLSv1_3: + failf(data, "GnuTLS does not support TLSv1.3"); + return CURLE_SSL_CONNECT_ERROR; break; case CURL_SSLVERSION_SSLv2: default: @@ -607,6 +610,9 @@ gtls_connect_step1(struct connectdata *conn, prioritylist = GNUTLS_CIPHERS ":-VERS-SSL3.0:-VERS-TLS-ALL:" "+VERS-TLS1.2:" GNUTLS_SRP; break; + case CURL_SSLVERSION_TLSv1_3: + failf(data, "GnuTLS does not support TLSv1.3"); + return CURLE_SSL_CONNECT_ERROR; case CURL_SSLVERSION_SSLv2: default: failf(data, "GnuTLS does not support SSLv2"); |