vtls: support TLS 1.3 via CURL_SSLVERSION_TLSv1_3

Fully implemented with the NSS backend only for now. Reviewed-by: Ray Satiro
author: Kamil Dudka <kdudka@redhat.com> 2016-10-27 14:57:11 +0200
committer: Kamil Dudka <kdudka@redhat.com> 2016-11-07 11:52:07 +0100
commit: 6ad3add60654182a747f5971afb40817488ef0e8 (patch)
tree: 7e45ea9851feb2bc253503c35967a46098f438b5 /lib/vtls/gtls.c
parent: 5d45ced7a45ea38e32f1cbf73d7c63a3e4f241e7 (diff)
1 files changed, 6 insertions, 0 deletions
diff --git a/lib/vtls/gtls.c b/lib/vtls/gtls.c
index 5c87c7fe3..d47d80fc5 100644
--- a/lib/vtls/gtls.c
+++ b/lib/vtls/gtls.c
@@ -569,6 +569,9 @@ gtls_connect_step1(struct connectdata *conn,
       break;
     case CURL_SSLVERSION_TLSv1_2:
       protocol_priority[0] = GNUTLS_TLS1_2;
+    case CURL_SSLVERSION_TLSv1_3:
+      failf(data, "GnuTLS does not support TLSv1.3");
+      return CURLE_SSL_CONNECT_ERROR;
     break;
       case CURL_SSLVERSION_SSLv2:
     default:
@@ -607,6 +610,9 @@ gtls_connect_step1(struct connectdata *conn,
       prioritylist = GNUTLS_CIPHERS ":-VERS-SSL3.0:-VERS-TLS-ALL:"
                      "+VERS-TLS1.2:" GNUTLS_SRP;
       break;
+    case CURL_SSLVERSION_TLSv1_3:
+      failf(data, "GnuTLS does not support TLSv1.3");
+      return CURLE_SSL_CONNECT_ERROR;
     case CURL_SSLVERSION_SSLv2:
     default:
       failf(data, "GnuTLS does not support SSLv2");
author	Kamil Dudka <kdudka@redhat.com>	2016-10-27 14:57:11 +0200
committer	Kamil Dudka <kdudka@redhat.com>	2016-11-07 11:52:07 +0100
commit	6ad3add60654182a747f5971afb40817488ef0e8 (patch)
tree	7e45ea9851feb2bc253503c35967a46098f438b5 /lib/vtls/gtls.c
parent	5d45ced7a45ea38e32f1cbf73d7c63a3e4f241e7 (diff)