vtls: Fail on unrecognized param for CURLOPT_SSLVERSION

- Fix GnuTLS code for CURL_SSLVERSION_TLSv1_2 that broke when the TLS 1.3 support was added in 6ad3add. - Homogenize across code for all backends the error message when TLS 1.3 is not available to "<backend>: TLS 1.3 is not yet supported". - Return an error when a user-specified ssl version is unrecognized. --- Prior to this change our code for some of the backends used the 'default' label in the switch statement (ie ver unrecognized) for ssl.version and treated it the same as CURL_SSLVERSION_DEFAULT. Bug: https://curl.haxx.se/mail/lib-2016-11/0048.html Reported-by: Kamil Dudka
author: Jay Satiro <raysatiro@yahoo.com> 2016-11-07 21:51:27 -0500
committer: Jay Satiro <raysatiro@yahoo.com> 2016-11-09 22:08:49 -0500
commit: f43b7b6cb6724792b9680dd6d744648b4a7e5b59 (patch)
tree: 6bb5d127336047637ecf6689a0531150d1b0ca04 /lib/vtls/mbedtls.c
parent: 46f906a1b0e987ff8a044595550ba2a0e3d6368c (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/lib/vtls/mbedtls.c b/lib/vtls/mbedtls.c
index 9f29ff055..7797c3e40 100644
--- a/lib/vtls/mbedtls.c
+++ b/lib/vtls/mbedtls.c
@@ -351,8 +351,11 @@ mbed_connect_step1(struct connectdata *conn,
                                  MBEDTLS_SSL_MINOR_VERSION_3);
     infof(data, "mbedTLS: Set SSL version to TLS 1.2\n");
     break;
+  case CURL_SSLVERSION_TLSv1_3:
+    failf(data, "mbedTLS: TLS 1.3 is not yet supported");
+    return CURLE_SSL_CONNECT_ERROR;
   default:
-    failf(data, "mbedTLS: Unsupported SSL protocol version");
+    failf(data, "Unrecognized parameter passed via CURLOPT_SSLVERSION");
     return CURLE_SSL_CONNECT_ERROR;
   }
author	Jay Satiro <raysatiro@yahoo.com>	2016-11-07 21:51:27 -0500
committer	Jay Satiro <raysatiro@yahoo.com>	2016-11-09 22:08:49 -0500
commit	f43b7b6cb6724792b9680dd6d744648b4a7e5b59 (patch)
tree	6bb5d127336047637ecf6689a0531150d1b0ca04 /lib/vtls/mbedtls.c
parent	46f906a1b0e987ff8a044595550ba2a0e3d6368c (diff)