acdw
/
bollux
1
1
Fork 1
Code Issues 5 Pull Requests Projects Releases Wiki Activity

Added explicit support for TLS v1.3 

From 8d20bf3b790991a33c0ab721a2746ec222a74f2a Mon Sep 17 00:00:00 2001
From: Parker Ellertson <pellertson@firemail.cc>
Date: Tue, 2 Jun 2020 15:06:34 -0700
Subject: [PATCH bollux] Added explicit support for TLS v1.3
This commit is contained in:
Parker Ellertson 2020-06-02 15:16:28 -07:00 committed by Case Duckworth
parent 7151ad9630
commit a3422e7ef8
1 changed files with 9 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
bollux
View File

@ -304,9 +304,15 @@ request_url() {
local port="$2"
local url="$3"
ssl_cmd=(openssl s_client -crlf -quiet -connect "$server:$port")
ssl_cmd+=(-servername "$server") # SNI
run "${ssl_cmd[@]}" <<<"$url" 2>/dev/null
# support for TLS v1.3 and v1.2
ssl_cmd_tls1_2=(openssl s_client -tls1_2 -crlf -quiet -connect "$server:$port")
ssl_cmd_tls1_3=(openssl s_client -tls1_3 -crlf -quiet -connect "$server:$port")
ssl_cmd_tls1_2+=(-servername "$server") # SNI
ssl_cmd_tls1_3+=(-servername "$server") # SNI
# always try to connect with TLS v1.3 first
run "${ssl_cmd_tls1_3[@]}" <<<"$url" 2>/dev/null || run "${ssl_cmd_tls1_2[@]}" <<< "$url" 2>/dev/null
}
handle_response() {