diff options
| author | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2019-01-24 20:25:59 +0100 |
|---|---|---|
| committer | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2019-01-25 08:24:54 +0100 |
| commit | 221610f3045e3b96d297da37df8d350cce6ef7f0 (patch) | |
| tree | 9856e71e8a26788a55b0e05978bedc25af30c45b /lib/priority.c | |
| parent | 6f3fe05234d7ac9b541dd5101ccbae82a596ed16 (diff) | |
| download | gnutls-221610f3045e3b96d297da37df8d350cce6ef7f0.tar.gz | |
priorities: when %NO_EXTENSIONS is specified disable TLS1.3
This makes the behavior of this priority string option well-defined
even when TLS1.3 is enabled.
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Diffstat (limited to 'lib/priority.c')
| -rw-r--r-- | lib/priority.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/priority.c b/lib/priority.c index 2699901d26..c942ec4232 100644 --- a/lib/priority.c +++ b/lib/priority.c @@ -1248,7 +1248,7 @@ static int set_ciphersuite_list(gnutls_priority_t priority_cache) /* if we have NULL ciphersuites, SRP, or RSA-PSK enabled remove TLS1.3+ * protocol versions; they cannot be negotiated under TLS1.3. */ - if (have_null || have_srp || have_rsa_psk) { + if (have_null || have_srp || have_rsa_psk || priority_cache->no_extensions) { for (i = j = 0; i < priority_cache->protocol.num_priorities; i++) { vers = version_to_entry(priority_cache->protocol.priorities[i]); if (!vers || !vers->tls13_sem) |