ngtcp2: disable TLSv1.3 compatible mode when using GnuTLS

author Jun-ya Kato <kato@win6.jp>

Mon, 7 Jun 2021 00:52:14 +0000 (00:52 +0000)

committer Daniel Stenberg <daniel@haxx.se>

Tue, 8 Jun 2021 14:10:39 +0000 (16:10 +0200)
author Jun-ya Kato <kato@win6.jp>
Mon, 7 Jun 2021 00:52:14 +0000 (00:52 +0000)
committer Daniel Stenberg <daniel@haxx.se>
Tue, 8 Jun 2021 14:10:39 +0000 (16:10 +0200)
diff --git a/lib/vquic/ngtcp2.c b/lib/vquic/ngtcp2.c

index 7f076759b8f0e99838d840b5a48357e4bb5e4f7d..d1cd63dfbe877f67ce1ffe9bbd22c1eb8fb67b48 100644 (file)
--- a/lib/vquic/ngtcp2.c
+++ b/lib/vquic/ngtcp2.c
@@ -86,7 +86,8 @@ struct h3out {
  #define QUIC_PRIORITY \
    "NORMAL:-VERS-ALL:+VERS-TLS1.3:-CIPHER-ALL:+AES-128-GCM:+AES-256-GCM:" \
    "+CHACHA20-POLY1305:+AES-128-CCM:-GROUP-ALL:+GROUP-SECP256R1:" \
-  "+GROUP-X25519:+GROUP-SECP384R1:+GROUP-SECP521R1"
+  "+GROUP-X25519:+GROUP-SECP384R1:+GROUP-SECP521R1:" \
+  "%DISABLE_TLS13_COMPAT_MODE"
  #endif
  
  static CURLcode ng_process_ingress(struct Curl_easy *data,
author	Jun-ya Kato <kato@win6.jp>
	Mon, 7 Jun 2021 00:52:14 +0000 (00:52 +0000)
committer	Daniel Stenberg <daniel@haxx.se>
	Tue, 8 Jun 2021 14:10:39 +0000 (16:10 +0200)