ForkMaster/zapret
1
0
Fork 0
mirror of https://github.com/bol-van/zapret.git synced 2024-11-11 17:29:16 +05:00
Code Issues Actions Packages Projects Releases Wiki Activity

blockcheck: fixed tls1.3 for possible curl protocol upgrades

Browse Source
This commit is contained in:
bol-van 2021-12-10 15:26:05 +03:00
parent 2f18bde5a8
commit 7c1110ddb4
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
blockcheck.sh
View File

@ -189,7 +189,7 @@ curl_test_https_tls13()
# prevent using QUIC if available in curl
# force TLS1.3 mode
curl -${1}Ss --max-time $CURL_MAX_TIME $CURL_OPT --http1.1 --tlsv1.3 "https://$2" -o /dev/null 2>&1
curl -${1}Ss --max-time $CURL_MAX_TIME $CURL_OPT --http1.1 --tlsv1.3 --tls-max 1.3 "https://$2" -o /dev/null 2>&1
}
nfqws_ipt_prepare()
@ -432,6 +432,8 @@ check_domain()
[ $code = $c ] && return
done
echo
echo preparing tpws redirection
tpws_ipt_prepare $2
@ -505,8 +507,8 @@ ask_params()
ask_yes_no_var ENABLE_HTTPS_TLS12 "check https tls 1.2"
ENABLE_HTTPS_TLS13=0
echo
if curl_supports_tls13; then
echo
echo "TLS 1.3 is the new standard for encrypted communications over TCP"
echo "its the most important feature for DPI bypass is encrypted TLS ServerHello"
echo "more and more sites enable TLS 1.3 but still there're many sites with only TLS 1.2 support"