ForkMaster/zapret
1
0
Fork 0
mirror of https://github.com/bol-van/zapret.git synced 2024-09-22 17:52:53 +05:00
Code Issues Actions Packages Projects Releases Wiki Activity

blockcheck: curl detect TLS libraries without tls-max support

Browse Source
This commit is contained in:
bol-van 2021-12-11 12:08:05 +03:00
parent 96a18b2d8d
commit f4b837d919
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
blockcheck.sh
View File

@ -143,6 +143,8 @@ curl_supports_tls13()
} }
curl_supports_tlsmax() curl_supports_tlsmax()
{ {
# supported only in OpenSSL
curl --version | grep -q OpenSSL || return 1
# supported since curl 7.54 # supported since curl 7.54
curl --tls-max 1.2 -Is -o /dev/null http://$LOCALHOST_IPT:65535 2>/dev/null curl --tls-max 1.2 -Is -o /dev/null http://$LOCALHOST_IPT:65535 2>/dev/null
# return code 2 = init failed. likely bad command line options # return code 2 = init failed. likely bad command line options
@ -526,6 +528,8 @@ ask_params()
ENABLE_HTTP=1 ENABLE_HTTP=1
ask_yes_no_var ENABLE_HTTP "check http" ask_yes_no_var ENABLE_HTTP "check http"
[ -n "$TLSMAX12" ] || echo "WARNING ! your curl version or TLS library does not support tls-max option. TLS 1.2 tests may use TLS 1.3+ protocols"
ENABLE_HTTPS_TLS12=1 ENABLE_HTTPS_TLS12=1
ask_yes_no_var ENABLE_HTTPS_TLS12 "check https tls 1.2" ask_yes_no_var ENABLE_HTTPS_TLS12 "check https tls 1.2"