bug-wget
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Bug-wget] TLS1.3 via GnuTLS


From: Gisle Vanem
Subject: Re: [Bug-wget] TLS1.3 via GnuTLS
Date: Mon, 16 Jul 2018 19:10:06 +0200
User-agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.9.1

Tim Rühsen wrote:

GnuTLS 3.6.3 has been released today with TLS1.3 support (latest draft).

So if you rebuild/link wget or wget2 with the new GnuTLS version, you
can enable TLS1.3 via --ciphers="NORMAL:+VERS-TLS1.3"  (wget) resp.
--gnutls-options="NORMAL:+VERS-TLS1.3" (wget2).

Not for me:
  wget.exe --ciphers="NORMAL:+VERS-TLS1.3" --secure-protocol=TLSv1_3  
https://www.google.com
  --2018-07-16 17:00:43--  https://www.google.com/
  Resolving www.google.com (www.google.com)... 216.58.207.196
  Connecting to www.google.com (www.google.com)|216.58.207.196|:443... 
connected.
  GnuTLS: Error in the push function.
  Unable to establish SSL connection.

Or worse, with:
  wget.exe --secure-protocol=TLSv1_3 https://www.google.com

I get an 'abort()' inside GnuTLS.

With Loganaden patch, it doesn't "crash" (i.e. aborts). But it
doesn't work just the same infamous "Error in the push function".

I'll stick to OpenSSL.

--
--gv



reply via email to

[Prev in Thread] Current Thread [Next in Thread]