Re: [Bug-wget] TLS1.3 via GnuTLS

Gisle Vanem Mon, 16 Jul 2018 10:10:38 -0700

Tim Rühsen wrote:

GnuTLS 3.6.3 has been released today with TLS1.3 support (latest draft).


So if you rebuild/link wget or wget2 with the new GnuTLS version, you
can enable TLS1.3 via --ciphers="NORMAL:+VERS-TLS1.3"  (wget) resp.
--gnutls-options="NORMAL:+VERS-TLS1.3" (wget2).


Not for me:
  wget.exe --ciphers="NORMAL:+VERS-TLS1.3" --secure-protocol=TLSv1_3  
https://www.google.com
  --2018-07-16 17:00:43--  https://www.google.com/
  Resolving www.google.com (www.google.com)... 216.58.207.196
  Connecting to www.google.com (www.google.com)|216.58.207.196|:443... 
connected.
  GnuTLS: Error in the push function.
  Unable to establish SSL connection.

Or worse, with:
  wget.exe --secure-protocol=TLSv1_3 https://www.google.com

I get an 'abort()' inside GnuTLS.

With Loganaden patch, it doesn't "crash" (i.e. aborts). But it
doesn't work just the same infamous "Error in the push function".

I'll stick to OpenSSL.

--
--gv

Re: [Bug-wget] TLS1.3 via GnuTLS

Reply via email to