bug-wget
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug #61416] Manpage on --secure-protocol could be improved

From: Michal Ruprich
Subject: [bug #61416] Manpage on --secure-protocol could be improved
Date: Tue, 2 Nov 2021 10:07:28 -0400 (EDT)
User-agent: Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:88.0) Gecko/20100101 Firefox/88.0 
URL:
  <https://savannah.gnu.org/bugs/?61416>

                 Summary: Manpage on --secure-protocol could be improved
                 Project: GNU Wget
            Submitted by: formaiko
            Submitted on: Tue 02 Nov 2021 02:07:26 PM UTC
                Category: Documentation
                Severity: 3 - Normal
                Priority: 5 - Normal
                  Status: None
                 Privacy: Public
             Assigned to: None
         Originator Name: Michal Ruprich
        Originator Email: 
             Open/Closed: Open
                 Release: None
         Discussion Lock: Any
        Operating System: GNU/Linux
         Reproducibility: None
           Fixed Release: None
         Planned Release: None
              Regression: No
           Work Required: None
          Patch Included: Yes

    _______________________________________________________

Details:

Hi,

the manpage for --secure-protocol option states this:

"Specifying SSLv2, SSLv3, TLSv1, TLSv1_1, TLSv1_2 or TLSv1_3 forces the use of
the corresponding protocol."

In reality, when you specify let's say --secure-protocol=TLSv1_2, wget sends a
request to use this protocol AND all higher versions. So in the negotiation
packet, we can see TLSv1_2 and TLSv1_3. In the gnutls.c in set_prio_default,
this is exactly as described, though the description is confusing then. Maybe
it should state that it will force the use of corresponding protocol and any
higher version or something like that.

On related note - is there a way to force wget to use just the one requested
protocol? TLSv1_2 for instance? In case there is a broken support for TLSv1_3
for some reason?

Thanks and regards,
Michal Ruprich



    _______________________________________________________

File Attachments:


-------------------------------------------------------
Date: Tue 02 Nov 2021 02:07:26 PM UTC  Name: man.patch  Size: 948B   By:
formaiko

<http://savannah.gnu.org/bugs/download.php?file_id=52182>

    _______________________________________________________

Reply to this item at:

  <https://savannah.gnu.org/bugs/?61416>

_______________________________________________
  Message sent via Savannah
  https://savannah.gnu.org/
reply via email to
[Prev in Thread] Current Thread [Next in Thread]