[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[bug #61416] Manpage on --secure-protocol could be improved
From: |
Michal Ruprich |
Subject: |
[bug #61416] Manpage on --secure-protocol could be improved |
Date: |
Tue, 2 Nov 2021 10:07:28 -0400 (EDT) |
User-agent: |
Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:88.0) Gecko/20100101 Firefox/88.0 |
URL:
<https://savannah.gnu.org/bugs/?61416>
Summary: Manpage on --secure-protocol could be improved
Project: GNU Wget
Submitted by: formaiko
Submitted on: Tue 02 Nov 2021 02:07:26 PM UTC
Category: Documentation
Severity: 3 - Normal
Priority: 5 - Normal
Status: None
Privacy: Public
Assigned to: None
Originator Name: Michal Ruprich
Originator Email:
Open/Closed: Open
Release: None
Discussion Lock: Any
Operating System: GNU/Linux
Reproducibility: None
Fixed Release: None
Planned Release: None
Regression: No
Work Required: None
Patch Included: Yes
_______________________________________________________
Details:
Hi,
the manpage for --secure-protocol option states this:
"Specifying SSLv2, SSLv3, TLSv1, TLSv1_1, TLSv1_2 or TLSv1_3 forces the use of
the corresponding protocol."
In reality, when you specify let's say --secure-protocol=TLSv1_2, wget sends a
request to use this protocol AND all higher versions. So in the negotiation
packet, we can see TLSv1_2 and TLSv1_3. In the gnutls.c in set_prio_default,
this is exactly as described, though the description is confusing then. Maybe
it should state that it will force the use of corresponding protocol and any
higher version or something like that.
On related note - is there a way to force wget to use just the one requested
protocol? TLSv1_2 for instance? In case there is a broken support for TLSv1_3
for some reason?
Thanks and regards,
Michal Ruprich
_______________________________________________________
File Attachments:
-------------------------------------------------------
Date: Tue 02 Nov 2021 02:07:26 PM UTC Name: man.patch Size: 948B By:
formaiko
<http://savannah.gnu.org/bugs/download.php?file_id=52182>
_______________________________________________________
Reply to this item at:
<https://savannah.gnu.org/bugs/?61416>
_______________________________________________
Message sent via Savannah
https://savannah.gnu.org/
- [bug #61416] Manpage on --secure-protocol could be improved,
Michal Ruprich <=