From 34ed3bca85c8023770285027dc79f8808bf0068c Mon Sep 17 00:00:00 2001
From: stefanocasazza <stefanocasazza@gmail.com>
Date: Fri, 12 Oct 2018 17:32:04 +0200
Subject: [PATCH] add TLSv1.3 support

---
 src/ulib/ssl/net/sslsocket.cpp | 5 +++++
 tests/examples/TSA/tsaserial   | 2 +-
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/src/ulib/ssl/net/sslsocket.cpp b/src/ulib/ssl/net/sslsocket.cpp
index d8c18d7f..3e7fdea0 100644
--- a/src/ulib/ssl/net/sslsocket.cpp
+++ b/src/ulib/ssl/net/sslsocket.cpp
@@ -192,6 +192,11 @@ SSL_CTX* USSLSocket::getContext(SSL_METHOD* method, bool bserver, long options)
       (void) U_SYSCALL(SSL_CTX_set_session_cache_mode, "%p,%d",    ctx, SSL_SESS_CACHE_SERVER);
       (void) U_SYSCALL(SSL_CTX_set_session_id_context, "%p,%p,%u", ctx, (const unsigned char*)u_progname, u_progname_len);
 
+#  ifdef TLS1_3_VERSION
+      (void) U_SYSCALL(SSL_CTX_set_min_proto_version, "%p,%d",  ctx, 0);
+      (void) U_SYSCALL(SSL_CTX_set_max_proto_version, "%p,%d",  ctx, TLS1_3_VERSION);
+#  endif
+
       // We need this to disable client-initiated renegotiation
 
       U_SYSCALL_VOID(SSL_CTX_set_info_callback, "%p,%p", ctx, USSLSocket::info_callback);
diff --git a/tests/examples/TSA/tsaserial b/tests/examples/TSA/tsaserial
index f114fa2f..5502478d 100644
--- a/tests/examples/TSA/tsaserial
+++ b/tests/examples/TSA/tsaserial
@@ -1 +1 @@
-0432
+043A