crypto/tls: Don't advertise TLS 1.3-only cipher unless attempting TLS 1.3

2017-03-26 21:26:40 +10:30 · 2017-03-26 21:26:40 +10:30 · 599c1f949b
commit 599c1f949b
parent 3107d575a8
1 changed files with 6 additions and 1 deletions
--- a/handshake_client.go
+++ b/handshake_client.go
@ -86,7 +86,12 @@ NextCipherSuite:
 			// Don't advertise TLS 1.2-only cipher suites unless
 			// we're attempting TLS 1.2.
 			if hello.vers < VersionTLS12 && suite.flags&suiteTLS12 != 0 {
-				continue
+				continue NextCipherSuite
+			}
+			// Don't advertise TLS 1.3-only cipher suites unless
+			// we're attempting TLS 1.3.
+			if hello.vers < VersionTLS13 && suite.flags&suiteTLS13 != 0 {
+				continue NextCipherSuite
 			}
 			hello.cipherSuites = append(hello.cipherSuites, suiteId)
 			continue NextCipherSuite