drygdryg/zapret
1
0
Fork 0
mirror of https://github.com/bol-van/zapret.git synced 2024-11-26 20:20:53 +03:00
Code Issues Packages Projects Releases Wiki Activity

blockcheck: fixed tls1.3 for possible curl protocol upgrades

Browse Source
This commit is contained in:
bol-van 2021-12-10 15:26:05 +03:00
parent 2f18bde5a8
commit 7c1110ddb4
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
blockcheck.sh
View File

@ -189,7 +189,7 @@ curl_test_https_tls13()
# prevent using QUIC if available in curl # prevent using QUIC if available in curl
# force TLS1.3 mode # force TLS1.3 mode
curl -${1}Ss --max-time $CURL_MAX_TIME $CURL_OPT --http1.1 --tlsv1.3 "https://$2" -o /dev/null 2>&1 curl -${1}Ss --max-time $CURL_MAX_TIME $CURL_OPT --http1.1 --tlsv1.3 --tls-max 1.3 "https://$2" -o /dev/null 2>&1
} }
nfqws_ipt_prepare() nfqws_ipt_prepare()
@ -432,6 +432,8 @@ check_domain()
[ $code = $c ] && return [ $code = $c ] && return
done done
echo
echo preparing tpws redirection echo preparing tpws redirection
tpws_ipt_prepare $2 tpws_ipt_prepare $2
@ -505,8 +507,8 @@ ask_params()
ask_yes_no_var ENABLE_HTTPS_TLS12 "check https tls 1.2" ask_yes_no_var ENABLE_HTTPS_TLS12 "check https tls 1.2"
ENABLE_HTTPS_TLS13=0 ENABLE_HTTPS_TLS13=0
echo
if curl_supports_tls13; then if curl_supports_tls13; then
echo
echo "TLS 1.3 is the new standard for encrypted communications over TCP" echo "TLS 1.3 is the new standard for encrypted communications over TCP"
echo "its the most important feature for DPI bypass is encrypted TLS ServerHello" echo "its the most important feature for DPI bypass is encrypted TLS ServerHello"
echo "more and more sites enable TLS 1.3 but still there're many sites with only TLS 1.2 support" echo "more and more sites enable TLS 1.3 but still there're many sites with only TLS 1.2 support"