summaryrefslogtreecommitdiff
path: root/src/mongo/util/net/ssl_manager.cpp
diff options
context:
space:
mode:
Diffstat (limited to 'src/mongo/util/net/ssl_manager.cpp')
-rw-r--r--src/mongo/util/net/ssl_manager.cpp16
1 files changed, 15 insertions, 1 deletions
diff --git a/src/mongo/util/net/ssl_manager.cpp b/src/mongo/util/net/ssl_manager.cpp
index f4e0292ee31..4946e68d66c 100644
--- a/src/mongo/util/net/ssl_manager.cpp
+++ b/src/mongo/util/net/ssl_manager.cpp
@@ -142,6 +142,9 @@ public:
#ifndef SSL_OP_NO_TLSv1_2
#define SSL_OP_NO_TLSv1_2 0
#endif
+#ifndef SSL_OP_NO_TLSv1_3
+#define SSL_OP_NO_TLSv1_3 0
+#endif
namespace {
@@ -854,6 +857,8 @@ Status SSLManager::initSSLContext(SSL_CTX* context,
supportedProtocols |= SSL_OP_NO_TLSv1_1;
} else if (protocol == SSLParams::Protocols::TLS1_2) {
supportedProtocols |= SSL_OP_NO_TLSv1_2;
+ } else if (protocol == SSLParams::Protocols::TLS1_3) {
+ supportedProtocols |= SSL_OP_NO_TLSv1_3;
}
}
}
@@ -1568,9 +1573,18 @@ void recordTLSVersion(TLSVersion version, const HostAndPort& hostForLogging) {
versionString = "1.2"_sd;
}
break;
+ case TLSVersion::kTLS13:
+ counts.tls13.addAndFetch(1);
+ if (std::find(sslGlobalParams.tlsLogVersions.cbegin(),
+ sslGlobalParams.tlsLogVersions.cend(),
+ SSLParams::Protocols::TLS1_3) != sslGlobalParams.tlsLogVersions.cend()) {
+ versionString = "1.3"_sd;
+ }
+ break;
default:
+ counts.tlsUnknown.addAndFetch(1);
if (!sslGlobalParams.tlsLogVersions.empty()) {
- versionString = "unkown"_sd;
+ versionString = "unknown"_sd;
}
break;
}
View Lorry Controller Status