From 1ca297dd9cd5daaab9be45d210f0f4df814cea03 Mon Sep 17 00:00:00 2001
From: Garrett D'Amore <garrett@damore.org>
Date: Sat, 16 Nov 2024 13:27:45 -0800
Subject: tls: remove support for TLS 1.0 and 1.1.

Those old algorithms are not used anywhere, and are not recommended.
TLS 1.2 support has been prevalent for over a decade.
---
 include/nng/nng.h | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

(limited to 'include')

diff --git a/include/nng/nng.h b/include/nng/nng.h
index a265bcf1..77122993 100644
--- a/include/nng/nng.h
+++ b/include/nng/nng.h
@@ -1499,12 +1499,9 @@ typedef enum nng_tls_auth_mode {
 } nng_tls_auth_mode;
 
 // TLS version numbers.  We encode the major number and minor number
-// as separate byte fields.  No support for SSL 3.0 or earlier -- older
+// as separate byte fields.  No support for TLS 1.1 or earlier -- older
 // versions are known to be insecure and should not be used.
-// When possible applications should restrict themselves to TLS 1.2 or better.
 typedef enum nng_tls_version {
-	NNG_TLS_1_0 = 0x301,
-	NNG_TLS_1_1 = 0x302,
 	NNG_TLS_1_2 = 0x303,
 	NNG_TLS_1_3 = 0x304
 } nng_tls_version;
-- 
cgit v1.2.3-70-g09d2