From 1ad8cbb2a0f8e54e518dcda4bcfe43db90488964 Mon Sep 17 00:00:00 2001
From: Koichiro IWAO <meta@vmeta.jp>
Date: Thu, 16 Aug 2018 11:42:46 +0900
Subject: [PATCH] Document TLSv1.3 support

---
 docs/man/xrdp.ini.5.in | 2 +-
 xrdp/xrdp.ini.in       | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/docs/man/xrdp.ini.5.in b/docs/man/xrdp.ini.5.in
index b43c6aa1..834f258b 100644
--- a/docs/man/xrdp.ini.5.in
+++ b/docs/man/xrdp.ini.5.in
@@ -144,7 +144,7 @@ Negotiate these security methods with clients.
 .RE
 
 .TP
-\fBssl_protocols\fP=\fI[SSLv3] [TLSv1] [TLSv1.1] [TLSv1.2]\fP
+\fBssl_protocols\fP=\fI[SSLv3] [TLSv1] [TLSv1.1] [TLSv1.2] [TLSv1.3]\fP
 Enables the specified SSL/TLS protocols. Each value should be separated by comma.
 SSLv2 is always disabled. At least one protocol should be given to accept TLS connections.
 This parameter is effective only if \fBsecurity_layer\fP is set to \fBtls\fP or \fBnegotiate\fP.
diff --git a/xrdp/xrdp.ini.in b/xrdp/xrdp.ini.in
index fb09bbd9..97fc81f9 100644
--- a/xrdp/xrdp.ini.in
+++ b/xrdp/xrdp.ini.in
@@ -28,8 +28,8 @@ crypt_level=high
 certificate=
 key_file=
 ; set SSL protocols
-; can be comma separated list of 'SSLv3', 'TLSv1', 'TLSv1.1', 'TLSv1.2'
-ssl_protocols=TLSv1, TLSv1.1, TLSv1.2
+; can be comma separated list of 'SSLv3', 'TLSv1', 'TLSv1.1', 'TLSv1.2', 'TLSv1.3'
+ssl_protocols=TLSv1, TLSv1.1, TLSv1.2, TLSv1.3
 ; set TLS cipher suites
 #tls_ciphers=HIGH