[openssl-users] Problem getting actual Client protocol version on server side

Viktor Dukhovni openssl-users at dukhovni.org
Wed Feb 24 20:37:51 UTC 2016


On Thu, Feb 25, 2016 at 12:33:32AM +0530, Gagandeep Singh Panesar wrote:

> I am trying to retrieve client SSL protocol version in case of handshake
> failure on server side but couldn't get actual protocol version.
> 
> Eg:
> Server supports TLSv1.1 and client supports SSLv3.
> When I query from client and try to decrypt client protocol it shows
> TLSv1.2 but it should give SSLv3 as client protocol.
> 
> I am using SSL_get_version() to get client protocol.
> 
> How can I get actual protocol sent by client at server side...?

There is no public interface for this.  Wireshark is your best bet.

-- 
	Viktor.


More information about the openssl-users mailing list