[openssl-users] How to get SNI info from s_client debug logs?

Salz, Rich rsalz at akamai.com
Mon Nov 27 03:17:35 UTC 2017

The “server name” is something that the client sends to the server.

This allows a single host to server multiple “virtual hosts”

From: John Jiang <john.sha.jiang at gmail.com>
Reply-To: openssl-users <openssl-users at openssl.org>
Date: Sunday, November 26, 2017 at 9:59 PM
To: openssl-users <openssl-users at openssl.org>
Subject: [openssl-users] How to get SNI info from s_client debug logs?

The following is my OpenSSL version info,
OpenSSL 1.1.0f  25 May 2017
I supposed the below command can give me some SNI info, but nothing was found.
openssl s_client -debug -tlsextdebug -msg -connect <host:port> -servername <server> < /dev/null | grep "server name"
But I found SNI extension with Wireshark while running the above command.

Is it possible get SNI info with s_client?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20171127/0dd7e023/attachment.html>

More information about the openssl-users mailing list