Something like SSL_CTX_set_alpn_select_cb for ciphers and ssl/tls protocol version

Alexander Gryanko xpahos at
Tue Jun 18 09:13:24 UTC 2019


I'm looking for the way to do something like SSL_CTX_set_alpn_select_cb but
for ciphers and ssl/tls protocol version. As I see
ssl_choose_server_version and ssl3_choose_cipher has no any callbacks in
tls_early_post_process_client_hello. Is there any way to disable protocols
for some cases? Something like A/B testing with 50% of traffic with enabled
Chacha20 and 50% of traffic with disabled.

Thank you.

С уважением,
Александр Грянко
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the openssl-users mailing list