Removing Extensions from Client Hello Header

Phil Neumiller pneumiller at directstream.com
Mon Nov 11 19:32:22 UTC 2019


I am speaking TLS 1.3 with openssl to a hardware device that I can't change. 
I need the client hello header to only support certain  extensions, yet I
see no way in the SSL API to remove the default extensions in the TLS 1.3
client hello.  Can I clear them all and just add the ones I want?  What am I
missing?  Do I have to modify the SSL code to do this?  It seems like there
should be an orthodox way to do this.




-----
Phillip Neumiller
Platform Engineering
Directstream, LLC
--
Sent from: http://openssl.6102.n7.nabble.com/OpenSSL-User-f3.html


More information about the openssl-users mailing list