On Sun, Apr 01, 2012, Kurt Roeckx wrote: > > And they now both contain 0x03,0x03. At least gnutls is sending > 0x03,0x00 with 0x03,0x03. >
Gnutls is also sending client hellos shorter than 256 bytes (couldn't see a way to extend it though I'm not familiar with gnutls). > I already wondered about this before, but I assumed it didn't > matter. > Did a quick hack modification setting header version to 0x3,0x0 and it now *will* connect to some sites it didn't before with a long client hello including paypal. It ends up negotiating TLS 1.2 anyway. I'll do some more tests to see what happens. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
