On Tue, Feb 03, 2004 at 08:41:23AM +0100, Jostein Tveit wrote:
> A quick question about the SSL_get_shared_ciphers function.
>
> What exactly does the comment in ssl/ssl_lib.c mean:
>
> /* works well for SSLv2, not so good for SSLv3 */
> char *SSL_get_shared_ciphers(SSL *s,char *buf,int len)
>
> Are there any other ways than sending x number of client hellos
> with only one cipher suite to determine the shared ciphers?
Its part of the protocol (SSLv3, TLSv1, ...). The client sends its list of
supported ciphers, based upon which the server decides which cipher to
use. The server never "leaks" the information about the ciphers supported.
Best regards,
Lutz
--
Lutz Jaenicke [EMAIL PROTECTED]
http://www.aet.TU-Cottbus.DE/personen/jaenicke/
BTU Cottbus, Allgemeine Elektrotechnik
Universitaetsplatz 3-4, D-03044 Cottbus
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
