In our client application we are trying to set TLS 1.2 in ClientHello message. 
The OpenSSL version is 1.1.1h
We use the function
SSL_CTX_set_min_proto_version(ssl->ctx, TLS1_2_VERSION);
If I test the version right after setting it does return 1.2
SSL_CTX_get_proto_version(ssl->ctx) == TLS1_2_VERSION

But the ClientHello is still created with TLS 1.0
(16 03 01 01 42…)

Any explanation why the ClientHello message ignores min TLS version?
Any suggestion how to enforce 1.2 version?


Reply via email to