Sending empty renegotiaion_info

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

Sending empty renegotiaion_info

Dmitry Belyavsky-3
Hello,

Is it possible to send empty renegotiation_info extension instead of TLS_EMPTY_RENEGOTIATION_INFO_SCSV using openssl s_client? 

If yes, is it possible to test secure renegotiation afterward?

Thank you!

--
SY, Dmitry Belyavsky

--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Reply | Threaded
Open this post in threaded view
|

Re: Sending empty renegotiaion_info

Matt Caswell-2


On 18/12/2018 08:21, Dmitry Belyavsky wrote:
> Hello,
>
> Is it possible to send empty renegotiation_info extension instead of
> TLS_EMPTY_RENEGOTIATION_INFO_SCSV using openssl s_client?

No, this isn't possible. We only ever send the renegotiation_info extension on a
reneg ClientHello.

Matt
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users