Topic: test if a given extension is negotiated
I want to check if the max_fragment_length extension is negotiated. I could sniff the server_hello message and parse it in the client. But is there built-in support for this?
Thanks a lot!
You are not logged in. Please login or register.
Please post questions or comments you have about wolfSSL products here. It is helpful to be as descriptive as possible when asking your questions.
ReferenceswolfSSL - Embedded SSL Library → wolfSSL → test if a given extension is negotiated
I want to check if the max_fragment_length extension is negotiated. I could sniff the server_hello message and parse it in the client. But is there built-in support for this?
Thanks a lot!
Hi move,
I don't believe there's a way to detect at runtime if the max_fragment_length has been negotiated, but you are able to check the current values of the max_fragment_length extension in the ssl object by using the wolfSSL_GetMaxOutputSize API. It checks the SSL object and returns what the current max_fragment_length extension value is.
Hope this helps!
Hi @move,
You noted you can sniff the server hello, can you capture a wireshark trace of the connection from either the client or server side? If so you should be able to expand the Wireshark packet to see which max fragment length is negotiated.
Warm Regards,
K
wolfSSL - Embedded SSL Library → wolfSSL → test if a given extension is negotiated
Powered by PunBB, supported by Informer Technologies, Inc.
Generated in 0.016 seconds (90% PHP - 10% DB) with 10 queries