2001-02-24 05:05:56 +08:00
|
|
|
=pod
|
|
|
|
|
|
|
|
|
|
=head1 NAME
|
|
|
|
|
|
2023-03-30 15:52:51 +08:00
|
|
|
SSL_client_version, SSL_get_version, SSL_is_dtls, SSL_is_tls, SSL_is_quic,
|
|
|
|
|
SSL_version - get the protocol information of a connection
|
2001-02-24 05:05:56 +08:00
|
|
|
|
|
|
|
|
=head1 SYNOPSIS
|
|
|
|
|
|
|
|
|
|
#include <openssl/ssl.h>
|
|
|
|
|
|
2017-03-28 13:33:54 +08:00
|
|
|
int SSL_client_version(const SSL *s);
|
|
|
|
|
|
2005-03-30 19:50:14 +08:00
|
|
|
const char *SSL_get_version(const SSL *ssl);
|
2001-02-24 05:05:56 +08:00
|
|
|
|
2016-06-08 23:37:06 +08:00
|
|
|
int SSL_is_dtls(const SSL *ssl);
|
2023-03-30 15:52:51 +08:00
|
|
|
int SSL_is_tls(const SSL *ssl);
|
|
|
|
|
int SSL_is_quic(const SSL *ssl);
|
2016-06-08 23:37:06 +08:00
|
|
|
|
2017-03-28 13:33:54 +08:00
|
|
|
int SSL_version(const SSL *s);
|
|
|
|
|
|
2001-02-24 05:05:56 +08:00
|
|
|
=head1 DESCRIPTION
|
|
|
|
|
|
2023-07-25 00:05:47 +08:00
|
|
|
For SSL, TLS and DTLS protocols SSL_client_version() returns the numeric
|
|
|
|
|
protocol version advertised by the client in the legacy_version field of the
|
|
|
|
|
ClientHello when initiating the connection. Note that, for TLS, this value
|
|
|
|
|
will never indicate a version greater than TLSv1.2 even if TLSv1.3 is
|
|
|
|
|
subsequently negotiated. For QUIC connections it returns OSSL_QUIC1_VERSION.
|
|
|
|
|
|
|
|
|
|
SSL_get_version() returns the name of the protocol used for the connection.
|
|
|
|
|
SSL_version() returns the numeric protocol version used for the connection.
|
|
|
|
|
They should only be called after the initial handshake has been completed.
|
|
|
|
|
Prior to that the results returned from these functions may be unreliable.
|
2001-02-24 05:05:56 +08:00
|
|
|
|
2023-03-30 15:52:51 +08:00
|
|
|
SSL_is_dtls() returns 1 if the connection is using DTLS or 0 if not.
|
|
|
|
|
|
|
|
|
|
SSL_is_tls() returns 1 if the connection is using SSL/TLS or 0 if not.
|
|
|
|
|
|
|
|
|
|
SSL_is_quic() returns 1 if the connection is using QUIC or 0 if not.
|
2016-06-08 23:37:06 +08:00
|
|
|
|
2001-02-24 05:05:56 +08:00
|
|
|
=head1 RETURN VALUES
|
|
|
|
|
|
2018-09-03 18:57:33 +08:00
|
|
|
|
2016-06-10 05:02:59 +08:00
|
|
|
SSL_get_version() returns one of the following strings:
|
2001-02-24 05:05:56 +08:00
|
|
|
|
|
|
|
|
=over 4
|
|
|
|
|
|
|
|
|
|
=item SSLv3
|
|
|
|
|
|
|
|
|
|
The connection uses the SSLv3 protocol.
|
|
|
|
|
|
|
|
|
|
=item TLSv1
|
|
|
|
|
|
2014-07-03 10:42:40 +08:00
|
|
|
The connection uses the TLSv1.0 protocol.
|
|
|
|
|
|
|
|
|
|
=item TLSv1.1
|
|
|
|
|
|
|
|
|
|
The connection uses the TLSv1.1 protocol.
|
|
|
|
|
|
|
|
|
|
=item TLSv1.2
|
|
|
|
|
|
|
|
|
|
The connection uses the TLSv1.2 protocol.
|
2001-02-24 05:05:56 +08:00
|
|
|
|
2017-03-28 13:33:54 +08:00
|
|
|
=item TLSv1.3
|
|
|
|
|
|
|
|
|
|
The connection uses the TLSv1.3 protocol.
|
|
|
|
|
|
2023-03-30 15:52:51 +08:00
|
|
|
=item DTLSv0.9
|
|
|
|
|
|
|
|
|
|
The connection uses an obsolete pre-standardisation DTLS protocol
|
|
|
|
|
|
|
|
|
|
=item DTLSv1
|
|
|
|
|
|
|
|
|
|
The connection uses the DTLSv1 protocol
|
|
|
|
|
|
|
|
|
|
=item DTLSv1.2
|
|
|
|
|
|
|
|
|
|
The connection uses the DTLSv1.2 protocol
|
|
|
|
|
|
|
|
|
|
=item QUICv1
|
|
|
|
|
|
|
|
|
|
The connection uses the QUICv1 protocol.
|
|
|
|
|
|
2001-02-24 05:05:56 +08:00
|
|
|
=item unknown
|
|
|
|
|
|
2018-04-19 20:32:45 +08:00
|
|
|
This indicates an unknown protocol version.
|
2001-02-24 05:05:56 +08:00
|
|
|
|
|
|
|
|
=back
|
|
|
|
|
|
2018-09-03 18:57:33 +08:00
|
|
|
SSL_version() and SSL_client_version() return an integer which could include any
|
|
|
|
|
of the following:
|
2017-03-28 13:33:54 +08:00
|
|
|
|
2017-04-04 03:39:09 +08:00
|
|
|
=over 4
|
2017-03-28 13:33:54 +08:00
|
|
|
|
|
|
|
|
=item SSL3_VERSION
|
|
|
|
|
|
|
|
|
|
The connection uses the SSLv3 protocol.
|
|
|
|
|
|
|
|
|
|
=item TLS1_VERSION
|
|
|
|
|
|
|
|
|
|
The connection uses the TLSv1.0 protocol.
|
|
|
|
|
|
|
|
|
|
=item TLS1_1_VERSION
|
|
|
|
|
|
|
|
|
|
The connection uses the TLSv1.1 protocol.
|
|
|
|
|
|
|
|
|
|
=item TLS1_2_VERSION
|
|
|
|
|
|
|
|
|
|
The connection uses the TLSv1.2 protocol.
|
|
|
|
|
|
|
|
|
|
=item TLS1_3_VERSION
|
|
|
|
|
|
2018-09-03 18:57:33 +08:00
|
|
|
The connection uses the TLSv1.3 protocol (never returned for
|
|
|
|
|
SSL_client_version()).
|
2017-03-28 13:33:54 +08:00
|
|
|
|
2023-03-30 15:52:51 +08:00
|
|
|
=item DTLS1_BAD_VER
|
|
|
|
|
|
|
|
|
|
The connection uses an obsolete pre-standardisation DTLS protocol
|
|
|
|
|
|
|
|
|
|
=item DTLS1_VERSION
|
|
|
|
|
|
|
|
|
|
The connection uses the DTLSv1 protocol
|
|
|
|
|
|
|
|
|
|
=item DTLS1_2_VERSION
|
|
|
|
|
|
|
|
|
|
The connection uses the DTLSv1.2 protocol
|
|
|
|
|
|
|
|
|
|
=item OSSL_QUIC1_VERSION
|
|
|
|
|
|
2023-07-25 00:05:47 +08:00
|
|
|
The connection uses the QUICv1 protocol.
|
2023-03-30 15:52:51 +08:00
|
|
|
|
2017-04-04 03:30:20 +08:00
|
|
|
=back
|
|
|
|
|
|
2001-02-24 05:05:56 +08:00
|
|
|
=head1 SEE ALSO
|
|
|
|
|
|
2016-11-11 16:33:09 +08:00
|
|
|
L<ssl(7)>
|
2001-02-24 05:05:56 +08:00
|
|
|
|
2016-06-08 23:37:06 +08:00
|
|
|
=head1 HISTORY
|
|
|
|
|
|
2023-03-30 15:52:51 +08:00
|
|
|
The SSL_is_dtls() function was added in OpenSSL 1.1.0. The SSL_is_tls() and
|
|
|
|
|
SSL_is_quic() functions were added in OpenSSL 3.2.
|
2016-06-08 23:37:06 +08:00
|
|
|
|
2016-05-18 23:44:05 +08:00
|
|
|
=head1 COPYRIGHT
|
|
|
|
|
|
2023-09-07 16:59:15 +08:00
|
|
|
Copyright 2001-2023 The OpenSSL Project Authors. All Rights Reserved.
|
2016-05-18 23:44:05 +08:00
|
|
|
|
2018-12-06 21:04:44 +08:00
|
|
|
Licensed under the Apache License 2.0 (the "License"). You may not use
|
2016-05-18 23:44:05 +08:00
|
|
|
this file except in compliance with the License. You can obtain a copy
|
|
|
|
|
in the file LICENSE in the source distribution or at
|
|
|
|
|
L<https://www.openssl.org/source/license.html>.
|
|
|
|
|
|
|
|
|
|
=cut
|
