hi this code should do the the trick on client side (for the "server" side, just replace client by "server")
SSL_CTX* ctx = SSL_CTX_new(SSLv23_client_method()); SSL_CTX_set_options(ctx, SSL_OP_NO_SSLv2|SSL_OP_NO_SSLv3); the SSLv23_client_method() method allows all protocols, then SSL_CTX_set_options is used to avoid unwanted ones Nico ----- Mail d'origine ----- De: Gayathri Manoj <gayathri.an...@gmail.com> À: openssl-users@openssl.org Envoyé: Tue, 13 May 2014 12:45:52 +0200 (CEST) Objet: backward compatibility for tls 1.2 Hi All, I am planning to upgrade my tls connection from 1.0 to 1.2. I have made changes from the client side and am able to see the client hello with tls version 1.2. The server supports only 1.0 and the client is not falling back to 1.0 and giving me a fatal that Protocol version alert. Please let me know shall I need to add backward compatibility code separately. If yes then how can i do it. Could you please provide some example for the same. Thanks, Gayathri ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
