$NetBSD: SSL_get_version.3,v 1.25 2024/09/08 13:08:35 christos Exp $

-*- mode: troff; coding: utf-8 -*-
Automatically generated by Pod::Man 5.01 (Pod::Simple 3.43)

Standard preamble:
========================================================================
..

..

.. \*(C` and \*(C' are quotes in nroff, nothing in troff, for use with C<>.
. ds C` "" . ds C' "" 'br\} . ds C` . ds C' 'br\}
Escape single quotes in literal strings from groff's Unicode transform.

If the F register is >0, we'll generate index entries on stderr for
titles (.TH), headers (.SH), subsections (.SS), items (.Ip), and index
entries marked with X<> in POD. Of course, you'll have to process the
output yourself in some meaningful fashion.

Avoid warning from groff about undefined register 'F'.
.. .nr rF 0 . if \nF \{\ . de IX . tm Index:\\$1\t\\n%\t"\\$2" .. . if !\nF==2 \{\ . nr % 0 . nr F 2 . \} . \} .\} .rr rF ========================================================================

Title "SSL_get_version 3" For nroff, turn off justification. Always turn off hyphenation; it makes
way too many mistakes in technical documents.
SSL_client_version, SSL_get_version, SSL_is_dtls, SSL_version - get the protocol information of a connection Header "SYNOPSIS" .Vb 1 #include <openssl/ssl.h> \& int SSL_client_version(const SSL *s); \& const char *SSL_get_version(const SSL *ssl); \& int SSL_is_dtls(const SSL *ssl); \& int SSL_version(const SSL *s); .Ve Header "DESCRIPTION" \fBSSL_client_version() returns the numeric protocol version advertised by the client in the legacy_version field of the ClientHello when initiating the connection. Note that, for TLS, this value will never indicate a version greater than TLSv1.2 even if TLSv1.3 is subsequently negotiated. SSL_get_version() returns the name of the protocol used for the connection. SSL_version() returns the numeric protocol version used for the connection. They should only be called after the initial handshake has been completed. Prior to that the results returned from these functions may be unreliable.

\fBSSL_is_dtls() returns one if the connection is using DTLS, zero if not.

Header "RETURN VALUES" \fBSSL_get_version() returns one of the following strings: Item "SSLv3" The connection uses the SSLv3 protocol. Item "TLSv1" The connection uses the TLSv1.0 protocol. Item "TLSv1.1" The connection uses the TLSv1.1 protocol. Item "TLSv1.2" The connection uses the TLSv1.2 protocol. Item "TLSv1.3" The connection uses the TLSv1.3 protocol. Item "unknown" This indicates an unknown protocol version.

\fBSSL_version() and SSL_client_version() return an integer which could include any of the following:

Item "SSL3_VERSION" The connection uses the SSLv3 protocol. Item "TLS1_VERSION" The connection uses the TLSv1.0 protocol. Item "TLS1_1_VERSION" The connection uses the TLSv1.1 protocol. Item "TLS1_2_VERSION" The connection uses the TLSv1.2 protocol. Item "TLS1_3_VERSION" The connection uses the TLSv1.3 protocol (never returned for \fBSSL_client_version()). Header "SEE ALSO" \fBssl\|(7) Header "HISTORY" The SSL_is_dtls() function was added in OpenSSL 1.1.0. Header "COPYRIGHT" Copyright 2001-2018 The OpenSSL Project Authors. All Rights Reserved.

Licensed under the Apache License 2.0 (the "License"). You may not use this file except in compliance with the License. You can obtain a copy in the file LICENSE in the source distribution or at <https://www.openssl.org/source/license.html>.