Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Is there a good resource for understanding SSL extensions? #34

Open
Hubbl3 opened this issue Apr 16, 2019 · 1 comment
Open

Is there a good resource for understanding SSL extensions? #34

Hubbl3 opened this issue Apr 16, 2019 · 1 comment

Comments

@Hubbl3
Copy link

Hubbl3 commented Apr 16, 2019

I am trying to understand how the SSL extension length and extensions are set in the server hello packet but can't find a good resource for it. Any help is appreciated.
@tstallings
Copy link
Contributor

Not sure if this late response will be of any value, but perhaps for future readers it will help. The server builds its hello packet much like the clients - it uses the crypto library it was built with to establish encrypted sessions. If you want to know how the hello packet is constructed, you need to review the crypto library the server uses, and how the server uses that library to ensure it doesn't request specific settings when initializing the SSL-wrapped socket. Servers like Nginx and Apache allow you to choose what extensions and ciphers you want to offer through their config files, but the actual construction of the packet would be handled by the crypto lib.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@tstallings @Hubbl3