Open
Description
Hello,
Using tlslite-ng 0.8.2:
from tlslite.tlsconnection import TLSConnection
from tlslite import HandshakeSettings
import socket
settings = HandshakeSettings()
settings.minVersion = (3, 3) # TLS 1.2
settings.maxVersion = (3, 4) # TLS 1.3
sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
sock.connect(('letsencrypt.org', 443))
c = TLSConnection(sock)
c.handshakeClientCert(settings=settings)
I'd expect the supported_versions extension in the ClientHello to only support TLS 1.2 and 1.3 . However, TLS 1.0 and TLS 1.1 are also present.
Why.. ?
Thanks!
Metadata
Metadata
Assignees
Labels
No labels