From: Rob Stradling <rob@comodo.com>
Date: Tue, 10 Sep 2013 10:46:42 +0000 (+0100)
Subject: Use TLS version supplied by client when fingerprinting Safari.
X-Git-Tag: OpenSSL_1_0_2-beta1~276^2~3
X-Git-Url: https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff_plain;h=6a0b803fc067efc271e2ccd20d12e69618bed0a2

Use TLS version supplied by client when fingerprinting Safari.
---

diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index 1992b918b3..a240587eec 100644
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -1819,7 +1819,7 @@ static void ssl_check_for_safari(SSL *s, const unsigned char *data, const unsign
 		return;
 	data += size;
 
-	if (TLS1_get_version(s) >= TLS1_2_VERSION)
+	if (TLS1_get_client_version(s) >= TLS1_2_VERSION)
 		{
 		const size_t len1 = sizeof(kSafariExtensionsBlock);
 		const size_t len2 = sizeof(kSafariTLS12ExtensionsBlock);