Use TLS version supplied by client when fingerprinting Safari.

diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index 621b214b7b0e5efaee83b29956186c233dee72c7..98e86bff988fada364c0bfe7ae296f647cd98ffd 100644 (file)
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -401,7 +401,7 @@ static void ssl_check_for_safari(SSL *s, const unsigned char *data, const unsign
                return;
        data += size;
 
-       if (TLS1_get_version(s) >= TLS1_2_VERSION)
+       if (TLS1_get_client_version(s) >= TLS1_2_VERSION)
                {
                const size_t len1 = sizeof(kSafariExtensionsBlock);
                const size_t len2 = sizeof(kSafariTLS12ExtensionsBlock);