From f4a51970d245a61e991a0c2e196853e81a1a6c53 Mon Sep 17 00:00:00 2001
From: Rob Stradling <rob@comodo.com>
Date: Tue, 10 Sep 2013 11:03:29 +0100
Subject: [PATCH] Use TLS version supplied by client when fingerprinting
 Safari.

---
 ssl/t1_lib.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index 4afc3a258b..f671d1d9c3 100644
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -923,7 +923,7 @@ static void ssl_check_for_safari(SSL *s, const unsigned char *data, const unsign
 		return;
 	data += size;
 
-	if (TLS1_get_version(s) >= TLS1_2_VERSION)
+	if (TLS1_get_client_version(s) >= TLS1_2_VERSION)
 		{
 		const size_t len1 = sizeof(kSafariExtensionsBlock);
 		const size_t len2 = sizeof(kSafariTLS12ExtensionsBlock);
-- 
2.25.1