git.ipfire.org Git - thirdparty/openvpn.git/commit

author	Reynir Björnsson <reynir@reynir.dk>
	Thu, 26 Oct 2023 14:55:32 +0000 (16:55 +0200)
committer	Gert Doering <gert@greenie.muc.de>
	Mon, 20 Nov 2023 13:48:20 +0000 (14:48 +0100)
commit	0a39d1c1e2582330db09052bcf0e32bbf5bafde2
tree	3ef569c15cd946398dbda0cc1e5a73035c9c7c24	tree
parent	3b0d9489cc423da3e7af1e087b30ae7baaee7990	commit \| diff

protocol_dump: tls-crypt support

Add support for tls-crypt packets in protocol_dump(). Currently,
protocol_dump() will print garbage for tls-crypt packets.

This patch makes protocol_dump print the clear text parts of the packet such
as the auth tag and replay packet id. It does not try to print the wKc for
HARD_RESET_CLIENT_V3 or CONTROL_WKC_V1 packets. It also intentionally
does not print ENCRYPTED placeholders for ack list and DATA, to cut down
on the noise.

Signed-off-by: Reynir Björnsson <reynir@reynir.dk>
Acked-by: Arne Schwabe <arne@rfc2549.org>
Message-Id: <8237adde-2523-9e48-5cd4-070463887dc1@gmail.com>
URL: https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg27310.html
Signed-off-by: Gert Doering <gert@greenie.muc.de>
(cherry picked from commit 227799b8345128dd3adf2029323457804209fe93)

src/openvpn/openvpn.h		diff \| blob \| blame \| history
src/openvpn/ssl.c		diff \| blob \| blame \| history
src/openvpn/ssl.h		diff \| blob \| blame \| history