]> git.ipfire.org Git - thirdparty/suricata.git/commit
projects / thirdparty / suricata.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c028800) | patch
tls: improve record checks
authorVictor Julien <vjulien@oisf.net>
Wed, 7 Sep 2022 06:32:05 +0000 (08:32 +0200)
committerVictor Julien <vjulien@oisf.net>
Wed, 21 Sep 2022 04:43:48 +0000 (06:43 +0200)
commit69be41b241bc7fd1a5b7f3988b51f5859ab27d57
tree2e11b66004f96155f8133e2e6baacfd7689ada82tree
parentc028800ae151415ca524ede755f9b880a19771abcommit | diff
tls: improve record checks

Improve unknown record handling. Inspired by Wireshark 'unknown record'
handling, we take a best effort approach for records with unknown content
types in TLS versions 1.0, 1.1 and 1.2.

Improve record length check and set 'invalid_record_length' event instead
of 'invalid_tls_header'.
src/app-layer-ssl.c diff | blob | blame | history
Mirror of https://github.com/OISF/suricata.git