Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-09 18:18:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

TLS decryption: remove payload from ssl_encrypted_data again.

Browse source 
There is no reason to make the payload available in the event - it is
still encrypted.
This commit is contained in:
Johanna Amann 2021-10-19 17:28:59 +02:00
parent eabb6eb743
commit fe4e06e8ca
8 changed files with 7 additions and 12 deletions
Download patch file Download diff file Expand all files Collapse all files

2
testing/btest/scripts/base/protocols/ssl/tls13.test
View file

@ -37,7 +37,7 @@ event ssl_established(c: connection)
print "established", c$id;
}
event ssl_encrypted_data(c: connection, is_orig: bool, record_version: count, content_type: count, length: count, payload: string)
event ssl_encrypted_data(c: connection, is_orig: bool, record_version: count, content_type: count, length: count)
{
print "encrypted", c$id, is_orig, SSL::version_strings[record_version], content_type;
}