Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-04 07:38:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
11634 commits 385 branches 195 tags 258 MiB
Commit graph

4 commits

Author SHA1 Message Date
Johanna Amann
3c95c9a956 Fix TLS 1.3 session resumption detection. 
Now we detect TLS 1.3 session resumption by looking if both sides have
the PSK extension set, which is much more exact than the previous
approach.
 2020-12-15 16:34:47 +00:00
Christian Kreibich
0b674eb851 Baseline refresh to reflect btest 0.64 2020-12-06 20:19:49 -08:00
Johanna Amann
86ac468882 support the newer TLS 1.3 key_share extension. 
This one adds a separate new case that has to be parsed differently - if
a hello-retry-request is sent, only the namedgroup is sent - without the
additional key material.

Support for the legacy extension is retained.
 2019-06-03 14:40:33 +10:00
Johanna Amann
f39efd0317 Recognize TLS 1.3 negotiation correctly. 
The way in which TLS 1.3 is negotiated was changed slightly in later
revisions of the standard. The final version is only sent in an
extension - while the version field in the server hello still shows TLS
1.2.

This patch makes ssl.log show the correct version again.
 2018-03-27 14:58:06 -07:00