zeek/testing/btest/Baseline/scripts.base.protocols.ssl.tls1_1 at 94f55532f2a1cf0077a1a6bce2f13f58f117228e - Mirror/zeek

mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00

History

Johanna Amann 94f55532f2 Make parsing of ServerKeyExchange work for D(TLS) < 1.2. Now we only parse the SignatureAndHashalgorithm field in cases where it is present. This change also takes care to respect SCTs, which do include the SignatureAndHashalgorithm in their digitally-signed struct, even when used in protocol versions that do not have the SignatureAndHashalgorithm in the protocols digitally-signed struct. I also added tests to make sure this does indeed work with TLS 1.1 - it turns out that so far we did not have a single TLS 1.1 pcap.	2017-11-30 12:20:45 -08:00
..
ssl.log	Make parsing of ServerKeyExchange work for D(TLS) < 1.2.	2017-11-30 12:20:45 -08:00
x509.log	Make parsing of ServerKeyExchange work for D(TLS) < 1.2.	2017-11-30 12:20:45 -08:00

Johanna Amann 94f55532f2 Make parsing of ServerKeyExchange work for D(TLS) < 1.2.

Now we only parse the SignatureAndHashalgorithm field in cases where it
is present. This change also takes care to respect SCTs, which do
include the SignatureAndHashalgorithm in their digitally-signed struct,
even when used in protocol versions that do not have the
SignatureAndHashalgorithm in the protocols digitally-signed struct.

I also added tests to make sure this does indeed work with TLS 1.1 - it
turns out that so far we did not have a single TLS 1.1 pcap.

2017-11-30 12:20:45 -08:00

ssl.log

Make parsing of ServerKeyExchange work for D(TLS) < 1.2.

2017-11-30 12:20:45 -08:00

x509.log

Make parsing of ServerKeyExchange work for D(TLS) < 1.2.

2017-11-30 12:20:45 -08:00