diff options
author | Peter Wu <peter@lekensteyn.nl> | 2017-01-27 22:30:34 +0100 |
---|---|---|
committer | Peter Wu <peter@lekensteyn.nl> | 2017-01-28 14:32:09 +0100 |
commit | ec9ce3fdad014274ce00de1768f9e11395a77e37 (patch) | |
tree | 9c5dd1a5e2c80fa542404594561a17ff3f1a4446 /epan/dissectors/packet-ssl-utils.h | |
parent | 0d57fe2fe4941acf69d1b5af9b61cc0b10248aa3 (diff) | |
download | wireshark-ec9ce3fdad014274ce00de1768f9e11395a77e37.tar.gz |
(D)TLS: fix type of record sequence numberTLS13
The record sequence number is 64-bit, not 32-bit. This applies to all
SSLv3/TLS/DTLS versions. Without this fix, after about four million
records, the wrong MAC is calculated (for TLS 1.2) or decryption will
fail (for TLS 1.3).
Change-Id: I05e5e8bc4229ac443a1b06c5fe984fb885eab1ca
Diffstat (limited to 'epan/dissectors/packet-ssl-utils.h')
-rw-r--r-- | epan/dissectors/packet-ssl-utils.h | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/epan/dissectors/packet-ssl-utils.h b/epan/dissectors/packet-ssl-utils.h index 39875c6191..8760103922 100644 --- a/epan/dissectors/packet-ssl-utils.h +++ b/epan/dissectors/packet-ssl-utils.h @@ -302,7 +302,7 @@ typedef struct _SslDecoder { StringInfo write_iv; /* for AEAD ciphers (at least GCM, CCM) */ SSL_CIPHER_CTX evp; SslDecompress *decomp; - guint32 seq; + guint64 seq; /**< Implicit (TLS) or explicit (DTLS) record sequence number. */ guint16 epoch; SslFlow *flow; } SslDecoder; |