(D)TLS: fix type of record sequence numberTLS13

The record sequence number is 64-bit, not 32-bit. This applies to all SSLv3/TLS/DTLS versions. Without this fix, after about four million records, the wrong MAC is calculated (for TLS 1.2) or decryption will fail (for TLS 1.3). Change-Id: I05e5e8bc4229ac443a1b06c5fe984fb885eab1ca
author: Peter Wu <peter@lekensteyn.nl> 2017-01-27 22:30:34 +0100
committer: Peter Wu <peter@lekensteyn.nl> 2017-01-28 14:32:09 +0100
commit: ec9ce3fdad014274ce00de1768f9e11395a77e37 (patch)
tree: 9c5dd1a5e2c80fa542404594561a17ff3f1a4446 /epan/dissectors/packet-ssl-utils.h
parent: 0d57fe2fe4941acf69d1b5af9b61cc0b10248aa3 (diff)
download: wireshark-ec9ce3fdad014274ce00de1768f9e11395a77e37.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/epan/dissectors/packet-ssl-utils.h b/epan/dissectors/packet-ssl-utils.h
index 39875c6191..8760103922 100644
--- a/epan/dissectors/packet-ssl-utils.h
+++ b/epan/dissectors/packet-ssl-utils.h
@@ -302,7 +302,7 @@ typedef struct _SslDecoder {
     StringInfo write_iv; /* for AEAD ciphers (at least GCM, CCM) */
     SSL_CIPHER_CTX evp;
     SslDecompress *decomp;
-    guint32 seq;
+    guint64 seq;    /**< Implicit (TLS) or explicit (DTLS) record sequence number. */
     guint16 epoch;
     SslFlow *flow;
 } SslDecoder;
author	Peter Wu <peter@lekensteyn.nl>	2017-01-27 22:30:34 +0100
committer	Peter Wu <peter@lekensteyn.nl>	2017-01-28 14:32:09 +0100
commit	ec9ce3fdad014274ce00de1768f9e11395a77e37 (patch)
tree	9c5dd1a5e2c80fa542404594561a17ff3f1a4446 /epan/dissectors/packet-ssl-utils.h
parent	0d57fe2fe4941acf69d1b5af9b61cc0b10248aa3 (diff)
download	wireshark-ec9ce3fdad014274ce00de1768f9e11395a77e37.tar.gz