diff options
| author | Peter Wu <peter@lekensteyn.nl> | 2017-02-07 21:39:08 +0100 |
|---|---|---|
| committer | Peter Wu <peter@lekensteyn.nl> | 2017-02-10 23:45:40 +0000 |
| commit | efed7b5ab6bb0f3a6ca8a2368964df3a3917ee85 (patch) | |
| tree | ad83b4fe72eaa6937e0a8c5cdd91adbd2fc6cd3a /epan | |
| parent | d13da6c408bd3b8fe908bc90ea2b60f6059c388d (diff) | |
| download | wireshark-efed7b5ab6bb0f3a6ca8a2368964df3a3917ee85.tar.gz | |
ssl-utils: stylistic changes for ServerHello, HelloRetryRequest
Change "length" to "offset_end" parameter for consistency. Clarify
applicable TLS version in comments. Remove unnecessary check for length.
Change-Id: Icdc7edff9c8fdaf4c7d7349f65fed42f5344f2c3
Reviewed-on: https://code.wireshark.org/review/20001
Petri-Dish: Peter Wu <peter@lekensteyn.nl>
Tested-by: Petri Dish Buildbot <buildbot-no-reply@wireshark.org>
Reviewed-by: Peter Wu <peter@lekensteyn.nl>
Diffstat (limited to 'epan')
| -rw-r--r-- | epan/dissectors/packet-ssl-utils.c | 28 | ||||
| -rw-r--r-- | epan/dissectors/packet-ssl-utils.h | 4 | ||||
| -rw-r--r-- | epan/dissectors/packet-ssl.c | 4 |
3 files changed, 16 insertions, 20 deletions
diff --git a/epan/dissectors/packet-ssl-utils.c b/epan/dissectors/packet-ssl-utils.c index 9dfadfa4a7..e0fe5a73d7 100644 --- a/epan/dissectors/packet-ssl-utils.c +++ b/epan/dissectors/packet-ssl-utils.c @@ -6810,21 +6810,20 @@ ssl_dissect_hnd_cli_hello(ssl_common_dissect_t *hf, tvbuff_t *tvb, void ssl_dissect_hnd_srv_hello(ssl_common_dissect_t *hf, tvbuff_t *tvb, - packet_info* pinfo, proto_tree *tree, guint32 offset, guint32 length, + packet_info* pinfo, proto_tree *tree, guint32 offset, guint32 offset_end, SslSession *session, SslDecryptSession *ssl, gboolean is_dtls) { /* struct { * ProtocolVersion server_version; * Random random; - * SessionID session_id; + * SessionID session_id; // TLS 1.2 and before * CipherSuite cipher_suite; - * CompressionMethod compression_method; + * CompressionMethod compression_method; // TLS 1.2 and before * Extension server_hello_extension_list<0..2^16-1>; * } ServerHello; */ guint16 server_version; - guint16 start_offset = offset; /* This version is always better than the guess at the Record Layer */ server_version = tvb_get_ntohs(tvb, offset); @@ -6870,10 +6869,10 @@ ssl_dissect_hnd_srv_hello(ssl_common_dissect_t *hf, tvbuff_t *tvb, offset++; } - /* remaining data are extensions */ - if (length > offset - start_offset) { + /* SSL v3.0 has no extensions, so length field can indeed be missing. */ + if (offset < offset_end) { ssl_dissect_hnd_hello_ext(hf, tvb, tree, pinfo, offset, - start_offset + length, SSL_HND_SERVER_HELLO, + offset_end, SSL_HND_SERVER_HELLO, session, ssl, is_dtls); } } @@ -6964,27 +6963,24 @@ ssl_dissect_hnd_new_ses_ticket(ssl_common_dissect_t *hf, tvbuff_t *tvb, packet_i void ssl_dissect_hnd_hello_retry_request(ssl_common_dissect_t *hf, tvbuff_t *tvb, - packet_info* pinfo, proto_tree *tree, guint32 offset, guint32 length, + packet_info* pinfo, proto_tree *tree, guint32 offset, guint32 offset_end, SslSession *session, SslDecryptSession *ssl, gboolean is_dtls) { - /* struct { + /* https://tools.ietf.org/html/draft-ietf-tls-tls13-18#section-4.1.4 + * struct { * ProtocolVersion server_version; * Extension extensions<2..2^16-1>; * } HelloRetryRequest; */ - guint16 start_offset = offset; - proto_tree_add_item(tree, hf->hf.hs_server_version, tvb, offset, 2, ENC_BIG_ENDIAN); offset += 2; /* remaining data are extensions */ - if (length > offset - start_offset) { - ssl_dissect_hnd_hello_ext(hf, tvb, tree, pinfo, offset, - start_offset + length, SSL_HND_HELLO_RETRY_REQUEST, - session, ssl, is_dtls); - } + ssl_dissect_hnd_hello_ext(hf, tvb, tree, pinfo, offset, + offset_end, SSL_HND_HELLO_RETRY_REQUEST, + session, ssl, is_dtls); } void diff --git a/epan/dissectors/packet-ssl-utils.h b/epan/dissectors/packet-ssl-utils.h index 485a67ea63..93a045a967 100644 --- a/epan/dissectors/packet-ssl-utils.h +++ b/epan/dissectors/packet-ssl-utils.h @@ -892,13 +892,13 @@ ssl_dissect_hnd_cli_hello(ssl_common_dissect_t *hf, tvbuff_t *tvb, extern void ssl_dissect_hnd_srv_hello(ssl_common_dissect_t *hf, tvbuff_t *tvb, packet_info* pinfo, - proto_tree *tree, guint32 offset, guint32 length, + proto_tree *tree, guint32 offset, guint32 offset_end, SslSession *session, SslDecryptSession *ssl, gboolean is_dtls); extern void ssl_dissect_hnd_hello_retry_request(ssl_common_dissect_t *hf, tvbuff_t *tvb, packet_info* pinfo, - proto_tree *tree, guint32 offset, guint32 length, + proto_tree *tree, guint32 offset, guint32 offset_end, SslSession *session, SslDecryptSession *ssl, gboolean is_dtls); diff --git a/epan/dissectors/packet-ssl.c b/epan/dissectors/packet-ssl.c index 12d46fe5b8..96d6dec2f1 100644 --- a/epan/dissectors/packet-ssl.c +++ b/epan/dissectors/packet-ssl.c @@ -2094,7 +2094,7 @@ dissect_ssl3_handshake(tvbuff_t *tvb, packet_info *pinfo, case SSL_HND_SERVER_HELLO: ssl_dissect_hnd_srv_hello(&dissect_ssl3_hf, tvb, pinfo, ssl_hand_tree, - offset, length, session, ssl, FALSE); + offset, offset + length, session, ssl, FALSE); if (ssl) { ssl_load_keyfile(ssl_options.keylog_filename, &ssl_keylog_file, &ssl_master_key_map); /* Create client and server decoders for TLS 1.3. */ @@ -2119,7 +2119,7 @@ dissect_ssl3_handshake(tvbuff_t *tvb, packet_info *pinfo, case SSL_HND_HELLO_RETRY_REQUEST: ssl_dissect_hnd_hello_retry_request(&dissect_ssl3_hf, tvb, pinfo, ssl_hand_tree, - offset, length, session, ssl, FALSE); + offset, offset + length, session, ssl, FALSE); break; case SSL_HND_ENCRYPTED_EXTENSIONS: |