Ethereal

SV: [Ethereal-dev] ssl decrypt fix for session renegotiation
Google
 
Web Ethereal.com

Home | Introduction | Documentation | Lists | FAQ | Development | Wiki | Bugs

Main Index | Thread Index | Mailing Lists | | Date Prev | Date Next | Thread Prev | Thread Next

Ethereal-dev: May 2006

 

Checked in.
Brg
Anders

-----Ursprungligt meddelande-----
Från: ethereal-dev-bounces@xxxxxxxxxxxx
[mailto:ethereal-dev-bounces@xxxxxxxxxxxx] För Paolo Abeni
Skickat: den 27 april 2006 12:35
Till: Ethereal development
Ämne: [Ethereal-dev] ssl decrypt fix for session renegotiation

hi all,

authesserre samuel <sauthess@xxxxxxxxx> kindly pointed out an issue with
session renegotiation in the current ssl decryption code. 

Encrypted handshake message are decrypted, but the dissector try to
interpret the encrypted code. Renegotiation messages are therefore
ignored. The attached pcap trace and key can be used to trigger the
issue.

The attached patch fix the problem storing the decrypted version of
encrypted handshake message and dissecting it when available. The patch
also fix bad issue with des cipher (alike the issue fixed in my
previous post)

ciao,

Paolo

 
 
 --
 Email.it, the professional e-mail, gratis per te: http://www.email.it/f
 
 Sponsor:
 Se stai pensando di cambiare o acquistare la tua auto, la soluzione è
richiedere un Credito Auto Findomestic, facile e senza anticipi
* 
 Clicca qui: http://adv.email.it/cgi-bin/foclick.cgi?mid=4968&d=27-4

Powered by MHonArc 2.6.10

Please send support questions about Ethereal to the ethereal-users[AT]ethereal.com mailing list.
For corrections/additions/suggestions for this web page (and not Ethereal support questions), please send email to ethereal-web[AT]ethereal.com.
Last modified: Fri, November 10 2006.
"Ethereal" and the "e" logo are registered trademarks of Ethereal, Inc.