You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I'm currently reviewing the part of checking $tls_serverhello_ascii_len to determine whether it's a Malformed response or not.
The specific lines are #14260~#14264 and #14303~#14306
AFAIK, the code checks the ServerHello message's length while the condition ensures that the message's length must be larger than the minimum size of the ServerHello message structure, i.e., 76 in this case.
However, the comments present that without sid-len, there are at least 40 bytes, and thus I'd expect the threshold of the length check should be 40*2= 80.
I'd like to know why it's 76 instead of 80.
The text was updated successfully, but these errors were encountered:
Which version are you referring to
3.2
I'm currently reviewing the part of checking
$tls_serverhello_ascii_lento determine whether it's aMalformed responseor not.The specific lines are #14260~#14264 and #14303~#14306
AFAIK, the code checks the ServerHello message's length while the condition ensures that the message's length must be larger than the minimum size of the ServerHello message structure, i.e., 76 in this case.
However, the comments present that without
sid-len, there are at least 40 bytes, and thus I'd expect the threshold of the length check should be 40*2= 80.I'd like to know why it's 76 instead of 80.
The text was updated successfully, but these errors were encountered: