Huge thanks to our Platinum Members Endace and LiveAction,
and our Silver Member Veeam, for supporting the Wireshark Foundation and project.

Wireshark-bugs: [Wireshark-bugs] [Bug 5485] improper decode of TLS 1.2 packet containing both Ce

Date: Mon, 13 Dec 2010 07:35:32 -0800 (PST)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5485

--- Comment #2 from Kevin Fall <kfall@xxxxxxxxxxxxxxx> 2010-12-13 07:35:27 PST ---
(In reply to comment #1)
> I'm getting a malformed packet warning. This looks like RFC5485 Errata ID: 1585

Ugh, so that means gnutls is generating pre-errata CertificateRequest formats. 
How would you feel about arranging the decode to check if the 2nd/3rd bytes of
the CertificateRequest message look like a valid sig alg and if not decode
w/out that field (and note "pre Errata 1585-missing Sig ID") or some such?

-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.