From ee1de4c812e580993347d2a976a68e4a2e8bdda5 Mon Sep 17 00:00:00 2001 From: Mats Klepsland Date: Mon, 29 Oct 2018 20:30:41 +0100 Subject: [PATCH] app-layer-ssl: handle all versions above TLSv1.2 as TLSv1.3 This makes it more likely to log custom versions of TLSv1.3 that doesn't comply with the draft version numbering. --- src/app-layer-ssl.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/app-layer-ssl.c b/src/app-layer-ssl.c index a3f3c5061f..f46873bcb2 100644 --- a/src/app-layer-ssl.c +++ b/src/app-layer-ssl.c @@ -946,7 +946,7 @@ static inline int TLSDecodeHSHelloExtensionSupportedVersions(SSLState *ssl_state uint16_t ver = *input << 8 | *(input + 1); if ((ssl_state->flags & SSL_AL_FLAG_CH_VERSION_EXTENSION) && - ((ver == TLS_VERSION_13) || (((ver >> 8) & 0xff) == 0x7f))) { + (ver > TLS_VERSION_12)) { ssl_state->flags |= SSL_AL_FLAG_LOG_WITHOUT_CERT; }