aaad273ec1
Add support for explicit curve parameters according to RFC 3279. This allows an exploitation attempt of CVE-2020-0601 to be detected through the pkcs1.specifiedCurve_element filter name. Be aware though that the certificate is encrypted in TLS 1.3, so a negative match does not imply that no exploitation has happened. While these definitions are technically not part of PKCS #1, the PKIXAlgs module is part of the pkcs1 dissector for historical reasons. It probably makes sense splitting it into a separate pkixalgs dissector, but that would result in field name changes. Defer that for now. Bug: 16340 Change-Id: Ia9d47a8337d6246f52983460580310b12e5709cf Reviewed-on: https://code.wireshark.org/review/35986 Petri-Dish: Peter Wu <peter@lekensteyn.nl> Tested-by: Petri Dish Buildbot Reviewed-by: Alexis La Goutte <alexis.lagoutte@gmail.com> |
||
---|---|---|
.. | ||
CMakeLists.txt | ||
PKIXAlgs-2009.asn | ||
packet-pkcs1-template.c | ||
packet-pkcs1-template.h | ||
pkcs1.cnf |