diff options
author | Cherish98 <66007047+Cherish98@users.noreply.github.com> | 2023-01-15 18:15:23 +0000 |
---|---|---|
committer | Jay Satiro <raysatiro@yahoo.com> | 2023-01-24 03:31:07 -0500 |
commit | bde24fac7cfd4cb67593cb9b524b6a06ada09f3a (patch) | |
tree | c8f6b8438cfc904c86cc208f5cf85271227c646b | |
parent | 71cc27f0d6de7abf0f4e41b8d1ea74e60b6fce7c (diff) | |
download | curl-bde24fac7cfd4cb67593cb9b524b6a06ada09f3a.tar.gz |
openssl: don't log raw record headers
- Skip content type SSL3_RT_HEADER in verbose TLS output.
This commit prevents bogus and misleading verbose TLS header messages as
discussed in #10299.
Assisted-by: Peter Wu
Closes https://github.com/curl/curl/pull/10299
-rw-r--r-- | lib/vtls/openssl.c | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/lib/vtls/openssl.c b/lib/vtls/openssl.c index 9ebb5e991..9dbd4a4e1 100644 --- a/lib/vtls/openssl.c +++ b/lib/vtls/openssl.c @@ -2698,6 +2698,9 @@ static void ossl_trace(int direction, int ssl_ver, int content_type, * For TLS 1.3, skip notification of the decrypted inner Content-Type. */ if(ssl_ver +#ifdef SSL3_RT_HEADER + && content_type != SSL3_RT_HEADER +#endif #ifdef SSL3_RT_INNER_CONTENT_TYPE && content_type != SSL3_RT_INNER_CONTENT_TYPE #endif |