On Fri, Oct 14, 2016 at 05:10:01PM +0200, Hubert Kario wrote:
> On Thursday, 13 October 2016 23:33:19 CEST Ilari Liusvaara wrote:
> > Ok, dumped the handshake using wireshark. Wireshark seems to think
> > the SNI with two lengths is perfectly sane.
> that's because wireshark doesn't perform length checks on many fields of TLS
> There are both valid messages rejected by wireshark (fragmented over multiple
> records) and invalid messages accepted by wireshark.
Actually, AFAICT, the message was encoded like it should (one length
from the outer list length and one from the name length, as specified
by the TLS standard).
TLS mailing list