diff options
| author | Darryl Sokoloski <darryl@sokoloski.ca> | 2021-01-07 04:58:48 -0500 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2021-01-07 10:58:48 +0100 |
| commit | 5f7b9d802498215f5769a8bfa39d92356da2cfdd (patch) | |
| tree | bcd5d663c6cb2f1e96eea8abd05e24398feed600 /src | |
| parent | ec2735694b4b1906658fc96dad2d5a095033559f (diff) | |
Increase SNI hostname buffer length to 256. (#1111)
According to RFC 4366, SNI host names can be up to 255 bytes.
Previous size of 64 resulted in failed application matches due to truncation.
For example:
0976e041e65b1aece3e720df36ac6bd7.safeframe.googlesyndication.co|m
Signed-off-by: Darryl Sokoloski <darryl@sokoloski.ca>
Diffstat (limited to 'src')
| -rw-r--r-- | src/include/ndpi_typedefs.h | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/src/include/ndpi_typedefs.h b/src/include/ndpi_typedefs.h index 16587ef90..69cb80854 100644 --- a/src/include/ndpi_typedefs.h +++ b/src/include/ndpi_typedefs.h @@ -1259,8 +1259,8 @@ struct ndpi_flow_struct { struct { char ssl_version_str[12]; u_int16_t ssl_version, server_names_len; - char client_requested_server_name[64], *server_names, - *alpn, *tls_supported_versions, *issuerDN, *subjectDN; + char client_requested_server_name[256], /* SNI hostname length: RFC 4366 */ + *server_names, *alpn, *tls_supported_versions, *issuerDN, *subjectDN; u_int32_t notBefore, notAfter; char ja3_client[33], ja3_server[33]; u_int16_t server_cipher; |