Merge e77e8abc18 into f24cf1476c

2024-11-21 17:07:04 +00:00 · 2024-08-20 14:10:17 +03:00
3 changed files with 3 additions and 6 deletions
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@ -37,7 +37,7 @@ jobs:
          persist-credentials: false

      - name: "Run analysis"
-        uses: ossf/scorecard-action@62b2cac7ed8198b15735ed49ab1e5cf35480ba46 # v2.4.0
+        uses: ossf/scorecard-action@dc50aa9510b46c811795eb24b2f1ba02a914e534 # v2.3.3
        with:
          results_file: results.sarif
          results_format: sarif
@ -59,7 +59,7 @@ jobs:
      # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
      # format to the repository Actions tab.
      - name: "Upload artifact"
-        uses: actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a # v4.3.6
+        uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
        with:
          name: SARIF file
          path: results.sarif
--- a/ssl/ssl.enums.c
+++ b/ssl/ssl.enums.c
@ -244,7 +244,7 @@ static int decode_HandshakeType_ClientHello(ssl_obj *ssl,
  SSL_DECODE_UINT16(ssl, "extensions len", 0, data, &exlen);
  if(exlen) {
    explain(ssl, "extensions\n");
-    while(data->len > 0) {
+    while(data->len) {
      SSL_DECODE_UINT16(ssl, "extension type", 0, data, &ex);
      if(!ja3_ex_str)
        ja3_ex_str = calloc(7, 1);
@ -1714,7 +1714,6 @@ decoder extension_decoder[] = {
    {55, "external_id_hash", decode_extension},
    {56, "external_session_id", decode_extension},
    {13172, "next_protocol_negotiation", decode_extension},
-    {0xfe0d, "encrypted_client_hello", decode_extension},
    {0xff01, "renegotiation_info", decode_extension},
    {-1}};

--- a/ssl/ssldecode.c
+++ b/ssl/ssldecode.c
@ -555,7 +555,6 @@ int ssl_restore_session(ssl_obj *ssl, ssl_decoder *d) {
    case TLSV1_VERSION:
    case TLSV11_VERSION:
    case TLSV12_VERSION:
-    case TLSV13_VERSION:
      if((r = ssl_generate_keying_material(ssl, d)))
        ABORT(r);
      break;
@ -656,7 +655,6 @@ int ssl_process_client_key_exchange(ssl_obj *ssl,
    case TLSV1_VERSION:
    case TLSV11_VERSION:
    case TLSV12_VERSION:
-    case TLSV13_VERSION:
      if((r = ssl_generate_keying_material(ssl, d)))
        ABORT(r);
      break;