close the client connection if TLS ClientHello parsing fails

This commit is contained in:
Thomas Kriechbaumer 2019-11-30 12:43:25 +01:00
parent f026285434
commit 79778071cf

View File

@ -242,6 +242,8 @@ class TlsLayer(base.Layer):
self._client_hello = net_tls.ClientHello.from_file(self.client_conn.rfile) self._client_hello = net_tls.ClientHello.from_file(self.client_conn.rfile)
except exceptions.TlsProtocolException as e: except exceptions.TlsProtocolException as e:
self.log("Cannot parse Client Hello: %s" % repr(e), "error") self.log("Cannot parse Client Hello: %s" % repr(e), "error")
# Without knowning the ClientHello we cannot proceed in this connection.
return
# Do we need to do a server handshake now? # Do we need to do a server handshake now?
# There are two reasons why we would want to establish TLS with the server now: # There are two reasons why we would want to establish TLS with the server now: