suricata

Commit Graph

Author	SHA1	Message	Date
Mats Klepsland	e4f03b18ba	tls: make TX aware	9 years ago
Mats Klepsland	550823455e	app-layer-tls-handshake: code cleanup	9 years ago
Mats Klepsland	434b09563a	app-layer-tls-handshake: remove duplicate include	9 years ago
Mats Klepsland	d07c495ed1	app-layer-tls-handshake: fix heap-buffer overflow Fix heap-buffer overflow that occurs when we are given repeatedly certificates with the length of zero.	9 years ago
Victor Julien	8cdd96d7a4	tls: suppress warnings on alloc failure	10 years ago
Victor Julien	d63df6937c	tls: fix uninitialized var use errcode wasn't initialized and in some code paths it remained uninitialized, leading to us evaluating this uninitialized value. Bug #1091	12 years ago
Victor Julien	32271bdb66	app-layer-ssl: fix unusual memory leak In some cases the TLS state pointers to subject and issuerdn could be overwritten by a new memory allocation, causing us to loose track of the old. This has been observed in the case of improper VLAN handling, where it was suspected that multiple unrelated TLS streams were mangled together.	12 years ago
Victor Julien	28f14b1ed3	app-layer-ssl: style fixes Coding style fixes for TLS handshake parser.	12 years ago
Eric Leblond	152b4eaf56	tls: keep pointers to all certificates in chain When multiple certificates forming a chain are sent. A pointer to the start of each certificate is kept. This will allow treatment on certificates chains.	13 years ago
Jean-Paul Roliers	c4df7a45ae	tls: adding store option for TLS This patch adds a TLS store option to save certificate in PEM format. Each time the store action is met, a file and a metafile are created. Reworked-by: Eric Leblond <eric@regit.org>	13 years ago
Jean-Paul Roliers	644c1b3cad	tls: adding fingerprint calculation. Adding a pointer in ssl_state struct and compute fingerprint during certificate decoding.	13 years ago
Anoop Saldanha	270ea253a2	ssl parser fix/updates	13 years ago
Pierre Chifflier	d866f38982	TLS: add variable to store the error code in the decoder Use a variable to store the decoding error code if required, and remove the calls to SCLogInfo and SCLogDebug.	14 years ago
Pierre Chifflier	218b5d3ba0	TLS app layer: misc fixes, reorder some fields to same memory	14 years ago
Pierre Chifflier	3df341dbeb	Add TLS decode events	14 years ago
Eric Leblond	d1c56e810b	TLS parser: add sanity check	14 years ago
Pierre Chifflier	8457ce3b11	TLS app layer: rewrite decoder to handle multiple messages in records Since we now parse the content of the TLS messages, we need to handle the case multiple messages are shipped in a single TLS record, and taking care of the multiple levels of fragmentation (message, record, and TCP). Additionally, fix a bug where the parser state was not reset after an empty record.	14 years ago
Pierre Chifflier	4bb5e2a79d	TLS app layer: fix number of bytes processed on SERVER_CERTIFICATE message. Change the function to return the number of bytes processed, and fix a bug where the input buffer was wrong. Signed-off-by: Pierre Chifflier <pierre.chifflier@ssi.gouv.fr>	14 years ago
Eric Leblond	ad0e05a112	TLS app layer: Add tls.issuerdn keyword.	14 years ago
Pierre Chifflier	53e5421a24	TLS handshake: get TLS ciphersuite and compression Decode the SERVER_HELLO message to extract the ciphersuite and compression chosen by the server. Signed-off-by: Pierre Chifflier <pierre.chifflier@ssi.gouv.fr>	14 years ago
Pierre Chifflier	4be65fd016	TLS handshake: decode the SERVER_CERTIFICATE message Add a decoder for the SERVER_CERTIFICATE during a TLS handshake, extracts the certificates and keep the subject name. Add the tls.subject keyword for substring match in rules (TLS layer). Signed-off-by: Pierre Chifflier <pierre.chifflier@ssi.gouv.fr>	14 years ago

21 Commits (be9cd0fd843f1e412bceb3a86b0ad4e5cb7b0782)