suricata

You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

History

Jason Ish 2d86412f46 ike: log attributes as objects IKE attributes are an array of TLV style objects, this means there can be duplicate types seen on the wire. However, Suricata logs these as a mapping with the type as the key. This can result in the JSON containing duplicate keys. To address this, log the attributes as an array of objects, allow duplicates to exist, for example: "client": { "proposals": [ { "sa_life_duration": "Unknown", "sa_life_duration_raw": 86400, } } } is now logged as: "client": { "proposals": [ {"key": "sa_life_duration", "value": "Unknown", "raw": 86400} ] } Also adds `"version": 2` to each IKE record to note the change of format from previous versions. Ticket: #7902		1 month ago
..
.cargo	rust: rename .cargo/config to .cargo/config.toml	1 year ago
derive	rust/derive: fix clippy collapsible_match warning	6 months ago
htp	htp: use transactions right get function	2 months ago
src	ike: log attributes as objects	1 month ago
suricatactl	rust: allow some lints in suricatactl and suricatasc	5 months ago
suricatasc	datajson: introduce feature	5 months ago
sys	rust: bindgen FileAppendData	1 month ago
.gitignore	rust: rename .cargo/config to .cargo/config.toml	1 year ago
Cargo.lock.in	rust: cargo update	1 month ago
Cargo.toml.in	rust: pin time crate to 0.3.41	2 months ago
Makefile.am	rust: bindgen FileAppendData	1 month ago
cbindgen.toml	rust: remove unneeded cbindgen exclusions	1 month ago
rustfmt.toml	rustfmt: replace deprecated fn_args_layout with fn_params_layout	2 years ago