[Oisf-devel] [COMMIT] OISF branch, master, updated. suricata-1.3.1-34-gf82573b

noreply at openinfosecfoundation.org noreply at openinfosecfoundation.org
Mon Aug 27 09:23:51 UTC 2012

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".

The branch, master has been updated
       via  f82573be1244eda76108e0486540fddb32fbcbbe (commit)
       via  a3b2cee0d5a1ee35c217d8f839663bfae9b02fa9 (commit)
       via  b253d1a4994ee04511f6e23dd13bda4357544c07 (commit)
       via  152b4eaf568d1685cd18b76d09f04ba5111da153 (commit)
       via  c4df7a45aeef26bb4fbf9fc48c2607b38c633e06 (commit)
       via  00d435736268c35ddba7000c47c6e9a72c983358 (commit)
       via  bf386a396d693043b77fa58006d23474d041f0fc (commit)
       via  644c1b3cad51212423601e8f5df32fb6240b1571 (commit)
       via  3df20d054446ef38dd652d3c6dfd8cbbd31c762e (commit)
       via  9071bcf98333cb5166ebf3bb7a48ad1d262800e0 (commit)
       via  efdf96ccbaeca1703b48388d85cf57ad4086287d (commit)
      from  3eb0fd878d5821e8ca7f6550e13bbef4adddc088 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit f82573be1244eda76108e0486540fddb32fbcbbe
Author: Eric Leblond <eric at regit.org>
Date:   Thu Aug 23 17:06:39 2012 +0200

    tls: suppress always true condition.

commit a3b2cee0d5a1ee35c217d8f839663bfae9b02fa9
Author: Eric Leblond <eric at regit.org>
Date:   Tue Aug 21 15:42:10 2012 +0200

    detect-tls: various indent fixes.
    And delete a useless FIXME.

commit b253d1a4994ee04511f6e23dd13bda4357544c07
Author: Eric Leblond <eric at regit.org>
Date:   Thu Aug 23 09:25:15 2012 +0200

    tls: store all the certificates chain in the written PEM file.
    When using the tls.store command, a dump of all certificates in
    the chain is now done on the disk.

commit 152b4eaf568d1685cd18b76d09f04ba5111da153
Author: Eric Leblond <eric at regit.org>
Date:   Wed Jul 18 15:13:49 2012 +0200

    tls: keep pointers to all certificates in chain
    When multiple certificates forming a chain are sent. A pointer to
    the start of each certificate is kept. This will allow treatment
    on certificates chains.

commit c4df7a45aeef26bb4fbf9fc48c2607b38c633e06
Author: Jean-Paul Roliers <popof.fpn at gmail.com>
Date:   Sat Feb 4 17:37:41 2012 +0100

    tls: adding store option for TLS
    This patch adds a TLS store option to save certificate in PEM format.
    Each time the store action is met, a file and a metafile are created.
    Reworked-by: Eric Leblond <eric at regit.org>

commit 00d435736268c35ddba7000c47c6e9a72c983358
Author: Jean-Paul Roliers <popof.fpn at gmail.com>
Date:   Thu Feb 2 16:45:35 2012 +0100

    tls: adding support for fingerprint rule matching.
    Add the support for tls.fingerprint keyword in rules.

commit bf386a396d693043b77fa58006d23474d041f0fc
Author: Jean-Paul Roliers <popof.fpn at gmail.com>
Date:   Sat Feb 4 17:15:11 2012 +0100

    tls: adding fingerprint to TLS Log information.
    Improve TLS logging by adding the certificate fingerprint to TLS Log file.
    Add the extending option to the tls-log entry in suricata.yaml.

commit 644c1b3cad51212423601e8f5df32fb6240b1571
Author: Jean-Paul Roliers <popof.fpn at gmail.com>
Date:   Thu Feb 2 15:07:42 2012 +0100

    tls: adding fingerprint calculation.
    Adding a pointer in ssl_state struct and compute fingerprint during
    certificate decoding.

commit 3df20d054446ef38dd652d3c6dfd8cbbd31c762e
Author: Eric Leblond <eric at regit.org>
Date:   Thu Apr 5 16:45:24 2012 +0200

    tls: add NSS version for SHA1 computing function.

commit 9071bcf98333cb5166ebf3bb7a48ad1d262800e0
Author: Jean-Paul Roliers <popof.fpn at gmail.com>
Date:   Thu Feb 2 14:51:31 2012 +0100

    tls: adding cryptographic functions.
    Adding util-crypt containing cryptographic functions as SHA1 and Base64.

commit efdf96ccbaeca1703b48388d85cf57ad4086287d
Author: Jean-Paul Roliers <popof.fpn at gmail.com>
Date:   Wed Feb 1 22:36:44 2012 +0100

    tls: adding TLS Log support
    Creation of the log-tlslog file in order to log tls message.
    Need to add some information into suricata.yaml to work.
      - tls-log:
          enabled: yes	# Log TLS connections.
          filename: tls.log # File to store TLS logs.


Summary of changes:
 src/Makefile.am                        |    2 +
 src/app-layer-ssl.c                    |   15 +
 src/app-layer-ssl.h                    |   19 +
 src/app-layer-tls-handshake.c          |   50 +++-
 src/detect-tls.c                       |  447 ++++++++++++++++++++-----
 src/detect-tls.h                       |    1 +
 src/detect.h                           |    4 +
 src/log-tlslog.c                       |  574 ++++++++++++++++++++++++++++++++
 src/{detect-filemd5.h => log-tlslog.h} |   21 +-
 src/suricata.c                         |    4 +
 src/tm-threads-common.h                |    3 +
 src/util-crypt.c                       |  306 +++++++++++++++++
 src/util-crypt.h                       |   82 +++++
 src/util-error.h                       |    3 +-
 suricata.yaml.in                       |    7 +
 15 files changed, 1440 insertions(+), 98 deletions(-)
 create mode 100644 src/log-tlslog.c
 copy src/{detect-filemd5.h => log-tlslog.h} (68%)
 create mode 100644 src/util-crypt.c
 create mode 100644 src/util-crypt.h


More information about the Oisf-devel mailing list