[Oisf-devel] [COMMIT] OISF branch, master, updated. suricata-3.0.1-266-ga13df67
OISF Git
noreply at openinfosecfoundation.org
Thu May 19 08:02:15 UTC 2016
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".
The branch, master has been updated
via a13df67864d05ba56a9751e7310001296f7c6d59 (commit)
from 3da79610afda76f9f32aad13c1bae202f9d803f6 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit a13df67864d05ba56a9751e7310001296f7c6d59
Author: Mats Klepsland <mats.klepsland at gmail.com>
Date: Wed May 18 13:49:47 2016 +0200
detect: add (mpm) keyword for tls_sni
Match on server name indication (SNI) extension in TLS using tls_sni
keyword, e.g:
alert tls any any -> any any (msg:"SNI test"; tls_sni;
content:"example.com"; sid:12345;)
-----------------------------------------------------------------------
Summary of changes:
src/Makefile.am | 2 +
src/detect-engine-analyzer.c | 2 +
src/detect-engine-content-inspection.h | 1 +
src/detect-engine-mpm.c | 6 +-
src/detect-engine-state.h | 3 +-
src/detect-engine-tls.c | 145 +++++++++
...detect-engine-profile.h => detect-engine-tls.h} | 16 +-
src/detect-engine.c | 11 +
src/detect-fast-pattern.c | 12 +-
src/detect-parse.c | 6 +
src/detect-tls-sni.c | 341 +++++++++++++++++++++
src/{util-spm-hs.h => detect-tls-sni.h} | 16 +-
src/detect.c | 20 ++
src/detect.h | 9 +-
src/suricata-common.h | 1 +
src/util-profiling.c | 1 +
16 files changed, 570 insertions(+), 22 deletions(-)
create mode 100644 src/detect-engine-tls.c
copy src/{detect-engine-profile.h => detect-engine-tls.h} (65%)
create mode 100644 src/detect-tls-sni.c
copy src/{util-spm-hs.h => detect-tls-sni.h} (67%)
hooks/post-receive
--
OISF
More information about the Oisf-devel
mailing list