Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Tls fingerprint and storage support #1

Closed
wants to merge 10 commits into from
Closed

Tls fingerprint and storage support #1

wants to merge 10 commits into from

Commits on Aug 21, 2012

  1. tls: adding TLS Log support 

    Creation of the log-tlslog file in order to log tls message.
Need to add some information into suricata.yaml to work.

  - tls-log:
      enabled: yes	# Log TLS connections.
      filename: tls.log # File to store TLS logs.
    @Popof @regit
    Popof authored and regit committed Aug 21, 2012
    Configuration menu
    Copy the full SHA
    520daf1 View commit details
    Browse the repository at this point in the history

  2. tls: adding cryptographic functions. 

    Adding util-crypt containing cryptographic functions as SHA1 and Base64.
    @Popof @regit
    Popof authored and regit committed Aug 21, 2012
    Configuration menu
    Copy the full SHA
    0491266 View commit details
    Browse the repository at this point in the history

  3. tls: add NSS version for SHA1 computing function.

    @regit
    regit committed Aug 21, 2012
    Configuration menu
    Copy the full SHA
    e8d3e61 View commit details
    Browse the repository at this point in the history

  4. tls: adding fingerprint calculation. 

    Adding a pointer in ssl_state struct and compute fingerprint during
certificate decoding.
    @Popof @regit
    Popof authored and regit committed Aug 21, 2012
    Configuration menu
    Copy the full SHA
    e810a9e View commit details
    Browse the repository at this point in the history

  5. tls: adding fingerprint to TLS Log information. 

    Improve TLS logging by adding the certificate fingerprint to TLS Log file.
Add the extending option to the tls-log entry in suricata.yaml.
    @Popof @regit
    Popof authored and regit committed Aug 21, 2012
    Configuration menu
    Copy the full SHA
    a6a4683 View commit details
    Browse the repository at this point in the history

  6. tls: adding support for fingerprint rule matching. 

    Add the support for tls.fingerprint keyword in rules.
    @Popof @regit
    Popof authored and regit committed Aug 21, 2012
    Configuration menu
    Copy the full SHA
    e97bc8d View commit details
    Browse the repository at this point in the history

  7. tls: adding store option for TLS 

    This patch adds a TLS store option to save certificate in PEM format.
Each time the store action is met, a file and a metafile are created.

Reworked-by: Eric Leblond <eric@regit.org>
    @Popof @regit
    Popof authored and regit committed Aug 21, 2012
    Configuration menu
    Copy the full SHA
    6077ff5 View commit details
    Browse the repository at this point in the history

  8. tls: keep pointers to all certificates in chain 

    When multiple certificates forming a chain are sent. A pointer to
the start of each certificate is kept. This will allow treatment
on certificates chains.
    @regit
    regit committed Aug 21, 2012
    Configuration menu
    Copy the full SHA
    103d85b View commit details
    Browse the repository at this point in the history

  9. tls: store all the certificates chain in the written PEM file. 

    When using the tls.store command, a dump of all certificates in
the chain is now done on the disk.
    @regit
    regit committed Aug 21, 2012
    Configuration menu
    Copy the full SHA
    c02f7a3 View commit details
    Browse the repository at this point in the history

  10. tls: fix error message.

    @regit
    regit committed Aug 21, 2012
    Configuration menu
    Copy the full SHA
    29b4268 View commit details
    Browse the repository at this point in the history