suricata
detect-tls-cert-validity.c File Reference
#include "suricata-common.h"
#include "threads.h"
#include "debug.h"
#include "decode.h"
#include "detect.h"
#include "detect-parse.h"
#include "detect-engine.h"
#include "detect-engine-mpm.h"
#include "detect-content.h"
#include "detect-pcre.h"
#include "detect-tls-cert-validity.h"
#include "flow.h"
#include "flow-util.h"
#include "flow-var.h"
#include "stream-tcp.h"
#include "app-layer.h"
#include "app-layer-ssl.h"
#include "util-time.h"
#include "util-unittest.h"
#include "util-unittest-helper.h"
#include "tests/detect-tls-cert-validity.c"
Include dependency graph for detect-tls-cert-validity.c:

Go to the source code of this file.

Macros

#define PARSE_REGEX   "^\\s*(<|>)?\\s*([ -:TW0-9]+)\\s*(?:(<>)\\s*([ -:TW0-9]+))?\\s*$"
 
#define MAX_SUBSTRINGS   30
 

Functions

void DetectTlsValidityRegister (void)
 Registration function for tls validity keywords. More...
 

Detailed Description

Author
Mats Klepsland mats..nosp@m.klep.nosp@m.sland.nosp@m.@gma.nosp@m.il.co.nosp@m.m

Implements tls certificate validity keywords

Definition in file detect-tls-cert-validity.c.

Macro Definition Documentation

◆ MAX_SUBSTRINGS

#define MAX_SUBSTRINGS   30

◆ PARSE_REGEX

#define PARSE_REGEX   "^\\s*(<|>)?\\s*([ -:TW0-9]+)\\s*(?:(<>)\\s*([ -:TW0-9]+))?\\s*$"

[tls_notbefore|tls_notafter]:[<|>]<date string>[<><date string>];

Definition at line 55 of file detect-tls-cert-validity.c.

Function Documentation

◆ DetectTlsValidityRegister()

void DetectTlsValidityRegister ( void  )

Registration function for tls validity keywords.

Definition at line 88 of file detect-tls-cert-validity.c.

References SigTableElmt_::AppLayerTxMatch, SigTableElmt_::desc, DETECT_AL_TLS_NOTBEFORE, DOC_URL, DOC_VERSION, SigTableElmt_::name, sigmatch_table, and SigTableElmt_::url.

Referenced by SigTableSetup().

Here is the caller graph for this function: