Parsed TLS certificate validity

author: Luca Deri <deri@ntop.org> 2019-09-10 00:34:48 +0200
committer: Luca Deri <deri@ntop.org> 2019-09-10 00:34:48 +0200
commit: 086c511a113eced0dca65d505d9baae47bed7be1 (patch)
tree: 3016d62974552cf745a290f76066a63b3fbf9d0f /example/ndpiReader.c
parent: c5fffce96cb538023d495161960812cf27558757 (diff)
1 files changed, 15 insertions, 4 deletions
diff --git a/example/ndpiReader.c b/example/ndpiReader.c
index d0c46d43e..5998a37b5 100644
--- a/example/ndpiReader.c
+++ b/example/ndpiReader.c
@@ -1096,19 +1096,30 @@ static void printFlow(u_int16_t id, struct ndpi_flow_info *flow, u_int16_t threa
     }
     
     if(flow->ssh_tls.ssl_version != 0) fprintf(out, "[%s]", ndpi_ssl_version2str(flow->ssh_tls.ssl_version));
-    if(flow->ssh_tls.client_info[0] != '\0') fprintf(out, "[client: %s]", flow->ssh_tls.client_info);
+    if(flow->ssh_tls.client_info[0] != '\0') fprintf(out, "[Client: %s]", flow->ssh_tls.client_info);
     if(flow->ssh_tls.client_hassh[0] != '\0') fprintf(out, "[HASSH-C: %s]", flow->ssh_tls.client_hassh);
     
     if(flow->ssh_tls.ja3_client[0] != '\0') fprintf(out, "[JA3C: %s%s]", flow->ssh_tls.ja3_client,
 						    print_cipher(flow->ssh_tls.client_unsafe_cipher));
-    if(flow->ssh_tls.server_info[0] != '\0') fprintf(out, "[server: %s]", flow->ssh_tls.server_info);
+    if(flow->ssh_tls.server_info[0] != '\0') fprintf(out, "[Server: %s]", flow->ssh_tls.server_info);
     if(flow->ssh_tls.server_hassh[0] != '\0') fprintf(out, "[HASSH-S: %s]", flow->ssh_tls.server_hassh);
     
     if(flow->ssh_tls.ja3_server[0] != '\0') fprintf(out, "[JA3S: %s%s]", flow->ssh_tls.ja3_server,
 						    print_cipher(flow->ssh_tls.server_unsafe_cipher));
-    if(flow->ssh_tls.server_organization[0] != '\0') fprintf(out, "[organization: %s]", flow->ssh_tls.server_organization);
-    if(flow->ssh_tls.server_cipher != '\0') fprintf(out, "[Cipher: %s]", ndpi_cipher2str(flow->ssh_tls.server_cipher));
+    if(flow->ssh_tls.server_organization[0] != '\0') fprintf(out, "[Organization: %s]", flow->ssh_tls.server_organization);
+
+    if(flow->ssh_tls.notBefore && flow->ssh_tls.notAfter) {
+      char notBefore[32], notAfter[32];
+
+      ctime_r(&flow->ssh_tls.notBefore, notBefore);
+      notBefore[strlen(notBefore)-1] = '\0'; /* Remove trailer \n */
+      ctime_r(&flow->ssh_tls.notAfter, notAfter);
+      notAfter[strlen(notAfter)-1] = '\0';   /* Remove trailer \n */
+      
+      fprintf(out, "[Validity: %s - %s]", notBefore, notAfter);
+    }
 
+    if(flow->ssh_tls.server_cipher != '\0') fprintf(out, "[Cipher: %s]", ndpi_cipher2str(flow->ssh_tls.server_cipher));
     if(flow->bittorent_hash[0] != '\0') fprintf(out, "[BT Hash: %s]", flow->bittorent_hash);
     if(flow->dhcp_fingerprint[0] != '\0') fprintf(out, "[DHCP Fingerprint: %s]", flow->dhcp_fingerprint);
author	Luca Deri <deri@ntop.org>	2019-09-10 00:34:48 +0200
committer	Luca Deri <deri@ntop.org>	2019-09-10 00:34:48 +0200
commit	086c511a113eced0dca65d505d9baae47bed7be1 (patch)
tree	3016d62974552cf745a290f76066a63b3fbf9d0f /example/ndpiReader.c
parent	c5fffce96cb538023d495161960812cf27558757 (diff)