index
:
libndpi.git
4.2-stable
add/1kxun
add/AmongUs
add/activision-dissector
add/agora-sd-rtn-protocol-dissector
add/alicloud
add/apache-thrift
add/avast
add/bacnet-dissector
add/breed-to-serializer
add/build-rpm
add/can-over-ethernet
add/capnproto
add/cloudflare-warp
add/code-coverage-build
add/collectd-protocol
add/coverage-make-targets
add/crynet
add/discord-dissector
add/double-serialization
add/doxygen-gen
add/dpkg-no-sign-and-ci
add/edgecast_and_cachefly_cdn
add/elasticsearch
add/elf-risk-detect
add/entropy-calc-and-check
add/entropy-calculation-unknown-proto
add/fast-flux-risk
add/fastcgi
add/free-flow-data-api-fn
add/gearup_booster-protocol-dissector
add/generic-json-dissector
add/generic-protobuf-dissector
add/generic-reassembler-interface
add/genshin-impact
add/get-flow-info-apifn
add/google-benchmark
add/gprof
add/gprof-test-ci-integration
add/haproxy
add/haproxy-and-more
add/hostname-inc-generator-and-gambling-sites
add/hpvirtgrp
add/i3d-and-riotgames-protocol-dissector
add/icmp-tunnel-chksm-risk
add/invalid-chars-detection-in-text
add/kcp
add/kismet
add/malicious-sites
add/monero-protocol-dissector
add/more-and-detailed-entropy-checks
add/mpegdash-and-subproto-handling
add/munin
add/natpmp
add/oicq
add/output-realtime-protocols
add/pe-dissector
add/psiphon3
add/raft
add/raknet
add/ripe_atlas
add/rmcp
add/roughtime
add/rsh
add/service-location-protocol-dissector
add/set_config_u64
add/shellscript-risk-detection
add/softether
add/softether-dissector
add/source-engine-dissector
add/ssl-cert-sha1-blacklist
add/syncthing
add/tarball-verification-script
add/tesla-services
add/threema
add/tivoconnect
add/tls-check-common-alpn
add/toca-boca-protocol-dissector
add/tsan-support-ci-and-autoconf
add/tunnelbear
add/ultrasurf-vpn
add/vs-proj-sln-and-ci-msbuild
add/windows-update-urls
add/yojimbo
add/z3950
add/zug-consensus-dissector
added/avast_securedns
added/sus_tls_ext_risk
dev
dev-1
do/some/maintenance
first-step-to-automake-integration
fix-add/make-doc-and-CI
fix/broken-ndpi_timeval_to_microseconds
fix/configure-seed-leftover
fix/data-analyse-implicit-u32-cast
fix/data-races
fix/double-ndpi_tot_allocated_memory-add
fix/external-ndpi-build
fix/external-ndpi-build-2
fix/external-ndpi-build-3
fix/gcrypt-autoconf-and-dpkg-pkg-config
fix/git-format-hash-abbr-length
fix/http-lower-upper-proto-weirdness
fix/intrustion-detection-leftovers-build-err
fix/invalid-ndpi-free
fix/invalid-realloc-wrapper
fix/ip-tuple-logic-error-and-more
fix/irc-heap-overflow
fix/json-c-with-only-libndpi
fix/json-empty-risk-serialization
fix/memory-errors-and-packet-fuzzer
fix/missing-packet-counter-increase
fix/missing-typedefs-and-strncasecmp-replacement
fix/mpegdash-vs-http
fix/ndpi-pkt-timeval
fix/ndpi-reader-serialization
fix/ndpi-reader-serialization-issues
fix/ndpi-simple-hash-buffer-size
fix/ndpi-subprotocol-detection
fix/ndpi-subprotocol-detection-and-refactoring
fix/overflow-and-libgerror-check
fix/packaging
fix/reader-util-hashval-calculation-endianess
fix/sonarcloud-ci
fix/strinop-truncation
fix/strncpy-trunc
fix/syslog-false-positive
fix/syslog-heap-overflow
fix/tls-ja3-off-by-one
fix/tls-ja4-strncpy-truncation
fix/tls-memleaks
fix/tls-sig-heap-overflow
fix/unit-tests
fix/unitialized-use-of-W
fix/unused-params-and-fns
fix/use-fastcgi-malloc-wrapper
fix/windows-latest-build
fix/windows-msys2
improve/cfg_set_error-fprintf
improve/disable-global-ctx-and-pthread
improve/kafka
improve/proto-debug-printf
improve/risks-naming
improve/serialize-ja4-to-json
improved/aes-ni-check
improved/autoconf-missing-brackets
improved/be-gambling-regex
improved/bittorrent-utorrent-utp
improved/c-ld-flags-copts
improved/ci-test-update-scripts
improved/ciscovpn
improved/configure-ac-obsolete-macros
improved/crynet
improved/debug-out
improved/discord-pattern
improved/dnscrypt
improved/dnscrypt_and_steam
improved/empty-api-version
improved/empty-app-protos
improved/fastcgi-dissection
improved/fuzz-reader
improved/genshin-impact
improved/gnutella
improved/gprof
improved/helper-scripts
improved/http-manipulated-url
improved/http-soap
improved/http_subprotocols
improved/ietf-quic-0rtt-detection
improved/ipsec-isakmp-detection
improved/jabber-xmpp
improved/json-serialize-ndpi-block
improved/kerberos-asn1-parsing
improved/label-smtp-w-starttls-as-smtps
improved/libc-malloc-wrapper-and-checks
improved/libm-check
improved/logging_callback_ndpi_printf
improved/mdsn-llmnr-detection
improved/mgcp
improved/mgcp-line-feed
improved/natpmp-dissect
improved/ndpi-hashtable-with-uthash
improved/ndpi-lib-and-reader-user-agent
improved/ndpi-max-packets-to-process
improved/ndpi-reader-help-spam
improved/ndpi-rule-handling-failure
improved/ndpi-serialization
improved/ndpiReader-CTRL-C
improved/openwrt-xcc-builtin-memcpy-warning
improved/pcap_processing
improved/pluralsight
improved/polish-gambling-fetch
improved/protobuf-debug
improved/protobuf-detection
improved/readme-and-autotools-int
improved/riotgames-sigs
improved/rtsp
improved/rtsp_detection
improved/rtsp_detection_the_second
improved/rtsp_detection_the_third
improved/run-tests
improved/serialization
improved/serialization-and-api-helper
improved/serialize
improved/sflow
improved/smtp-starttls
improved/softether-dissector
improved/some-categories
improved/sonarcloud-ci
improved/ssdp-hostname-dissect
improved/ssh
improved/steam-by-adding-steamdiscover
improved/steam-steamdiscover
improved/sus-ua-detect
improved/syslog-false-negatives
improved/tests-diff-word-wise-and-unittest-sync
improved/tftp
improved/tftp-dissect
improved/tftp-filename-dissection
improved/tls-alert-detection
improved/tls-appdata-detection
improved/tls-appdata-detection-the-second
improved/tls-cert-wildcards
improved/tls-sig-dissect-and-ci
improved/ts3-license-weblist
improved/viber-tcp
improved/websocket-detection-and-chisel-ssh-tunnel
improved/whatsapp
improved/whatsapp-the-second
improved/wuse-after-free-false-positive
improved/xiaomi
remove/builds-without-gcrypt-support
remove/ciscovpn-tls-patterns
remove/configure-seed
remove/ht_hash
remove/lgtm-network-arithm
remove/old-ndpi-readme
remove/readme-md-protocols
remove/unnecessary-ifdef-includes
remove/unused-code
replaced/malicious-ja3-sha1-with-hashmaps
restore/confidence-enum-values
sync/psiphon-unit-test
tiny-improvements
update-improved-fixed/ip-addr-ranges-update-scripts
update/proto-serialization
update/slack-content-match
Open Source Deep Packet Inspection Software Toolkit
about
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
src
/
lib
/
protocols
/
tls.c
Commit message (
Expand
)
Author
Age
*
TLS: add basic, basic, detection of Encrypted ClientHello (#2053)
Ivan Nardi
2023-07-21
*
fuzz: extend fuzzing coverage (#2040)
Ivan Nardi
2023-07-11
*
Fixed heap-overflow if compiled with `--enable-tls-sigs`. (#2038)
Toni
2023-07-07
*
STUN: add dissection of DTLS handshake (#2018)
Ivan Nardi
2023-06-26
*
Compilation fix
Luca Deri
2023-06-22
*
Waring fix
Luca Deri
2023-06-21
*
Numeric truncation at `tls.c:1010` (#2005)
headshog
2023-06-08
*
Ookla: rework detection (#1922)
Ivan Nardi
2023-03-30
*
TLS: fix another interger overflow in certificate processing (#1915)
Ivan Nardi
2023-03-30
*
TLS: fix parsing of certificate elements (#1910)
Ivan Nardi
2023-03-22
*
fuzz: add a new fuzzer to test TLS certificates (#1901)
Ivan Nardi
2023-03-20
*
Add a new flow risk about literal IP addresses used as SNI (#1892)
Ivan Nardi
2023-03-02
*
LRU caches: add a generic (optional and configurable) expiration logic (#1855)
Ivan Nardi
2023-01-18
*
Add protocol disabling feature (#1808)
Ivan Nardi
2022-12-18
*
DTLS: handle (certificate) fragments (#1811)
Ivan Nardi
2022-12-10
*
fuzz: add a new fuzzer testing memory allocation failures (#1818)
Ivan Nardi
2022-12-06
*
Make LRU caches ipv6 aware (#1810)
Ivan Nardi
2022-12-03
*
TLS: be sure to always set `ssl_version` field (#1806)
Ivan Nardi
2022-11-22
*
TLS: improve handling of ALPN(s) (#1784)
Ivan Nardi
2022-10-25
*
TLS: allow sub-classification via ALPN
Nardi Ivan
2022-10-20
*
TLS: explicit ignore client certificate (#1776)
Ivan Nardi
2022-10-18
*
TLS/DTLS: we process certificate for UDP flows, too
Nardi Ivan
2022-09-30
*
Sizes of LRU caches are now configurable
Nardi Ivan
2022-09-23
*
Remove classification "by-ip" from protocol stack (#1743)
Ivan Nardi
2022-09-20
*
Dissectors shouldn't update `flow->guessed_host_protocol_id`
Nardi Ivan
2022-09-14
*
Avoid useless host automa lookup (#1724)
Ivan Nardi
2022-09-05
*
Add support to opportunistic TLS
Nardi Ivan
2022-09-04
*
Further simplification of `ndpi_process_extra_packet()` (#1698)
Ivan Nardi
2022-08-05
*
Improved nDPI JSON serialization. (#1689)
Toni
2022-08-02
*
TLS: avoid useless extra dissection (#1690)
Ivan Nardi
2022-07-31
*
SMTPS, POPS, IMAPS: fix classification and extra dissection (#1685)
Ivan Nardi
2022-07-30
*
First step in simplify `ndpi_process_extra_packet()` (#1680)
Ivan Nardi
2022-07-29
*
TLS: improve reassembler (#1669)
Ivan Nardi
2022-07-22
*
DTLS: fix exclusion of DTLS protocol
Nardi Ivan
2022-07-20
*
Cosmetic change
Luca
2022-07-12
*
TLS: ignore invalid Content Type values
Nardi Ivan
2022-07-07
*
Label SMTP w/ STARTTLS as SMTPS *and* dissect TLS clho. (#1639)
Toni
2022-07-06
*
SMTP with STARTTLS is now identified as SMTPS
Luca Deri
2022-07-05
*
Detect SMTPs w/ STARTTLS as TLS and dissect client/server hello. Fixes #1630....
Toni
2022-07-05
*
Cleaned-up issuer DN check code adding
Luca Deri
2022-07-04
*
Replaced malicious JA3-md5/SSL-cert-sha1 ac automata with hashmaps.
Toni Uhlig
2022-07-04
*
TLS: add support for old DTLS versions and for detection of mid-sessions (#1619)
Ivan Nardi
2022-07-03
*
Enhanced TLS risk info reported to users
Luca Deri
2022-06-28
*
Fixed syslog false positives. (#1577)
Toni
2022-06-03
*
TLS: fix use-of-uninitialized-value error (#1573)
Ivan Nardi
2022-06-02
*
TLS: fix stack-buffer-overflow error (#1567)
Ivan Nardi
2022-05-31
*
TLS: fix use-of-uninitialized-value error (#1566)
Ivan Nardi
2022-05-30
*
Certificate timestamps should be printed in UTC (#1563)
Ivan Nardi
2022-05-30
*
Updated tests results
Luca Deri
2022-05-30
*
Added RiskInfo string
Luca Deri
2022-05-30
[next]