You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
suricata/rust
Jason Ish 2d86412f46 ike: log attributes as objects
IKE attributes are an array of TLV style objects, this means there can
be duplicate types seen on the wire. However, Suricata logs these as a
mapping with the type as the key. This can result in the JSON
containing duplicate keys.

To address this, log the attributes as an array of objects, allow
duplicates to exist, for example:

  "client": {
    "proposals": [
      {
        "sa_life_duration": "Unknown",
        "sa_life_duration_raw": 86400,
      }
    }
  }

is now logged as:

  "client": {
    "proposals": [
      {"key": "sa_life_duration", "value": "Unknown", "raw": 86400}
    ]
  }

Also adds `"version": 2` to each IKE record to note the change of
format from previous versions.

Ticket: #7902
1 week ago
..
.cargo rust: rename .cargo/config to .cargo/config.toml 1 year ago
derive rust/derive: fix clippy collapsible_match warning 5 months ago
htp htp: use transactions right get function 2 months ago
src ike: log attributes as objects 1 week ago
suricatactl rust: allow some lints in suricatactl and suricatasc 4 months ago
suricatasc datajson: introduce feature 4 months ago
sys rust: bindgen FileAppendData 2 weeks ago
.gitignore rust: rename .cargo/config to .cargo/config.toml 1 year ago
Cargo.lock.in rust: cargo update 2 weeks ago
Cargo.toml.in rust: pin time crate to 0.3.41 1 month ago
Makefile.am rust: bindgen FileAppendData 2 weeks ago
cbindgen.toml rust: remove unneeded cbindgen exclusions 2 weeks ago
rustfmt.toml rustfmt: replace deprecated fn_args_layout with fn_params_layout 2 years ago