policy/protocols/ssl/validate-certs.bro

SSL

Perform full certificate chain validation for SSL certificates.

Namespace:SSL
Imports:base/frameworks/notice, base/protocols/ssl
Source File:/scripts/policy/protocols/ssl/validate-certs.bro

Summary

State Variables

SSL::recently_validated_certs: table &read_expire = 5.0 mins &synchronized &redef MD5 hash values for recently validated chains along with the validation status message are kept in this table to avoid constant validation every time the same certificate chain is seen.

Redefinitions

Notice::Type: enum  
SSL::Info: record  

Detailed Interface

State Variables

SSL::recently_validated_certs
Type:table [string] of string
Attributes:&read_expire = 5.0 mins &synchronized &redef
Default:{}

MD5 hash values for recently validated chains along with the validation status message are kept in this table to avoid constant validation every time the same certificate chain is seen.

Copyright 2013, The Bro Project. Last updated on June 15, 2015. Created using Sphinx 1.2.2.