rsyslog/rsyslog
1
0
Fork 0
mirror of https://github.com/rsyslog/rsyslog.git synced 2025-12-15 19:50:40 +01:00
Code Issues Packages Projects Releases Wiki Activity
rsyslog/runtime
History
Rainer Gerhards 79febe5fd0
* imtcp: warn on TLS handshakes received on plain listeners 
Admins often report "gibberish" when a TLS-enabled sender connects to a
plain imtcp port. Making the mismatch explicit reduces operator confusion
and support churn, and points directly to remediation.

Impact: logs one explicit error per mismatched connection; no change to
parsing or transport on plain listeners.

Before/After: before, ClientHello bytes were ingested as binary with no
hint; after, imtcp detects a TLS ClientHello on ptcp and logs a clear
message with a troubleshooting URL.

Technically, we add a small per-session probe in tcps_sess_t and sample
the first 5 bytes of new sessions. If the record header matches a TLS
handshake (type 0x16, version 0x03.00–0x04, length 40–16384) and the
listener is plain TCP (streamDriver.mode=0), we emit a single error and
disable further probing for that session. The probe is called from
DataRcvd() and returns RS_RET_SERVER_NO_TLS when triggered; the session
is otherwise left untouched.

Runtime: introduce RS_RET_SERVER_NO_TLS (-2465) to tag the condition.
Docs: add imtcp troubleshooting section and a dedicated FAQ page.
Tests/tools: add test imtcp-tls-gibberish.sh and extend tcpflood with
-H to send only a ClientHello (OpenSSL and GnuTLS paths tolerate early
termination and non-blocking I/O for this mode).
2025-09-17 17:22:01 +02:00
..
hashtable
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
atomic.h
atomic: remove trailing semicolons from helper macros
2025-08-19 16:06:44 +02:00
batch.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
cfsysline.c
runtime: fix Darwin build regressions and improve BSD portability
2025-09-03 12:29:19 +02:00
cfsysline.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
conf.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
conf.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
cryprov.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
datetime.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
datetime.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
debug.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
debug.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
dnscache.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
dnscache.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
dynstats.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
dynstats.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
errmsg.c
core: add doxygen comments to errmsg object
2025-09-13 10:27:30 +02:00
errmsg.h
core: add doxygen comments to errmsg object
2025-09-13 10:27:30 +02:00
glbl.c
improve original patch
2025-09-10 14:46:48 +02:00
glbl.h
core: add setting to permit compact json format
2025-09-10 14:42:48 +02:00
gss-misc.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
gss-misc.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
hashtable_itr.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
hashtable_itr.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
hashtable_private.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
hashtable.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
hashtable.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
im-helper.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
janitor.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
janitor.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
lib_ksi_queue.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
lib_ksi_queue.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
lib_ksils12.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
lib_ksils12.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
libcry_common.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
libcry_common.h
Refactor ossl crypto provider
2024-08-14 07:56:29 +02:00
libgcry.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
libgcry.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
libossl.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
libossl.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
librsksi_read.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
linkedlist.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
linkedlist.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
lmcry_gcry.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
lmcry_gcry.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
lmcry_ossl.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
lmcry_ossl.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
lmsig_ksi-ls12.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
lmsig_ksi-ls12.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
lookup.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
lookup.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
Makefile.am
net: Add NetworkNamespace APIs
2025-09-12 08:48:31 -07:00
module-template.h
pmrfc3164: add headerless message detection and handling
2025-07-31 10:39:24 +02:00
modules.c
parser: add checkParserInst hook for pre-registration validation
2025-07-31 08:26:50 +02:00
modules.h
parser: add checkParserInst hook for pre-registration validation
2025-07-31 08:26:50 +02:00
msg.c
Merge pull request #6077 from rgerhards/implement-fromhost-port-feature
2025-09-16 13:12:29 +02:00
msg.h
core: add fromhost-port message property
2025-09-09 14:29:39 +02:00
net_ossl.c
Fix: Remove unsafe function pointer casting in cfsysline.c
2025-08-01 11:49:10 +02:00
net_ossl.h
ossl: Add PrioritizeSAN option to OpenSSL network stream driver
2025-07-29 09:16:25 -05:00
net.c
net: Add NetworkNamespace APIs
2025-09-12 08:48:31 -07:00
net.h
net: Add NetworkNamespace APIs
2025-09-12 08:48:31 -07:00
netns_socket.c
net: Add NetworkNamespace APIs
2025-09-12 08:48:31 -07:00
netns_socket.h
net: Add NetworkNamespace APIs
2025-09-12 08:48:31 -07:00
netstrm.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
netstrm.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
netstrms.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
netstrms.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
nsd_gtls.c
tls: process TLS 1.3 KeyUpdate during send (ossl/gtls)
2025-09-15 09:52:40 +02:00
nsd_gtls.h
gtls: log missing certificate/key only once
2025-07-28 16:12:04 +02:00
nsd_ossl.c
tls: process TLS 1.3 KeyUpdate during send (ossl/gtls)
2025-09-15 09:52:40 +02:00
nsd_ossl.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
nsd_ptcp.c
core/nsd_ptcp: zero addr before getpeername()
2025-08-21 12:31:13 +02:00
nsd_ptcp.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
nsd.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
obj-types.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
obj.c
core: migrate callback invocations to type-safe signatures
2025-08-01 13:02:10 +02:00
obj.h
core: migrate callback invocations to type-safe signatures
2025-08-01 13:02:10 +02:00
objomsr.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
objomsr.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
operatingstate.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
operatingstate.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
parser.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
parser.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
perctile_ringbuf.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
perctile_ringbuf.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
perctile_stats.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
perctile_stats.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
prop.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
prop.h
atomic: remove trailing semicolons from helper macros
2025-08-19 16:06:44 +02:00
queue.c
queue: refactor batch deletion with explicit phases (#6013)
2025-08-28 18:23:31 +02:00
queue.h
atomic: remove trailing semicolons from helper macros
2025-08-19 16:06:44 +02:00
ratelimit.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
ratelimit.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
regexp.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
regexp.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
rsconf.c
core: some code cleanup
2025-08-28 14:04:34 +02:00
rsconf.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
rsyslog.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
rsyslog.h
* imtcp: warn on TLS handshakes received on plain listeners
2025-09-17 17:22:01 +02:00
ruleset.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
ruleset.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
sigprov.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
srutils.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
srUtils.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
statsobj.c
imhttp: optional auth + Content-Length for metrics/health
2025-09-03 08:14:46 +02:00
statsobj.h
atomic: remove trailing semicolons from helper macros
2025-08-19 16:06:44 +02:00
stream.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
stream.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
strgen.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
strgen.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
stringbuf.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
stringbuf.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
strms_sess.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
strms_sess.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
syslogd-types.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
tcpclt.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
tcpclt.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
tcps_sess.c
* imtcp: warn on TLS handshakes received on plain listeners
2025-09-17 17:22:01 +02:00
tcps_sess.h
* imtcp: warn on TLS handshakes received on plain listeners
2025-09-17 17:22:01 +02:00
tcpsrv.c
core: add fromhost-port message property
2025-09-09 14:29:39 +02:00
tcpsrv.h
runtime/tcpsrv: drop obsolete inQueue handling
2025-08-21 21:00:23 +02:00
timezones.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
timezones.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
typedefs.h
core: add fromhost-port message property
2025-09-09 14:29:39 +02:00
unicode-helper.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
unlimited_select.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
var.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
var.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
wti.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
wti.h
atomic: remove trailing semicolons from helper macros
2025-08-19 16:06:44 +02:00
wtp.c
Potential fix for code scanning alert no. 44: Commented-out code
2025-08-27 21:59:26 +02:00
wtp.h
atomic: remove trailing semicolons from helper macros
2025-08-19 16:06:44 +02:00
zlibw.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
zlibw.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
zstdw.c
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00
zstdw.h
style: normalize C source formatting via clang-format (PoC)
2025-07-16 13:56:21 +02:00