Hi
I just commited some patches to get a grip on CR#17 (
http://www.openvas.org/openvas-cr-17.html ).
In order to use client and server you will have to update both (and first:
openvas-libraries).
Old cache-files both on the server-side and on the client- side are useless
now, but should be rebuilt automatically. Delete or backup them first in case
of trouble (and send a reply).
There are issues when you use plugins without signatures, in that case plugins
are understood to be new when the server is started. This is reflected in the
client as well. Furthermore, OVAL- plugins will most probably not be
transmitted at the moment. I will fix both issues next week (and add real
functionality). If you see "FIXME: felix" 's - blame me.
Below the changelogs.
Have a fun weekend
-- Felix
openvas-libraries rev 1654:
----------------------------------
Steps to an implementation of Change Request #17
(http://www.openvas.org/openvas-cr-17.html - "Make NVT signatures
available to OpenVAS-Client").
Adds the new field "sign_key_ids" to plugin-structures and the .desc
store. Until soon, just a dummy- string will be saved and eventually
transmitted by the server.
IMPORTANT: Breaks compatibility and renders old server .desc- cache
files useless.
* libopenvas/plugutils.c (plug_set_sign_key_ids, plug_get_sign_key_ids):
Added getter & setter to retrieve key-ids of certificates of a plugin.
* libopenvas/plugutils.h: Prototypes for plug_set_sign_key_ids and
plug_get_sign_key_ids added.
* libopenvas/store_internal.h: Added sign_key_ids field to plugin struct
and increased magic number for server-side cache (.desc files)
* libopenvas/store.c (store_init_sys, store_init_user): Added comments.
* libopenvas/store.c (store_load_plugin): Check if signature file
is new than cache (functionality will be moved), set sign_key_ids
according to cache, added comments.
* libopenvas/store.c (store_plugin): Stores the (dummy) key_id- string.
openvas-server rev 1655:
--------------------------------
Steps to an implementation of Change Request #17
(http://www.openvas.org/openvas-cr-17.html - "Make NVT signatures
available to OpenVAS-Client").
Uses the new field "sign_key_ids" of plugin-structures and the .desc
store. Until soon, just a dummy- string will be used and eventually
transmitted by the server.
IMPORTANT: Breaks compatibility and renders old server .desc- cache
files useless. You will need an openvas-libraries revision >= 1654 in
order to compile and a client of revision >= 1654 in order to work with
the server. There might be problems with transmitting OVAL plugins to
the client.
* openvasd/nasl_plugins.c (nasl_plugin_add) : Set a dummy key_ids-
string, improved readability (a bit).
* openvasd/pluginload.c: Typo in comment fixed.
* openvasd/oval_plugins.c: Stated a FIXME and removed unreachable NULL
return.
* openvasd/otp_1_0.h: Added CREQ_CERTIFICATES symbol.
* openvasd/otp_1_0.c (otp_1_0_get_client_request,
otp_1_0_server_send_certificates): Added CREQ_CERTIFICATES parsing and
a method stub to send the certificates.
* openvasd/otp_1_0.c (ntp_11_parse_input): Handling of
CREQ_CERTIFICATES added.
* openvasd/comm.c (send_plug_info): Sends the additional key_ids field.
* openvasd/comm.c (comm_setup_plugins): Comment and use of symbol
instead of numeral.
openvas-client rev 1656:
-------------------------------
Steps to an implementation of Change Request #17
(http://www.openvas.org/openvas-cr-17.html - "Make NVT signatures
available to OpenVAS-Client").
The client now receives the new field "sign_key_ids", adds it to the
plugin- structs and the local nvt caches. It is displayed in the
plugin_info dialog.
IMPORTANT: Breaks compatibility and renders old nvt- cache
files useless. You will only be able to successfully connect to
openvas-server with revision >= 1655. There might be problems with
transmitting OVAL plugins from the server to client.
* nessus/nessus_plugin.c (nessus_plugin_duplicate, nessus_plugin_new):
Added new sign_key_ids field.
* nessus/nessus_plugin.c (nessus_plugin_new): Updated struct, proto.
* nessus/comm.c (parse_plugin, comm_get_certificates): Comments,
goto-removal, use sign_key_id. Method stub to receive certificates.
* nessus/comm.h: Prototype for comm_get_certificates.
* nessus/plugin_infos.c (plugin_info_window_setup): Comment, simple
label to display server trust information.
* nessus/plugin_cache.c: Increased "max number of items per line" to
parse, FILE_FORMAT_VERSION
* nessus/plugin_cache.c (write_plugin, plugin_cache_read): Read and
write the new "key_ids" field.
* nessus/parser.c (parse_symbol, parse_separator): Comments++
K&R-Style--
* nessus/context.h: Added HashTables to store certificate information.
--
Felix Wolfsteller | ++49-541-335 08 3451 | http://www.intevation.de/
PGP Key: 39DE0100
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
_______________________________________________
Openvas-devel mailing list
Openvas-devel@wald.intevation.org
http://lists.wald.intevation.org/mailman/listinfo/openvas-devel
