Hello! Not sure if this is the right place for this, but I wrote a JA3 hash (TLS client fingerprinting) library in Rust using your team's tls-parser crate. Just wanted to say thank you! I was also wondering if such a crate could be used by rusticata/suricata?

Potential segfault in localtime_r invocations

Impact

Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.

Workarounds

No workarounds are known.

References

• time-rs/time#293

See advisory page for additional details.

Compiling rand_core v0.3.0
Compiling libc v0.2.43
Compiling siphasher v0.2.3
Compiling version_check v0.1.5
Compiling num-traits v0.2.6
Compiling cfg-if v0.1.5
Compiling cookie-factory v0.2.4
Compiling rand_core v0.2.2
Compiling memchr v1.0.2
Compiling phf_shared v0.7.23
Compiling memchr v2.1.0
Compiling log v0.4.5
Compiling rand v0.5.5

Compiling nom v3.2.1

Compiling phf v0.7.23
Compiling log v0.3.9
Compiling phf_generator v0.7.23
Compiling rusticata-macros v0.3.3
Compiling num-traits v0.1.43
Compiling phf_codegen v0.7.23

Compiling nom v4.0.0

Compiling enum_primitive v0.1.1
Compiling tls-parser v0.5.0
Compiling rusticata-macros v1.0.0
Compiling ntp-parser v0.1.5
Compiling ssh-parser v0.1.2

In the same project 2 versions of nom were used,and caused a lot of compile errors

can i use this project to validate the syntax of rules that are to be send across to suricata?
my intend is this; have a restful interface post the rule sets which gets validated using the above code.
is my understanding/question flawed?

Hi,
On the README you are requesting to install pcap-parse, but apparently this has been deprecated in favor of pcap-analyzer. It would be good to mention that section is deprectaed and pcap-analyzer is the crate to install.
Also, is there some function pcap-parse does that pcap-analyzer doesn't support?