tls: fix tls_cert_subject prefilter bug

If check in prefilter was checking that issuer was non-NULL, when it in fact should be checking subject.
OISF · Dec 16, 2016 · ffcb4ad · ffcb4ad
1 parent 10c9322
commit ffcb4ad
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/src/detect-engine-tls.c b/src/detect-engine-tls.c
@@ -215,7 +215,7 @@ static void PrefilterTxTlsSubject(DetectEngineThreadCtx *det_ctx, const void *pe
     const MpmCtx *mpm_ctx = (MpmCtx *)pectx;
     SSLState *ssl_state = f->alstate;
 
-    if (ssl_state->server_connp.cert0_issuerdn == NULL)
+    if (ssl_state->server_connp.cert0_subject == NULL)
         return;
 
     const uint8_t *buffer = (const uint8_t *)ssl_state->server_connp.cert0_subject;