tls/ja3: allow 'auto' setting for ja3

diff --git a/src/app-layer-ssl.c b/src/app-layer-ssl.c
index 2a7477a2baa8e48d565a1a7b32205c8f68eecd74..a6573d568006b533890ae36459e65853d1bd1e1e 100644 (file)
--- a/src/app-layer-ssl.c
+++ b/src/app-layer-ssl.c
@@ -2944,13 +2944,16 @@ void RegisterSSLParsers(void)
 
         /* Check if we should generate JA3 fingerprints */
         int enable_ja3 = SSL_CONFIG_DEFAULT_JA3;
-        if (ConfGetBool("app-layer.protocols.tls.ja3-fingerprints",
-                        &enable_ja3) != 1) {
+        const char *strval = NULL;
+        if (ConfGetValue("app-layer.protocols.tls.ja3-fingerprints", &strval) != 1) {
             enable_ja3 = SSL_CONFIG_DEFAULT_JA3;
-        } else {
-            if (enable_ja3 == 0) {
-                ssl_config.disable_ja3 = true;
-            }
+        } else if (strcmp(strval, "auto") == 0) {
+            enable_ja3 = SSL_CONFIG_DEFAULT_JA3;
+        } else if (ConfValIsFalse(strval)) {
+            enable_ja3 = 0;
+            ssl_config.disable_ja3 = true;
+        } else if (ConfValIsTrue(strval)) {
+            enable_ja3 = true;
         }
         SC_ATOMIC_SET(ssl_config.enable_ja3, enable_ja3);