KoreLogic Blog
MASTIFF Updates and Git SSL Issue 2014-04-17 01:50

Over the last few weeks, a number of updates have been pushed to the dev version of MASTIFF located in the Git repository. One of these updates is a major change to the analysis plug-in architecture.

Also, due to the Heartbleed bug that everyone has been dealing with, we updated the SSL certificates on the Git server. Unfortunately, this seems to be causing an issue with Debian and Ubuntu based clients. Update: We deployed a server-side workaround; details below.

The updates, and the fix to the Git issue, are described below.


A number of MASTIFF updates have been added to the code; most of which are bug fixes or minor modifications. However, a large change was recently made to the way the framework installs and finds analysis plug-ins.

Previously, after installation, the user would need to set the plugin_dir configuration option to point to the directory containing the analysis plug-ins. If they did not, MASTIFF would not know where the analysis plug-ins were and would not provide any analysis until the option was set correctly. This was a point of confusion for a number of new users.

This has been changed. Now, analysis plug-ins are installed with the framework and will automatically be found. In other words, after you type make install, MASTIFF know where the analysis plug-ins are and will start providing analysis right away.

The plugin_dir option still exists and can be used to point to your own analysis plug-ins that are not included with the base installation.

As always, if you have any patches, updates, or plug-ins you want included in the framework, please submit them to mastiff-project@korelogic.com.

Git Error

Update: we've now deployed a server-side workaround so the below is no longer needed. But we're leaving it for posterity because we found very few writeups of the client-side fix for this issue.

After the SSL certificate on the Git repository was updated, we noticed an issue with some Debian and Ubuntu-based Linux systems. Specifically, the following error occurs when attempting to clone the repository.
$ git clone https://git.korelogic.com/mastiff.git
Cloning into 'mastiff'...
error: server certificate verification failed. CAfile: /etc/ssl/certs/ca-certificates.crt \
      CRLfile: none while accessing https://git.korelogic.com/mastiff.git/info/refs
fatal: HTTP request failed
This error is caused by the OS not having the Comodo RSA Domain Validation Secure Server CA certificate installed. While we are working on a server-side workaround, there is a client-side fix.
  1. Download the Comodo RSA Domain Validation Secure Server CA certificate from the Comodo Support site.
  2. Copy the certificate into /usr/share/ca-certificates on your system.
  3. Run dpkg-reconfigure ca-certificates and add in the new certificate.
Once this is done, you will be able to clone the repository without a problem.

0 comments Posted by Tyler at: 01:50 permalink

Comments are closed for this story.