Hello community, here is the log from the commit of package sslscan for openSUSE:Factory checked in at 2020-09-28 14:29:54 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/sslscan (Old) and /work/SRC/openSUSE:Factory/.sslscan.new.4249 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "sslscan" Mon Sep 28 14:29:54 2020 rev:7 rq:838230 version:2.0.1 Changes: -------- --- /work/SRC/openSUSE:Factory/sslscan/sslscan.changes 2020-07-24 10:04:53.245899217 +0200 +++ /work/SRC/openSUSE:Factory/.sslscan.new.4249/sslscan.changes 2020-09-28 14:30:49.970239656 +0200 @@ -1,0 +2,7 @@ +Mon Sep 28 10:16:55 UTC 2020 - Johannes Weberhofer <[email protected]> + +- Upgrade to version 2.0.1 + + * Correctly set SNI name when using --targets. Fixes gh#rbsec/sslscan#215 + +------------------------------------------------------------------- Old: ---- sslscan-2.0.0.tar.gz New: ---- sslscan-2.0.1.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ sslscan.spec ++++++ --- /var/tmp/diff_new_pack.NXcRks/_old 2020-09-28 14:30:50.634240232 +0200 +++ /var/tmp/diff_new_pack.NXcRks/_new 2020-09-28 14:30:50.634240232 +0200 @@ -17,7 +17,7 @@ Name: sslscan -Version: 2.0.0 +Version: 2.0.1 Release: 0 Summary: SSL cipher scanning tool License: SUSE-GPL-3.0+-with-openssl-exception ++++++ sslscan-2.0.0.tar.gz -> sslscan-2.0.1.tar.gz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/sslscan-2.0.0/sslscan.c new/sslscan-2.0.1/sslscan.c --- old/sslscan-2.0.0/sslscan.c 2020-07-22 20:00:42.000000000 +0200 +++ new/sslscan-2.0.1/sslscan.c 2020-09-20 16:10:25.000000000 +0200 @@ -3933,7 +3933,10 @@ // SNI name else if (strncmp("--sni-name=", argv[argLoop], 11) == 0) + { strncpy(options.sniname, argv[argLoop]+11, strlen(argv[argLoop])-11); + options.sni_set = 1; + } // Host (maybe port too)... @@ -3986,7 +3989,7 @@ strncpy(options.host, hostString, sizeof(options.host) -1); // No SNI name passed on command line - if (strlen(options.sniname) == 0) + if (!options.sni_set) { strncpy(options.sniname, options.host, sizeof(options.host) -1); } @@ -4192,6 +4195,11 @@ line[tempInt] = 0; strncpy(options.host, line, sizeof(options.host) -1); + if (!options.sni_set) + { + strncpy(options.sniname, options.host, sizeof(options.host) -1); + } + // Get port (if it exists)... tempInt++; if (strlen(line + tempInt) > 0) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/sslscan-2.0.0/sslscan.h new/sslscan-2.0.1/sslscan.h --- old/sslscan-2.0.0/sslscan.h 2020-07-22 20:00:42.000000000 +0200 +++ new/sslscan-2.0.1/sslscan.h 2020-09-20 16:10:25.000000000 +0200 @@ -144,6 +144,7 @@ // Program Options... char host[512]; char sniname[512]; + int sni_set; char addrstr[INET6_ADDRSTRLEN]; int port; int showCertificate;
