PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-09 14:11:29 +00:00
Code Issues Projects Releases Wiki Activity

Fix a crash in ssl-enum-ciphers when parsing unsupported cert types

Browse Source
This commit is contained in:
dmiller
2016-08-30 16:07:08 +00:00
parent c82915cb71
commit 8779c1e376
4 changed files with 21 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
nselib/sslcert.lua
View File

@@ -43,7 +43,8 @@ _ENV = stdnse.module("sslcert", stdnse.seeall)
--@name parse_ssl_certificate
--@class function
--@param der DER-encoded certificate
--@return table containing decoded certificate
--@return table containing decoded certificate or nil on failure
--@return error string if parsing failed
--@see nmap.get_ssl_certificate
_ENV.parse_ssl_certificate = nmap.socket.parse_ssl_certificate
@@ -893,10 +894,10 @@ function getCertificate(host, port)
return false, "Server sent no certificate"
end
cert = parse_ssl_certificate(certs.certificates[1])
cert, err = parse_ssl_certificate(certs.certificates[1])
if not cert then
mutex "done"
return false, "Unable to get cert"
return false, ("Unable to get cert: %s"):format(err)
end
else
-- If we don't already know the service is TLS wrapped check to see if