From fd6d41e30a93d1c420c8a9a3d6936590973b683b Mon Sep 17 00:00:00 2001
From: dmiller <dmiller@e0a8ed71-7df4-0310-8962-fdc924857419>
Date: Sun, 8 Jul 2012 04:12:25 +0000
Subject: [PATCH] Merge branch 'ssl-known-key-sslcert'

---
 scripts/ssl-known-key.nse | 17 ++++++-----------
 1 file changed, 6 insertions(+), 11 deletions(-)

diff --git a/scripts/ssl-known-key.nse b/scripts/ssl-known-key.nse
index bc65df8dd..bc5fd5864 100644
--- a/scripts/ssl-known-key.nse
+++ b/scripts/ssl-known-key.nse
@@ -2,6 +2,7 @@ local io = require "io"
 local nmap = require "nmap"
 local shortport = require "shortport"
 local stdnse = require "stdnse"
+local sslcert = require "sslcert"
 
 -- -*- mode: lua -*-
 -- vim: set filetype=lua :
@@ -31,7 +32,7 @@ include with Nmap) list.
 
 author = "Mak Kolybabi"
 license = "Same as Nmap--See http://nmap.org/book/man-legal.html"
-categories = {"safe", "discovery", "vuln"}
+categories = {"safe", "discovery", "vuln", "default"}
 
 
 local FINGERPRINT_FILE = "ssl-fingerprints"
@@ -112,17 +113,11 @@ action = function(host, port)
 	end
 	local fingerprints = result
 
-	-- Connect to host.
-	local sock = nmap.new_socket()
-	local status, err = sock:connect(host, port, "ssl")
-	if not status then
-		stdnse.print_debug(1, "Failed to connect: %s", err)
-		return
-	end
-
 	-- Get SSL certificate.
-	local cert = sock:get_ssl_certificate()
-	sock:close()
+	local status, cert = sslcert.getCertificate(host, port)
+  if not status then
+    stdnse.print_debug(2, "sslcert.getCertificate error: %s", cert)
+  end
 	if not cert:digest("sha1") then
 		stdnse.print_debug(2, "Certificate does not have a SHA-1 fingerprint.")
 		return