Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package ssldump for openSUSE:Factory checked in at 2022-06-13 13:03:01 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/ssldump (Old) and /work/SRC/openSUSE:Factory/.ssldump.new.1548 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "ssldump" Mon Jun 13 13:03:01 2022 rev:24 rq:982365 version:1.5 Changes: -------- --- /work/SRC/openSUSE:Factory/ssldump/ssldump.changes 2021-05-01 00:46:53.735399380 +0200 +++ /work/SRC/openSUSE:Factory/.ssldump.new.1548/ssldump.changes 2022-06-13 13:03:28.661195845 +0200 @@ -1,0 +2,10 @@ +Thu May 26 13:14:26 UTC 2022 - Martin Hauke <[email protected]> + +- Update to version 1.5 + Changes + * doc: An example use-case of JA3. + Other + * Add parentheses around MAX and MIN. + * Add support for pcap output to FIFO. + +------------------------------------------------------------------- Old: ---- ssldump-1.4.tar.gz New: ---- ssldump-1.5.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ ssldump.spec ++++++ --- /var/tmp/diff_new_pack.yFORjG/_old 2022-06-13 13:03:29.009196291 +0200 +++ /var/tmp/diff_new_pack.yFORjG/_new 2022-06-13 13:03:29.009196291 +0200 @@ -1,7 +1,7 @@ # # spec file for package ssldump # -# Copyright (c) 2021 SUSE LLC +# Copyright (c) 2022 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: ssldump -Version: 1.4 +Version: 1.5 Release: 0 Summary: SSLv3/TLS Network Protocol Analyzer License: BSD-3-Clause ++++++ ssldump-1.4.tar.gz -> ssldump-1.5.tar.gz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/ssldump-1.4/ChangeLog new/ssldump-1.5/ChangeLog --- old/ssldump-1.4/ChangeLog 2021-04-12 23:27:16.000000000 +0200 +++ new/ssldump-1.5/ChangeLog 2022-05-24 22:23:24.000000000 +0200 @@ -2,16 +2,22 @@ ========= -v1.4 (2021-04-12) +v1.4 (2021-04-13) ----------------- Changes ~~~~~~~ -- [doc] cleanup README. [Alexandre Dulaunoy] - [doc] v1.4 released. [Alexandre Dulaunoy] +- [doc] v1.4 released. [Alexandre Dulaunoy] +- [doc] cleanup README. [Alexandre Dulaunoy] +- [doc] v1.3 released. [Alexandre Dulaunoy] Other ~~~~~ +- Merge pull request #54 from wllm-rbnt/dev. [Alexandre Dulaunoy] + + Fix release version +- Fix release version. [William Robinet] - Merge pull request #53 from wllm-rbnt/dev. [Alexandre Dulaunoy] Add support for IPv6 traffic dump diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/ssldump-1.4/README.md new/ssldump-1.5/README.md --- old/ssldump-1.4/README.md 2021-04-12 23:27:16.000000000 +0200 +++ new/ssldump-1.5/README.md 2022-05-24 22:23:24.000000000 +0200 @@ -26,6 +26,12 @@ For more details, check the man page. +## How can I lookup ja3 hashes? + +This example will query ja3er.com service to display the known ja3 hashes from the TLS handshaked in the pcap. + +`ssldump -r yourcapture.pcap -j | jq -r 'select(.ja3_fp != null) | .ja3_fp' | parallel 'curl -s -X GET 'https://ja3er.com/search/{}' | jq .'` + # Why do you maintain this repository? Because it's a mess. The software maintenance process for old free (unmaintained) software diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/ssldump-1.4/common/include/r_macros.h new/ssldump-1.5/common/include/r_macros.h --- old/ssldump-1.4/common/include/r_macros.h 2021-04-12 23:27:16.000000000 +0200 +++ new/ssldump-1.5/common/include/r_macros.h 2022-05-24 22:23:24.000000000 +0200 @@ -76,11 +76,11 @@ #define FREE(a) if(a) free(a) #endif #ifndef MIN -#define MIN(a,b) ((a)>(b))?(b):(a) +#define MIN(a,b) (((a)>(b))?(b):(a)) #endif #ifndef MAX -#define MAX(a,b) ((b)>(a))?(b):(a) +#define MAX(a,b) (((b)>(a))?(b):(a)) #endif #ifdef DEBUG diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/ssldump-1.4/pcap/logpkt.c new/ssldump-1.5/pcap/logpkt.c --- old/ssldump-1.4/pcap/logpkt.c 2021-04-12 23:27:16.000000000 +0200 +++ new/ssldump-1.5/pcap/logpkt.c 2022-05-24 22:23:24.000000000 +0200 @@ -219,25 +219,30 @@ pcap_file_hdr_t hdr; off_t sz; ssize_t n; + struct stat st; - sz = lseek(fd, 0, SEEK_END); - if (sz == -1) + if(fstat(fd, &st)) return -1; - if (sz > 0) { - if (lseek(fd, 0, SEEK_SET) == -1) + if(!S_ISFIFO(st.st_mode)) { + sz = lseek(fd, 0, SEEK_END); + if (sz == -1) return -1; - n = read(fd, &hdr, sizeof(pcap_file_hdr_t)); - if (n != sizeof(pcap_file_hdr_t)) - return -1; - if (hdr.magic_number == PCAP_MAGIC) - return lseek(fd, 0, SEEK_END) == -1 ? -1 : 0; - if (lseek(fd, 0, SEEK_SET) == -1) - return -1; - if (ftruncate(fd, 0) == -1) - return -1; - } + if (sz > 0) { + if (lseek(fd, 0, SEEK_SET) == -1) + return -1; + n = read(fd, &hdr, sizeof(pcap_file_hdr_t)); + if (n != sizeof(pcap_file_hdr_t)) + return -1; + if (hdr.magic_number == PCAP_MAGIC) + return lseek(fd, 0, SEEK_END) == -1 ? -1 : 0; + if (lseek(fd, 0, SEEK_SET) == -1) + return -1; + if (ftruncate(fd, 0) == -1) + return -1; + } + } return logpkt_write_global_pcap_hdr(fd); }
