RubyGems - yawast - Versions diffs - 0.5.0 → 0.5.1.beta1 - Mend

yawast 0.5.0 → 0.5.1.beta1

Files changed (5) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: e3c39baea3f5636d87b91a2e72b17c4f14f5ebf0
-  data.tar.gz: ca742f97ad361f90e26629c3a2bfdf653336cd9f
+  metadata.gz: 5bb360a70bc6929243c309cc30d5e1223e5ba86d
+  data.tar.gz: 0fc678e9891332a6d6b65cae26a28a6c3fa81086
 SHA512:
-  metadata.gz: 5223d8c0209e070e54b12aa20eec9544a118023b3821f6bc4fbdfbfaa91d6506c111229156dd0583e06d039807f12f233bf7321fba4a33cf8f59e9eac7299340
-  data.tar.gz: 73f5e1db92b004c1e4e752231aef0cd0aefd8f33c360197a525a8bc43c913f0ff36729ec5ce82c683a676a674c898375914911ee1cf5df33fb888f3ab3a68ade
+  metadata.gz: 006853f4449868fe0a73f45a3293b513452ad7084b6bc9f868e77d914a99a562c9e1e2af22238b409b71550667b4d4d0d466df0a10e65a0f8001fb0d8932d95e
+  data.tar.gz: ce8e540b04dcfbefbbf05da3fe2ccca22df9a5f93bfa140a0c53cdc94e481baae7e803521eb891ce1372aae977172fc96f74803e736d96a9e7866024856476a5

data/CHANGELOG.md CHANGED Viewed

@@ -1,3 +1,7 @@
+## 0.5.1 - In Development
+* [#106](https://github.com/adamcaudill/yawast/issues/106) - Bug: SWEET32: Incorrect Request Count
 ## 0.5.0 - 2017-04-05
 * [#35](https://github.com/adamcaudill/yawast/issues/35) - Add check for SameSite cookie attribute

data/lib/scanner/plugins/ssl/sweet32.rb CHANGED Viewed

@@ -50,6 +50,7 @@ module Yawast
                           #if we are here, that means that HEAD failed, but GET didn't, so we'll use GET from now on.
                           use_head = false
+                          Yawast::Utilities.puts_error 'Error: HEAD request failed; using GET requests for SWEET32 check...'
                         end
                       end
@@ -72,9 +73,13 @@ module Yawast
                 end
               end
+              #reset the req object
+              req = Yawast::Shared::Http.get_http(uri)
+              req.use_ssl = uri.scheme == 'https'
+              req.keep_alive_timeout = 600
               req.start do |http|
                 #cache the number of hits
-                hits = http.instance_variable_get(:@ssl_context).session_cache_stats[:cache_hits]
                 10000.times do |i|
                   if use_head
                     http.head(uri.path, headers)
@@ -83,7 +88,7 @@ module Yawast
                   end
                   # hack to detect transparent disconnects
-                  if http.instance_variable_get(:@ssl_context).session_cache_stats[:cache_hits] != hits
+                  if http.instance_variable_get(:@ssl_context).session_cache_stats[:cache_hits] != 0
                     raise 'TLS Reconnected'
                   end

data/lib/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module Yawast
-  VERSION = '0.5.0'
+  VERSION = '0.5.1.beta1'
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: yawast
 version: !ruby/object:Gem::Version
-  version: 0.5.0
+  version: 0.5.1.beta1
 platform: ruby
 authors:
 - Adam Caudill
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2017-04-05 00:00:00.000000000 Z
+date: 2017-06-26 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: ssllabs
@@ -225,9 +225,9 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ">="
+  - - ">"
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 1.3.1
 requirements: []
 rubyforge_project: yawast
 rubygems_version: 2.4.8