From 0cfd30f8b83a1c0ff87b747c81c7a8cb2672a4f4 Mon Sep 17 00:00:00 2001
From: Dirk Wetter <dirk@testssl.sh>
Date: Sat, 26 Oct 2019 13:13:10 +0200
Subject: [PATCH] make filtering for header more robust

... by re-adding the former filters after ``sed '/^$q'``
---
 testssl.sh | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/testssl.sh b/testssl.sh
index 5fef023..3a323b3 100755
--- a/testssl.sh
+++ b/testssl.sh
@@ -2175,9 +2175,12 @@ run_http_header() {
      # Populate vars for HTTP time
      debugme echo "$NOW_TIME: $HTTP_TIME"
 
-     # Quit on first empty line
+     # Quit on first empty line to catch 98% of the cases
      sed -e '/^$/q' $HEADERFILE >$HEADERFILE.tmp
-     mv $HEADERFILE.tmp $HEADERFILE
+     # Now to be more sure delete from ~html patterns until the end. We ignore any leading spaces (e.g. www.amazon.de)
+     sed -e '/<HTML>/,$d' -e '/<html>/,$d' -e '/<\!DOCTYPE/,$d' -e '/<\!doctype/,$d' \
+         -e '/<XML/,$d' -e '/<xml/,$d' -e '/<\?XML/,$d' -e '/<?xml/,$d' $HEADERFILE.tmp >$HEADERFILE
+         # ^^^ Attention: filtering is for ~html body only as of now
 
      HTTP_STATUS_CODE=$(awk '/^HTTP\// { print $2 }' $HEADERFILE 2>>$ERRFILE)
      msg_thereafter=$(awk -F"$HTTP_STATUS_CODE" '/^HTTP\// { print $2 }' $HEADERFILE 2>>$ERRFILE)   # dirty trick to use the status code as a