2015-05-17 22:43:53 +02:00
#!/usr/bin/env bash
#
2015-09-17 15:30:15 +02:00
# vim:ts=5:sw=5:expandtab
# we have a spaces softtab, that ensures readability with other editors too
2015-06-19 20:36:32 +02:00
2015-09-02 12:56:03 +02:00
[ -z " $BASH_VERSINFO " ] && printf "\n\033[1;35m Please make sure you're using \"bash\"! Bye...\033[m\n\n" >& 2 && exit 245
[ $( kill -l | grep -c SIG) -eq 0 ] && printf "\n\033[1;35m Please make sure you're calling me without leading \"sh\"! Bye...\033[m\n\n" >& 2 && exit 245
2015-06-19 20:36:32 +02:00
2015-05-29 19:44:27 +02:00
# testssl.sh is a program for spotting weak SSL encryption, ciphers, version and some
2015-05-29 19:56:57 +02:00
# vulnerabilities or features
2015-05-17 22:43:53 +02:00
#
2015-05-27 11:19:30 +02:00
# Devel version is available from https://github.com/drwetter/testssl.sh
# Stable version from https://testssl.sh
# Please file bugs at github! https://github.com/drwetter/testssl.sh/issues
2015-05-17 22:43:53 +02:00
2015-11-15 00:19:13 +01:00
# Main author: Dirk Wetter, copyleft: 2007-today, contributions so far see CREDITS.md
2015-05-17 22:43:53 +02:00
#
# License: GPLv2, see http://www.fsf.org/licensing/licenses/info/GPLv2.html
# and accompanying license "LICENSE.txt". Redistribution + modification under this
2015-05-29 19:44:27 +02:00
# license permitted.
2015-05-17 22:43:53 +02:00
# If you enclose this script or parts of it in your software, it has to
# be accompanied by the same license (see link) and the place where to get
2016-01-15 17:04:16 +01:00
# the recent version of this program. Do not violate the license andif
# you do not agree to all of these terms, do not use it in the first place.
2015-05-17 22:43:53 +02:00
#
2016-01-15 17:04:16 +01:00
# OpenSSL which is being used and maybe distributed via one of this projects'
# web site is subject to their licensing: https://www.openssl.org/source/license.txt
#
# The client simulation data comes from SSLlabs and is licensed to the 'Qualys SSL Labs
# Terms of Use' (v2.2), see https://www.ssllabs.com/downloads/Qualys_SSL_Labs_Terms_of_Use.pdf,
# stating a CC BY 3.0 US license: https://creativecommons.org/licenses/by/3.0/us/
#
# Please note: USAGE WITHOUT ANY WARRANTY, THE SOFTWARE IS PROVIDED "AS IS".
#
# USE IT AT your OWN RISK!
# Seriously! The threat is you run this code on your computer and input could be /
# is being supplied via untrusted sources.
2015-05-17 22:43:53 +02:00
2015-09-03 12:14:47 +02:00
# HISTORY:
# Back in 2006 it all started with a few openssl commands...
2015-06-16 14:04:44 +02:00
# That's because openssl is a such a good swiss army knife (see e.g.
# wiki.openssl.org/index.php/Command_Line_Utilities) that it was difficult to resist
2015-09-03 12:14:47 +02:00
# wrapping some shell commands around it, which I used for my pen tests. This is how
# everything started.
2015-05-17 22:43:53 +02:00
# Now it has grown up, it has bash socket support for some features which basically replacing
# more and more functions of OpenSSL and will serve as some kind of library in the future.
# The socket checks in bash may sound cool and unique -- they are -- but probably you
2015-05-27 11:19:30 +02:00
# can achieve e.g. the same result with my favorite interactive shell: zsh (zmodload zsh/net/socket
2015-09-03 12:14:47 +02:00
# -- checkout zsh/net/tcp) too!
# /bin/bash though is way more often used within Linux and it's perfect
# for cross platform support, see MacOS X and also under Windows the MSYS2 extension or Cygwin.
# Cross-platform is one of the three main goals of this script. Second: Ease of installation.
2015-05-27 11:19:30 +02:00
# No compiling, install gems, go to CPAN, use pip etc. Third: Easy to use and to interpret
2015-09-03 12:14:47 +02:00
# the results.
2015-05-27 11:19:30 +02:00
# Did I mention it's open source?
2015-09-03 12:14:47 +02:00
2015-08-18 16:07:24 +02:00
# Q: So what's the difference to www.ssllabs.com/ssltest/ or sslcheck.globalsign.com/ ?
2015-07-06 10:10:46 +02:00
# A: As of now ssllabs only check 1) webservers 2) on standard ports, 3) reachable from the
2015-09-03 12:14:47 +02:00
# internet. And those examples above 4) are 3rd parties. If these restrictions are all fine
2015-07-06 10:10:46 +02:00
# with you and you need a management compatible rating -- go ahead and use those.
2015-09-03 12:14:47 +02:00
# But also if your fine with those restrictions: testssl.sh is meant as a tool in your hand
2015-09-17 15:30:15 +02:00
# and it's way more flexible.
2015-05-17 22:43:53 +02:00
#
2015-05-27 11:19:30 +02:00
# Oh, and did I mention testssl.sh is open source?
2015-09-03 12:14:47 +02:00
# Note that up to today there were a lot changes for "standard" openssl
# binaries: a lot of features (ciphers, protocols, vulnerabilities)
# are disabled as they'll impact security otherwise. For security
# testing though we need all broken features. testssl.sh will
# over time replace those checks with bash sockets -- however it's
# still recommended to use the supplied binaries or cook your own, see
2015-09-03 13:26:02 +02:00
# https://github.com/drwetter/testssl.sh/blob/master/bin/Readme.md .
2015-09-03 12:14:47 +02:00
# Don't worry if feature X is not available you'll get a warning about
2015-09-17 15:30:15 +02:00
# this missing feature! The idea is if this script can't tell something
2015-09-03 12:14:47 +02:00
# for sure it speaks up so that you have clear picture.
2015-05-17 22:43:53 +02:00
2015-06-02 15:53:46 +02:00
# debugging help:
2015-07-14 17:13:58 +02:00
readonly PS4 = '${LINENO}> ${FUNCNAME[0]:+${FUNCNAME[0]}(): }'
2015-06-02 15:53:46 +02:00
2015-06-16 19:53:40 +02:00
# make sure that temporary files are cleaned up after use in ANY case
2015-06-02 15:53:46 +02:00
trap "cleanup" QUIT EXIT
2015-09-17 15:30:15 +02:00
readonly VERSION = "2.7dev"
2015-06-16 19:53:40 +02:00
readonly SWCONTACT = "dirk aet testssl dot sh"
2015-08-28 00:15:51 +02:00
egrep -q "dev|rc" <<< " $VERSION " && \
2015-09-17 15:30:15 +02:00
SWURL = "https://testssl.sh/dev/" ||
SWURL = "https://testssl.sh/ "
2015-06-16 19:53:40 +02:00
2015-05-17 22:43:53 +02:00
readonly PROG_NAME = $( basename " $0 " )
2015-08-28 00:15:51 +02:00
readonly RUN_DIR = $( dirname " $0 " )
2015-06-02 22:13:19 +02:00
INSTALL_DIR = ""
2015-08-24 23:50:03 +02:00
MAPPING_FILE_RFC = ""
2015-11-21 13:39:37 +01:00
OPENSSL_LOCATION = ""
HNAME = " $( hostname) "
HNAME = " ${ HNAME %%.* } "
readonly CMDLINE = " $@ "
2015-05-17 22:43:53 +02:00
2015-08-28 00:15:51 +02:00
readonly CVS_REL = $( tail -5 " $0 " | awk '/dirkw Exp/ { print $4" "$5" "$6}' )
readonly CVS_REL_SHORT = $( tail -5 " $0 " | awk '/dirkw Exp/ { print $4 }' )
2015-12-08 16:37:35 +01:00
if git log & >/dev/null; then
2015-11-21 13:39:37 +01:00
readonly GIT_REL = $( git log --format= '%h %ci' -1 2>/dev/null | awk '{ print $1" "$2" "$3 }' )
readonly GIT_REL_SHORT = $( git log --format= '%h %ci' -1 2>/dev/null | awk '{ print $1 }' )
readonly REL_DATE = $( git log --format= '%h %ci' -1 2>/dev/null | awk '{ print $2 }' )
else
readonly REL_DATE = $( tail -5 " $0 " | awk '/dirkw Exp/ { print $5 }' )
fi
2015-09-17 15:30:15 +02:00
readonly SYSTEM = $( uname -s)
2015-06-16 19:53:40 +02:00
date --help >/dev/null 2>& 1 && \
2015-09-17 15:30:15 +02:00
readonly HAS_GNUDATE = true || \
readonly HAS_GNUDATE = false
2015-06-17 11:33:29 +02:00
echo A | sed -E 's/A//' >/dev/null 2>& 1 && \
2015-09-17 15:30:15 +02:00
readonly HAS_SED_E = true || \
2015-10-30 09:46:35 +01:00
readonly HAS_SED_E = false
2015-06-16 19:53:40 +02:00
2015-11-03 10:30:59 +01:00
tty -s && \
readonly INTERACTIVE = true || \
readonly INTERACTIVE = false
if ! tput cols & >/dev/null || ! $INTERACTIVE ; then # Prevent tput errors if running non interactive
TERM_DWITH = ${ COLUMNS :- 80 }
else
TERM_DWITH = ${ COLUMNS :- $( tput cols) } # for custom line wrapping and dashes
2015-10-30 09:46:35 +01:00
fi
2015-11-03 10:30:59 +01:00
TERM_CURRPOS = 0 # custom line wrapping needs alter the current horizontal cursor pos
2015-05-31 14:40:12 +02:00
2015-05-17 22:43:53 +02:00
# following variables make use of $ENV, e.g. OPENSSL=<myprivate_path_to_openssl> ./testssl.sh <host>
# 0 means (normally) true here. Some of the variables are also accessible with a command line switch
2015-11-11 11:56:32 +01:00
# most of them can be set also by a cmd line switch
2015-05-17 22:43:53 +02:00
2015-07-12 18:46:27 +02:00
declare -x OPENSSL
2015-09-17 15:30:15 +02:00
COLOR = ${ COLOR :- 2 } # 2: Full color, 1: b/w+positioning, 0: no ESC at all
SHOW_EACH_C = ${ SHOW_EACH_C :- 0 } # where individual ciphers are tested show just the positively ones tested #FIXME: upside down value
SNEAKY = ${ SNEAKY :- false } # is the referer and useragent we leave behind just usual?
QUIET = ${ QUIET :- false } # don't output the banner. By doing this yiu acknowledge usage term appearing in the banner
SSL_NATIVE = ${ SSL_NATIVE :- false } # we do per default bash sockets where possible "true": switch back to "openssl native"
ASSUMING_HTTP = ${ ASSUMING_HTTP :- false } # in seldom cases (WAF, old servers, grumpy SSL) service detection fails. "True" enforces HTTP checks
2015-11-03 23:29:53 +01:00
BUGS = ${ BUGS :- "" } # -bugs option from openssl, needed for some BIG IP F5
2015-09-17 15:30:15 +02:00
DEBUG = ${ DEBUG :- 0 } # 1.: the temp files won't be erased.
# 2: list more what's going on (formerly: eq VERBOSE=1, VERBERR=true), lists some errors of connections
# 3: slight hexdumps + other info,
# 4: display bytes sent via sockets, 5: display bytes received via sockets, 6: whole 9 yards
WIDE = ${ WIDE :- false } # whether to display for some options the cipher or the table with hexcode/KX,Enc,strength etc.
2015-12-21 17:37:23 +01:00
LOGFILE = ${ LOGFILE :- "" } # logfile if used
2015-11-11 11:56:32 +01:00
HAS_IPv6 = ${ HAS_IPv6 :- false } # if you have OPENSSL with IPv6 support AND IPv6 networking set it to yes and testssl.sh works!
# tuning vars, can not be set by a cmd line switch
EXPERIMENTAL = ${ EXPERIMENTAL :- false }
2015-09-17 15:30:15 +02:00
HEADER_MAXSLEEP = ${ HEADER_MAXSLEEP :- 5 } # we wait this long before killing the process to retrieve a service banner / http header
readonly MAX_WAITSOCK = 10 # waiting at max 10 seconds for socket reply
readonly CCS_MAX_WAITSOCK = 5 # for the two CCS payload (each)
readonly HEARTBLEED_MAX_WAITSOCK = 8 # for the heartbleed payload
STARTTLS_SLEEP = ${ STARTTLS_SLEEP :- 1 } # max time to wait on a socket replay for STARTTLS
FAST_STARTTLS = ${ FAST_STARTTLS :- true } #at the cost of reliabilty decrease the handshakes for STARTTLS
USLEEP_SND = ${ USLEEP_SND :- 0 .1 } # sleep time for general socket send
USLEEP_REC = ${ USLEEP_REC :- 0 .2 } # sleep time for general socket receive
2015-08-13 16:56:12 +02:00
HSTS_MIN = ${ HSTS_MIN :- 179 } # >179 days is ok for HSTS
HPKP_MIN = ${ HPKP_MIN :- 30 } # >=30 days should be ok for HPKP_MIN, practical hints?
2015-09-17 15:30:15 +02:00
readonly CLIENT_MIN_PFS = 5 # number of ciphers needed to run a test for PFS
2015-08-13 16:56:12 +02:00
DAYS2WARN1 = ${ DAYS2WARN1 :- 60 } # days to warn before cert expires, threshold 1
DAYS2WARN2 = ${ DAYS2WARN2 :- 30 } # days to warn before cert expires, threshold 2
2015-11-11 11:56:32 +01:00
VULN_THRESHLD = ${ VULN_THRESHLD :- 1 } # if vulnerabilities to check >$VULN_THRESHLD we DON'T show a separate header line in the output each vuln. check
HAD_SLEPT = 0
CAPATH = " ${ CAPATH :- /etc/ssl/certs/ } " # Does nothing yet (FC has only a CA bundle per default, ==> openssl version -d)
FNAME = ${ FNAME :- "" } # file name to read commands from
IKNOW_FNAME = false
2015-05-17 22:43:53 +02:00
2015-11-11 11:56:32 +01:00
# further global vars just declared here
2015-05-17 22:43:53 +02:00
readonly NPN_PROTOs = "spdy/4a2,spdy/3,spdy/3.1,spdy/2,spdy/1,http/1.1"
2015-12-13 01:20:57 +01:00
# alpn_protos needs to be space-separated, not comma-seperated
readonly ALPN_PROTOs = "h2 h2-17 h2-16 h2-15 h2-14 spdy/3.1 http/1.1"
2015-05-17 22:43:53 +02:00
TEMPDIR = ""
2015-05-18 21:51:45 +02:00
TMPFILE = ""
2015-08-24 23:50:03 +02:00
ERRFILE = ""
2015-10-11 23:07:16 +02:00
CLIENT_AUTH = false
2015-11-03 13:13:10 +01:00
NO_SSL_SESSIONID = false
2015-05-18 21:51:45 +02:00
HOSTCERT = ""
HEADERFILE = ""
2015-08-28 00:15:51 +02:00
PROTOS_OFFERED = ""
2015-10-11 23:07:16 +02:00
TLS_EXTENSIONS = ""
GOST_STATUS_PROBLEM = false
2015-05-17 22:43:53 +02:00
DETECTED_TLS_VERSION = ""
SOCKREPLY = ""
SOCK_REPLY_FILE = ""
HEXC = ""
NW_STR = ""
LEN_STR = ""
SNI = ""
2015-09-17 15:30:15 +02:00
OSSL_VER = "" # openssl version, will be auto-determined
2015-05-17 22:43:53 +02:00
OSSL_VER_MAJOR = 0
OSSL_VER_MINOR = 0
OSSL_VER_APPENDIX = "none"
2015-09-22 20:09:26 +02:00
HAS_DH_BITS = ${ HAS_DH_BITS :- false }
2015-09-17 15:30:15 +02:00
HAS_SSL2 = true #TODO: in the future we'll do the fastest possible test (openssl s_client -ssl2 is currently faster than sockets)
2015-08-27 11:25:12 +02:00
HAS_SSL3 = true
2015-10-11 23:07:16 +02:00
HAS_ALPN = false
2015-09-17 15:30:15 +02:00
PORT = 443 # unless otherwise auto-determined, see below
2015-06-15 12:13:16 +02:00
NODE = ""
2015-05-17 22:43:53 +02:00
NODEIP = ""
2015-10-05 09:56:21 +02:00
CORRECT_SPACES = "" # used for IPv6 and proper output formatting
2015-06-15 12:13:16 +02:00
IPADDRs = ""
IP46ADDRs = ""
2015-10-15 14:15:07 +02:00
LOCAL_A = false # does the $NODEIP come from /etc/hosts?
2015-09-17 15:30:15 +02:00
LOCAL_AAAA = false # does the IPv6 IP come from /etc/hosts?
2015-07-06 20:42:43 +02:00
XMPP_HOST = ""
2015-06-29 22:29:15 +02:00
PROXY = ""
PROXYIP = ""
PROXYPORT = ""
2015-05-17 22:43:53 +02:00
VULN_COUNT = 0
IPS = ""
2015-09-17 15:30:15 +02:00
SERVICE = "" # is the server running an HTTP server, SMTP, POP or IMAP?
2015-05-17 22:43:53 +02:00
URI = ""
STARTTLS_PROTOCOL = ""
2015-09-17 15:30:15 +02:00
OPTIMAL_PROTO = "" # we need this for IIS6 (sigh) and OpenSSL 1.02, otherwise some handshakes
# will fail, see https://github.com/PeterMosmans/openssl/issues/19#issuecomment-100897892
STARTTLS_OPTIMAL_PROTO = "" # same for STARTTLS, see https://github.com/drwetter/testssl.sh/issues/188
2015-05-17 22:43:53 +02:00
TLS_TIME = ""
TLS_NOW = ""
2015-09-28 22:54:00 +02:00
NOW_TIME = ""
2015-05-17 22:43:53 +02:00
HTTP_TIME = ""
GET_REQ11 = ""
HEAD_REQ10 = ""
2015-10-11 23:07:16 +02:00
readonly UA_STD = " TLS tester from $SWURL "
readonly UA_SNEAKY = "Mozilla/5.0 (X11; Linux x86_64; rv:41.0) Gecko/20100101 Firefox/41.0"
2015-05-17 22:43:53 +02:00
# Devel stuff, see -q below
TLS_LOW_BYTE = ""
HEX_CIPHER = ""
2015-12-21 17:37:23 +01:00
# The various hexdump commands we need to replace xxd (BSD compatibility)
2015-09-17 15:30:15 +02:00
HEXDUMPVIEW = ( hexdump -C) # This is used in verbose mode to see what's going on
HEXDUMP = ( hexdump -ve '16/1 "%02x " " \n"' ) # This is used to analyze the reply
HEXDUMPPLAIN = ( hexdump -ve '1/1 "%.2x"' ) # Replaces both xxd -p and tr -cd '[:print:]'
2015-05-17 22:43:53 +02:00
2015-06-16 19:53:40 +02:00
###### some hexbytes for bash network sockets follow ######
2015-05-17 22:43:53 +02:00
# 133 standard cipher + 4x GOST for TLS 1.2 and SPDY/NPN
readonly TLS12_CIPHER = "
cc,14, cc,13, cc,15, c0,30, c0,2c, c0,28, c0,24, c0,14,
c0,0a, c0,22, c0,21, c0,20, 00,a5, 00,a3, 00,a1, 00,9f,
00,6b, 00,6a, 00,69, 00,68, 00,39, 00,38, 00,37, 00,36, 00,80, 00,81, 00,82, 00,83,
c0,77, c0,73, 00,c4, 00,c3, 00,c2, 00,c1, 00,88, 00,87,
00,86, 00,85, c0,32, c0,2e, c0,2a, c0,26, c0,0f, c0,05,
c0,79, c0,75, 00,9d, 00,3d, 00,35, 00,c0, 00,84, c0,2f,
c0,2b, c0,27, c0,23, c0,13, c0,09, c0,1f, c0,1e, c0,1d,
00,a4, 00,a2, 00,a0, 00,9e, 00,67, 00,40, 00,3f, 00,3e,
00,33, 00,32, 00,31, 00,30, c0,76, c0,72, 00,be, 00,bd,
00,bc, 00,bb, 00,9a, 00,99, 00,98, 00,97, 00,45, 00,44,
00,43, 00,42, c0,31, c0,2d, c0,29, c0,25, c0,0e, c0,04,
c0,78, c0,74, 00,9c, 00,3c, 00,2f, 00,ba, 00,96, 00,41,
00,07, c0,11, c0,07, 00,66, c0,0c, c0,02, 00,05, 00,04,
c0,12, c0,08, c0,1c, c0,1b, c0,1a, 00,16, 00,13, 00,10,
00,0d, c0,0d, c0,03, 00,0a, 00,63, 00,15, 00,12, 00,0f,
00,0c, 00,62, 00,09, 00,65, 00,64, 00,14, 00,11, 00,0e,
00,0b, 00,08, 00,06, 00,03, 00,ff"
# 76 standard cipher +4x GOST for SSLv3, TLS 1, TLS 1.1
readonly TLS_CIPHER = "
c0,14, c0,0a, c0,22, c0,21, c0,20, 00,39, 00,38, 00,37,
00,36, 00,88, 00,87, 00,86, 00,85, c0,0f, c0,05, 00,35,
00,84, c0,13, c0,09, c0,1f, c0,1e, c0,1d, 00,33, 00,32, 00,80, 00,81, 00,82, 00,83,
00,31, 00,30, 00,9a, 00,99, 00,98, 00,97, 00,45, 00,44,
00,43, 00,42, c0,0e, c0,04, 00,2f, 00,96, 00,41, 00,07,
c0,11, c0,07, 00,66, c0,0c, c0,02, 00,05, 00,04, c0,12,
c0,08, c0,1c, c0,1b, c0,1a, 00,16, 00,13, 00,10, 00,0d,
c0,0d, c0,03, 00,0a, 00,63, 00,15, 00,12, 00,0f, 00,0c,
00,62, 00,09, 00,65, 00,64, 00,14, 00,11, 00,0e, 00,0b,
2015-05-29 19:44:27 +02:00
00,08, 00,06, 00,03, 00,ff"
2015-05-17 22:43:53 +02:00
readonly SSLv2_CLIENT_HELLO = "
,80,34 # length (here: 52)
2015-05-29 19:44:27 +02:00
,01 # Client Hello
2015-05-17 22:43:53 +02:00
,00,02 # SSLv2
,00,1b # cipher spec length (here: 27 )
,00,00 # session ID length
,00,10 # challenge length
2015-09-17 15:30:15 +02:00
,05,00,80 # 1st cipher 9 cipher specs, only classical V2 ciphers are used here, see FIXME below
2015-05-17 22:43:53 +02:00
,03,00,80 # 2nd there are v3 in v2!!! : https://tools.ietf.org/html/rfc6101#appendix-E
,01,00,80 # 3rd Cipher specifications introduced in version 3.0 can be included in version 2.0 client hello messages using
,07,00,c0 # 4th the syntax below. [..] # V2CipherSpec (see Version 3.0 name) = { 0x00, CipherSuite }; !!!!
,08,00,80 # 5th
,06,00,40 # 6th
,04,00,80 # 7th
,02,00,80 # 8th
,00,00,00 # 9th
,29,22,be,b3,5a,01,8b,04,fe,5f,80,03,a0,13,eb,c4" # Challenge
# https://idea.popcount.org/2012-06-16-dissecting-ssl-handshake/ (client)
# FIXME: http://max.euston.net/d/tip_sslciphers.html
###### output functions ######
2015-08-21 18:10:45 +02:00
# a little bit of sanitzing with bash internal search&replace -- otherwise printf will hiccup at '%' and '--' does the rest.
out( ) { /usr/bin/printf -- " ${ 1 //%/%% } " ; }
outln( ) { out " $1 \n " ; }
#TODO: Still no shell injection safe but if just run it from the cmd line: that's fine
2015-05-17 22:43:53 +02:00
# color print functions, see also http://www.tldp.org/HOWTO/Bash-Prompt-HOWTO/x329.html
2015-09-17 15:30:15 +02:00
pr_liteblue( ) { [ [ " $COLOR " -eq 2 ] ] && out " \033[0;34m $1 " || out " $1 " ; pr_off; } # not yet used
2015-08-05 11:31:55 +02:00
pr_liteblueln( ) { pr_liteblue " $1 " ; outln; }
2015-09-17 15:30:15 +02:00
pr_blue( ) { [ [ " $COLOR " -eq 2 ] ] && out " \033[1;34m $1 " || out " $1 " ; pr_off; } # used for head lines of single tests
2015-08-05 11:31:55 +02:00
pr_blueln( ) { pr_blue " $1 " ; outln; }
2015-09-17 15:30:15 +02:00
pr_litered( ) { [ [ " $COLOR " -eq 2 ] ] && out " \033[0;31m $1 " || pr_bold " $1 " ; pr_off; } # this is bad
2015-08-05 11:31:55 +02:00
pr_literedln( ) { pr_litered " $1 " ; outln; }
2015-09-17 15:30:15 +02:00
pr_red( ) { [ [ " $COLOR " -eq 2 ] ] && out " \033[1;31m $1 " || pr_bold " $1 " ; pr_off; } # oh, this is really bad
2015-08-05 11:31:55 +02:00
pr_redln( ) { pr_red " $1 " ; outln; }
2015-09-17 15:30:15 +02:00
pr_litemagenta( ) { [ [ " $COLOR " -eq 2 ] ] && out " \033[0;35m $1 " || pr_underline " $1 " ; pr_off; } # local problem: one test cannot be done
2015-08-05 11:31:55 +02:00
pr_litemagentaln( ) { pr_litemagenta " $1 " ; outln; }
2015-09-17 15:30:15 +02:00
pr_magenta( ) { [ [ " $COLOR " -eq 2 ] ] && out " \033[1;35m $1 " || pr_underline " $1 " ; pr_off; } # Fatal error: quitting because of this!
2015-08-05 11:31:55 +02:00
pr_magentaln( ) { pr_magenta " $1 " ; outln; }
2015-09-17 15:30:15 +02:00
pr_litecyan( ) { [ [ " $COLOR " -eq 2 ] ] && out " \033[0;36m $1 " || out " $1 " ; pr_off; } # not yet used
2015-08-05 11:31:55 +02:00
pr_litecyanln( ) { pr_litecyan " $1 " ; outln; }
2015-09-17 15:30:15 +02:00
pr_cyan( ) { [ [ " $COLOR " -eq 2 ] ] && out " \033[1;36m $1 " || out " $1 " ; pr_off; } # additional hint
2015-08-05 11:31:55 +02:00
pr_cyanln( ) { pr_cyan " $1 " ; outln; }
pr_litegreyln( ) { pr_litegrey " $1 " ; outln; }
pr_litegrey( ) { [ [ " $COLOR " -eq 2 ] ] && out " \033[0;37m $1 " || out " $1 " ; pr_off; }
pr_grey( ) { [ [ " $COLOR " -eq 2 ] ] && out " \033[1;30m $1 " || out " $1 " ; pr_off; }
pr_greyln( ) { pr_grey " $1 " ; outln; }
2015-09-17 15:30:15 +02:00
pr_litegreen( ) { [ [ " $COLOR " -eq 2 ] ] && out " \033[0;32m $1 " || out " $1 " ; pr_off; } # This is good
2015-08-05 11:31:55 +02:00
pr_litegreenln( ) { pr_litegreen " $1 " ; outln; }
2015-09-17 15:30:15 +02:00
pr_green( ) { [ [ " $COLOR " -eq 2 ] ] && out " \033[1;32m $1 " || out " $1 " ; pr_off; } # This is the best
2015-08-05 11:31:55 +02:00
pr_greenln( ) { pr_green " $1 " ; outln; }
2015-09-17 15:30:15 +02:00
pr_yellow( ) { [ [ " $COLOR " -eq 2 ] ] && out " \033[1;33m $1 " || out " $1 " ; pr_off; } # academic or minor problem
2015-08-05 11:31:55 +02:00
pr_yellowln( ) { pr_yellow " $1 " ; outln; }
2015-09-17 15:30:15 +02:00
pr_brown( ) { [ [ " $COLOR " -eq 2 ] ] && out " \033[0;33m $1 " || out " $1 " ; pr_off; } # it is not a bad problem but you shouldn't do this
2015-08-05 11:31:55 +02:00
pr_brownln( ) { pr_brown " $1 " ; outln; }
2015-08-02 00:03:30 +02:00
# color=1 functions
2015-08-05 11:31:55 +02:00
pr_off( ) { [ [ " $COLOR " -ne 0 ] ] && out "\033[m\c" ; }
pr_bold( ) { [ [ " $COLOR " -ne 0 ] ] && out " \033[1m $1 " || out " $1 " ; pr_off; }
2015-08-02 00:03:30 +02:00
pr_boldln( ) { pr_bold " $1 " ; outln; }
2015-10-15 14:15:07 +02:00
pr_italic( ) { [ [ " $COLOR " -ne 0 ] ] && out " \033[3m $1 " || out " $1 " ; pr_off; }
2015-08-05 11:31:55 +02:00
pr_underline( ) { [ [ " $COLOR " -ne 0 ] ] && out " \033[4m $1 " || out " $1 " ; pr_off; }
2015-05-17 22:43:53 +02:00
pr_reverse( ) { [ [ " $COLOR " -ne 0 ] ] && out " \033[7m $1 " || out " $1 " ; pr_off; }
2015-10-15 14:15:07 +02:00
pr_reverse_bold( ) { [ [ " $COLOR " -ne 0 ] ] && out " \033[7m\033[1m $1 " || out " $1 " ; pr_off; }
2015-05-17 22:43:53 +02:00
2015-10-15 14:15:07 +02:00
#pr_headline() { pr_blue "$1"; }
#http://misc.flogisoft.com/bash/tip_colors_and_formatting
#pr_headline() { [[ "$COLOR" -eq 2 ]] && out "\033[1;30m\033[47m$1" || out "$1"; pr_off; }
pr_headline( ) { [ [ " $COLOR " -ne 0 ] ] && out " \033[1m\033[4m $1 " || out " $1 " ; pr_off; }
pr_headlineln( ) { pr_headline " $1 " ; outln; }
pr_squoted( ) { out " ' $1 ' " ; }
pr_dquoted( ) { out " \" $1 \" " ; }
2015-08-05 11:31:55 +02:00
2015-09-17 15:30:15 +02:00
### color switcher (see e.g. https://linuxtidbits.wordpress.com/2008/08/11/output-color-on-bash-scripts/
2015-05-17 22:43:53 +02:00
### http://www.tldp.org/HOWTO/Bash-Prompt-HOWTO/x405.html
2015-06-28 13:52:42 +02:00
set_color_functions( ) {
2015-11-02 10:49:40 +01:00
local ncurses_tput = true
2015-09-17 15:30:15 +02:00
2015-10-15 14:15:07 +02:00
# empty vars if we have COLOR=0 equals no escape code:
2015-09-17 15:30:15 +02:00
red = ""
green = ""
brown = ""
blue = ""
magenta = ""
cyan = ""
grey = ""
yellow = ""
off = ""
bold = ""
underline = ""
2015-10-15 14:15:07 +02:00
italic = ""
2015-09-17 15:30:15 +02:00
2015-11-03 10:30:59 +01:00
which tput & >/dev/null || return 0 # Hey wait, do we actually have tput / ncurses ?
tput cols & >/dev/null || return 0 # tput under BSDs and GNUs doesn't work either (TERM undefined?)
2015-11-02 10:49:40 +01:00
tput sgr0 & >/dev/null || ncurses_tput = false
2015-09-17 15:30:15 +02:00
if [ [ " $COLOR " -eq 2 ] ] ; then
2015-11-02 10:49:40 +01:00
if $ncurses_tput ; then
2015-09-17 15:30:15 +02:00
red = $( tput setaf 1)
green = $( tput setaf 2)
brown = $( tput setaf 3)
blue = $( tput setaf 4)
magenta = $( tput setaf 5)
cyan = $( tput setaf 6)
grey = $( tput setaf 7)
yellow = $( tput setaf 3; tput bold)
else # this is a try for old BSD, see terminfo(5)
red = $( tput AF 1)
green = $( tput AF 2)
brown = $( tput AF 3)
blue = $( tput AF 4)
magenta = $( tput AF 5)
cyan = $( tput AF 6)
grey = $( tput AF 7)
yellow = $( tput AF 3; tput md)
fi
fi
if [ [ " $COLOR " -ge 1 ] ] ; then
2015-11-02 10:49:40 +01:00
if $ncurses_tput ; then
2015-09-17 15:30:15 +02:00
bold = $( tput bold)
underline = $( tput sgr 0 1)
2015-10-15 14:15:07 +02:00
italic = $( tput sitm)
italic_end = $( tput ritm)
2015-09-17 15:30:15 +02:00
off = $( tput sgr0)
else # this is a try for old BSD, see terminfo(5)
bold = $( tput md)
underline = $( tput us)
2015-10-15 14:15:07 +02:00
italic = $( tput ZH) # that doesn't work on FreeBSD 9+10.x
italic_end = $( tput ZR) # here too. Probably entry missing in /etc/termcap
2015-09-17 15:30:15 +02:00
reverse = $( tput mr)
off = $( tput me)
fi
fi
2015-06-28 13:52:42 +02:00
}
2015-05-17 22:43:53 +02:00
###### helper function definitions ######
debugme( ) {
2015-09-17 15:30:15 +02:00
[ [ $DEBUG -ge 2 ] ] && " $@ "
2015-05-17 22:43:53 +02:00
}
2015-06-23 21:54:47 +02:00
hex2dec( ) {
2015-09-17 15:30:15 +02:00
#/usr/bin/printf -- "%d" 0x"$1"
echo $(( 16# $1 ))
2015-06-23 21:54:47 +02:00
}
dec2hex( ) {
2015-09-17 15:30:15 +02:00
/usr/bin/printf -- "%x" " $1 "
#echo $((0x$1))
2015-06-23 21:54:47 +02:00
}
# trim spaces for BSD and old sed
count_lines( ) {
2015-09-22 15:05:59 +02:00
wc -l <<< " $1 " | sed 's/ //g'
2015-06-23 21:54:47 +02:00
}
count_words( ) {
2015-09-22 15:05:59 +02:00
wc -w <<< " $1 " | sed 's/ //g'
2015-06-23 21:54:47 +02:00
}
2015-08-24 23:50:03 +02:00
count_ciphers( ) {
2015-09-17 15:30:15 +02:00
echo -n " $1 " | sed 's/:/ /g' | wc -w | sed 's/ //g'
2015-08-24 23:50:03 +02:00
}
actually_supported_ciphers( ) {
2015-09-17 15:30:15 +02:00
$OPENSSL ciphers " $1 " 2>/dev/null || echo ""
2015-08-24 23:50:03 +02:00
}
2015-06-23 21:54:47 +02:00
newline_to_spaces( ) {
2015-09-22 15:05:59 +02:00
tr '\n' ' ' <<< " $1 " | sed 's/ $//'
2015-06-23 21:54:47 +02:00
}
2015-09-30 14:54:39 +02:00
colon_to_spaces( ) {
2015-10-01 13:27:14 +02:00
echo " ${ 1 // : / } "
2015-09-30 14:54:39 +02:00
}
2015-08-12 13:58:45 +02:00
strip_lf( ) {
2015-09-17 15:30:15 +02:00
echo " $1 " | tr -d '\n' | tr -d '\r'
2015-08-12 13:58:45 +02:00
}
2015-09-22 15:05:59 +02:00
strip_spaces( ) {
echo " ${ 1 // / } "
}
2015-08-12 13:58:45 +02:00
toupper( ) {
2015-09-17 15:30:15 +02:00
echo -n " $1 " | tr 'a-z' 'A-Z'
2015-07-21 20:35:49 +02:00
}
2015-09-22 20:09:26 +02:00
is_number( ) {
[ [ " $1 " = ~ ^[ 1-9] [ 0-9] *$ ] ] && \
return 0 || \
return 1
}
is_ipv4addr( ) {
local octet = "(25[0-5]|2[0-4][0-9]|1[0-9][0-9]|[1-9]?[0-9])"
local ipv4address = " $octet \\. $octet \\. $octet \\. $octet "
[ [ -z " $1 " ] ] && return 1
# more than numbers, important for hosts like AAA.BBB.CCC.DDD.in-addr.arpa.DOMAIN.TLS
[ [ -n $( tr -d '0-9\.' <<< " $1 " ) ] ] && return 1
echo -n " $1 " | grep -Eq " $ipv4address " && \
return 0 || \
return 1
}
# a bit easier
is_ipv6addr( ) {
[ [ -z " $1 " ] ] && return 1
# less than 2x ":"
[ [ $( count_lines " $( echo -n " $1 " | tr ':' '\n' ) " ) -le 1 ] ] && \
return 1
#check on chars allowed:
[ [ -n " $( tr -d '0-9:a-fA-F ' <<< " $1 " | sed -e '/^$/d' ) " ] ] && \
return 1
return 0
}
2015-08-21 10:47:29 +02:00
# prints out multiple lines in $1, left aligned by spaces in $2
out_row_aligned( ) {
2015-09-17 15:30:15 +02:00
local first = true
echo " $1 " | while read line; do
if $first ; then
first = false
else
out " $2 "
fi
outln " $line "
done
2015-08-21 10:47:29 +02:00
}
2015-08-12 13:58:45 +02:00
2015-05-17 22:43:53 +02:00
tmpfile_handle( ) {
2015-10-11 23:07:16 +02:00
mv $TMPFILE " $TEMPDIR / $NODEIP . $1 " 2>/dev/null
[ [ $ERRFILE = ~ dev.null ] ] && return 0 || \
2015-09-17 15:30:15 +02:00
mv $ERRFILE " $TEMPDIR / $NODEIP . $( sed 's/\.txt//g' <<< " $1 " ) .errorlog " 2>/dev/null
2015-05-17 22:43:53 +02:00
}
2015-08-01 23:11:27 +02:00
# arg1: line with comment sign, tabs and so on
filter_input( ) {
2015-09-17 15:30:15 +02:00
echo " $1 " | sed -e 's/#.*$//' -e '/^$/d' | tr -d '\n' | tr -d '\t'
2015-08-01 23:11:27 +02:00
}
2015-05-17 22:43:53 +02:00
wait_kill( ) {
2015-09-17 15:30:15 +02:00
local pid = $1 # pid we wait for or kill
local maxsleep = $2 # how long we wait before killing
2015-09-28 22:54:00 +02:00
HAD_SLEPT = 0
2015-09-17 15:30:15 +02:00
while true; do
if ! ps $pid >/dev/null ; then
return 0 # process terminated before didn't reach $maxsleep
fi
2015-09-28 22:54:00 +02:00
[ [ " $DEBUG " -ge 6 ] ] && ps $pid
2015-09-17 15:30:15 +02:00
sleep 1
maxsleep = $(( maxsleep - 1 ))
2015-09-28 22:54:00 +02:00
HAD_SLEPT = $(( HAD_SLEPT + 1 ))
2015-09-17 15:30:15 +02:00
test $maxsleep -le 0 && break
done # needs to be killed:
kill $pid >& 2 2>/dev/null
wait $pid 2>/dev/null # make sure pid terminated, see wait(1p)
return 3 # means killed
2015-05-17 22:43:53 +02:00
}
###### check code starts here ######
# determines whether the port has an HTTP service running or not (plain TLS, no STARTTLS)
# arg1 could be the protocol determined as "working". IIS6 needs that
runs_HTTP( ) {
2015-10-05 09:56:21 +02:00
local -i ret = 0
2015-10-11 23:07:16 +02:00
local -i was_killed
2015-10-05 09:56:21 +02:00
2015-10-11 23:07:16 +02:00
if ! $CLIENT_AUTH ; then
# SNI is nonsense for !HTTPS but fortunately for other protocols s_client doesn't seem to care
2015-11-03 23:29:53 +01:00
printf " $GET_REQ11 " | $OPENSSL s_client $1 -quiet $BUGS -connect $NODEIP :$PORT $PROXY $SNI >$TMPFILE 2>$ERRFILE &
2015-10-11 23:07:16 +02:00
wait_kill $! $HEADER_MAXSLEEP
was_killed = $?
head $TMPFILE | grep -aq ^HTTP && SERVICE = HTTP
head $TMPFILE | grep -aq SMTP && SERVICE = SMTP
head $TMPFILE | grep -aq POP && SERVICE = POP
head $TMPFILE | grep -aq IMAP && SERVICE = IMAP
head $TMPFILE | egrep -aqw "Jive News|InterNetNews|NNRP|INN" && SERVICE = NNTP
debugme head -50 $TMPFILE
fi
2015-05-17 22:43:53 +02:00
2015-10-05 09:56:21 +02:00
out " Service detected: $CORRECT_SPACES "
2015-09-17 15:30:15 +02:00
case $SERVICE in
HTTP)
out " $SERVICE "
ret = 0 ; ;
IMAP| POP| SMTP| NNTP)
out " $SERVICE , thus skipping HTTP specific checks "
ret = 0 ; ;
2015-10-11 23:07:16 +02:00
*) if $CLIENT_AUTH ; then
out "certificate based authentication => skipping all HTTP checks"
echo "certificate based authentication => skipping all HTTP checks" >$TMPFILE
2015-09-17 15:30:15 +02:00
else
2015-10-11 23:07:16 +02:00
out " Couldn't determine what's running on port $PORT "
if $ASSUMING_HTTP ; then
SERVICE = HTTP
out " -- ASSUMING_HTTP set though"
ret = 0
else
out ", assuming no HTTP service => skipping all HTTP checks"
ret = 1
fi
2015-09-17 15:30:15 +02:00
fi
; ;
esac
2015-11-03 10:30:59 +01:00
outln "\n"
2015-09-17 15:30:15 +02:00
tmpfile_handle $FUNCNAME .txt
return $ret
2015-05-17 22:43:53 +02:00
}
2015-10-11 23:07:16 +02:00
2015-05-17 22:43:53 +02:00
#problems not handled: chunked
2015-07-22 13:11:20 +02:00
run_http_header( ) {
2015-09-17 15:30:15 +02:00
local header
local -i ret
local referer useragent
2015-12-22 21:08:52 +01:00
local url redirect
2015-09-17 15:30:15 +02:00
2015-10-15 14:15:07 +02:00
outln; pr_headlineln " Testing HTTP header response @ \" $URL_PATH \" "
outln
2015-09-17 15:30:15 +02:00
[ [ -z " $1 " ] ] && url = "/" || url = " $1 "
2015-11-03 23:29:53 +01:00
printf " $GET_REQ11 " | $OPENSSL s_client $OPTIMAL_PROTO $BUGS -quiet -ign_eof -connect $NODEIP :$PORT $PROXY $SNI >$HEADERFILE 2>$ERRFILE &
2015-09-28 22:54:00 +02:00
wait_kill $! $HEADER_MAXSLEEP
if [ [ $? -eq 0 ] ] ; then
# we do the get command again as it terminated within $HEADER_MAXSLEEP. Thus it didn't hang, we do it
# again in the foreground ito get an ccurate header time!
2015-11-03 23:29:53 +01:00
printf " $GET_REQ11 " | $OPENSSL s_client $OPTIMAL_PROTO $BUGS -quiet -ign_eof -connect $NODEIP :$PORT $PROXY $SNI >$HEADERFILE 2>$ERRFILE
2015-09-28 22:54:00 +02:00
NOW_TIME = $( date "+%s" )
HTTP_TIME = $( awk -F': ' '/^date:/ { print $2 } /^Date:/ { print $2 }' $HEADERFILE )
HAD_SLEPT = 0
2015-09-17 15:30:15 +02:00
else
2015-09-28 22:54:00 +02:00
# GET request needed to be killed before, try, whether it succeeded:
if egrep -iaq "XML|HTML|DOCTYPE|HTTP|Connection" $HEADERFILE ; then
NOW_TIME = $(( $( date "+%s" ) - HAD_SLEPT)) # correct by seconds we slept
HTTP_TIME = $( awk -F': ' '/^date:/ { print $2 } /^Date:/ { print $2 }' $HEADERFILE )
else
2015-09-17 15:30:15 +02:00
pr_litemagenta " likely HTTP header requests failed (#lines: $( wc -l < $HEADERFILE | sed 's/ //g' ) ). "
outln "Rerun with DEBUG=1 and inspect \"run_http_header.txt\"\n"
debugme cat $HEADERFILE
2015-09-28 22:54:00 +02:00
return 7
2015-09-17 15:30:15 +02:00
fi
fi
2015-09-28 22:54:00 +02:00
# populate vars for HTTP time
debugme echo " $NOW_TIME : $HTTP_TIME "
2015-12-22 21:08:52 +01:00
sed -e '/^ .<HTML/,$d' -e '/^ .<html/,$d' -e '/^ .<XML /,$d' -e '/ .<?XML /,$d' \
-e '/^ .<xml /,$d' -e '/ .<?xml /,$d' -e '/^ .<\!DOCTYPE/,$d' -e '/^ .<\!doctype/,$d' $HEADERFILE >$HEADERFILE .2
2015-09-28 22:54:00 +02:00
#### ^^^ Attention: the filtering for the html body only as of now, doesn't work for other content yet
mv $HEADERFILE .2 $HEADERFILE # sed'ing in place doesn't work with BSD and Linux simultaneously
ret = 0
2015-09-17 15:30:15 +02:00
status_code = $( awk '/^HTTP\// { print $2 }' $HEADERFILE 2>>$ERRFILE )
msg_thereafter = $( awk -F" $status_code " '/^HTTP\// { print $2 }' $HEADERFILE 2>>$ERRFILE ) # dirty trick to use the status code as a
msg_thereafter = $( strip_lf " $msg_thereafter " ) # field separator, otherwise we need a loop with awk
debugme echo " Status/MSG: $status_code $msg_thereafter "
pr_bold " HTTP Status Code "
[ [ -z " $status_code " ] ] && pr_litemagentaln "No status code" && return 3
out " $status_code $msg_thereafter "
case $status_code in
2015-12-21 20:59:40 +01:00
301| 302| 307| 308)
2015-12-22 20:31:52 +01:00
redirect = $( grep -a '^Location' $HEADERFILE | sed 's/Location: //' | tr -d '\r\n' )
out " , redirecting to \" $redirect " \"
if [ [ $redirect = = "http://" * ] ] ; then
pr_litered " -- Redirect to insecure URL (NOT ok)"
2015-12-21 20:59:40 +01:00
fi
; ;
2015-09-17 15:30:15 +02:00
200) ; ;
206) out " -- WTF?" ; ;
400) pr_litemagenta " (Hint: better try another URL)" ; ;
401) grep -aq "^WWW-Authenticate" $HEADERFILE && out " " ; strip_lf " $( grep -a "^WWW-Authenticate" $HEADERFILE ) "
; ;
403) ; ;
404) out " (Hint: supply a path which doesn't give a \" $status_code $msg_thereafter \") " ; ;
405) ; ;
*) pr_litemagenta " . Oh, didn't expect a $status_code $msg_thereafter " ; ;
esac
outln
# we don't call "tmpfile_handle $FUNCNAME.txt" as we need the header file in other functions!
return $ret
2015-05-17 22:43:53 +02:00
}
2015-08-21 10:47:29 +02:00
# Borrowed from Glenn Jackman, see https://unix.stackexchange.com/users/4667/glenn-jackman
2015-06-19 20:36:32 +02:00
detect_ipv4( ) {
2015-09-17 15:30:15 +02:00
local octet = "(25[0-5]|2[0-4][0-9]|1[0-9][0-9]|[1-9]?[0-9])"
local ipv4address = " $octet \\. $octet \\. $octet \\. $octet "
local your_ip_msg = "(check if it's your IP address or e.g. a cluster IP)"
local result
local first = true
local spaces = " "
if [ [ ! -s $HEADERFILE ] ] ; then
2015-09-29 18:47:49 +02:00
run_http_header " $1 " || return 3
2015-09-17 15:30:15 +02:00
fi
# remove pagespeed header as it is mistakenly identified as ipv4 address https://github.com/drwetter/testssl.sh/issues/158
# also facebook has a CSP rule for 127.0.0.1
if egrep -vi "pagespeed|page-speed|Content-Security-Policy" $HEADERFILE | grep -iqE " $ipv4address " ; then
pr_bold " IPv4 address in header "
while read line; do
result = " $( grep -E " $ipv4address " <<< " $line " ) "
result = $( strip_lf " $result " )
if [ [ -n " $result " ] ] ; then
if ! $first ; then
out " $spaces "
your_ip_msg = ""
else
first = false
fi
pr_litered " $result "
outln " \n $spaces $your_ip_msg "
fi
done < $HEADERFILE
fi
}
2015-06-19 20:36:32 +02:00
2015-08-28 00:15:51 +02:00
run_http_date( ) {
2015-09-17 15:30:15 +02:00
local now difftime
if [ [ ! -s $HEADERFILE ] ] ; then
run_http_header " $1 " || return 3 # this is just for the line "Testing HTTP header response"
fi
pr_bold " HTTP clock skew "
if [ [ $SERVICE != "HTTP" ] ] ; then
out "not tested as we're not targeting HTTP"
else
if [ [ -n " $HTTP_TIME " ] ] ; then
if $HAS_GNUDATE ; then
HTTP_TIME = $( date --date= " $HTTP_TIME " "+%s" )
else
2015-09-22 17:14:36 +02:00
HTTP_TIME = $( LC_ALL = C date -j -f "%a, %d %b %Y %T %Z" " $HTTP_TIME " "+%s" 2>>$ERRFILE ) # the trailing \r confuses BSD flavors otherwise
2015-09-17 15:30:15 +02:00
fi
2015-09-28 22:54:00 +02:00
difftime = $(( HTTP_TIME - $NOW_TIME ))
2015-09-17 15:30:15 +02:00
[ [ $difftime != "-" * ] ] && [ [ $difftime != "0" ] ] && difftime = " + $difftime "
2015-09-28 22:54:00 +02:00
# process was killed, so we need to add an error:
[ [ $HAD_SLEPT -ne 0 ] ] && difftime = " $difftime (± 1.5) "
2015-09-17 15:30:15 +02:00
out " $difftime sec from localtime " ;
else
out "Got no HTTP time, maybe try different URL?" ;
fi
2015-09-28 22:54:00 +02:00
debugme out " , epoch: $HTTP_TIME "
2015-09-17 15:30:15 +02:00
fi
outln
detect_ipv4
2015-08-28 00:15:51 +02:00
}
2015-06-19 20:36:32 +02:00
2015-05-17 22:43:53 +02:00
includeSubDomains( ) {
2015-09-17 15:30:15 +02:00
if grep -aiqw includeSubDomains " $1 " ; then
pr_litegreen ", includeSubDomains"
else
pr_litecyan ", just this domain"
fi
2015-05-17 22:43:53 +02:00
}
preload( ) {
2015-09-17 15:30:15 +02:00
grep -aiqw preload " $1 " && pr_litegreen ", preload"
2015-05-17 22:43:53 +02:00
}
2015-06-19 20:36:32 +02:00
2015-07-22 13:11:20 +02:00
run_hsts( ) {
2015-09-17 15:30:15 +02:00
local hsts_age_sec
local hsts_age_days
if [ [ ! -s $HEADERFILE ] ] ; then
2015-09-29 18:47:49 +02:00
run_http_header " $1 " || return 3
2015-09-17 15:30:15 +02:00
fi
#pr_bold " HSTS "
pr_bold " Strict Transport Security "
grep -iaw '^Strict-Transport-Security' $HEADERFILE >$TMPFILE
if [ [ $? -eq 0 ] ] ; then
grep -aciw '^Strict-Transport-Security' $HEADERFILE | egrep -waq "1" || out "(two HSTS header, using 1st one) "
hsts_age_sec = $( sed -e 's/[^0-9]*//g' $TMPFILE | head -1)
2015-05-25 21:14:59 +02:00
#FIXME: test for number!
2015-09-17 15:30:15 +02:00
hsts_age_days = $(( hsts_age_sec / 86400 ))
if [ [ $hsts_age_days -gt $HSTS_MIN ] ] ; then
pr_litegreen " $hsts_age_days days " ; out " = $hsts_age_sec s "
else
out " $hsts_age_sec s = "
pr_brown " $hsts_age_days days, < $HSTS_MIN days is too short "
fi
includeSubDomains " $TMPFILE "
preload " $TMPFILE "
#FIXME: To be checked against e.g. https://dxr.mozilla.org/mozilla-central/source/security/manager/boot/src/nsSTSPreloadList.inc
# and https://chromium.googlesource.com/chromium/src/+/master/net/http/transport_security_state_static.json
else
out "--"
fi
outln
tmpfile_handle $FUNCNAME .txt
return $?
2015-05-17 22:43:53 +02:00
}
2015-07-21 20:35:49 +02:00
2015-07-22 13:11:20 +02:00
run_hpkp( ) {
2015-09-17 15:30:15 +02:00
local -i hpkp_age_sec
local -i hpkp_age_days
local -i hpkp_nr_keys
local hpkp_key hpkp_key_hostcert
local spaces = " "
local key_found = false
local i
if [ [ ! -s $HEADERFILE ] ] ; then
2015-09-29 18:47:49 +02:00
run_http_header " $1 " || return 3
2015-09-17 15:30:15 +02:00
fi
#pr_bold " HPKP "
pr_bold " Public Key Pinning "
egrep -aiw '^Public-Key-Pins|Public-Key-Pins-Report-Only' $HEADERFILE >$TMPFILE
if [ [ $? -eq 0 ] ] ; then
if egrep -aciw '^Public-Key-Pins|Public-Key-Pins-Report-Only' $HEADERFILE | egrep -waq "1" ; then
:
else
pr_brown "two HPKP headers: "
for i in $( newline_to_spaces " $( egrep -ai '^Public-Key-Pins' $HEADERFILE | awk -F':' '/Public-Key-Pins/ { print $1 }' ) " ) ; do
2015-10-15 14:15:07 +02:00
pr_italic $i
2015-09-17 15:30:15 +02:00
out " "
done
out " \n $spaces using first "
2015-10-15 14:15:07 +02:00
pr_italic " $( awk -F':' '/Public-Key-Pins/ { print $1 }' $HEADERFILE | head -1) , "
2015-09-17 15:30:15 +02:00
fi
# remove leading Public-Key-Pins*, any colons, double quotes and trailing spaces and taking the first -- whatever that is
sed -e 's/Public-Key-Pins://g' -e s'/Public-Key-Pins-Report-Only://' $TMPFILE | \
sed -e 's/;//g' -e 's/\"//g' -e 's/^ //' | head -1 > $TMPFILE .2
# BSD lacks -i, otherwise we would have done it inline
# now separate key value and other stuff per line:
tr ' ' '\n' < $TMPFILE .2 >$TMPFILE
hpkp_nr_keys = $( grep -ac pin-sha $TMPFILE )
out "# of keys: "
if [ [ $hpkp_nr_keys -eq 1 ] ] ; then
pr_litered "1 (NOT ok), "
else
out " $hpkp_nr_keys , "
fi
# print key=value pair with awk, then strip non-numbers, to be improved with proper parsing of key-value with awk
hpkp_age_sec = $( awk -F= '/max-age/{max_age=$2; print max_age}' $TMPFILE | sed -E 's/[^[:digit:]]//g' )
hpkp_age_days = $(( hpkp_age_sec / 86400 ))
if [ [ $hpkp_age_days -ge $HPKP_MIN ] ] ; then
pr_litegreen " $hpkp_age_days days " ; out " = $hpkp_age_sec s "
else
out " $hpkp_age_sec s = "
pr_brown " $hpkp_age_days days (< $HPKP_MIN days is not good enough) "
fi
includeSubDomains " $TMPFILE "
preload " $TMPFILE "
[ [ -s " $HOSTCERT " ] ] || get_host_cert
# get the key fingerprints
hpkp_key_hostcert = " $( $OPENSSL x509 -in $HOSTCERT -pubkey -noout | grep -v PUBLIC | \
$OPENSSL base64 -d | $OPENSSL dgst -sha256 -binary | $OPENSSL base64) "
while read hpkp_key; do
if [ [ " $hpkp_key_hostcert " = = " $hpkp_key " ] ] || [ [ " $hpkp_key_hostcert " = = " $hpkp_key = " ] ] ; then
out " \n $spaces matching host key: "
pr_litegreen " $hpkp_key "
key_found = true
fi
debugme out " \n $hpkp_key | $hpkp_key_hostcert "
done < <( tr ';' '\n' < $TMPFILE | tr -d ' ' | tr -d '\"' | awk -F'=' '/pin.*=/ { print $2 }' )
if ! $key_found ; then
out " \n $spaces "
pr_litered " No matching key for pins found "
out "(CAs pinned? -- not yet checked)"
fi
else
out "--"
fi
outln
tmpfile_handle $FUNCNAME .txt
return $?
2015-05-17 22:43:53 +02:00
}
emphasize_stuff_in_headers( ) {
# see http://www.grymoire.com/Unix/Sed.html#uh-3
2015-09-17 15:30:15 +02:00
# outln "$1" | sed "s/[0-9]*/$brown&$off/g"
outln " $1 " | sed -e " s/\([0-9]\)/ $brown \1 $off /g " \
-e "s/Debian/" $yellow " \Debian $off /g " \
-e "s/Win32/" $yellow " \Win32 $off /g " \
-e "s/Win64/" $yellow " \Win64 $off /g " \
-e "s/Ubuntu/" $yellow " Ubuntu $off /g " \
-e "s/ubuntu/" $yellow " ubuntu $off /g " \
-e "s/jessie/" $yellow " jessie $off /g " \
-e "s/squeeze/" $yellow " squeeze $off /g " \
-e "s/wheezy/" $yellow " wheezy $off /g " \
-e "s/lenny/" $yellow " lenny $off /g " \
-e "s/SUSE/" $yellow " SUSE $off /g " \
-e "s/Red Hat Enterprise Linux/" $yellow " Red Hat Enterprise Linux $off /g " \
-e "s/Red Hat/" $yellow " Red Hat $off /g " \
-e "s/CentOS/" $yellow " CentOS $off /g " \
-e "s/Via/" $yellow " Via $off /g " \
-e "s/X-Forwarded/" $yellow " X-Forwarded $off /g " \
-e "s/Liferay-Portal/" $yellow " Liferay-Portal $off /g " \
-e "s/X-Cache-Lookup/" $yellow " X-Cache-Lookup $off /g " \
-e "s/X-Cache/" $yellow " X-Cache $off /g " \
-e "s/X-Squid/" $yellow " X-Squid $off /g " \
-e "s/X-Server/" $yellow " X-Server $off /g " \
-e "s/X-Varnish/" $yellow " X-Varnish $off /g " \
-e "s/X-OWA-Version/" $yellow " X-OWA-Version $off /g " \
-e "s/X-Version/" $yellow " X-Version $off /g " \
-e "s/X-Powered-By/" $yellow " X-Powered-By $off /g " \
-e "s/X-UA-Compatible/" $yellow " X-UA-Compatible $off /g " \
-e "s/X-AspNet-Version/" $yellow " X-AspNet-Version $off /g "
2015-05-17 22:43:53 +02:00
}
2015-07-22 13:11:20 +02:00
run_server_banner( ) {
2015-09-17 15:30:15 +02:00
local serverbanner
if [ [ ! -s $HEADERFILE ] ] ; then
run_http_header " $1 " || return 3
fi
pr_bold " Server banner "
grep -ai '^Server' $HEADERFILE >$TMPFILE
if [ [ $? -eq 0 ] ] ; then
serverbanner = $( sed -e 's/^Server: //' -e 's/^server: //' $TMPFILE )
if [ [ x" $serverbanner " = = "x\n" ] ] || [ [ x" $serverbanner " = = "x\n\r" ] ] || [ [ x" $serverbanner " = = "x" ] ] ; then
outln "banner exists but empty string"
else
emphasize_stuff_in_headers " $serverbanner "
[ [ " $serverbanner " = *Microsoft-IIS/6.* ] ] && [ [ $OSSL_VER = = 1.0.2* ] ] && \
pr_litemagentaln " It's recommended to run another test w/ OpenSSL 1.01 !"
# see https://github.com/PeterMosmans/openssl/issues/19#issuecomment-100897892
fi
# mozilla.github.io/server-side-tls/ssl-config-generator/
2015-05-17 22:43:53 +02:00
# https://support.microsoft.com/en-us/kb/245030
2015-09-17 15:30:15 +02:00
else
outln "(no \"Server\" line in header, interesting!)"
fi
2015-05-17 22:43:53 +02:00
2015-09-17 15:30:15 +02:00
tmpfile_handle $FUNCNAME .txt
return 0
2015-05-17 22:43:53 +02:00
}
2015-07-22 13:11:20 +02:00
run_rp_banner( ) {
2015-09-17 15:30:15 +02:00
local line
local first = true
local spaces = " "
if [ [ ! -s $HEADERFILE ] ] ; then
run_http_header " $1 " || return 3
fi
pr_bold " Reverse Proxy banner "
egrep -ai '^Via:|^X-Cache|^X-Squid|^X-Varnish:|^X-Server-Name:|^X-Server-Port:|^x-forwarded' $HEADERFILE >$TMPFILE
if [ [ $? -ne 0 ] ] ; then
outln "--"
else
while read line; do
line = $( strip_lf " $line " )
if ! $first ; then
out " $spaces "
else
first = false
fi
2015-08-17 20:13:52 +02:00
emphasize_stuff_in_headers " $line "
2015-08-28 00:15:51 +02:00
done < $TMPFILE
2015-09-17 15:30:15 +02:00
fi
outln
2015-08-24 23:50:03 +02:00
2015-09-17 15:30:15 +02:00
tmpfile_handle $FUNCNAME .txt
return 0
# emphasize_stuff_in_headers "$(sed 's/^/ /g' $TMPFILE | tr '\n\r' ' ')" || \
2015-06-16 23:00:47 +02:00
}
2015-07-22 13:11:20 +02:00
run_application_banner( ) {
2015-09-17 15:30:15 +02:00
local line
local first = true
local spaces = " "
if [ [ ! -s $HEADERFILE ] ] ; then
run_http_header " $1 " || return 3
fi
pr_bold " Application banner "
egrep -ai '^X-Powered-By|^X-AspNet-Version|^X-Version|^Liferay-Portal|^X-OWA-Version' $HEADERFILE >$TMPFILE
if [ [ $? -ne 0 ] ] ; then
outln "--"
else
cat $TMPFILE | while read line; do
line = $( strip_lf " $line " )
if ! $first ; then
out " $spaces "
else
first = false
fi
2015-06-19 20:36:32 +02:00
emphasize_stuff_in_headers " $line "
done
2015-09-17 15:30:15 +02:00
fi
tmpfile_handle $FUNCNAME .txt
return 0
2015-05-17 22:43:53 +02:00
}
2015-09-17 15:30:15 +02:00
run_cookie_flags( ) { # ARG1: Path, ARG2: path
local -i nr_cookies
local nr_httponly nr_secure
local negative_word
if [ [ ! -s $HEADERFILE ] ] ; then
run_http_header " $1 " || return 3
fi
pr_bold " Cookie(s) "
grep -ai '^Set-Cookie' $HEADERFILE >$TMPFILE
if [ [ $? -eq 0 ] ] ; then
nr_cookies = $( wc -l < $TMPFILE | sed 's/ //g' )
out " $nr_cookies issued: "
if [ [ $nr_cookies -gt 1 ] ] ; then
negative_word = "NONE"
else
negative_word = "NOT"
fi
nr_secure = $( grep -iac secure $TMPFILE )
case $nr_secure in
0) pr_brown " $negative_word " ; ;
[ 123456789] ) pr_litegreen " $nr_secure / $nr_cookies " ; ;
esac
out " secure, "
nr_httponly = $( grep -cai httponly $TMPFILE )
case $nr_httponly in
0) pr_brown " $negative_word " ; ;
[ 123456789] ) pr_litegreen " $nr_httponly / $nr_cookies " ; ;
esac
out " HttpOnly"
else
out " (none issued at \" $1 \") "
fi
outln
tmpfile_handle $FUNCNAME .txt
return 0
2015-05-17 22:43:53 +02:00
}
2015-07-22 13:11:20 +02:00
run_more_flags( ) {
2015-09-17 15:30:15 +02:00
local good_flags2test = "X-Frame-Options X-XSS-Protection X-Content-Type-Options Content-Security-Policy X-Content-Security-Policy X-WebKit-CSP Content-Security-Policy-Report-Only"
local other_flags2test = "Access-Control-Allow-Origin Upgrade X-Served-By X-UA-Compatible"
local egrep_pattern = ""
local f2t result_str
local first = true
local spaces = " "
if [ [ ! -s $HEADERFILE ] ] ; then
run_http_header " $1 " || return 3
fi
pr_bold " Security headers "
# convert spaces to | (for egrep)
egrep_pattern = $( echo " $good_flags2test $other_flags2test " | sed -e 's/ /|\^/g' -e 's/^/\^/g' )
egrep -ai " $egrep_pattern " $HEADERFILE >$TMPFILE
if [ [ $? -ne 0 ] ] ; then
outln "--"
ret = 1
else
ret = 0
for f2t in $good_flags2test ; do
debugme echo " ---> $f2t "
result_str = $( grep -wi " ^ $f2t " $TMPFILE | grep -vi " $f2t " -)
result_str = $( strip_lf " $result_str " )
[ [ -z " $result_str " ] ] && continue
if ! $first ; then
out " $spaces " # output leading spaces if the first header
else
first = false
fi
# extract and print key(=flag) in green:
pr_litegreen " ${ result_str %% : * } : "
#pr_litegreen "$(sed 's/:.*$/:/' <<< "$result_str")"
# print value in plain text:
outln " ${ result_str #* : } "
done
# now the same with other flags
for f2t in $other_flags2test ; do
result_str = $( grep -i " ^ $f2t " $TMPFILE )
[ [ -z " $result_str " ] ] && continue
if ! $first ; then
out " $spaces " # output leading spaces if the first header
else
first = false
fi
# extract and print key(=flag) underlined
2015-10-15 14:15:07 +02:00
pr_litecyan " ${ result_str %% : * } : "
2015-09-17 15:30:15 +02:00
# print value in plain text:
outln " ${ result_str #* : } "
done
fi
2015-06-23 21:54:47 +02:00
#TODO: I am not testing for the correctness or anything stupid yet, e.g. "X-Frame-Options: allowall"
2015-05-17 22:43:53 +02:00
2015-09-17 15:30:15 +02:00
tmpfile_handle $FUNCNAME .txt
return $ret
2015-05-17 22:43:53 +02:00
}
2015-08-28 00:15:51 +02:00
# #1: string with 2 opensssl codes, HEXC= same in NSS/ssllabs terminology
2015-05-17 22:43:53 +02:00
normalize_ciphercode( ) {
2015-09-17 15:30:15 +02:00
part1 = $( echo " $1 " | awk -F',' '{ print $1 }' )
part2 = $( echo " $1 " | awk -F',' '{ print $2 }' )
part3 = $( echo " $1 " | awk -F',' '{ print $3 }' )
if [ [ " $part1 " = = "0x00" ] ] ; then # leading 0x00
HEXC = $part2
else
#part2=$(echo $part2 | sed 's/0x//g')
part2 = ${ part2 //0x/ }
if [ [ -n " $part3 " ] ] ; then # a SSLv2 cipher has three parts
#part3=$(echo $part3 | sed 's/0x//g')
part3 = ${ part3 //0x/ }
fi
HEXC = " $part1 $part2 $part3 "
fi
2015-06-16 14:04:44 +02:00
#TODO: we should just echo this and avoid the global var HEXC
2015-09-17 15:30:15 +02:00
HEXC = $( echo $HEXC | tr 'A-Z' 'a-z' | sed 's/0x/x/' ) #tolower + strip leading 0
return 0
2015-05-17 22:43:53 +02:00
}
prettyprint_local( ) {
2015-09-17 15:30:15 +02:00
local arg
local hexcode dash ciph sslvers kx auth enc mac export
local re = '^[0-9A-Fa-f]+$'
2015-10-15 14:15:07 +02:00
pr_headline " Displaying all local ciphers " ;
2015-09-17 15:30:15 +02:00
if [ [ -n " $1 " ] ] ; then
[ [ $1 = ~ $re ] ] && \
2015-10-15 14:15:07 +02:00
pr_headline " matching number pattern \" $1 \" " || \
pr_headline "matching word pattern " \" $1 \" " (ignore case) "
2015-09-17 15:30:15 +02:00
fi
outln "\n"
neat_header
if [ [ -z " $1 " ] ] ; then
$OPENSSL ciphers -V 'ALL:COMPLEMENTOFALL:@STRENGTH' 2>$ERRFILE | while read hexcode dash ciph sslvers kx auth enc mac export ; do # -V doesn't work with openssl < 1.0
normalize_ciphercode $hexcode
neat_list $HEXC $ciph $kx $enc
outln
done
else
#for arg in $(echo $@ | sed 's/,/ /g'); do
for arg in ${ *//,/ / } ; do
$OPENSSL ciphers -V 'ALL:COMPLEMENTOFALL:@STRENGTH' 2>$ERRFILE | while read hexcode dash ciph sslvers kx auth enc mac export ; do # -V doesn't work with openssl < 1.0
normalize_ciphercode $hexcode
# for numbers we don't do word matching:
[ [ $arg = ~ $re ] ] && \
neat_list $HEXC $ciph $kx $enc | grep -ai " $arg " || \
neat_list $HEXC $ciph $kx $enc | grep -wai " $arg "
done
done
fi
outln
return 0
2015-05-17 22:43:53 +02:00
}
# list ciphers (and makes sure you have them locally configured)
# arg[1]: cipher list (or anything else)
listciphers( ) {
2015-09-17 15:30:15 +02:00
local -i ret
local debugname = " $( sed -e s'/\!/not/g' -e 's/\:/_/g' <<< " $1 " ) "
2015-08-10 14:47:11 +02:00
2015-09-17 15:30:15 +02:00
$OPENSSL ciphers " $1 " & >$TMPFILE
ret = $?
debugme cat $TMPFILE
2015-05-17 22:43:53 +02:00
2015-08-10 14:47:11 +02:00
tmpfile_handle $FUNCNAME .$debugname .txt
2015-09-17 15:30:15 +02:00
return $ret
2015-05-17 22:43:53 +02:00
}
2015-05-29 19:44:27 +02:00
# argv[1]: cipher list to test
2015-05-17 22:43:53 +02:00
# argv[2]: string on console
# argv[3]: ok to offer? 0: yes, 1: no
std_cipherlists( ) {
2015-10-11 23:07:16 +02:00
local -i sclient_success
2015-09-17 15:30:15 +02:00
local singlespaces
local debugname = " $( sed -e s'/\!/not/g' -e 's/\:/_/g' <<< " $1 " ) "
pr_bold " $2 " # indent in order to be in the same row as server preferences
if listciphers " $1 " ; then # is that locally available??
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -cipher " $1 " $BUGS $STARTTLS -connect $NODEIP :$PORT $PROXY $SNI 2>$ERRFILE >$TMPFILE </dev/null
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE
sclient_success = $?
2015-09-17 15:30:15 +02:00
debugme cat $ERRFILE
case $3 in
0) # ok to offer
2015-10-11 23:07:16 +02:00
[ [ $sclient_success -eq 0 ] ] && \
2015-09-17 15:30:15 +02:00
pr_greenln "offered (OK)" || \
pr_brownln "not offered (NOT ok)" ; ;
1) # the ugly ones
2015-10-11 23:07:16 +02:00
[ [ $sclient_success -eq 0 ] ] && \
2015-09-17 15:30:15 +02:00
pr_redln "offered (NOT ok)" || \
pr_greenln "not offered (OK)" ; ;
2) # bad but not worst
2015-10-11 23:07:16 +02:00
[ [ $sclient_success -eq 0 ] ] && \
2015-09-17 15:30:15 +02:00
pr_literedln "offered (NOT ok)" || \
pr_litegreenln "not offered (OK)" ; ;
3) # not totally bad
2015-10-11 23:07:16 +02:00
[ [ $sclient_success -eq 0 ] ] && \
2015-09-17 15:30:15 +02:00
pr_brownln "offered (NOT ok)" || \
outln "not offered (OK)" ; ;
*) # we shouldn't reach this
pr_litemagenta "? (please report this)" ; ;
esac
tmpfile_handle $FUNCNAME .$debugname .txt
else
singlespaces = $( echo " $2 " | sed -e 's/ \+/ /g' -e 's/^ //' -e 's/ $//g' -e 's/ //g' )
local_problem " No $singlespaces configured in $OPENSSL "
fi
2015-10-11 23:07:16 +02:00
# we need 1xlf in those cases:
debugme echo
2015-05-17 22:43:53 +02:00
}
# sockets inspired by http://blog.chris007.de/?p=238
2015-05-29 19:56:57 +02:00
# ARG1: hexbyte with a leading comma (!!), separated by commas
2015-05-17 22:43:53 +02:00
# ARG2: sleep
socksend( ) {
2015-09-17 15:30:15 +02:00
# the following works under BSD and Linux, which is quite tricky. So don't mess with it unless you're really sure what you do
if $HAS_SED_E ; then
data = $( echo " $1 " | sed -e 's/# .*$//g' -e 's/ //g' | sed -E 's/^[[:space:]]+//; s/[[:space:]]+$//; /^$/d' | sed 's/,/\\/g' | tr -d '\n' )
else
data = $( echo " $1 " | sed -e 's/# .*$//g' -e 's/ //g' | sed -r 's/^[[:space:]]+//; s/[[:space:]]+$//; /^$/d' | sed 's/,/\\/g' | tr -d '\n' )
fi
[ [ $DEBUG -ge 4 ] ] && echo " \" $data \" "
printf -- " $data " >& 5 2>/dev/null &
sleep $2
2015-05-17 22:43:53 +02:00
}
2015-06-29 10:41:56 +02:00
#FIXME: This is only for HB and CCS, others use still sockread_serverhello()
2015-05-17 22:43:53 +02:00
sockread( ) {
2015-09-17 15:30:15 +02:00
local -i ret = 0
local ddreply
[ [ " x $2 " = = "x" ] ] && maxsleep = $MAX_WAITSOCK || maxsleep = $2
ddreply = $( mktemp $TEMPDIR /ddreply.XXXXXX) || return 7
dd bs = $1 of = $ddreply count = 1 <& 5 2>/dev/null &
wait_kill $! $maxsleep
ret = $?
SOCKREPLY = $( cat $ddreply )
rm $ddreply
return $ret
2015-05-17 22:43:53 +02:00
}
2016-01-15 16:37:47 +01:00
#FIXME: fill the following two:
openssl2rfc( ) {
:
}
rfc2openssl( ) {
:
}
2015-05-17 22:43:53 +02:00
show_rfc_style( ) {
2015-09-17 15:30:15 +02:00
local rfcname
2015-08-24 23:50:03 +02:00
2015-09-17 15:30:15 +02:00
[ [ -z " $MAPPING_FILE_RFC " ] ] && return 1
rfcname = $( grep -iw " $1 " " $MAPPING_FILE_RFC " | sed -e 's/^.*TLS/TLS/' -e 's/^.*SSL/SSL/' )
[ [ -n " $rfcname " ] ] && out " $rfcname "
return 0
2015-05-17 22:43:53 +02:00
}
neat_header( ) {
2015-09-17 15:30:15 +02:00
printf -- " Hexcode Cipher Suite Name (OpenSSL) KeyExch. Encryption Bits ${ MAPPING_FILE_RFC : + Cipher Suite Name (RFC) } \n "
printf -- " %s------------------------------------------------------------------------- ${ MAPPING_FILE_RFC : +---------------------------------------------- } \n "
2015-05-17 22:43:53 +02:00
}
2015-05-27 17:04:35 +02:00
# arg1: hexcode
# arg2: cipher in openssl notation
# arg3: keyexchange
# arg4: encryption (maybe included "export")
2015-05-17 22:43:53 +02:00
neat_list( ) {
2015-09-17 15:30:15 +02:00
local hexcode = " $1 "
local ossl_cipher = " $2 "
local kx enc strength
2015-10-01 13:27:14 +02:00
kx = " ${ 3 //Kx=/ } "
enc = " ${ 4 //Enc=/ } "
2015-09-17 15:30:15 +02:00
strength = $( sed -e 's/.*(//' -e 's/)//' <<< " $enc " ) # strength = encryption bits
2015-10-01 13:27:14 +02:00
strength = " ${ strength //ChaCha20-Poly1305/ly1305 } "
2015-09-17 15:30:15 +02:00
enc = $( sed -e 's/(.*)//g' -e 's/ChaCha20-Poly1305/ChaCha20-Po/g' <<< " $enc " ) # workaround for empty bits ChaCha20-Poly1305
echo " $export " | grep -iq export && strength = " $strength ,export "
# workaround for color escape codes:
if printf -- " $kx " | " ${ HEXDUMPVIEW [@] } " | grep -q 33 ; then # here's a color code
kx = " $kx " # one for color code if ECDH and three digits
[ [ " ${# kx } " -eq 18 ] ] && kx = " $kx " # 18 means DH, colored < 1000. Add another space
[ [ " ${# kx } " -eq 19 ] ] && kx = " $kx " # 19 means DH, colored >=1000. Add another space
#echo ${#kx} # should be always 20
fi
#if [[ -r "$MAPPING_FILE_RFC" ]]; then
printf -- " %-7s %-30s %-10s %-11s%-11s ${ MAPPING_FILE_RFC : + %-48s } ${ SHOW_EACH_C : + } " " $hexcode " " $ossl_cipher " " $kx " " $enc " " $strength " " $( show_rfc_style $HEXC ) "
#else
# printf -- " %-7s %-30s %-10s %-11s%-11s${SHOW_EACH_C:+ }" "$1" "$2" "$kx" "$enc" "$strength"
#fi
2015-05-17 22:43:53 +02:00
}
test_just_one( ) {
2015-09-17 15:30:15 +02:00
local hexcode n ciph sslvers kx auth enc mac export
local dhlen
2015-10-11 23:07:16 +02:00
local sclient_success
2015-09-17 15:30:15 +02:00
local re = '^[0-9A-Fa-f]+$'
2015-10-15 14:15:07 +02:00
pr_headline " Testing single cipher with "
2015-09-17 15:30:15 +02:00
[ [ $1 = ~ $re ] ] && \
2015-10-15 14:15:07 +02:00
pr_headline " matching number pattern \" $1 \" " || \
pr_headline "word pattern " \" $1 \" " (ignore case) "
2015-09-17 15:30:15 +02:00
outln
! $HAS_DH_BITS && pr_litemagentaln " (Your $OPENSSL cannot show DH/ECDH bits) "
outln
neat_header
#for arg in $(echo $@ | sed 's/,/ /g'); do
for arg in ${ *//, / } ; do
# 1st check whether openssl has cipher or not
$OPENSSL ciphers -V 'ALL:COMPLEMENTOFALL:@STRENGTH' 2>$ERRFILE | while read hexcode dash ciph sslvers kx auth enc mac export ; do
# FIXME: e.g. OpenSSL < 1.0 doesn't understand "-V" --> we can't do anything about it!
normalize_ciphercode $hexcode
# is argument a number?
if [ [ $arg = ~ $re ] ] ; then
neat_list $HEXC $ciph $kx $enc | grep -qai " $arg "
else
neat_list $HEXC $ciph $kx $enc | grep -qwai " $arg "
fi
if [ [ $? -eq 0 ] ] ; then # string matches, so we can ssl to it:
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -cipher $ciph $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI 2>$ERRFILE >$TMPFILE </dev/null
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE
sclient_success = $?
2015-09-17 15:30:15 +02:00
if [ [ $kx = = "Kx=ECDH" ] ] || [ [ $kx = = "Kx=DH" ] ] || [ [ $kx = = "Kx=EDH" ] ] ; then
2015-10-11 23:07:16 +02:00
if [ [ $sclient_success -eq 0 ] ] ; then
2015-09-17 15:30:15 +02:00
dhlen = $( read_dhbits_from_file $TMPFILE quiet)
kx = " $kx $dhlen "
else
2015-10-11 23:07:16 +02:00
kx = " $kx $grey TBD $off "
2015-09-17 15:30:15 +02:00
fi
fi
neat_list $HEXC $ciph " $kx " $enc
2015-10-11 23:07:16 +02:00
if [ [ $sclient_success -eq 0 ] ] ; then
2015-09-17 15:30:15 +02:00
pr_cyan " available"
else
out " not a/v"
fi
outln
fi
done
done
outln
tmpfile_handle $FUNCNAME .txt
return 0 # this is a single test for a cipher
2015-05-17 22:43:53 +02:00
}
# test for all ciphers locally configured (w/o distinguishing whether they are good or bad
2015-07-22 13:11:20 +02:00
run_allciphers( ) {
2015-09-17 15:30:15 +02:00
local tmpfile
local nr_ciphers
2015-10-11 23:07:16 +02:00
local -i sclient_success = 0
2015-09-17 15:30:15 +02:00
local hexcode n ciph sslvers kx auth enc mac export
local dhlen
nr_ciphers = $( count_ciphers " $( $OPENSSL ciphers 'ALL:COMPLEMENTOFALL:@STRENGTH' 2>$ERRFILE ) " )
outln
2015-10-16 15:40:06 +02:00
pr_headlineln " Testing all $nr_ciphers locally available ciphers against the server, ordered by encryption strength "
2015-09-17 15:30:15 +02:00
! $HAS_DH_BITS && pr_litemagentaln " (Your $OPENSSL cannot show DH/ECDH bits) "
outln
neat_header
$OPENSSL ciphers -V 'ALL:COMPLEMENTOFALL:@STRENGTH' 2>>$ERRFILE | while read hexcode n ciph sslvers kx auth enc mac export; do
# FIXME: e.g. OpenSSL < 1.0 doesn't understand "-V" --> we can't do anything about it!
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -cipher $ciph $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI >$TMPFILE 2>$ERRFILE </dev/null
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE
sclient_success = $?
if [ [ $sclient_success -ne 0 ] ] && [ [ " $SHOW_EACH_C " -eq 0 ] ] ; then
2015-09-17 15:30:15 +02:00
continue # no successful connect AND not verbose displaying each cipher
fi
normalize_ciphercode $hexcode
if [ [ $kx = = "Kx=ECDH" ] ] || [ [ $kx = = "Kx=DH" ] ] || [ [ $kx = = "Kx=EDH" ] ] ; then
dhlen = $( read_dhbits_from_file $TMPFILE quiet)
kx = " $kx $dhlen "
fi
neat_list $HEXC $ciph " $kx " $enc
if [ [ " $SHOW_EACH_C " -ne 0 ] ] ; then
2015-10-11 23:07:16 +02:00
if [ [ $sclient_success -eq 0 ] ] ; then
2015-09-17 15:30:15 +02:00
pr_cyan " available"
else
out " not a/v"
fi
fi
outln
tmpfile_handle $FUNCNAME .txt
done
outln
return 0
2015-05-17 22:43:53 +02:00
}
# test for all ciphers per protocol locally configured (w/o distinguishing whether they are good or bad
2015-07-22 13:11:20 +02:00
run_cipher_per_proto( ) {
2015-09-17 15:30:15 +02:00
local proto proto_text
local hexcode n ciph sslvers kx auth enc mac export
2015-10-11 23:07:16 +02:00
local -i sclient_success = 0
2015-09-17 15:30:15 +02:00
local dhlen
2015-10-15 14:15:07 +02:00
pr_headlineln " Testing all locally available ciphers per protocol against the server, ordered by encryption strength "
2015-09-17 15:30:15 +02:00
! $HAS_DH_BITS && pr_litemagentaln " (Your $OPENSSL cannot show DH/ECDH bits) "
outln
neat_header
outln " -ssl2 SSLv2\n -ssl3 SSLv3\n -tls1 TLS 1\n -tls1_1 TLS 1.1\n -tls1_2 TLS 1.2" | while read proto proto_text; do
locally_supported " $proto " " $proto_text " || continue
outln
$OPENSSL ciphers $proto -V 'ALL:COMPLEMENTOFALL:@STRENGTH' 2>$ERRFILE | while read hexcode n ciph sslvers kx auth enc mac export; do # -V doesn't work with openssl < 1.0
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -cipher $ciph $proto $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI >$TMPFILE 2>$ERRFILE </dev/null
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE
sclient_success = $?
if [ [ $sclient_success -ne 0 ] ] && [ [ " $SHOW_EACH_C " -eq 0 ] ] ; then
2015-09-17 15:30:15 +02:00
continue # no successful connect AND not verbose displaying each cipher
fi
normalize_ciphercode $hexcode
if [ [ $kx = = "Kx=ECDH" ] ] || [ [ $kx = = "Kx=DH" ] ] || [ [ $kx = = "Kx=EDH" ] ] ; then
dhlen = $( read_dhbits_from_file $TMPFILE quiet)
kx = " $kx $dhlen "
fi
neat_list $HEXC $ciph " $kx " $enc
if [ [ " $SHOW_EACH_C " -ne 0 ] ] ; then
2015-10-11 23:07:16 +02:00
if [ [ $sclient_success -eq 0 ] ] ; then
2015-09-17 15:30:15 +02:00
pr_cyan " available"
else
out " not a/v"
fi
fi
outln
tmpfile_handle $FUNCNAME .txt
done
done
return 0
2015-05-17 22:43:53 +02:00
}
2016-01-13 10:21:01 +01:00
run_client_simulation( ) {
# Runs browser simulations. Browser capabilities gathered from:
# https://www.ssllabs.com/ssltest/clients.html on 10 jan 2016
local names = ( )
local short = ( )
local protos = ( )
local ciphers = ( )
local tlsvers = ( )
local sni = ( )
local warning = ( )
local i = 0
2016-01-15 15:53:03 +01:00
# doesn't make sense for other services
if [ [ $SERVICE != "HTTP" ] ] ; then
return 0
fi
# FIXME: At a certain time we should put the following to an external file
names += ( "Android 2.3.7 " )
2016-01-13 10:21:01 +01:00
short += ( "android_237" )
protos += ( "-no_tls1_2 -no_tls1_1 -no_ssl2" )
ciphers += ( "RC4-MD5:RC4-SHA:AES128-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:DES-CBC-SHA:EDH-RSA-DES-CBC-SHA:EDH-DSS-DES-CBC-SHA:EXP-RC4-MD5:EXP-DES-CBC-SHA:EXP-EDH-DSS-DES-CBC-SHA" )
tlsvers += ( "-tls1" )
sni += ( "" )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Android 4.0.4 " )
2016-01-13 10:21:01 +01:00
short += ( "android_404" )
protos += ( "-no_tls1_2 -no_tls1_1 -no_ssl2" )
ciphers += ( "CDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:ECDH-RSA-AES256-SHA:ECDH-ECDSA-AES256-SHA:AES256-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:ECDH-RSA-DES-CBC3-SHA:ECDH-ECDSA-DES-CBC3-SHA:DES-CBC3-SHA:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:ECDH-RSA-AES128-SHA:ECDH-ECDSA-AES128-SHA:AES128-SHA:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC4-SHA:ECDH-RSA-RC4-SHA:ECDH-ECDSA-RC4-SHA:RC4-SHA:RC4-MD5" )
tlsvers += ( "-tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Android 4.1.1 " )
2016-01-13 10:21:01 +01:00
short += ( "android_411" )
protos += ( "-no_tls1_2 -no_tls1_1 -no_ssl2" )
ciphers += ( "ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:SRP-DSS-AES-256-CBC-SHA:SRP-RSA-AES-256-CBC-SHA:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:ECDH-RSA-AES256-SHA:ECDH-ECDSA-AES256-SHA:AES256-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-DES-CBC3-SHA:SRP-DSS-3DES-EDE-CBC-SHA:SRP-RSA-3DES-EDE-CBC-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:ECDH-RSA-DES-CBC3-SHA:ECDH-ECDSA-DES-CBC3-SHA:DES-CBC3-SHA:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:SRP-DSS-AES-128-CBC-SHA:SRP-RSA-AES-128-CBC-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:ECDH-RSA-AES128-SHA:ECDH-ECDSA-AES128-SHA:AES128-SHA:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC4-SHA:ECDH-RSA-RC4-SHA:ECDH-ECDSA-RC4-SHA:RC4-SHA:RC4-MD5" )
tlsvers += ( "-tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Android 4.2.2 " )
2016-01-13 10:21:01 +01:00
short += ( "android_422" )
protos += ( "-no_tls1_2 -no_tls1_1 -no_ssl2" )
ciphers += ( "ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:SRP-DSS-AES-256-CBC-SHA:SRP-RSA-AES-256-CBC-SHA:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:ECDH-RSA-AES256-SHA:ECDH-ECDSA-AES256-SHA:AES256-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-DES-CBC3-SHA:SRP-DSS-3DES-EDE-CBC-SHA:SRP-RSA-3DES-EDE-CBC-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:ECDH-RSA-DES-CBC3-SHA:ECDH-ECDSA-DES-CBC3-SHA:DES-CBC3-SHA:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:SRP-DSS-AES-128-CBC-SHA:SRP-RSA-AES-128-CBC-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:ECDH-RSA-AES128-SHA:ECDH-ECDSA-AES128-SHA:AES128-SHA:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC4-SHA:ECDH-RSA-RC4-SHA:ECDH-ECDSA-RC4-SHA:RC4-SHA:RC4-MD5" )
tlsvers += ( "-tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Android 4.3 " )
2016-01-13 10:21:01 +01:00
short += ( "android_43" )
protos += ( "-no_ssl2" )
ciphers += ( "ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:SRP-DSS-AES-256-CBC-SHA:SRP-RSA-AES-256-CBC-SHA:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:ECDH-RSA-AES256-SHA:ECDH-ECDSA-AES256-SHA:AES256-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-DES-CBC3-SHA:SRP-DSS-3DES-EDE-CBC-SHA:SRP-RSA-3DES-EDE-CBC-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:ECDH-RSA-DES-CBC3-SHA:ECDH-ECDSA-DES-CBC3-SHA:DES-CBC3-SHA:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:SRP-DSS-AES-128-CBC-SHA:SRP-RSA-AES-128-CBC-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:ECDH-RSA-AES128-SHA:ECDH-ECDSA-AES128-SHA:AES128-SHA:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC4-SHA:ECDH-RSA-RC4-SHA:ECDH-ECDSA-RC4-SHA:RC4-SHA:RC4-MD5" )
tlsvers += ( "-tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Android 4.4.2 " )
2016-01-13 10:21:01 +01:00
short += ( "android_442" )
protos += ( "-no_ssl2" )
ciphers += ( "CDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-DSS-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA256:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:AES256-GCM-SHA384:AES256-SHA256:AES256-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:DES-CBC3-SHA:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:DHE-DSS-AES128-GCM-SHA256:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-SHA256:DHE-DSS-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:AES128-GCM-SHA256:AES128-SHA256:AES128-SHA:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC4-SHA:RC4-SHA:RC4-MD5" )
tlsvers += ( "-tl1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Android 5.0.0 " )
2016-01-13 10:21:01 +01:00
short += ( "android_500" )
protos += ( "-no_ssl2" )
ciphers += ( "ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-CHACHA20-POLY1305:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:AES256-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:DES-CBC3-SHA:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:DHE-DSS-AES128-GCM-SHA256:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:AES128-GCM-SHA256:AES128-SHA:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC4-SHA:RC4-SHA:RC4-MD5" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Baidu Jan 2015 " )
2016-01-13 10:21:01 +01:00
short += ( "baidu_jan_2015" )
protos += ( "-no_tls1_2 -no_tls1_1 -no_ssl2" )
ciphers += ( "ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-CAMELLIA256-SHA:DHE-DSS-CAMELLIA256-SHA:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:ECDH-RSA-AES256-SHA:ECDH-ECDSA-AES256-SHA:CAMELLIA256-SHA:AES256-SHA:ECDHE-ECDSA-RC4-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-RC4-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-CAMELLIA128-SHA:DHE-DSS-CAMELLIA128-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:ECDH-RSA-RC4-SHA:ECDH-RSA-AES128-SHA:ECDH-ECDSA-RC4-SHA:ECDH-ECDSA-AES128-SHA:SEED-SHA:CAMELLIA128-SHA:RC4-MD5:RC4-SHA:AES128-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:ECDH-RSA-DES-CBC3-SHA:ECDH-ECDSA-DES-CBC3-SHA:DES-CBC3-SHA" )
tlsvers += ( "-tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "BingPreview Jan 2015 " )
2016-01-13 10:21:01 +01:00
short += ( "bingpreview_jan_2015" )
protos += ( "-no_ssl2" )
ciphers += ( "ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:SRP-DSS-AES-256-CBC-SHA:SRP-RSA-AES-256-CBC-SHA:DHE-DSS-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA256:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:DHE-RSA-CAMELLIA256-SHA:DHE-DSS-CAMELLIA256-SHA:ECDH-RSA-AES256-GCM-SHA384:ECDH-ECDSA-AES256-GCM-SHA384:ECDH-RSA-AES256-SHA384:ECDH-ECDSA-AES256-SHA384:ECDH-RSA-AES256-SHA:ECDH-ECDSA-AES256-SHA:AES256-GCM-SHA384:AES256-SHA256:AES256-SHA:CAMELLIA256-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-DES-CBC3-SHA:SRP-DSS-3DES-EDE-CBC-SHA:SRP-RSA-3DES-EDE-CBC-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:ECDH-RSA-DES-CBC3-SHA:ECDH-ECDSA-DES-CBC3-SHA:DES-CBC3-SHA:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:SRP-DSS-AES-128-CBC-SHA:SRP-RSA-AES-128-CBC-SHA:DHE-DSS-AES128-GCM-SHA256:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-SHA256:DHE-DSS-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:DHE-RSA-SEED-SHA:DHE-DSS-SEED-SHA:DHE-RSA-CAMELLIA128-SHA:DHE-DSS-CAMELLIA128-SHA:ECDH-RSA-AES128-GCM-SHA256:ECDH-ECDSA-AES128-GCM-SHA256:ECDH-RSA-AES128-SHA256:ECDH-ECDSA-AES128-SHA256:ECDH-RSA-AES128-SHA:ECDH-ECDSA-AES128-SHA:AES128-GCM-SHA256:AES128-SHA256:AES128-SHA:SEED-SHA:CAMELLIA128-SHA:IDEA-CBC-SHA:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC4-SHA:ECDH-RSA-RC4-SHA:ECDH-ECDSA-RC4-SHA:RC4-SHA:RC4-MD5:EDH-RSA-DES-CBC-SHA:EDH-DSS-DES-CBC-SHA:DES-CBC-SHA:EXP-EDH-RSA-DES-CBC-SHA:EXP-EDH-DSS-DES-CBC-SHA:EXP-DES-CBC-SHA:EXP-RC2-CBC-MD5:EXP-RC4-MD5" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Chrome 47 / OSX " )
2016-01-13 10:21:01 +01:00
short += ( "chrome_47_osx" )
protos += ( "-no_ssl2 -no_ssl3" )
ciphers += ( "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES128-SHA:AES128-GCM-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Firefox 31.3.0ESR / Win7 " )
2016-01-13 10:21:01 +01:00
short += ( "firefox_3130esr_win7" )
protos += ( "-no_ssl2 -no_ssl3" )
ciphers += ( "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-RC4-SHA:ECDHE-RSA-RC4-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:DHE-RSA-CAMELLIA128-SHA:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:DHE-RSA-CAMELLIA256-SHA:EDH-RSA-DES-CBC3-SHA:AES128-SHA:CAMELLIA128-SHA:AES256-SHA:CAMELLIA256-SHA:DES-CBC3-SHA:RC4-SHA:RC4-MD5" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Firefox 42 / OSX " )
2016-01-13 10:21:01 +01:00
short += ( "firefox_42_osx" )
protos += ( "-no_ssl2 -no_ssl3" )
ciphers += ( "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:AES128-SHA:AES256-SHA:DES-CBC3-SHA" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "GoogleBot Feb 2015 " )
2016-01-13 10:21:01 +01:00
short += ( "googlebot_feb_2015" )
protos += ( "-no_ssl2" )
ciphers += ( "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-RC4-SHA:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:AES128-GCM-SHA256:RC4-SHA:RC4-MD5:AES128-SHA:DES-CBC3-SHA:AES256-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "IE6 / XP " )
2016-01-13 10:21:01 +01:00
short += ( "ie6_xp" )
protos += ( "-no_tls1" )
tlsvers += ( "" )
ciphers += ( "RC4-MD5:RC4-SHA:DES-CBC3-SHA:RC4-MD5:DES-CBC3-MD5:RC2-CBC-MD5:DES-CBC-SHA:DES-CBC-MD5:EXP1024-RC4-SHA:EXP1024-DES-CBC-SHA:EXP-RC4-MD5:EXP-RC2-CBC-MD5:EXP-RC4-MD5:EXP-RC2-CBC-MD5:EDH-DSS-DES-CBC3-SHA:EDH-DSS-DES-CBC-SHA:EXP1024-DHE-DSS-DES-CBC-SHA" )
sni += ( "" )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "IE7 / Vista " )
2016-01-13 10:21:01 +01:00
short += ( "ie7_vista" )
protos += ( "-no_ssl2" )
ciphers += ( "AES128-SHA:AES256-SHA:RC4-SHA:DES-CBC3-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:DHE-DSS-AES128-SHA:DHE-DSS-AES256-SHA:EDH-DSS-DES-CBC3-SHA:RC4-MD5" )
tlsvers += ( "-tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "IE8 / XP " )
2016-01-13 10:21:01 +01:00
short += ( "ie8_xp" )
protos += ( "-no_ssl2" )
ciphers += ( "RC4-MD5:RC4-SHA:DES-CBC3-SHA:DES-CBC-SHA:EXP1024-RC4-SHA:EXP1024-DES-CBC-SHA:EXP-RC4-MD5:EXP-RC2-CBC-MD5:EDH-DSS-DES-CBC3-SHA:EDH-DSS-DES-CBC-SHA:EXP1024-DHE-DSS-DES-CBC-SHA" )
tlsvers += ( "-tls1" )
sni += ( "" )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "IE8-10 / Win7 " )
2016-01-13 10:21:01 +01:00
short += ( "ie10_win7" )
protos += ( "-no_ssl2" )
ciphers += ( "ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:AES256-SHA:AES128-SHA:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:DHE-DSS-AES256-SHA:DHE-DSS-AES128-SHA:DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:RC4-SHA:RC4-MD5" )
tlsvers += ( "-tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "IE11 / Win7 " )
2016-01-13 10:21:01 +01:00
short += ( "ie11_win7" )
protos += ( "-no_ssl2 -no_ssl3" )
ciphers += ( "ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DHE-DSS-AES256-SHA256:DHE-DSS-AES128-SHA256:DHE-DSS-AES256-SHA:DHE-DSS-AES128-SHA:DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:RC4-SHA:RC4-MD5" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "IE11 / Win8.1 " )
2016-01-13 10:21:01 +01:00
short += ( "ie11_win81" )
protos += ( "-no_ssl2 -no_ssl3" )
ciphers += ( "ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:DHE-DSS-AES256-SHA256:DHE-DSS-AES128-SHA256:DHE-DSS-AES256-SHA:DHE-DSS-AES128-SHA:DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "IE10 / Win Phone 8.0 " )
2016-01-13 10:21:01 +01:00
short += ( "ie10_winphone_80" )
protos += ( "-no_ssl2" )
ciphers += ( "AES128-SHA:AES256-SHA:RC4-SHA:DES-CBC3-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA:DHE-DSS-AES128-SHA:DHE-DSS-AES256-SHA:EDH-DSS-DES-CBC3-SHA:RC4-MD5" )
tlsvers += ( "-tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "IE11 / Win Phone 8.1 " )
2016-01-13 10:21:01 +01:00
short += ( "ie10_winphone_81" )
protos += ( "-no_ssl2" )
ciphers += ( "AES128-SHA256:AES128-SHA:AES256-SHA256:AES256-SHA:DES-CBC3-SHA:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA:DHE-DSS-AES128-SHA256:DHE-DSS-AES128-SHA:DHE-DSS-AES256-SHA256:DHE-DSS-AES256-SHA:EDH-DSS-DES-CBC3-SHA" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "IE11 / Win Phone 8.1 Update" )
2016-01-13 10:21:01 +01:00
short += ( "ie10_winphone_81_update" )
protos += ( "-no_ssl2" )
ciphers += ( "ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:DHE-DSS-AES256-SHA256:DHE-DSS-AES128-SHA256:DHE-DSS-AES256-SHA:DHE-DSS-AES128-SHA:DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "IE11 / Win10 " )
2016-01-13 10:21:01 +01:00
short += ( "ie11_win10" )
protos += ( "-no_ssl2 -no_ssl3" )
ciphers += ( "ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:DHE-DSS-AES256-SHA256:DHE-DSS-AES128-SHA256:DHE-DSS-AES256-SHA:DHE-DSS-AES128-SHA:DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Edge 13 / Win10 " )
2016-01-13 10:21:01 +01:00
short += ( "edge13_win10" )
protos += ( "-no_ssl2 -no_ssl3" )
ciphers += ( "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA:DHE-DSS-AES256-SHA256:DHE-DSS-AES128-SHA256:DHE-DSS-AES256-SHA:DHE-DSS-AES128-SHA:EDH-DSS-DES-CBC3-SHA" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Edge 12 / Win Phone 10 " )
2016-01-13 10:21:01 +01:00
short += ( "edge13_winphone10" )
protos += ( "-no_ssl2 -no_ssl3" )
ciphers += ( "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA:DHE-DSS-AES256-SHA256:DHE-DSS-AES128-SHA256:DHE-DSS-AES256-SHA:DHE-DSS-AES128-SHA:EDH-DSS-DES-CBC3-SHA" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Java 6u45 " )
2016-01-13 10:21:01 +01:00
short += ( "java6u45" )
protos += ( "-no_tls1_2 -no_tls1_1" )
ciphers += ( "RC4-MD5:RC4-MD5:RC4-SHA:AES128-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:DES-CBC3-SHA:DES-CBC3-MD5:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:DES-CBC-SHA:DES-CBC-MD5:EDH-RSA-DES-CBC-SHA:EDH-DSS-DES-CBC-SHA:EXP-RC4-MD5:EXP-RC4-MD5:EXP-DES-CBC-SHA:EXP-EDH-RSA-DES-CBC-SHA:EXP-EDH-DSS-DES-CBC-SHA" )
tlsvers += ( "-tls1" )
sni += ( "" )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Java 7u25 " )
2016-01-13 10:21:01 +01:00
short += ( "java7u25" )
protos += ( "-no_ssl2 -no_tls1_2 -no_tls1_1" )
ciphers += ( "ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:AES128-SHA:ECDH-ECDSA-AES128-SHA:ECDH-RSA-AES128-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:ECDHE-ECDSA-RC4-SHA:ECDHE-RSA-RC4-SHA:RC4-SHA:ECDH-ECDSA-RC4-SHA:ECDH-RSA-RC4-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:DES-CBC3-SHA:ECDH-ECDSA-DES-CBC3-SHA:ECDH-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:RC4-MD5" )
tlsvers += ( "-tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Java 8u31 " )
2016-01-13 10:21:01 +01:00
short += ( "java8u31" )
protos += ( "-no_ssl2 -no_ssl3" )
ciphers += ( "ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:AES128-SHA256:ECDH-ECDSA-AES128-SHA256:ECDH-RSA-AES128-SHA256:DHE-RSA-AES128-SHA256:DHE-DSS-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:AES128-SHA:ECDH-ECDSA-AES128-SHA:ECDH-RSA-AES128-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:AES128-GCM-SHA256:ECDH-ECDSA-AES128-GCM-SHA256:ECDH-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:DES-CBC3-SHA:ECDH-ECDSA-DES-CBC3-SHA:ECDH-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:ECDHE-ECDSA-RC4-SHA:ECDHE-RSA-RC4-SHA:RC4-SHA:ECDH-ECDSA-RC4-SHA:ECDH-RSA-RC4-SHA:RC4-MD5" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "OpenSSL 0.9.8y " )
2016-01-13 10:21:01 +01:00
short += ( "openssl098y" )
protos += ( "-no_ssl2 -no_tls1_2 -no_tls1_1" )
ciphers += ( "DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:AES256-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:DES-CBC3-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:AES128-SHA:IDEA-CBC-SHA:RC4-SHA:RC4-MD5:EDH-RSA-DES-CBC-SHA:EDH-DSS-DES-CBC-SHA:DES-CBC-SHA:EXP-EDH-RSA-DES-CBC-SHA:EXP-EDH-DSS-DES-CBC-SHA:EXP-DES-CBC-SHA:EXP-RC2-CBC-MD5:EXP-RC4-MD5" )
tlsvers += ( "-tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "OpenSSL 1.0.1l " )
2016-01-13 10:21:01 +01:00
short += ( "openssl101l" )
protos += ( "-no_ssl2" )
ciphers += ( "ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-DSS-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA256:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:DHE-RSA-CAMELLIA256-SHA:DHE-DSS-CAMELLIA256-SHA:ECDH-RSA-AES256-GCM-SHA384:ECDH-ECDSA-AES256-GCM-SHA384:ECDH-RSA-AES256-SHA384:ECDH-ECDSA-AES256-SHA384:ECDH-RSA-AES256-SHA:ECDH-ECDSA-AES256-SHA:AES256-GCM-SHA384:AES256-SHA256:AES256-SHA:CAMELLIA256-SHA:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:DHE-DSS-AES128-GCM-SHA256:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-SHA256:DHE-DSS-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:DHE-RSA-SEED-SHA:DHE-DSS-SEED-SHA:DHE-RSA-CAMELLIA128-SHA:DHE-DSS-CAMELLIA128-SHA:ECDH-RSA-AES128-GCM-SHA256:ECDH-ECDSA-AES128-GCM-SHA256:ECDH-RSA-AES128-SHA256:ECDH-ECDSA-AES128-SHA256:ECDH-RSA-AES128-SHA:ECDH-ECDSA-AES128-SHA:AES128-GCM-SHA256:AES128-SHA256:AES128-SHA:SEED-SHA:CAMELLIA128-SHA:IDEA-CBC-SHA:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC4-SHA:ECDH-RSA-RC4-SHA:ECDH-ECDSA-RC4-SHA:RC4-SHA:RC4-MD5:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:ECDH-RSA-DES-CBC3-SHA:ECDH-ECDSA-DES-CBC3-SHA:DES-CBC3-SHA:EDH-RSA-DES-CBC-SHA:EDH-DSS-DES-CBC-SHA:DES-CBC-SHA:EXP-EDH-RSA-DES-CBC-SHA:EXP-EDH-DSS-DES-CBC-SHA:EXP-DES-CBC-SHA:EXP-RC2-CBC-MD5:EXP-RC4-MD5" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "OpenSSL 1.0.2 " )
2016-01-13 10:21:01 +01:00
short += ( "openssl102" )
protos += ( "-no_ssl2" )
ciphers += ( "ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DH-DSS-AES256-GCM-SHA384:DHE-DSS-AES256-GCM-SHA384:DH-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA256:DH-RSA-AES256-SHA256:DH-DSS-AES256-SHA256:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:DH-RSA-AES256-SHA:DH-DSS-AES256-SHA:DHE-RSA-CAMELLIA256-SHA:DHE-DSS-CAMELLIA256-SHA:DH-RSA-CAMELLIA256-SHA:DH-DSS-CAMELLIA256-SHA:ECDH-RSA-AES256-GCM-SHA384:ECDH-ECDSA-AES256-GCM-SHA384:ECDH-RSA-AES256-SHA384:ECDH-ECDSA-AES256-SHA384:ECDH-RSA-AES256-SHA:ECDH-ECDSA-AES256-SHA:AES256-GCM-SHA384:AES256-SHA256:AES256-SHA:CAMELLIA256-SHA:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:DH-DSS-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:DH-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-SHA256:DHE-DSS-AES128-SHA256:DH-RSA-AES128-SHA256:DH-DSS-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:DH-RSA-AES128-SHA:DH-DSS-AES128-SHA:DHE-RSA-SEED-SHA:DHE-DSS-SEED-SHA:DH-RSA-SEED-SHA:DH-DSS-SEED-SHA:DHE-RSA-CAMELLIA128-SHA:DHE-DSS-CAMELLIA128-SHA:DH-RSA-CAMELLIA128-SHA:DH-DSS-CAMELLIA128-SHA:ECDH-RSA-AES128-GCM-SHA256:ECDH-ECDSA-AES128-GCM-SHA256:ECDH-RSA-AES128-SHA256:ECDH-ECDSA-AES128-SHA256:ECDH-RSA-AES128-SHA:ECDH-ECDSA-AES128-SHA:AES128-GCM-SHA256:AES128-SHA256:AES128-SHA:SEED-SHA:CAMELLIA128-SHA:IDEA-CBC-SHA:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC4-SHA:ECDH-RSA-RC4-SHA:ECDH-ECDSA-RC4-SHA:RC4-SHA:RC4-MD5:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:DH-RSA-DES-CBC3-SHA:DH-DSS-DES-CBC3-SHA:ECDH-RSA-DES-CBC3-SHA:ECDH-ECDSA-DES-CBC3-SHA:DES-CBC3-SHA:EDH-RSA-DES-CBC-SHA:EDH-DSS-DES-CBC-SHA:DH-RSA-DES-CBC-SHA:DH-DSS-DES-CBC-SHA:DES-CBC-SHA:EXP-EDH-RSA-DES-CBC-SHA:EXP-EDH-DSS-DES-CBC-SHA:EXP-DES-CBC-SHA:EXP-RC2-CBC-MD5:EXP-RC4-MD5" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
2016-01-15 15:53:03 +01:00
#warning+=("Tests are based on OpenSSL 1.01, therefore ciphers 0xe and 0xb are missing")
warning += ( "" )
2016-01-13 10:21:01 +01:00
2016-01-15 15:53:03 +01:00
names += ( "Safari 5.1.9/ OSX 10.6.8 " )
2016-01-13 10:21:01 +01:00
short += ( "safari519_osx1068" )
protos += ( "-no_ssl2 -no_tls1_2 -no_tls1_1" )
ciphers += ( "ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-RC4-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-RSA-RC4-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDH-ECDSA-AES128-SHA:ECDH-ECDSA-AES256-SHA:ECDH-ECDSA-RC4-SHA:ECDH-ECDSA-DES-CBC3-SHA:ECDH-RSA-AES128-SHA:ECDH-RSA-AES256-SHA:ECDH-RSA-RC4-SHA:ECDH-RSA-DES-CBC3-SHA:AES128-SHA:RC4-SHA:RC4-MD5:AES256-SHA:DES-CBC3-SHA:DES-CBC-SHA:EXP-RC4-MD5:EXP-DES-CBC-SHA:EXP-RC2-CBC-MD5:DHE-DSS-AES128-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:EDH-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC-SHA:EXP-EDH-RSA-DES-CBC-SHA:EDH-DSS-DES-CBC3-SHA:EDH-DSS-DES-CBC-SHA:EXP-EDH-DSS-DES-CBC-SHA" )
tlsvers += ( "-tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Safari 6 / iOS 6.0.1 " )
2016-01-13 10:21:01 +01:00
short += ( "safari6_ios601" )
protos += ( "-no_ssl2" )
ciphers += ( "ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-RC4-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-RC4-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDH-ECDSA-AES256-SHA384:ECDH-ECDSA-AES128-SHA256:ECDH-RSA-AES256-SHA384:ECDH-RSA-AES128-SHA256:ECDH-ECDSA-AES128-SHA:ECDH-ECDSA-AES256-SHA:ECDH-ECDSA-RC4-SHA:ECDH-ECDSA-DES-CBC3-SHA:ECDH-RSA-AES128-SHA:ECDH-RSA-AES256-SHA:ECDH-RSA-RC4-SHA:ECDH-RSA-DES-CBC3-SHA:AES256-SHA256:AES128-SHA256:AES128-SHA:RC4-SHA:RC4-MD5:AES256-SHA:DES-CBC3-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:EDH-RSA-DES-CBC3-SHA:ECDHE-ECDSA-NULL-SHA:ECDHE-RSA-NULL-SHA:ECDH-ECDSA-NULL-SHA:ECDH-RSA-NULL-SHA:NULL-SHA256:NULL-SHA:NULL-MD5" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Safari 6.0.4/ OS X 10.8.4 " )
2016-01-13 10:21:01 +01:00
short += ( "safari604_osx1084" )
protos += ( "-no_ssl2 -no_tls1_2 -no_tls1_1" )
ciphers += ( "ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-RC4-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-RC4-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDH-ECDSA-AES128-SHA:ECDH-ECDSA-AES256-SHA:ECDH-ECDSA-RC4-SHA:ECDH-ECDSA-DES-CBC3-SHA:ECDH-RSA-AES128-SHA:ECDH-RSA-AES256-SHA:ECDH-RSA-RC4-SHA:ECDH-RSA-DES-CBC3-SHA:AES128-SHA:RC4-SHA:RC4-MD5:AES256-SHA:DES-CBC3-SHA:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:EDH-RSA-DES-CBC3-SHA" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Safari 7 / iOS 7.1 " )
2016-01-13 10:21:01 +01:00
short += ( "safari7_ios71" )
protos += ( "-no_ssl2" )
ciphers += ( "ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-RC4-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-RC4-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDH-ECDSA-AES256-SHA384:ECDH-ECDSA-AES128-SHA256:ECDH-RSA-AES256-SHA384:ECDH-RSA-AES128-SHA256:ECDH-ECDSA-AES256-SHA:ECDH-ECDSA-AES128-SHA:ECDH-ECDSA-RC4-SHA:ECDH-ECDSA-DES-CBC3-SHA:ECDH-RSA-AES256-SHA:ECDH-RSA-AES128-SHA:ECDH-RSA-RC4-SHA:ECDH-RSA-DES-CBC3-SHA:AES256-SHA256:AES128-SHA256:AES128-SHA:RC4-SHA:RC4-MD5:AES256-SHA:DES-CBC3-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:EDH-RSA-DES-CBC3-SHA" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Safari 7 / OS X 10.9 " )
2016-01-13 10:21:01 +01:00
short += ( "safari7_osx109" )
protos += ( "-no_ssl2" )
ciphers += ( "ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-RC4-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-RC4-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDH-ECDSA-AES256-SHA384:ECDH-ECDSA-AES128-SHA256:ECDH-RSA-AES256-SHA384:ECDH-RSA-AES128-SHA256:ECDH-ECDSA-AES256-SHA:ECDH-ECDSA-AES128-SHA:ECDH-ECDSA-RC4-SHA:ECDH-ECDSA-DES-CBC3-SHA:ECDH-RSA-AES256-SHA:ECDH-RSA-AES128-SHA:ECDH-RSA-RC4-SHA:ECDH-RSA-DES-CBC3-SHA:AES256-SHA256:AES128-SHA256:AES128-SHA:RC4-SHA:RC4-MD5:AES256-SHA:DES-CBC3-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:EDH-RSA-DES-CBC3-SHA" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Safari 8 / iOS 8.4 " )
2016-01-13 10:21:01 +01:00
short += ( "safari8_ios84" )
protos += ( "-no_ssl2" )
ciphers += ( "ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDH-ECDSA-AES256-SHA384:ECDH-ECDSA-AES128-SHA256:ECDH-ECDSA-AES256-SHA:ECDH-ECDSA-AES128-SHA:ECDH-ECDSA-DES-CBC3-SHA:ECDH-RSA-AES256-SHA384:ECDH-RSA-AES128-SHA256:ECDH-RSA-AES256-SHA:ECDH-RSA-AES128-SHA:ECDH-RSA-DES-CBC3-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:EDH-RSA-DES-CBC3-SHA:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA:ECDHE-ECDSA-RC4-SHA:ECDHE-RSA-RC4-SHA:ECDH-ECDSA-RC4-SHA:ECDH-RSA-RC4-SHA:RC4-SHA:RC4-MD5" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Safari 8 / OS X 10.10 " )
2016-01-13 10:21:01 +01:00
short += ( "safari8_osx1010" )
protos += ( "-no_ssl2" )
ciphers += ( "ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDH-ECDSA-AES256-SHA384:ECDH-ECDSA-AES128-SHA256:ECDH-ECDSA-AES256-SHA:ECDH-ECDSA-AES128-SHA:ECDH-ECDSA-DES-CBC3-SHA:ECDH-RSA-AES256-SHA384:ECDH-RSA-AES128-SHA256:ECDH-RSA-AES256-SHA:ECDH-RSA-AES128-SHA:ECDH-RSA-DES-CBC3-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:EDH-RSA-DES-CBC3-SHA:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA:ECDHE-ECDSA-RC4-SHA:ECDHE-RSA-RC4-SHA:ECDH-ECDSA-RC4-SHA:ECDH-RSA-RC4-SHA:RC4-SHA:RC4-MD5" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Safari 9 / iOS 9 " )
2016-01-13 10:21:01 +01:00
short += ( "safari9_ios9" )
protos += ( "-no_ssl2 -no_ssl3" )
ciphers += ( "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-DES-CBC3-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA:ECDHE-ECDSA-RC4-SHA:ECDHE-RSA-RC4-SHA:RC4-SHA:RC4-MD5" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
2016-01-15 15:53:03 +01:00
names += ( "Safari 9 / OS X 10.11 " )
2016-01-13 10:21:01 +01:00
short += ( "safari9_osx1011" )
protos += ( "-no_ssl2 -no_ssl3" )
ciphers += ( "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-DES-CBC3-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA:ECDHE-ECDSA-RC4-SHA:ECDHE-RSA-RC4-SHA:RC4-SHA:RC4-MD5" )
tlsvers += ( "-tls1_2 -tls1_1 -tls1" )
sni += ( " $SNI " )
warning += ( "" )
outln
pr_headlineln " Running browser simulations (experimental) "
outln
debugme outln
for name in " ${ short [@] } " ; do
2016-01-15 15:53:03 +01:00
#FIXME: printf formatting would look better, especially if we want a wide option here
2016-01-15 16:37:47 +01:00
out " ${ names [i] } "
2016-01-13 10:21:01 +01:00
$OPENSSL s_client -cipher ${ ciphers [i] } ${ protos [i] } $STARTTLS $BUGS $PROXY -connect $NODEIP :$PORT ${ sni [i] } </dev/null >$TMPFILE 2>$ERRFILE
debugme echo " $OPENSSL s_client -cipher ${ ciphers [i] } ${ protos [i] } $STARTTLS $BUGS $PROXY -connect $NODEIP : $PORT ${ sni [i] } </dev/null "
sclient_connect_successful $? $TMPFILE
sclient_success = $?
if [ [ $sclient_success -ne 0 ] ] ; then
outln "No connection"
else
proto = $( grep -aw "Protocol" $TMPFILE | sed -e 's/^.*Protocol.*://' -e 's/ //g' )
if [ [ " $proto " = = "TLSv1.2" ] ] ; then
# OpenSSL reports TLS1.2 even if the connection is TLS1.1 or TLS1.0 Need to figure out which one it is...
for tls in ${ tlsvers [i] } ; do
$OPENSSL s_client $tls -cipher ${ ciphers [i] } ${ protos [i] } $STARTTLS $BUGS $PROXY -connect $NODEIP :$PORT ${ sni [i] } </dev/null >$TMPFILE 2>$ERRFILE
debugme echo " $OPENSSL s_client $tls -cipher ${ ciphers [i] } ${ protos [i] } $STARTTLS $BUGS $PROXY -connect $NODEIP : $PORT ${ sni [i] } </dev/null "
sclient_connect_successful $? $TMPFILE
sclient_success = $?
if [ [ $sclient_success -eq 0 ] ] ; then
case " $tls " in
"-tls1_2" )
break
; ;
"-tls1_1" )
proto = "TLSv1.1"
break
; ;
"-tls1" )
proto = "TLSv1.0"
break
; ;
esac
fi
done
fi
cipher = $( grep -wa Cipher $TMPFILE | egrep -avw "New|is" | sed -e 's/ //g' -e 's/^Cipher://' )
outln " $proto $cipher "
if [ [ " ${ warning [i] } " != "" ] ] ; then
2016-01-15 15:53:03 +01:00
out " "
2016-01-13 10:21:01 +01:00
outln " ${ warning [i] } "
fi
debugme cat $TMPFILE
fi
2016-01-15 15:53:03 +01:00
i = $(( i+1))
2016-01-13 10:21:01 +01:00
done
tmpfile_handle $FUNCNAME .txt
return 0
}
2015-10-11 23:07:16 +02:00
# generic function whether $1 is supported by s_client ($2: string to display)
2015-05-17 22:43:53 +02:00
locally_supported( ) {
2015-09-17 15:30:15 +02:00
[ [ -n " $2 " ] ] && out " $2 "
2015-10-11 23:07:16 +02:00
if $OPENSSL s_client " $1 " 2>& 1 | grep -aq "unknown option" ; then
2015-09-17 15:30:15 +02:00
local_problem " $OPENSSL doesn't support \"s_client $1 \" "
2015-10-11 23:07:16 +02:00
return 7
2015-09-17 15:30:15 +02:00
fi
2015-10-11 23:07:16 +02:00
return 0
2015-05-17 22:43:53 +02:00
}
2015-06-28 13:52:42 +02:00
2015-10-11 23:07:16 +02:00
# the protocol check needs to be revamped. It sucks.
# 1) we need to have a variable where the resulta are being stored so that every other test doesn't have to do this again.
# 2) the code is too old and one can do that way better
# 3) HAS_SSL3/2 does already exist
# we should do what's availabe and faster (opensssl vs. sockets) . Keep in mind tat the socket reply for SSLv2 returns the number # of ciphers!
#
# arg1: -ssl2|-ssl3|-tls1
# arg2: doesn't seem to be used in calling, seems to be a textstring with the protocol though
2015-06-28 13:52:42 +02:00
run_prototest_openssl( ) {
2015-09-17 15:30:15 +02:00
local sni = " $SNI "
local -i ret = 0
2015-05-17 22:43:53 +02:00
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -state $1 $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $sni >$TMPFILE 2>$ERRFILE </dev/null
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE
2015-09-17 15:30:15 +02:00
ret = $?
2015-10-11 23:07:16 +02:00
[ [ $DEBUG -eq 2 ] ] && egrep "error|failure" $ERRFILE | egrep -av "unable to get local|verify error"
2015-09-17 15:30:15 +02:00
if ! locally_supported " $1 " " $2 " ; then
ret = 7
else # we remove SNI for SSLv2 and v3:
[ [ " $1 " = ~ ssl ] ] && sni = "" # newer openssl throw an error if SNI is supplied with SSLv2,
# SSLv3 doesn't have SNI (openssl doesn't complain though -- yet)
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -state $1 $STARTTLS $BUGS -connect $NODEIP :$PORT $sni >$TMPFILE 2>$ERRFILE </dev/null
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE
ret = $?
[ [ $DEBUG -eq 2 ] ] && egrep "error|failure" $ERRFILE | egrep -av "unable to get local|verify error"
grep -aq "no cipher list" $TMPFILE && ret = 5 # <--- important indicator for SSL2 (maybe others, too)
2015-09-17 15:30:15 +02:00
fi
tmpfile_handle $FUNCNAME $1 .txt
return $ret
# 0: offered
# 1: not offered
# 5: protocol ok, but no cipher
# 7: no local support
2015-05-17 22:43:53 +02:00
}
2015-10-11 23:07:16 +02:00
# the protocol check needs to be revamped. It sucks, see above
2015-06-23 21:54:47 +02:00
run_protocols( ) {
2015-09-17 15:30:15 +02:00
local using_sockets = true
local supported_no_ciph1 = "supported but couldn't detect a cipher (may need debugging)"
local supported_no_ciph2 = "supported but couldn't detect a cipher"
2015-10-15 14:15:07 +02:00
outln; pr_headline " Testing protocols "
2015-09-17 15:30:15 +02:00
#FIXME: use PROTOS_OFFERED here
if $SSL_NATIVE ; then
using_sockets = false
2015-10-15 14:15:07 +02:00
pr_headlineln "(via native openssl)"
2015-09-17 15:30:15 +02:00
else
if [ [ -n " $STARTTLS " ] ] ; then
2015-11-03 10:30:59 +01:00
pr_headlineln "(via openssl, SSLv2 via sockets) "
2015-09-17 15:30:15 +02:00
using_sockets = false
else
using_sockets = true
2015-12-27 13:33:53 +01:00
pr_headlineln "(via sockets except TLS 1.2 and SPDY/HTTP2) "
2015-09-17 15:30:15 +02:00
fi
fi
2015-10-15 14:15:07 +02:00
outln
2015-09-17 15:30:15 +02:00
pr_bold " SSLv2 " ;
if ! $SSL_NATIVE ; then
sslv2_sockets #FIXME: messages need to be moved to this higher level
else
run_prototest_openssl "-ssl2"
case $? in
0) pr_redln "offered (NOT ok)" ; ;
1) pr_greenln "not offered (OK)" ; ;
5) pr_litered " $supported_no_ciph2 " ;
outln " (may need further attention)" ; ; # protocol ok, but no cipher
7) ; ; # no local support
esac
fi
pr_bold " SSLv3 " ;
if $using_sockets ; then
tls_sockets "00" " $TLS_CIPHER "
else
run_prototest_openssl "-ssl3"
fi
case $? in
0) pr_literedln "offered (NOT ok)" ; ;
1) pr_greenln "not offered (OK)" ; ;
2) pr_litemagentaln "#FIXME: downgraded. still missing a test case here" ; ;
5) pr_litered " $supported_no_ciph2 " ;
outln "(may need debugging)" ; ; # protocol ok, but no cipher
7) ; ; # no local support
esac
pr_bold " TLS 1 " ;
if $using_sockets ; then
tls_sockets "01" " $TLS_CIPHER "
else
run_prototest_openssl "-tls1"
fi
case $? in
0) outln "offered" ; ; # nothing wrong with it -- per se
1) outln "not offered" ; ; # neither good or bad
2) pr_brown "not offered (NOT ok)"
[ [ $DEBUG -eq 1 ] ] && out " -- downgraded"
outln ; ;
5) outln " $supported_no_ciph1 " ; ; # protocol ok, but no cipher
7) ; ; # no local support
esac
pr_bold " TLS 1.1 " ;
if $using_sockets ; then
tls_sockets "02" " $TLS_CIPHER "
else
run_prototest_openssl "-tls1_1"
fi
case $? in
0) outln "offered" ; ; # nothing wrong with it
1) outln "not offered" ; ; # neither good or bad
2) out "not offered"
[ [ $DEBUG -eq 1 ] ] && out " -- downgraded"
outln ; ;
5) outln " $supported_no_ciph1 " ; ; # protocol ok, but no cipher
7) ; ; # no local support
esac
pr_bold " TLS 1.2 " ;
2015-10-11 23:07:16 +02:00
if $using_sockets && $EXPERIMENTAL ; then #TODO: IIS servers do have a problem here with our handshake
2015-09-17 15:30:15 +02:00
tls_sockets "03" " $TLS12_CIPHER "
else
run_prototest_openssl "-tls1_2"
fi
case $? in
0) pr_greenln "offered (OK)" ; ; # GCM cipher in TLS 1.2: very good!
1) pr_brownln "not offered (NOT ok)" ; ; # no GCM, penalty
2) pr_brown "not offered (NOT ok)"
[ [ $DEBUG -eq 1 ] ] && out " -- downgraded"
outln ; ;
5) outln " $supported_no_ciph1 " ; ; # protocol ok, but no cipher
7) ; ; # no local support
esac
return 0
2015-05-17 22:43:53 +02:00
}
2015-10-15 14:15:07 +02:00
#TODO: work with fixed lists here
2015-05-17 22:43:53 +02:00
run_std_cipherlists( ) {
2015-09-17 15:30:15 +02:00
outln
2015-10-15 14:15:07 +02:00
pr_headlineln " Testing ~standard cipher lists "
outln
2015-05-17 22:43:53 +02:00
# see ciphers(1ssl)
2015-09-17 15:30:15 +02:00
std_cipherlists 'NULL:eNULL' " Null Ciphers " 1
std_cipherlists 'aNULL' " Anonymous NULL Ciphers " 1
std_cipherlists 'ADH' " Anonymous DH Ciphers " 1
std_cipherlists 'EXPORT40' " 40 Bit encryption " 1
std_cipherlists 'EXPORT56' " 56 Bit encryption " 1
std_cipherlists 'EXPORT' " Export Ciphers (general) " 1
std_cipherlists 'LOW:!ADH' " Low (<=64 Bit) " 1
std_cipherlists 'DES:!ADH:!EXPORT:!aNULL' " DES Ciphers " 1
std_cipherlists 'MEDIUM:!NULL:!aNULL:!SSLv2' " Medium grade encryption " 2
std_cipherlists '3DES:!ADH:!aNULL' " Triple DES Ciphers " 3
std_cipherlists 'HIGH:!NULL:!aNULL:!DES:!3DES' " High grade encryption " 0
2015-10-15 14:15:07 +02:00
outln
2015-09-17 15:30:15 +02:00
return 0
2015-05-17 22:43:53 +02:00
}
2015-05-26 12:51:10 +02:00
2015-05-25 15:10:09 +02:00
# arg1: file with input for grepping the bit length for ECDH/DHE
2015-09-22 20:09:26 +02:00
# arg2: whether to print warning "old fart" or not (empty: no)
2015-05-25 21:14:59 +02:00
read_dhbits_from_file( ) {
2015-09-22 20:09:26 +02:00
local bits what_dh temp
2015-09-17 15:30:15 +02:00
local add = ""
local old_fart = " (openssl cannot show DH bits)"
2015-09-22 20:09:26 +02:00
temp = $( awk -F': ' '/^Server Temp Key/ { print $2 }' " $1 " ) # extract line
what_dh = $( awk -F',' '{ print $1 }' <<< $temp )
bits = $( awk -F',' '{ print $3 }' <<< $temp )
# RH's backport has the DH bits in second arg after comma
grep -q bits <<< $bits || bits = $( awk -F',' '{ print $2 }' <<< $temp )
bits = $( tr -d ' bits' <<< $bits )
2015-09-17 15:30:15 +02:00
2015-09-22 20:09:26 +02:00
debugme echo " > $HAS_DH_BITS | $what_dh | $bits < "
2015-09-17 15:30:15 +02:00
2015-10-03 00:14:52 +02:00
[ [ -n " $what_dh " ] ] && HAS_DH_BITS = true # FIX 190
2015-10-11 23:07:16 +02:00
if [ [ -z " $what_dh " ] ] && ! $HAS_DH_BITS ; then
2015-09-17 15:30:15 +02:00
if [ [ -z " $2 " ] ] ; then
pr_litemagenta " $old_fart "
fi
return 0
fi
[ [ -n " $bits " ] ] && [ [ -z " $2 " ] ] && out ", "
if [ [ $what_dh = = "DH" ] ] || [ [ $what_dh = = "EDH" ] ] ; then
[ [ -z " $2 " ] ] && add = "bit DH"
if [ [ " $bits " -le 600 ] ] ; then
pr_red " $bits $add "
elif [ [ " $bits " -le 800 ] ] ; then
pr_litered " $bits $add "
elif [ [ " $bits " -le 1280 ] ] ; then
pr_brown " $bits $add "
elif [ [ " $bits " -ge 2048 ] ] ; then
pr_litegreen " $bits $add "
else
out " $bits $add "
fi
# https://wiki.openssl.org/index.php/Elliptic_Curve_Cryptography, http://www.keylength.com/en/compare/
elif [ [ $what_dh = = "ECDH" ] ] ; then
[ [ -z " $2 " ] ] && add = "bit ECDH"
if [ [ " $bits " -le 128 ] ] ; then # has that ever existed?
pr_red " $bits $add "
elif [ [ " $bits " -le 163 ] ] ; then
pr_litered " $bits $add "
elif [ [ " $bits " -ge 224 ] ] ; then
pr_litegreen " $bits $add "
else
out " $bits $add "
fi
fi
return 0
2015-05-25 15:10:09 +02:00
}
2015-07-22 13:11:20 +02:00
run_server_preference( ) {
2015-09-17 15:30:15 +02:00
local cipher1 cipher2
local default_cipher default_proto
local remark4default_cipher
local -a cipher proto
local p i
local -i ret = 0
2015-09-21 14:03:48 +02:00
local list_fwd = "DES-CBC3-SHA:RC4-MD5:DES-CBC-SHA:RC4-SHA:AES128-SHA:AES128-SHA256:AES256-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:ECDH-RSA-DES-CBC3-SHA:ECDH-RSA-AES128-SHA:ECDH-RSA-AES256-SHA:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:DHE-DSS-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:AES256-SHA256"
2015-09-17 15:30:15 +02:00
# now reversed offline via tac, see https://github.com/thomassa/testssl.sh/commit/7a4106e839b8c3033259d66697893765fc468393 :
2015-09-26 22:44:33 +02:00
local list_reverse = "AES256-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-DSS-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDH-RSA-AES256-SHA:ECDH-RSA-AES128-SHA:ECDH-RSA-DES-CBC3-SHA:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:ECDHE-RSA-AES128-SHA:AES256-SHA:AES128-SHA256:AES128-SHA:RC4-SHA:DES-CBC-SHA:RC4-MD5:DES-CBC3-SHA"
2015-09-17 15:30:15 +02:00
local has_cipher_order = true
2015-10-15 14:15:07 +02:00
outln
pr_headlineln " Testing server preferences "
outln
2015-09-17 15:30:15 +02:00
pr_bold " Has server cipher order? "
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS -cipher $list_fwd $BUGS -connect $NODEIP :$PORT $PROXY $SNI </dev/null 2>$ERRFILE >$TMPFILE
2015-10-11 23:07:16 +02:00
if ! sclient_connect_successful $? $TMPFILE && [ [ -z " $STARTTLS_PROTOCOL " ] ] ; then
2015-09-17 15:30:15 +02:00
pr_litemagenta "no matching cipher in this list found (pls report this): "
outln " $list_fwd . "
2015-09-14 12:54:54 +02:00
has_cipher_order = false
ret = 6
2015-09-17 15:30:15 +02:00
elif [ [ -n " $STARTTLS_PROTOCOL " ] ] ; then
# now it still could be that we hit this bug: https://github.com/drwetter/testssl.sh/issues/188
# workaround is to connect with a protocol
debugme out "(workaround #188) "
determine_optimal_proto $STARTTLS_PROTOCOL
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS $STARTTLS_OPTIMAL_PROTO -cipher $list_fwd $BUGS -connect $NODEIP :$PORT $PROXY $SNI </dev/null 2>$ERRFILE >$TMPFILE
2015-10-11 23:07:16 +02:00
if ! sclient_connect_successful $? $TMPFILE ; then
2015-09-17 15:30:15 +02:00
pr_litemagenta "no matching cipher in this list found (pls report this): "
outln " $list_fwd . "
has_cipher_order = false
ret = 6
fi
fi
if $has_cipher_order ; then
cipher1 = $( grep -wa Cipher $TMPFILE | egrep -avw "New|is" | sed -e 's/^ \+Cipher \+://' -e 's/ //g' )
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS $STARTTLS_OPTIMAL_PROTO -cipher $list_reverse $BUGS -connect $NODEIP :$PORT $PROXY $SNI </dev/null 2>>$ERRFILE >$TMPFILE
2015-09-17 15:30:15 +02:00
# that worked above so no error handling here
cipher2 = $( grep -wa Cipher $TMPFILE | egrep -avw "New|is" | sed -e 's/^ \+Cipher \+://' -e 's/ //g' )
if [ [ " $cipher1 " != " $cipher2 " ] ] ; then
pr_litered "nope (NOT ok)"
remark4default_cipher = " (limited sense as client will pick)"
else
pr_green "yes (OK)"
remark4default_cipher = ""
fi
[ [ $DEBUG -ge 2 ] ] && out " $cipher1 | $cipher2 "
outln
pr_bold " Negotiated protocol "
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI </dev/null 2>>$ERRFILE >$TMPFILE
2015-10-11 23:07:16 +02:00
if ! sclient_connect_successful $? $TMPFILE ; then
2015-09-17 15:30:15 +02:00
# 2 second try with $OPTIMAL_PROTO especially for intolerant IIS6 servers:
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS $OPTIMAL_PROTO $BUGS -connect $NODEIP :$PORT $PROXY $SNI </dev/null 2>>$ERRFILE >$TMPFILE
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE || pr_litemagenta "Handshake error!"
2015-09-17 15:30:15 +02:00
fi
default_proto = $( grep -aw "Protocol" $TMPFILE | sed -e 's/^.*Protocol.*://' -e 's/ //g' )
case " $default_proto " in
*TLSv1.2) pr_greenln $default_proto ; ;
*TLSv1.1) pr_litegreenln $default_proto ; ;
*TLSv1) outln $default_proto ; ;
*SSLv2) pr_redln $default_proto ; ;
*SSLv3) pr_redln $default_proto ; ;
"" ) pr_litemagenta "default proto empty" ; [ [ $OSSL_VER = = 1.0.2* ] ] && outln " (Hint: if IIS6 give OpenSSL 1.01 a try)" ; ;
*) pr_litemagenta " FIXME line $LINENO : $default_proto " ; ;
esac
pr_bold " Negotiated cipher "
default_cipher = $( grep -aw "Cipher" $TMPFILE | egrep -avw "New|is" | sed -e 's/^.*Cipher.*://' -e 's/ //g' )
case " $default_cipher " in
*NULL*| *EXP*) pr_red " $default_cipher " ; ;
*RC4*) pr_litered " $default_cipher " ; ;
*CBC*) pr_brown " $default_cipher " ; ; # FIXME BEAST: We miss some CBC ciphers here, need to work w/ a list
*GCM*) pr_green " $default_cipher " ; ; # best ones
*CHACHA20*) pr_green " $default_cipher " ; ; # best ones
ECDHE*AES*) pr_yellow " $default_cipher " ; ; # it's CBC. --> lucky13
"" ) pr_litemagenta "default cipher empty" ; [ [ $OSSL_VER = = 1.0.2* ] ] && out " (Hint: if IIS6 give OpenSSL 1.01 a try)" ; ;
*) out " $default_cipher " ; ;
esac
read_dhbits_from_file " $TMPFILE "
outln " $remark4default_cipher "
if [ [ ! -z " $remark4default_cipher " ] ] ; then
pr_bold " Negotiated cipher per proto" ; outln " $remark4default_cipher "
i = 1
for p in ssl2 ssl3 tls1 tls1_1 tls1_2; do
#locally_supported -"$p" " " || continue
locally_supported -" $p " || continue
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS -" $p " $BUGS -connect $NODEIP :$PORT $PROXY $SNI </dev/null 2>>$ERRFILE >$TMPFILE
2015-10-11 23:07:16 +02:00
if sclient_connect_successful $? $TMPFILE ; then
2015-09-17 15:30:15 +02:00
proto[ i] = $( grep -aw "Protocol" $TMPFILE | sed -e 's/^.*Protocol.*://' -e 's/ //g' )
cipher[ i] = $( grep -aw "Cipher" $TMPFILE | egrep -avw "New|is" | sed -e 's/^.*Cipher.*://' -e 's/ //g' )
[ [ ${ cipher [i] } = = "0000" ] ] && cipher[ i] = "" # Hack!
[ [ $DEBUG -ge 2 ] ] && outln " Default cipher for ${ proto [i] } : ${ cipher [i] } "
else
proto[ i] = ""
cipher[ i] = ""
fi
i = $(( $i + 1 ))
done
[ [ -n " $PROXY " ] ] && arg = " SPDY/NPN is"
[ [ -n " $STARTTLS " ] ] && arg = " "
2015-12-13 20:13:17 +01:00
if spdy_pre " $arg " ; then # is NPN/SPDY supported and is this no STARTTLS? / no PROXY
$OPENSSL s_client -connect $NODEIP :$PORT $BUGS -nextprotoneg " $NPN_PROTOs " </dev/null 2>>$ERRFILE >$TMPFILE
2015-10-11 23:07:16 +02:00
if sclient_connect_successful $? $TMPFILE ; then
2015-09-17 15:30:15 +02:00
proto[ i] = $( grep -aw "Next protocol" $TMPFILE | sed -e 's/^Next protocol://' -e 's/(.)//' -e 's/ //g' )
if [ [ -z " ${ proto [i] } " ] ] ; then
cipher[ i] = ""
else
cipher[ i] = $( grep -aw "Cipher" $TMPFILE | egrep -avw "New|is" | sed -e 's/^.*Cipher.*://' -e 's/ //g' )
[ [ $DEBUG -ge 2 ] ] && outln " Default cipher for ${ proto [i] } : ${ cipher [i] } "
fi
fi
else
outln # we miss for STARTTLS 1x LF otherwise
fi
for i in 1 2 3 4 5 6; do
if [ [ -n " ${ cipher [i] } " ] ] ; then # cipher not empty
if [ [ -z " ${ cipher [i-1] } " ] ] ; then # previous one empty
#outln
printf -- " %-30s %s" " ${ cipher [i] } : " " ${ proto [i] } " # print out both
else # previous NOT empty
if [ [ " ${ cipher [i-1] } " = = " ${ cipher [i] } " ] ] ; then # and previous protocol same cipher
out " , ${ proto [i] } " # same cipher --> only print out protocol behind it
else
outln
printf -- " %-30s %s" " ${ cipher [i] } : " " ${ proto [i] } " # print out both
fi
fi
fi
done
fi
fi
tmpfile_handle $FUNCNAME .txt
if [ [ -z " $remark4default_cipher " ] ] ; then
cipher_pref_check
else
outln "\n No further cipher order check has been done as order is determined by the client"
2015-11-03 10:30:59 +01:00
outln
2015-09-17 15:30:15 +02:00
fi
return 0
2015-05-17 22:43:53 +02:00
}
cipher_pref_check( ) {
2015-09-17 15:30:15 +02:00
local p proto protos
local tested_cipher cipher
pr_bold " Cipher order"
for p in ssl2 ssl3 tls1 tls1_1 tls1_2; do
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS -" $p " $BUGS -connect $NODEIP :$PORT $PROXY $SNI </dev/null 2>$ERRFILE >$TMPFILE
2015-10-11 23:07:16 +02:00
if sclient_connect_successful $? $TMPFILE ; then
2015-09-17 15:30:15 +02:00
tested_cipher = ""
proto = $( grep -aw "Protocol" $TMPFILE | sed -e 's/^.*Protocol.*://' -e 's/ //g' )
cipher = $( grep -aw "Cipher" $TMPFILE | egrep -avw "New|is" | sed -e 's/^.*Cipher.*://' -e 's/ //g' )
2015-10-11 23:07:16 +02:00
[ [ -z " $proto " ] ] && continue # for early openssl versions sometimes needed
2015-09-17 15:30:15 +02:00
outln
printf " %-10s %s " " $proto : " " $cipher "
tested_cipher = "-" $cipher
while true; do
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS -" $p " $BUGS -cipher " ALL: $tested_cipher " -connect $NODEIP :$PORT $PROXY $SNI </dev/null 2>>$ERRFILE >$TMPFILE
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE || break
2015-09-17 15:30:15 +02:00
cipher = $( grep -aw "Cipher" $TMPFILE | egrep -avw "New|is" | sed -e 's/^.*Cipher.*://' -e 's/ //g' )
out " $cipher "
tested_cipher = " $tested_cipher :- $cipher "
done
fi
done
outln
2015-10-11 23:07:16 +02:00
if ! spdy_pre " SPDY/NPN: " ; then # is NPN/SPDY supported and is this no STARTTLS?
2015-09-17 15:30:15 +02:00
outln
else
2015-11-03 23:29:53 +01:00
protos = $( $OPENSSL s_client -host $NODE -port $PORT $BUGS -nextprotoneg \" \" </dev/null 2>>$ERRFILE | grep -a "^Protocols " | sed -e 's/^Protocols.*server: //' -e 's/,//g' )
2015-09-17 15:30:15 +02:00
for p in $protos ; do
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -host $NODE -port $PORT $BUGS -nextprotoneg " $p " $PROXY </dev/null 2>>$ERRFILE >$TMPFILE
2015-09-17 15:30:15 +02:00
cipher = $( grep -aw "Cipher" $TMPFILE | egrep -avw "New|is" | sed -e 's/^.*Cipher.*://' -e 's/ //g' )
printf " %-10s %s " " $p : " " $cipher "
tested_cipher = "-" $cipher
while true; do
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -cipher " ALL: $tested_cipher " -host $NODE -port $PORT $BUGS -nextprotoneg " $p " $PROXY </dev/null 2>>$ERRFILE >$TMPFILE
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE || break
2015-09-17 15:30:15 +02:00
cipher = $( grep -aw "Cipher" $TMPFILE | egrep -avw "New|is" | sed -e 's/^.*Cipher.*://' -e 's/ //g' )
out " $cipher "
tested_cipher = " $tested_cipher :- $cipher "
done
outln
done
fi
2015-11-03 10:30:59 +01:00
outln
2015-09-17 15:30:15 +02:00
tmpfile_handle $FUNCNAME .txt
return 0
2015-05-17 22:43:53 +02:00
}
2015-10-11 23:07:16 +02:00
# arg1 is proto or empty
2015-05-18 21:51:45 +02:00
get_host_cert( ) {
2015-10-11 23:07:16 +02:00
local tmpvar = $TEMPDIR /$FUNCNAME .txt # change later to $TMPFILE
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI $1 2>/dev/null </dev/null >$TEMPDIR /$FUNCNAME .txt
2015-10-11 23:07:16 +02:00
if sclient_connect_successful $? $tmpvar ; then
awk '/-----BEGIN/,/-----END/ { print $0 }' $tmpvar >$HOSTCERT
else
return 1
fi
# return $((${PIPESTATUS[0]} + ${PIPESTATUS[1]}))
2015-05-18 21:51:45 +02:00
}
2015-08-24 22:17:35 +02:00
get_all_certs( ) {
2015-09-17 15:30:15 +02:00
local savedir
local nrsaved
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -showcerts $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI 2>$ERRFILE </dev/null >$TEMPDIR /allcerts.txt
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE || \
pr_litemagenta "problem getting all certs"
2015-09-17 15:30:15 +02:00
savedir = $( pwd ) ; cd $TEMPDIR
# http://backreference.org/2010/05/09/ocsp-verification-with-openssl/
awk -v n = -1 ' /-----BEGIN CERTIFICATE-----/{ inc = 1; n++ }
2015-08-24 22:17:35 +02:00
inc { print > ( "level" n ".crt" ) }
/---END CERTIFICATE-----/{ inc = 0 } ' $TEMPDIR /allcerts.txt
2015-09-17 15:30:15 +02:00
nrsaved = $( count_words " $( echo level?.crt 2>/dev/null) " )
cd " $savedir "
echo $nrsaved
2015-08-24 22:17:35 +02:00
}
2015-05-18 21:51:45 +02:00
2015-09-22 15:05:59 +02:00
verify_retcode_helper( ) {
local ret = 0
case " $1 " in
# codes from ./doc/apps/verify.pod | verify(1ssl)
*"24 " * ) out " (certificate unreadable)" ; ; # X509_V_ERR_INVALID_CA
*23*revoked* ) out " (certificate revoked)" ; ; # X509_V_ERR_CERT_REVOKED
*21*unable* ) out " (chain incomplete, only 1 cert provided)" ; ; # X509_V_ERR_UNABLE_TO_VERIFY_LEAF_SIGNATURE
*20*unable* ) out " (chain incomplete)" ; ; # X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY
*19*self* ) out " (self signed CA in chain)" ; ; # X509_V_ERR_SELF_SIGNED_CERT_IN_CHAIN
*18*self* ) out " (self signed)" ; ; # X509_V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT
*10*expired* ) out " (expired)" ; ; # X509_V_ERR_CERT_HAS_EXPIRED
*"9 " * ) out " (not yet valid)" ; ; # X509_V_ERR_CERT_NOT_YET_VALID
2015-09-24 09:10:43 +02:00
*"2 " * ) out " (issuer cert missing)" ; ; # X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT
2015-09-22 15:05:59 +02:00
*) ret = 1 ; pr_litemagenta " (unknown, pls report) $1 " ; ;
esac
return $ret
}
determine_trust( ) {
local i = 1
local bundle_fname
local -a certificate_file verify_retcode trust
local ok_was = ""
local notok_was = ""
local code
2015-09-28 22:54:00 +02:00
local ca_bundles = " $INSTALL_DIR /etc/*.pem "
2015-09-22 15:05:59 +02:00
local spaces = " "
2015-10-15 14:15:07 +02:00
if [ [ $OSSL_VER_MAJOR .$OSSL_VER_MINOR = = "1.1.0" ] ] ; then
pr_litemagentaln " Your $OPENSSL is too new, needed is version 1.0.2 "
2015-09-22 15:05:59 +02:00
return 7
2015-10-15 14:15:07 +02:00
elif [ [ $OSSL_VER_MAJOR .$OSSL_VER_MINOR != "1.0.2" ] ] ; then
pr_litemagentaln " Your $OPENSSL is too old, needed is version >=1.0.2 "
2015-09-22 15:05:59 +02:00
fi
debugme outln
for bundle_fname in $ca_bundles ; do
certificate_file[ i] = $( basename $bundle_fname | sed 's/\.pem//' )
2015-09-28 22:54:00 +02:00
if [ [ ! -r $bundle_fname ] ] ; then
2015-09-22 15:05:59 +02:00
pr_litemagentaln " \" $bundle_fname \" cannot be found / not readable "
return 7
fi
debugme printf -- " %-12s" " ${ certificate_file [i] } "
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -purpose sslserver -CAfile $bundle_fname $STARTTLS $BUGS $PROXY -connect $NODEIP :$PORT $SNI </dev/null >$TEMPDIR /${ certificate_file [i] } .1 2>$TEMPDIR /${ certificate_file [i] } .2
2015-09-22 15:05:59 +02:00
verify_retcode[ i] = $( awk -F':' '/Verify return code: / { print $2 }' $TEMPDIR //${ certificate_file [i] } .1)
if egrep -wq "ok|0" <<< ${ verify_retcode [i] } ; then
trust[ i] = true
debugme pr_litegreen "Ok "
debugme outln " ${ verify_retcode [i] } "
else
trust[ i] = false
2016-01-15 16:37:47 +01:00
debugme pr_red "not trusted"
2015-09-22 15:05:59 +02:00
debugme outln " ${ verify_retcode [i] } "
fi
i = $(( $i + 1 ))
done
debugme out " "
# all stores ok
if ${ trust [1] } && ${ trust [2] } && ${ trust [3] } && ${ trust [4] } ; then
pr_litegreen "Ok "
# at least one failed
else
2016-01-15 17:30:47 +01:00
pr_red "NOT ok"
2015-09-22 15:05:59 +02:00
# all failed (we assume with the same issue)
if ! ${ trust [1] } && ! ${ trust [2] } && ! ${ trust [3] } && ! ${ trust [4] } ; then
verify_retcode_helper " ${ verify_retcode [2] } "
else
# is one ok and the others not?
if ${ trust [1] } || ${ trust [2] } || ${ trust [3] } || ${ trust [4] } ; then
2016-01-15 16:37:47 +01:00
pr_red ":"
out " \n $spaces "
pr_red "FAILED:"
2015-09-22 15:05:59 +02:00
for i in 1 2 3 4; do
if ${ trust [i] } ; then
ok_was = " ${ certificate_file [i] } $ok_was "
else
#code="$(verify_retcode_helper ${verify_retcode[i]})"
#notok_was="${certificate_file[i]} $notok_was"
2016-01-15 16:37:47 +01:00
pr_litered " ${ certificate_file [i] } "
2015-09-22 15:05:59 +02:00
verify_retcode_helper " ${ verify_retcode [i] } "
fi
done
#pr_litered "$notok_was "
#outln "$code"
outln
#lf + green ones
[ [ $DEBUG -eq 0 ] ] && out " $spaces "
pr_litegreen " OK: $ok_was "
fi
fi
fi
outln
2015-09-28 22:54:00 +02:00
return 0
2015-09-22 15:05:59 +02:00
}
2015-09-28 22:54:00 +02:00
2015-09-22 15:05:59 +02:00
# not handled: Root CA supplied (contains anchor)
# attention: 1.0.1 fails on mozilla
2015-06-19 20:36:32 +02:00
tls_time( ) {
2015-09-17 15:30:15 +02:00
local now difftime
tls_sockets "01" " $TLS_CIPHER " # try first TLS 1.0 (mostfrequently used protocol)
[ [ -z " $TLS_TIME " ] ] && tls_sockets "03" " $TLS12_CIPHER " # TLS 1.2
[ [ -z " $TLS_TIME " ] ] && tls_sockets "02" " $TLS_CIPHER " # TLS 1.1
[ [ -z " $TLS_TIME " ] ] && tls_sockets "00" " $TLS_CIPHER " # SSL 3
if [ [ -n " $TLS_TIME " ] ] ; then # nothing returned a time!
difftime = $(( $TLS_TIME - $TLS_NOW )) # TLS_NOW is being set in tls_sockets()
if [ [ " ${# difftime } " -gt 5 ] ] ; then
# openssl >= 1.0.1f fills this field with random values! --> good for possible fingerprint
pr_bold " TLS timestamp" ; outln " random values, no fingerprinting possible "
else
[ [ $difftime != "-" * ] ] && [ [ $difftime != "0" ] ] && difftime = " + $difftime "
pr_bold " TLS clock skew" ; outln " $difftime sec from localtime " ;
fi
debugme out " $TLS_TIME "
outln
else
2015-10-11 23:07:16 +02:00
pr_bold " TLS timestamp" ; out " " ; pr_litemagentaln "SSLv3 through TLS 1.2 didn't return a timestamp"
2015-09-17 15:30:15 +02:00
fi
2015-10-11 23:07:16 +02:00
return 0
2015-06-19 20:36:32 +02:00
}
2015-05-17 22:43:53 +02:00
2015-11-03 10:30:59 +01:00
# core function determining whether handshake succeded or not
#
2015-10-11 23:07:16 +02:00
sclient_connect_successful( ) {
[ [ $1 -eq 0 ] ] && return 0
2015-11-03 13:13:10 +01:00
[ [ -n $( awk '/Master-Key: / { print $2 }' " $2 " ) ] ] && return 0
# second check saved like
# fgrep 'Cipher is (NONE)' "$2" &> /dev/null && return 1
# what's left now is: master key empty and Session-ID not empty ==> probably client based auth with x509 certificate
return 1
2015-10-11 23:07:16 +02:00
}
determine_tls_extensions( ) {
2015-09-17 15:30:15 +02:00
local proto
2015-10-11 23:07:16 +02:00
local success
local alpn = ""
2015-09-17 15:30:15 +02:00
2015-10-11 23:07:16 +02:00
$HAS_ALPN && alpn = "h2-14,h2-15,h2"
2015-09-17 15:30:15 +02:00
# throwing 1st every cipher/protocol at the server to know what works
2015-10-11 23:07:16 +02:00
success = 7
2015-09-17 15:30:15 +02:00
for proto in tls1_2 tls1_1 tls1 ssl3; do
2015-10-11 23:07:16 +02:00
# alpn: echo | openssl s_client -connect google.com:443 -tlsextdebug -alpn h2-14 -servername google.com <-- suport needs to be checked b4 -- see also: ssl/t1_trce.c
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI -$proto -tlsextdebug -nextprotoneg $alpn -status </dev/null 2>$ERRFILE >$TMPFILE
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE && success = 0 && break
done # this loop is needed for IIS/6
if [ [ $success -eq 7 ] ] ; then
2015-09-17 15:30:15 +02:00
# "-status" above doesn't work for GOST only servers, so we do another test without it and see whether that works then:
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI -$proto -tlsextdebug </dev/null 2>>$ERRFILE >$TMPFILE
2015-10-11 23:07:16 +02:00
if ! sclient_connect_successful $? $TMPFILE ; then
2015-09-17 15:30:15 +02:00
pr_litemagentaln " Strange, no SSL/TLS protocol seems to be supported (error around line $(( LINENO - 6 )) ) "
2015-10-11 23:07:16 +02:00
tmpfile_handle $FUNCNAME .txt
2015-09-17 15:30:15 +02:00
return 7 # this is ugly, I know
else
2015-10-11 23:07:16 +02:00
GOST_STATUS_PROBLEM = true
2015-09-17 15:30:15 +02:00
fi
fi
2015-10-11 23:07:16 +02:00
TLS_EXTENSIONS = $( awk -F'"' '/TLS server extension / { printf "\""$2"\" " }' $TMPFILE )
get_host_cert " - $proto "
success = $?
tmpfile_handle $FUNCNAME .txt
return $success
}
run_server_defaults( ) {
local proto
local sessticket_str lifetime unit keysize sig_algo key_algo
2015-12-08 17:51:46 +01:00
local expire days2expire secs2warn ocsp_uri crl startdate enddate issuer_C issuer_O issuer sans san cn cn_nosni
2015-10-11 23:07:16 +02:00
local policy_oid
local spaces = " "
local wildcard = false
outln
2015-10-15 14:15:07 +02:00
pr_headlineln " Testing server defaults (Server Hello) "
outln
2015-10-11 23:07:16 +02:00
pr_bold " TLS server extensions (std) "
[ [ -z " $TLS_EXTENSIONS " ] ] && determine_tls_extensions
#extensions=$(grep -aw "^TLS server extension" $TMPFILE | sed -e 's/^TLS server extension \"//' -e 's/\".*$/,/g')
if [ [ -z " $TLS_EXTENSIONS " ] ] ; then
2015-09-17 15:30:15 +02:00
outln "(none)"
else
2015-10-11 23:07:16 +02:00
#echo $extensions | sed 's/ /,/g'
outln " $TLS_EXTENSIONS "
2015-09-17 15:30:15 +02:00
fi
2015-10-11 23:07:16 +02:00
cp " $TEMPDIR / $NODEIP .determine_tls_extensions.txt " $TMPFILE
>$ERRFILE
2015-09-17 15:30:15 +02:00
pr_bold " Session Tickets RFC 5077 "
sessticket_str = $( grep -aw "session ticket" $TMPFILE | grep -a lifetime)
if [ [ -z " $sessticket_str " ] ] ; then
outln "(none)"
else
lifetime = $( echo $sessticket_str | grep -a lifetime | sed 's/[A-Za-z:() ]//g' )
unit = $( echo $sessticket_str | grep -a lifetime | sed -e 's/^.*' " $lifetime " '//' -e 's/[ ()]//g' )
2015-11-03 19:51:05 +01:00
out " $lifetime $unit "
2015-11-03 19:51:45 +01:00
pr_yellowln "(PFS requires session ticket keys to be rotated <= daily)"
2015-09-17 15:30:15 +02:00
fi
2015-11-03 13:13:10 +01:00
pr_bold " SSL Session ID support "
if $NO_SSL_SESSIONID ; then
outln "no"
else
outln "yes"
fi
2015-09-17 15:30:15 +02:00
pr_bold " Server key size "
keysize = $( grep -aw "^Server public key is" $TMPFILE | sed -e 's/^Server public key is //' -e 's/bit//' -e 's/ //' )
sig_algo = $( $OPENSSL x509 -in $HOSTCERT -noout -text 2>>$ERRFILE | grep "Signature Algorithm" | sed 's/^.*Signature Algorithm: //' | sort -u )
key_algo = $( $OPENSSL x509 -in $HOSTCERT -noout -text 2>>$ERRFILE | awk -F':' '/Public Key Algorithm:/ { print $2 }' | sort -u )
if [ [ -z " $keysize " ] ] ; then
outln "(couldn't determine)"
else
if [ [ " $keysize " -le 768 ] ] ; then
if [ [ $sig_algo = ~ ecdsa ] ] || [ [ $key_algo = ~ ecPublicKey ] ] ; then
pr_litegreen " EC $keysize "
else
pr_red " $keysize "
fi
elif [ [ " $keysize " -le 1024 ] ] ; then
pr_brown " $keysize "
elif [ [ " $keysize " -le 2048 ] ] ; then
out " $keysize "
elif [ [ " $keysize " -le 4096 ] ] ; then
pr_litegreen " $keysize "
else
out " weird keysize: $keysize "
fi
fi
outln " bit"
pr_bold " Signature Algorithm "
case $sig_algo in
sha1WithRSAEncryption) pr_brownln "SHA1 with RSA" ; ;
sha256WithRSAEncryption) pr_litegreenln "SHA256 with RSA" ; ;
2015-11-26 20:53:35 +01:00
sha384WithRSAEncryption) pr_litegreenln "SHA384 with RSA" ; ;
2015-09-17 15:30:15 +02:00
sha512WithRSAEncryption) pr_litegreenln "SHA512 with RSA" ; ;
ecdsa-with-SHA256) pr_litegreenln "ECDSA with SHA256" ; ;
md5*) pr_redln "MD5" ; ;
2015-11-26 20:53:35 +01:00
*) outln " $sig_algo " ; ;
2015-09-17 15:30:15 +02:00
esac
# old, but interesting: https://blog.hboeck.de/archives/754-Playing-with-the-EFF-SSL-Observatory.html
pr_bold " Fingerprint / Serial "
outln " $( $OPENSSL x509 -noout -in $HOSTCERT -fingerprint -sha1 2>>$ERRFILE | sed 's/Fingerprint=//' | sed 's/://g' ) / $( $OPENSSL x509 -noout -in $HOSTCERT -serial 2>>$ERRFILE | sed 's/serial=//' ) "
outln " $spaces $( $OPENSSL x509 -noout -in $HOSTCERT -fingerprint -sha256 2>>$ERRFILE | sed 's/Fingerprint=//' | sed 's/://g' ) "
pr_bold " Common Name (CN) "
if $OPENSSL x509 -in $HOSTCERT -noout -subject 2>>$ERRFILE | grep -wq CN; then
cn = $( $OPENSSL x509 -in $HOSTCERT -noout -subject 2>>$ERRFILE | sed 's/subject= //' | sed -e 's/^.*CN=//' -e 's/\/emailAdd.*//' )
2015-10-15 14:15:07 +02:00
pr_dquoted " $cn "
2015-09-17 15:30:15 +02:00
if echo -n " $cn " | grep -q '^*.' ; then
out " (wildcard certificate"
if [ [ " $cn " = = " *. $( echo -n " $cn " | sed 's/^\*.//' ) " ] ] ; then
out " match)"
wildcard = true
else
:
#FIXME: we need to test also the SANs as they can contain a wild card (google.de .e.g) ==> 2.7dev
fi
fi
else
cn = "(no CN field in subject)"
out " $cn "
fi
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $OPTIMAL_PROTO 2>>$ERRFILE </dev/null | awk '/-----BEGIN/,/-----END/ { print $0 }' >$HOSTCERT .nosni
2015-09-17 15:30:15 +02:00
cn_nosni = ""
if [ [ -s $HOSTCERT .nosni ] ] ; then
if $OPENSSL x509 -in $HOSTCERT .nosni -noout -subject 2>>$ERRFILE | grep -wq CN; then
cn_nosni = $( $OPENSSL x509 -in $HOSTCERT .nosni -noout -subject 2>>$ERRFILE | sed 's/subject= //' | sed -e 's/^.*CN=//' -e 's/\/emailAdd.*//' )
else
cn_nosni = "no CN field in subject"
fi
fi
2015-10-11 23:07:16 +02:00
#FIXME: check for SSLv3/v2 and look wheher it goes to a different CN
2015-09-17 15:30:15 +02:00
debugme out " \" $NODE \" | \" $cn \" | \" $cn_nosni \" "
if [ [ $NODE = = " $cn_nosni " ] ] ; then
2015-10-11 23:07:16 +02:00
if [ [ $SERVICE = = "HTTP" ] ] || $CLIENT_AUTH ; then
2015-09-17 15:30:15 +02:00
outln " (works w/o SNI)"
else
outln " (matches certificate directly)"
# for services != HTTP it depends on the protocol, server and client but it is not named "SNI"
fi
else
if [ [ $SERVICE != "HTTP" ] ] ; then
outln
#pr_brownln " (non-SNI clients don't match CN but for non-HTTP services it might be ok)"
#FIXME: this is irritating and needs to be redone. Then also the wildcard match needs to be tested against "$cn_nosni"
elif [ [ -z " $cn_nosni " ] ] ; then
out " (request w/o SNI didn't succeed" ;
2015-11-26 20:53:35 +01:00
[ [ $sig_algo = ~ ecdsa ] ] && out ", usual for EC certificates"
2015-09-17 15:30:15 +02:00
outln ")"
elif [ [ " $cn_nosni " = = "*no CN field*" ] ] ; then
outln " , (request w/o SNI: $cn_nosni ) "
else
2015-10-15 14:15:07 +02:00
out " (CN in response to request w/o SNI: " ; pr_dquoted " $cn_nosni " ; outln ")"
2015-09-17 15:30:15 +02:00
fi
fi
sans = $( $OPENSSL x509 -in $HOSTCERT -noout -text 2>>$ERRFILE | grep -A3 "Subject Alternative Name" | grep "DNS:" | \
sed -e 's/DNS://g' -e 's/ //g' -e 's/,/ /g' -e 's/othername:<unsupported>//g' )
2015-08-18 09:15:17 +02:00
# ^^^ CACert
2015-06-19 20:36:32 +02:00
2015-09-17 15:30:15 +02:00
pr_bold " subjectAltName (SAN) "
if [ [ -n " $sans " ] ] ; then
for san in $sans ; do
2015-10-15 14:15:07 +02:00
pr_dquoted " $san "
out " "
2015-09-17 15:30:15 +02:00
done
else
out "-- "
fi
outln
pr_bold " Issuer "
issuer = $( $OPENSSL x509 -in $HOSTCERT -noout -issuer 2>>$ERRFILE | sed -e 's/^.*CN=//g' -e 's/\/.*$//g' )
2015-10-15 14:15:07 +02:00
issuer_O = $( $OPENSSL x509 -in $HOSTCERT -noout -issuer 2>>$ERRFILE | sed 's/^.*O=//g' | sed 's/\/.*$//g' )
2015-09-17 15:30:15 +02:00
if $OPENSSL x509 -in $HOSTCERT -noout -issuer 2>>$ERRFILE | grep -q 'C=' ; then
2015-10-15 14:15:07 +02:00
issuer_C = $( $OPENSSL x509 -in $HOSTCERT -noout -issuer 2>>$ERRFILE | sed 's/^.*C=//g' | sed 's/\/.*$//g' )
2015-09-17 15:30:15 +02:00
else
2015-10-15 14:15:07 +02:00
issuer_C = "" # CACert would have 'issuer= ' here otherwise
2015-09-17 15:30:15 +02:00
fi
2015-10-15 14:15:07 +02:00
if [ [ " $issuer_O " = = "issuer=" ] ] || [ [ " $issuer_O " = = "issuer= " ] ] || [ [ " $issuer " = = " $CN " ] ] ; then
2015-09-22 15:05:59 +02:00
pr_redln "selfsigned (NOT ok)"
2015-09-17 15:30:15 +02:00
else
2015-10-15 14:15:07 +02:00
pr_dquoted " $issuer "
out " ("
pr_dquoted " $issuer_O "
if [ [ -n " $issuer_C " ] ] ; then
out " from "
pr_dquoted " $issuer_C "
fi
outln ")"
2015-09-17 15:30:15 +02:00
fi
# http://events.ccc.de/congress/2010/Fahrplan/attachments/1777_is-the-SSLiverse-a-safe-place.pdf, see page 40pp
pr_bold " EV cert" ; out " (experimental) "
policy_oid = $( $OPENSSL x509 -in $HOSTCERT -text 2>>$ERRFILE | awk '/ .Policy: / { print $2 }' )
if echo " $issuer " | egrep -q 'Extended Validation|Extended Validated|EV SSL|EV CA' || \
2015-09-25 14:35:42 +02:00
[ [ 2.16.840.1.114028.10.1.2 = = " $policy_oid " ] ] || \
[ [ 2.16.840.1.114412.1.3.0.2 = = " $policy_oid " ] ] || \
[ [ 2.16.840.1.114412.2.1 = = " $policy_oid " ] ] || \
[ [ 2.16.578.1.26.1.3.3 = = " $policy_oid " ] ] || \
[ [ 1.3.6.1.4.1.17326.10.14.2.1.2 = = " $policy_oid " ] ] || \
[ [ 1.3.6.1.4.1.17326.10.8.12.1.2 = = " $policy_oid " ] ] || \
[ [ 1.3.6.1.4.1.13177.10.1.3.10 = = " $policy_oid " ] ] ; then
2015-09-17 15:30:15 +02:00
out "yes "
else
out "no "
fi
debugme echo " ( $( newline_to_spaces " $policy_oid " ) ) "
outln
2015-07-16 17:58:03 +02:00
#TODO: use browser OIDs:
2015-09-17 15:30:15 +02:00
# https://mxr.mozilla.org/mozilla-central/source/security/certverifier/ExtendedValidation.cpp
# http://src.chromium.org/chrome/trunk/src/net/cert/ev_root_ca_metadata.cc
# https://certs.opera.com/03/ev-oids.xml
pr_bold " Certificate Expiration "
2015-12-08 17:51:46 +01:00
if $HAS_GNUDATE ; then
enddate = $( date --date= " $( $OPENSSL x509 -in $HOSTCERT -noout -enddate 2>>$ERRFILE | cut -d= -f 2) " +"%F %H:%M %z" )
startdate = $( date --date= " $( $OPENSSL x509 -in $HOSTCERT -noout -startdate 2>>$ERRFILE | cut -d= -f 2) " +"%F %H:%M" )
days2expire = $(( $( date --date= " $enddate " "+%s" ) - $( date "+%s" ) )) # in seconds
else
enddate = $( LC_ALL = C date -j -f "%b %d %T %Y %Z" " $( $OPENSSL x509 -in $HOSTCERT -noout -enddate 2>>$ERRFILE | cut -d= -f 2) " +"%F %H:%M %z" )
startdate = $( LC_ALL = C date -j -f "%b %d %T %Y %Z" " $( $OPENSSL x509 -in $HOSTCERT -noout -startdate 2>>$ERRFILE | cut -d= -f 2) " +"%F %H:%M" )
LC_ALL = C days2expire = $(( $( date -j -f "%F %H:%M %z" " $enddate " "+%s" ) - $( date "+%s" ) )) # in seconds
fi
days2expire = $(( days2expire / 3600 / 24 ))
2015-09-17 15:30:15 +02:00
expire = $( $OPENSSL x509 -in $HOSTCERT -checkend 0 2>>$ERRFILE )
if ! echo $expire | grep -qw not; then
2015-12-08 17:51:46 +01:00
pr_red "expired!"
2015-09-17 15:30:15 +02:00
else
secs2warn = $(( 24 * 60 * 60 * DAYS2WARN2)) # low threshold first
expire = $( $OPENSSL x509 -in $HOSTCERT -checkend $secs2warn 2>>$ERRFILE )
if echo " $expire " | grep -qw not; then
secs2warn = $(( 24 * 60 * 60 * DAYS2WARN1))
expire = $( $OPENSSL x509 -in $HOSTCERT -checkend $secs2warn 2>>$ERRFILE )
if echo " $expire " | grep -qw not; then
2015-12-08 17:51:46 +01:00
pr_litegreen " $days2expire >= $DAYS2WARN1 days "
2015-09-17 15:30:15 +02:00
else
2015-12-08 17:51:46 +01:00
pr_brown " expires < $DAYS2WARN1 days ( $days2expire ) "
2015-09-17 15:30:15 +02:00
fi
else
2015-12-08 17:51:46 +01:00
pr_litered " expires < $DAYS2WARN2 days ( $days2expire ) ! "
2015-09-17 15:30:15 +02:00
fi
fi
outln " ( $startdate --> $enddate ) "
pr_bold " # of certificates provided" ; outln " $( get_all_certs) "
2015-09-22 15:05:59 +02:00
pr_bold " Chain of trust" ; out " (experim.) "
determine_trust
2015-09-17 15:30:15 +02:00
pr_bold " Certificate Revocation List "
crl = " $( $OPENSSL x509 -in $HOSTCERT -noout -text 2>>$ERRFILE | grep -A 4 "CRL Distribution" | grep URI | sed 's/^.*URI://' ) "
2015-09-28 22:54:00 +02:00
if [ [ -z " $crl " ] ] ; then
pr_literedln "--"
elif grep -q http <<< " $crl " ; then
if [ [ $( count_lines " $crl " ) -eq 1 ] ] ; then
outln " $crl "
else # more than one CRL
out_row_aligned " $crl " " $spaces "
fi
else
pr_litemagentaln " no parsable output \" $url \", pls report "
fi
2015-09-17 15:30:15 +02:00
pr_bold " OCSP URI "
ocsp_uri = $( $OPENSSL x509 -in $HOSTCERT -noout -ocsp_uri 2>>$ERRFILE )
[ [ x" $ocsp_uri " = = "x" ] ] && pr_literedln "--" || echo " $ocsp_uri "
pr_bold " OCSP stapling "
2015-10-11 23:07:16 +02:00
if grep -a "OCSP response" $TMPFILE | grep -q "no response sent" ; then
2015-09-17 15:30:15 +02:00
out " not offered"
else
2015-10-11 23:07:16 +02:00
if grep -a "OCSP Response Status" $TMPFILE | grep -q successful; then
2015-09-17 15:30:15 +02:00
pr_litegreen " offered"
else
2015-10-11 23:07:16 +02:00
if $GOST_STATUS_PROBLEM ; then
out " (GOST servers make problems here, sorry)"
2015-09-17 15:30:15 +02:00
ret = 0
else
outln " not sure what's going on here, debug:"
2015-10-11 23:07:16 +02:00
grep -aA 20 "OCSP response" $TMPFILE
2015-09-17 15:30:15 +02:00
ret = 2
fi
fi
fi
outln
# if we call tls_time before tmpfile_handle it throws an error because the function tls_sockets removed $TMPFILE
# already -- and that was a different one -- means that would get overwritten anyway
2015-10-11 23:07:16 +02:00
tmpfile_handle $FUNCNAME .txt
2015-09-17 15:30:15 +02:00
tls_time
return $ret
2015-05-17 22:43:53 +02:00
}
2015-05-29 19:44:27 +02:00
# FIXME: revoked, see checkcert.sh
2015-05-17 22:43:53 +02:00
# FIXME: Trust (only CN)
# http://www.heise.de/security/artikel/Forward-Secrecy-testen-und-einrichten-1932806.html
2015-07-22 13:11:20 +02:00
run_pfs( ) {
2015-10-11 23:07:16 +02:00
local -i sclient_success
2015-09-17 15:30:15 +02:00
local -i pfs_offered = 1
local tmpfile
local dhlen
local hexcode dash pfs_cipher sslvers kx auth enc mac
# https://community.qualys.com/blogs/securitylabs/2013/08/05/configuring-apache-nginx-and-openssl-for-forward-secrecy -- but with RC4:
#local pfs_ciphers='EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA256 EECDH+aRSA+SHA256 EECDH+aRSA+RC4 EDH+aRSA EECDH RC4 !RC4-SHA !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS:@STRENGTH'
#w/o RC4:
#local pfs_ciphers='EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA256 EECDH+aRSA+SHA256 EDH+aRSA EECDH !RC4-SHA !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS:@STRENGTH'
local pfs_cipher_list = "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:DHE-RSA-CAMELLIA256-SHA256:DHE-RSA-CAMELLIA256-SHA:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-CAMELLIA256-SHA384:ECDHE-ECDSA-CAMELLIA256-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-CAMELLIA128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-CAMELLIA128-SHA256:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-CAMELLIA128-SHA256:DHE-RSA-SEED-SHA:DHE-RSA-CAMELLIA128-SHA:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC4-SHA"
2015-09-21 14:03:48 +02:00
local -i nr_supported_ciphers = 0
2015-09-17 15:30:15 +02:00
outln
2015-10-15 14:15:07 +02:00
pr_headlineln " Testing (perfect) forward secrecy, (P)FS -- omitting 3DES, RC4 and Null Encryption here "
2015-09-17 15:30:15 +02:00
! $HAS_DH_BITS && $WIDE && pr_litemagentaln " (Your $OPENSSL cannot show DH/ECDH bits) "
2015-09-21 14:03:48 +02:00
nr_supported_ciphers = $( count_ciphers $( actually_supported_ciphers $pfs_cipher_list ) )
if [ [ " $nr_supported_ciphers " -le " $CLIENT_MIN_PFS " ] ] ; then
2015-09-17 15:30:15 +02:00
outln
2015-09-21 14:03:48 +02:00
local_problem " You only have $nr_supported_ciphers PFS ciphers on the client side "
2015-09-17 15:30:15 +02:00
return 1
fi
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -cipher 'ECDH:DH' $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI >$TMPFILE 2>$ERRFILE </dev/null
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE
sclient_success = $?
2015-09-17 15:30:15 +02:00
outln
2015-10-11 23:07:16 +02:00
if [ [ $sclient_success -ne 0 ] ] || [ [ $( grep -ac "BEGIN CERTIFICATE" $TMPFILE ) -eq 0 ] ] ; then
2015-09-17 15:30:15 +02:00
pr_brownln "Not OK: No ciphers supporting Forward Secrecy offered"
else
pfs_offered = 0
pr_litegreen " PFS is offered (OK)"
if $WIDE ; then
outln ", ciphers follow (client/browser support is here specially important) \n"
neat_header
else
out " "
fi
while read hexcode dash pfs_cipher sslvers kx auth enc mac; do
tmpfile = $TMPFILE .$hexcode
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -cipher $pfs_cipher $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI & >$tmpfile </dev/null
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $tmpfile
sclient_success = $?
if [ [ $sclient_success -ne 0 ] ] && [ [ " $SHOW_EACH_C " -eq 0 ] ] ; then
2015-09-17 15:30:15 +02:00
continue # no successful connect AND not verbose displaying each cipher
fi
if $WIDE ; then
normalize_ciphercode $hexcode
if [ [ $kx = = "Kx=ECDH" ] ] || [ [ $kx = = "Kx=DH" ] ] || [ [ $kx = = "Kx=EDH" ] ] ; then
dhlen = $( read_dhbits_from_file " $tmpfile " quiet)
kx = " $kx $dhlen "
fi
neat_list $HEXC $pfs_cipher " $kx " $enc $strength
let "pfs_offered++"
if [ [ " $SHOW_EACH_C " -ne 0 ] ] ; then
2015-10-11 23:07:16 +02:00
if [ [ $sclient_success -eq 0 ] ] ; then
2015-09-17 15:30:15 +02:00
pr_green "works"
else
out "not a/v"
fi
fi
outln
else
out " $pfs_cipher "
fi
done < <( $OPENSSL ciphers -V " $pfs_cipher_list " 2>$ERRFILE ) # -V doesn't work with openssl < 1.0
# ^^^^^ posix redirect as shopt will either segfault or doesn't work with old bash versions
debugme echo $pfs_offered
2015-11-11 17:49:36 +01:00
$WIDE || outln
2015-09-17 15:30:15 +02:00
if [ [ " $pfs_offered " -eq 1 ] ] ; then
pr_brown "no PFS ciphers found"
fi
fi
outln
debugme echo $( actually_supported_ciphers $pfs_cipher_list )
2015-09-21 14:03:48 +02:00
debugme echo $nr_supported_ciphers
2015-09-17 15:30:15 +02:00
tmpfile_handle $FUNCNAME .txt
2015-09-21 14:03:48 +02:00
# sub1_curves
2015-09-17 15:30:15 +02:00
return $pfs_offered
2015-05-17 22:43:53 +02:00
}
# good source for configuration and bugs: https://wiki.mozilla.org/Security/Server_Side_TLS
# good start to read: http://en.wikipedia.org/wiki/Transport_Layer_Security#Attacks_against_TLS.2FSSL
2015-06-29 23:28:37 +02:00
2015-05-17 22:43:53 +02:00
spdy_pre( ) {
2015-09-21 16:43:47 +02:00
if [ [ -n " $STARTTLS " ] ] ; then
2015-09-17 15:30:15 +02:00
[ [ -n " $1 " ] ] && out " $1 "
out "(SPDY is a HTTP protocol and thus not tested here)"
return 1
fi
2015-09-21 16:43:47 +02:00
if [ [ -n " $PROXY " ] ] ; then
[ [ -n " $1 " ] ] && pr_litemagenta " $1 "
2015-09-17 15:30:15 +02:00
pr_litemagenta "not tested as proxies do not support proxying it"
return 1
fi
2015-10-11 23:07:16 +02:00
if ! $HAS_SPDY ; then
2015-09-17 15:30:15 +02:00
local_problem " $OPENSSL doesn't support SPDY/NPN " ;
return 7
fi
return 0
2015-05-17 22:43:53 +02:00
}
2015-12-13 01:20:57 +01:00
http2_pre( ) {
if [ [ -n " $STARTTLS " ] ] ; then
[ [ -n " $1 " ] ] && out " $1 "
2015-12-29 17:07:03 +01:00
outln "(HTTP/2 is a HTTP protocol and thus not tested here)"
2015-12-13 01:20:57 +01:00
return 1
fi
if [ [ -n " $PROXY " ] ] ; then
[ [ -n " $1 " ] ] && pr_litemagenta " $1 "
pr_litemagenta "not tested as proxies do not support proxying it"
return 1
fi
if ! $HAS_ALPN ; then
local_problem " $OPENSSL doesn't support HTTP2/ALPN " ;
return 7
fi
return 0
}
2015-06-29 23:28:37 +02:00
run_spdy( ) {
2015-09-17 15:30:15 +02:00
local tmpstr
local -i ret = 0
pr_bold " SPDY/NPN "
if ! spdy_pre ; then
2015-12-13 05:58:52 +01:00
outln
2015-09-17 15:30:15 +02:00
return 0
fi
2015-12-13 01:41:13 +01:00
$OPENSSL s_client -connect $NODEIP :$PORT $BUGS $SNI -nextprotoneg $NPN_PROTOs </dev/null 2>$ERRFILE >$TMPFILE
2015-09-17 15:30:15 +02:00
tmpstr = $( grep -a '^Protocols' $TMPFILE | sed 's/Protocols.*: //' )
if [ [ -z " $tmpstr " ] ] || [ [ " $tmpstr " = = " " ] ] ; then
2015-10-15 14:15:07 +02:00
outln "not offered"
2015-09-17 15:30:15 +02:00
ret = 1
else
# now comes a strange thing: "Protocols advertised by server:" is empty but connection succeeded
2015-12-13 03:07:24 +01:00
if echo $tmpstr | egrep -aq "h2|spdy|http" ; then
2015-10-15 14:15:07 +02:00
out " $tmpstr "
2015-11-03 10:30:59 +01:00
outln " (advertised)"
2015-09-17 15:30:15 +02:00
ret = 0
else
2015-10-15 14:15:07 +02:00
pr_litemagentaln "please check manually, server response was ambigious ..."
2015-09-17 15:30:15 +02:00
ret = 10
fi
fi
2015-12-13 01:20:57 +01:00
#outln
2015-09-17 15:30:15 +02:00
# btw: nmap can do that too http://nmap.org/nsedoc/scripts/tls-nextprotoneg.html
# nmap --script=tls-nextprotoneg #NODE -p $PORT is your friend if your openssl doesn't want to test this
tmpfile_handle $FUNCNAME .txt
return $ret
2015-05-17 22:43:53 +02:00
}
2015-07-07 22:59:31 +02:00
2015-12-13 01:20:57 +01:00
run_http2( ) {
local tmpstr
local -i ret = 0
2015-12-24 23:00:23 +01:00
local had_alpn_proto = false
2015-12-13 01:20:57 +01:00
pr_bold " HTTP2/ALPN "
if ! http2_pre ; then
2015-12-13 05:58:52 +01:00
outln
2015-12-13 01:20:57 +01:00
return 0
fi
for proto in $ALPN_PROTOs ; do
# for some reason OpenSSL doesn't list the advertised protocols, so instead try common protocols
2015-12-13 01:41:13 +01:00
$OPENSSL s_client -connect $NODEIP :$PORT $BUGS $SNI -alpn $proto </dev/null 2>$ERRFILE >$TMPFILE
2015-12-24 23:00:23 +01:00
#tmpstr=$(grep -a '^ALPN protocol' $TMPFILE | sed 's/ALPN protocol.*: //')
#tmpstr=$(awk '/^ALPN protocol*:/ { print $2 }' $TMPFILE)
tmpstr = $( awk -F':' '/^ALPN protocol*:/ { print $2 }' $TMPFILE )
if [ [ " $tmpstr " = = *" $proto " ] ] ; then
if ! $had_alpn_proto ; then
2015-12-13 01:20:57 +01:00
out " $proto "
2015-12-24 23:00:23 +01:00
had_alpn_proto = true
2015-12-13 01:20:57 +01:00
else
out " , $proto "
fi
fi
done
2015-12-24 23:00:23 +01:00
if $had_alpn_proto ; then
2015-12-13 01:20:57 +01:00
outln " (offered)"
ret = 0
else
outln "not offered"
ret = 1
fi
tmpfile_handle $FUNCNAME .txt
return $ret
}
2015-07-07 22:59:31 +02:00
# arg1: string to send
# arg2: possible success strings a egrep pattern, needed!
starttls_line( ) {
debugme echo -e " \n=== sending \" $1 \" ... "
echo -e " $1 " >& 5
2015-09-17 15:30:15 +02:00
# we don't know how much to read and it's blocking! So we just put a cat into the
# background and read until $STARTTLS_SLEEP and: cross our fingers
cat <& 5 >$TMPFILE &
2015-07-07 22:59:31 +02:00
wait_kill $! $STARTTLS_SLEEP
debugme echo "... received result: "
debugme cat $TMPFILE
2015-09-03 12:14:47 +02:00
if [ [ -n " $2 " ] ] ; then
2015-07-07 22:59:31 +02:00
if egrep -q " $2 " $TMPFILE ; then
debugme echo " ---> reply matched \" $2 \" "
else
2015-10-15 15:14:37 +02:00
# slow down for exim and friends who need a proper handshake:, see
# https://github.com/drwetter/testssl.sh/issues/218
FAST_STARTTLS = false
debugme echo -e " \n=== sending with automated FAST_STARTTLS=false \" $1 \" ... "
echo -e " $1 " >& 5
cat <& 5 >$TMPFILE &
debugme echo "... received result: "
debugme cat $TMPFILE
if [ [ -n " $2 " ] ] ; then
debugme echo " ---> reply with automated FAST_STARTTLS=false matched \" $2 \" "
else
debugme echo " ---> reply didn't match \" $2 \", see $TMPFILE "
pr_magenta "STARTTLS handshake problem. "
outln "Either switch to native openssl (--ssl-native), "
outln " give the server more time to reply (STARTTLS_SLEEP=<seconds> ./testssh.sh ..) -- "
outln " or debug what happened (add --debug=2)"
return 3
fi
2015-07-07 22:59:31 +02:00
fi
fi
2015-09-17 15:30:15 +02:00
return 0
2015-07-07 22:59:31 +02:00
}
2015-07-08 21:30:31 +02:00
starttls_just_send( ) {
2015-09-17 15:30:15 +02:00
debugme echo -e " \n=== sending \" $1 \" ... "
echo -e " $1 " >& 5
2015-07-08 21:30:31 +02:00
}
2015-07-07 22:59:31 +02:00
starttls_just_read( ) {
debugme echo "=== just read banner ==="
2015-09-17 15:30:15 +02:00
if [ [ " $DEBUG " -ge 2 ] ] ; then
cat <& 5 &
wait_kill $! $STARTTLS_SLEEP
else
dd of = /dev/null count = 8 <& 5 2>/dev/null &
wait_kill $! $STARTTLS_SLEEP
fi
return 0
2015-07-07 22:59:31 +02:00
}
2015-05-17 22:43:53 +02:00
# arg for a fd doesn't work here
fd_socket( ) {
2015-09-17 15:30:15 +02:00
local jabber = ""
local proyxline = ""
2015-09-26 22:44:33 +02:00
local nodeip = " $( tr -d '[]' <<< $NODEIP ) " # sockets do not need the square brackets we have of IPv6 addresses
# we just need do it here, that's all!
2015-09-17 15:30:15 +02:00
if [ [ -n " $PROXY " ] ] ; then
if ! exec 5<> /dev/tcp/${ PROXYIP } /${ PROXYPORT } ; then
outln
pr_magenta " $PROG_NAME : unable to open a socket to proxy $PROXYIP : $PROXYPORT "
return 6
fi
2015-09-26 22:44:33 +02:00
echo " CONNECT $nodeip : $PORT " >& 5
2015-09-17 15:30:15 +02:00
while true ; do
read proyxline <& 5
if [ [ " ${ proyxline %/* } " = = "HTTP" ] ] ; then
proyxline = ${ proyxline #* }
if [ [ " ${ proyxline %% * } " != "200" ] ] ; then
pr_magenta "Unable to CONNECT via proxy. "
2015-09-19 15:03:40 +02:00
[ [ " $PORT " != 443 ] ] && pr_magentaln " Check whether your proxy supports port $PORT and the underlying protocol. "
2015-09-17 15:30:15 +02:00
return 6
fi
fi
if [ [ " $proyxline " = = $'\r' ] ] ; then
break
fi
done
2015-09-26 22:44:33 +02:00
elif ! exec 5<>/dev/tcp/$nodeip /$PORT ; then # 2>/dev/null would remove an error message, but disables debugging
2015-09-17 15:30:15 +02:00
outln
pr_magenta " Unable to open a socket to $NODEIP : $PORT . "
# It can last ~2 minutes but for for those rare occasions we don't do a timeout handler here, KISS
return 6
fi
if [ [ -n " $STARTTLS " ] ] ; then
case " $STARTTLS_PROTOCOL " in # port
ftp| ftps) # https://tools.ietf.org/html/rfc4217
$FAST_STARTTLS || starttls_just_read
$FAST_STARTTLS || starttls_line "FEAT" "211" && starttls_just_send "FEAT"
starttls_line "AUTH TLS" "successful|234"
; ;
smtp| smtps) # SMTP, see https://tools.ietf.org/html/rfc4217
$FAST_STARTTLS || starttls_just_read
$FAST_STARTTLS || starttls_line "EHLO testssl.sh" "220|250" && starttls_just_send "EHLO testssl.sh"
starttls_line "STARTTLS" "220"
; ;
pop3| pop3s) # POP, see https://tools.ietf.org/html/rfc2595
$FAST_STARTTLS || starttls_just_read
starttls_line "STLS" "OK"
; ;
nntp| nntps) # NNTP, see https://tools.ietf.org/html/rfc4642
$FAST_STARTTLS || starttls_just_read
$FAST_STARTTLS || starttls_line "CAPABILITIES" "101|200" && starttls_just_send "CAPABILITIES"
starttls_line "STARTTLS" "382"
; ;
imap| imaps) # IMAP, https://tools.ietf.org/html/rfc2595
$FAST_STARTTLS || starttls_just_read
$FAST_STARTTLS || starttls_line "a001 CAPABILITY" "OK" && starttls_just_send "a001 CAPABILITY"
starttls_line "a002 STARTTLS" "OK"
; ;
ldap| ldaps) # LDAP, https://tools.ietf.org/html/rfc2830, https://tools.ietf.org/html/rfc4511
fatal "FIXME: LDAP+STARTTLS over sockets not yet supported (try \"--ssl-native\")" -4
; ;
acap| acaps) # ACAP = Application Configuration Access Protocol, see https://tools.ietf.org/html/rfc2595
fatal "ACAP Easteregg: not implemented -- probably never will" -4
; ;
xmpp| xmpps) # XMPP, see https://tools.ietf.org/html/rfc6120
starttls_just_read
[ [ -z $XMPP_HOST ] ] && XMPP_HOST = " $NODE "
jabber = $( cat <<EOF
2015-07-07 22:59:31 +02:00
<?xml version = '1.0' ?>
<stream:stream
xmlns:stream= 'http://etherx.jabber.org/streams'
xmlns = 'jabber:client'
to = '$XMPP_HOST'
xml:lang= 'en'
version = '1.0' >
EOF
)
2015-09-17 15:30:15 +02:00
starttls_line " $jabber "
starttls_line "<starttls xmlns='urn:ietf:params:xml:ns:xmpp-tls'/>" "proceed"
# BTW: https://xmpp.net !
; ;
*) # we need to throw an error here -- otherwise testssl.sh treats the STARTTLS protocol as plain SSL/TLS which leads to FP
fatal " FIXME: STARTTLS protocol $STARTTLS_PROTOCOL is not yet supported " -4
esac
fi
2015-07-07 22:59:31 +02:00
2015-06-29 22:29:15 +02:00
return 0
2015-05-17 22:43:53 +02:00
}
close_socket( ) {
2015-09-17 15:30:15 +02:00
exec 5<& -
exec 5>& -
return 0
2015-05-17 22:43:53 +02:00
}
# first: helper function for protocol checks
code2network( ) {
2015-09-17 15:30:15 +02:00
# arg1: formatted string here in the code
NW_STR = $( echo " $1 " | sed -e 's/,/\\\x/g' | sed -e 's/# .*$//g' -e 's/ //g' -e '/^$/d' | tr -d '\n' | tr -d '\t' )
#TODO: just echo, no additional global var
2015-05-17 22:43:53 +02:00
}
len2twobytes( ) {
2015-08-28 00:15:51 +02:00
local len_arg1 = ${# 1 }
[ [ $len_arg1 -le 2 ] ] && LEN_STR = $( printf "00, %02s \n" " $1 " )
[ [ $len_arg1 -eq 3 ] ] && LEN_STR = $( printf "%02s, %02s \n" " ${ 1 : 0 : 1 } " " ${ 1 : 1 : 2 } " )
[ [ $len_arg1 -eq 4 ] ] && LEN_STR = $( printf "%02s, %02s \n" " ${ 1 : 0 : 2 } " " ${ 1 : 2 : 2 } " )
2015-05-17 22:43:53 +02:00
}
socksend_sslv2_clienthello( ) {
2015-09-17 15:30:15 +02:00
local data = ""
2015-08-28 00:15:51 +02:00
2015-09-17 15:30:15 +02:00
code2network " $1 "
data = " $NW_STR "
[ [ " $DEBUG " -ge 4 ] ] && echo " \" $data \" "
printf -- " $data " >& 5 2>/dev/null &
sleep $USLEEP_SND
2015-05-17 22:43:53 +02:00
}
# for SSLv2 to TLS 1.2:
sockread_serverhello( ) {
[ [ -z " $2 " ] ] && maxsleep = $MAX_WAITSOCK || maxsleep = $2
SOCK_REPLY_FILE = $( mktemp $TEMPDIR /ddreply.XXXXXX) || return 7
dd bs = $1 of = $SOCK_REPLY_FILE count = 1 <& 5 2>/dev/null &
2015-09-17 15:30:15 +02:00
wait_kill $! $maxsleep
2015-05-17 22:43:53 +02:00
2015-09-17 15:30:15 +02:00
return $?
2015-05-17 22:43:53 +02:00
}
# arg1: name of file with socket reply
2015-06-23 12:58:40 +02:00
parse_sslv2_serverhello( ) {
2015-09-17 15:30:15 +02:00
# server hello: in hex representation, see below
# byte 1+2: length of server hello 0123
# 3: 04=Handshake message, server hello 45
# 4: session id hit or not (boolean: 00=false, this 67
# is the normal case)
# 5: certificate type, 01 = x509 89
# 6+7 version (00 02 = SSLv2) 10-13
# 8+9 certificate length 14-17
# 10+11 cipher spec length 17-20
# 12+13 connection id length
# [certificate length] ==> certificate
# [cipher spec length] ==> ciphers GOOD: HERE ARE ALL CIPHERS ALREADY!
local ret = 3
v2_hello_ascii = $( hexdump -v -e '16/1 "%02X"' $1 )
[ [ " $DEBUG " -ge 5 ] ] && echo " $v2_hello_ascii "
if [ [ -z " $v2_hello_ascii " ] ] ; then
ret = 0 # 1 line without any blanks: no server hello received
debugme echo "server hello empty"
else
# now scrape two bytes out of the reply per byte
v2_hello_initbyte = " ${ v2_hello_ascii : 0 : 1 } " # normally this belongs to the next, should be 8!
v2_hello_length = " ${ v2_hello_ascii : 1 : 3 } " # + 0x8000 see above
v2_hello_handshake = " ${ v2_hello_ascii : 4 : 2 } "
v2_hello_cert_length = " ${ v2_hello_ascii : 14 : 4 } "
v2_hello_cipherspec_length = " ${ v2_hello_ascii : 18 : 4 } "
V2_HELLO_CIPHERSPEC_LENGTH = $( printf "%d\n" " 0x $v2_hello_cipherspec_length " 2>/dev/null)
[ [ $? -ne 0 ] ] && ret = 7
if [ [ $v2_hello_initbyte != "8" ] ] || [ [ $v2_hello_handshake != "04" ] ] ; then
ret = 1
if [ [ $DEBUG -ge 2 ] ] ; then
echo "no correct server hello"
echo " SSLv2 server init byte: 0x0 $v2_hello_initbyte "
echo " SSLv2 hello handshake : 0x $v2_hello_handshake "
fi
fi
if [ [ $DEBUG -ge 3 ] ] ; then
echo " SSLv2 server hello length: 0x0 $v2_hello_length "
echo " SSLv2 certificate length: 0x $v2_hello_cert_length "
echo " SSLv2 cipher spec length: 0x $v2_hello_cipherspec_length "
fi
fi
return $ret
2015-05-17 22:43:53 +02:00
}
# arg1: name of file with socket reply
2015-06-23 12:58:40 +02:00
parse_tls_serverhello( ) {
2015-09-17 15:30:15 +02:00
local tls_hello_ascii = $( hexdump -v -e '16/1 "%02X"' " $1 " )
local tls_content_type tls_protocol tls_len_all
2015-06-22 18:32:40 +02:00
#TODO: all vars here
2015-09-17 15:30:15 +02:00
TLS_TIME = ""
DETECTED_TLS_VERSION = ""
# server hello, handshake details see http://en.wikipedia.org/wiki/Transport_Layer_Security-SSL#TLS_record
# byte 0: content type: 0x14=CCS, 0x15=TLS alert x16=Handshake, 0x17 Aplication, 0x18=HB
# byte 1+2: TLS version word, major is 03, minor 00=SSL3, 01=TLS1 02=TLS1.1 03=TLS 1.2
# byte 3+4: length all
# byte 5: handshake type (2=hello) TLS alert: level (2=fatal), descr (0x28=handshake failure)
# byte 6+7+8: length server hello
# byte 9+10: 03, TLS version word see byte 1+2
# byte 11-14: TLS timestamp for OpenSSL <1.01f
# byte 15-42: random, 28 bytes
# byte 43: session id length
# byte 44+45+sid-len: cipher suite!
# byte 46+sid-len: compression method: 00: none, 01: deflate
# byte 47+48+sid-len: extension length
[ [ " $DEBUG " -eq 5 ] ] && echo $tls_hello_ascii # one line without any blanks
if [ [ -z " $tls_hello_ascii " ] ] ; then
debugme echo "server hello empty, TCP connection closed"
return 1 # no server hello received
fi
# now scrape two bytes out of the reply per byte
tls_content_type = " ${ tls_hello_ascii : 0 : 2 } " # normally this is x16 (Handshake) here
tls_protocol = " ${ tls_hello_ascii : 2 : 4 } "
DETECTED_TLS_VERSION = $tls_protocol
tls_len_all = ${ tls_hello_ascii : 6 : 4 }
sid_len_offset = 86
tls_hello = " ${ tls_hello_ascii : 10 : 2 } " # normally this is x02
tls_protocol2 = " ${ tls_hello_ascii : 18 : 4 } "
tls_hello_time = " ${ tls_hello_ascii : 22 : 8 } "
if [ [ $tls_content_type = = "15" ] ] ; then # TLS ALERT
tls_err_level = ${ tls_hello_ascii : 10 : 2 } # 1: warning, 2: fatal
tls_err_descr = ${ tls_hello_ascii : 12 : 2 } # 112/0x70: Unrecognized name, 111/0x6F: certificate_unobtainable,
# 113/0x71: bad_certificate_status_response, #114/0x72: bad_certificate_hash_value
if [ [ $DEBUG -ge 2 ] ] ; then
2015-10-11 23:07:16 +02:00
echo " tls_protocol (reclyr): 0x $tls_protocol "
2015-09-17 15:30:15 +02:00
echo " tls_content_type: 0x $tls_content_type "
echo " tls_len_all: $tls_len_all "
echo " tls_err_descr: 0x ${ tls_err_descr } / = $( hex2dec ${ tls_err_descr } ) "
echo " tls_err_level: ${ tls_err_level } (warning:1, fatal:2) "
fi
# now, here comes a strange thing... -- on the first glance
# IF an apache 2.2/2.4 server e.g. has a default servername configured but we send SNI <myhostname>
# we get a TLS ALERT saying "unrecognized_name" (0x70) and a warning (0x1), see RFC https://tools.ietf.org/html/rfc6066#page-17
# note that RFC recommended to fail instead: https://tools.ietf.org/html/rfc6066#section-3
# we need to handle this properly -- otherwise we always return that the protocol or cipher is not available!
if [ [ " $tls_err_descr " = = 70 ] ] && [ [ " ${ tls_err_level } " = = "01" ] ] ; then
sid_len_offset = 100 # we are 2x7 bytes off (formerly: 86 instead of 100)
tls_hello = " ${ tls_hello_ascii : 24 : 2 } " # here, too (normally this is (02)
tls_protocol2 = " ${ tls_hello_ascii : 32 : 4 } " # here, too
tls_hello_time = " ${ tls_hello_ascii : 36 : 8 } " # and here, too
else
return 1
fi
fi
TLS_TIME = $( hex2dec " $tls_hello_time " )
tls_sid_len = $( hex2dec " ${ tls_hello_ascii : $sid_len_offset : 2 } " )
let sid_offset = $sid_len_offset +2+$tls_sid_len *2
tls_cipher_suite = " ${ tls_hello_ascii : $sid_offset : 4 } "
let sid_offset = $sid_len_offset +6++$tls_sid_len *2
tls_compression_method = " ${ tls_hello_ascii : $sid_offset : 2 } "
if [ [ $DEBUG -ge 2 ] ] ; then
2015-10-11 23:07:16 +02:00
echo " tls_protocol (reclyr): 0x $tls_protocol "
2015-09-17 15:30:15 +02:00
echo " tls_hello: 0x $tls_hello "
if [ [ $DEBUG -ge 4 ] ] ; then
2015-10-11 23:07:16 +02:00
echo " tls_protocol: 0x $tls_protocol2 "
2015-09-17 15:30:15 +02:00
echo " tls_sid_len: 0x $( dec2hex $tls_sid_len ) / = $tls_sid_len "
fi
echo -n " tls_hello_time: 0x $tls_hello_time "
if $HAS_GNUDATE ; then
date --date= " @ $TLS_TIME " "+%Y-%m-%d %r"
else
2015-09-22 17:14:36 +02:00
LC_ALL = C date -j -f %s " $TLS_TIME " "+%Y-%m-%d %r"
2015-09-17 15:30:15 +02:00
fi
echo " tls_cipher_suite: 0x $tls_cipher_suite "
echo " tls_compression_method: 0x $tls_compression_method "
outln
fi
return 0
2015-05-17 22:43:53 +02:00
}
sslv2_sockets( ) {
2015-09-17 15:30:15 +02:00
local ciphers_detected
fd_socket 5 || return 6
[ [ " $DEBUG " -ge 2 ] ] && outln "sending client hello... "
socksend_sslv2_clienthello " $SSLv2_CLIENT_HELLO "
sockread_serverhello 32768
[ [ " $DEBUG " -ge 2 ] ] && outln "reading server hello... "
if [ [ " $DEBUG " -ge 4 ] ] ; then
hexdump -C " $SOCK_REPLY_FILE " | head -6
outln
fi
parse_sslv2_serverhello " $SOCK_REPLY_FILE "
case $? in
7) # strange reply, couldn't convert the cipher spec length to a hex number
pr_litemagenta "strange v2 reply "
outln " (rerun with DEBUG >=2)"
[ [ $DEBUG -ge 3 ] ] && hexdump -C " $SOCK_REPLY_FILE " | head -1
ret = 7 ; ;
1) # no sslv2 server hello returned, like in openlitespeed which returns HTTP!
pr_greenln "not offered (OK)"
ret = 0 ; ;
0) # reset
pr_greenln "not offered (OK)"
ret = 0 ; ;
3) # everything else
lines = $( hexdump -C " $SOCK_REPLY_FILE " 2>/dev/null | wc -l | sed 's/ //g' )
[ [ " $DEBUG " -ge 2 ] ] && out " ( $lines lines) "
if [ [ " $lines " -gt 1 ] ] ; then
ciphers_detected = $(( V2_HELLO_CIPHERSPEC_LENGTH / 3 ))
if [ [ 0 -eq " $ciphers_detected " ] ] ; then
pr_litered "supported but couldn't detect a cipher" ; outln " (may need further attention)"
else
pr_red "offered (NOT ok)" ; outln " -- $ciphers_detected ciphers "
fi
ret = 1
fi ; ;
esac
pr_off
debugme outln
close_socket
TMPFILE = $SOCK_REPLY_FILE
tmpfile_handle $FUNCNAME .dd
return $ret
2015-05-17 22:43:53 +02:00
}
# ARG1: TLS version low byte (00: SSLv3, 01: TLS 1.0, 02: TLS 1.1, 03: TLS 1.2)
# ARG2: CIPHER_SUITES string
socksend_tls_clienthello( ) {
2015-06-28 13:52:42 +02:00
#FIXME: redo this with all extensions!
2015-09-17 15:30:15 +02:00
local tls_low_byte = " $1 "
2015-10-11 23:07:16 +02:00
local tls_word_reclayer = "03, 01" # the first TLS version number is the record layer and always 0301 -- except: SSLv3
2015-09-17 15:30:15 +02:00
local servername_hexstr len_servername len_servername_hex
local hexdump_format_str
local all_extensions
local len_sni_listlen len_sni_ext len_extension_hex
local cipher_suites len_ciph_suites len_ciph_suites_word
local len_client_hello_word len_all_word
#len_servername=$(echo ${#NODE})
len_servername = ${# NODE }
hexdump_format_str = " $len_servername /1 \"%02x,\" "
servername_hexstr = $( printf $NODE | hexdump -v -e " ${ hexdump_format_str } " | sed 's/,$//' )
code2network " $2 " # convert CIPHER_SUITES
cipher_suites = " $NW_STR " # we don't have the leading \x here so string length is two byte less, see next
2015-05-17 22:43:53 +02:00
#formatted example for SNI
2015-09-17 15:30:15 +02:00
#00 00 # extension server_name
#00 1a # length = the following +2 = server_name length + 5
#00 18 # server_name list_length = server_name length +3
#00 # server_name type (hostname)
#00 15 # server_name length
2015-05-17 22:43:53 +02:00
#66 66 66 66 66 66 2e 66 66 66 66 66 66 66 66 66 66 2e 66 66 66 target.mydomain1.tld # server_name target
2015-09-17 15:30:15 +02:00
# convert lengths we need to fill in from dec to hex:
len_servername_hex = $( printf "%02x\n" $len_servername )
len_sni_listlen = $( printf "%02x\n" $(( len_servername+3)) )
len_sni_ext = $( printf "%02x\n" $(( len_servername+5)) )
len_extension_hex = $( printf "%02x\n" $(( len_servername+9)) ) #FIXME: for TLS 1.2 and IIS servers we need extension_signature_algorithms!!
len_ciph_suites_byte = $( echo ${# cipher_suites } )
let "len_ciph_suites_byte += 2"
# we have additional 2 chars \x in each 2 byte string and 2 byte ciphers, so we need to divide by 4:
len_ciph_suites = $( printf "%02x\n" $(( $len_ciph_suites_byte / 4 )) )
len2twobytes " $len_ciph_suites "
len_ciph_suites_word = " $LEN_STR "
#[[ $DEBUG -ge 3 ]] && echo $len_ciph_suites_word
# RFC 3546 doesn't specify SSLv3 to have SNI, openssl just ignores the switch if supplied
if [ [ " $tls_low_byte " = = "00" ] ] ; then
len2twobytes $( printf "%02x\n" $(( 0 x$len_ciph_suites + 0 x27)) )
else
len2twobytes $( printf "%02x\n" $(( 0 x$len_ciph_suites + 0 x27 + 0 x$len_extension_hex + 0 x2)) )
fi
len_client_hello_word = " $LEN_STR "
#[[ $DEBUG -ge 3 ]] && echo $len_client_hello_word
if [ [ " $tls_low_byte " = = "00" ] ] ; then
len2twobytes $( printf "%02x\n" $(( 0 x$len_ciph_suites + 0 x2b)) )
else
len2twobytes $( printf "%02x\n" $(( 0 x$len_ciph_suites + 0 x2b + 0 x$len_extension_hex + 0 x2)) )
fi
len_all_word = " $LEN_STR "
#[[ $DEBUG -ge 3 ]] && echo $len_all_word
2015-10-11 23:07:16 +02:00
# if we have SSLv3, the first occurence of TLS protocol -- record layer -- is SSLv3, otherwise TLS 1.0
[ [ $tls_low_byte = = "00" ] ] && tls_word_reclayer = "03, 00"
2015-09-17 15:30:15 +02:00
TLS_CLIENT_HELLO = "
# TLS header ( 5 bytes)
2015-10-11 23:07:16 +02:00
,16, $tls_word_reclayer # TLS Version: in wireshark this is always 01 for TLS 1.0-1.2
2015-09-17 15:30:15 +02:00
,$len_all_word # Length <---
# Handshake header:
,01 # Type (x01 for ClientHello)
,00, $len_client_hello_word # Length ClientHello
2015-10-11 23:07:16 +02:00
,03, $tls_low_byte # TLS version ClientHello
2015-09-17 15:30:15 +02:00
,54, 51, 1e, 7a # Unix time since see www.moserware.com/2009/06/first-few-milliseconds-of-https.html
,de, ad, be, ef # Random 28 bytes
,31, 33, 07, 00, 00, 00, 00, 00
,cf, bd, 39, 04, cc, 16, 0a, 85
,03, 90, 9f, 77, 04, 33, d4, de
,00 # Session ID length
,$len_ciph_suites_word # Cipher suites length
,$cipher_suites
,01 # Compression methods length
,00" # Compression method (x00 for NULL)
2015-05-17 22:43:53 +02:00
2015-06-22 18:32:40 +02:00
#TODO,add (see heartbleed)
# extension lenghth (word)
# extension ec_point_formats (4 words) 1st: 00 0b
#len 00 04
# ec prot formats len: 03
# uncompressed 00
# EC point format: ansiX962_compressed_prime 01
# EC point format: ansiX962_compressed_char2 02
# ec, 1st: 00 0a
2015-09-17 15:30:15 +02:00
# 2nd length: (word) e.g. 0x34
# 3rd: ec curve len ln-2 e.g. 0x32
# 4.-n. curves e.g. 25 words
2015-06-22 18:32:40 +02:00
# Extension: Session Ticket 00 23
2015-09-17 15:30:15 +02:00
extension_signature_algorithms = "
2015-06-24 11:08:09 +02:00
00, 0d, # Type: signature_algorithms , see RFC 5246
00, 20, # len
00,1e, 06,01, 06,02, 06,03, 05,01, 05,02, 05,03,
04,01, 04,02, 04,03, 03,01, 03,02, 03,03, 02,01, 02,02, 02,03"
2015-06-22 18:32:40 +02:00
# Extension: Haertbeat 00 0f
# len 00 01
# peer allowed to send requests 01
2015-09-17 15:30:15 +02:00
if [ [ " $tls_low_byte " = = "00" ] ] ; then
all_extensions = ""
else #FIXME: we (probably) need extension_signature_algorithms here. TLS 1.2 fails on IIS otherwise
all_extensions = "
,00, $len_extension_hex # first the len of all (here: 1) extentions. We assume len(hostname) < FF - 9
,00, 00 # extension server_name
,00, $len_sni_ext # length SNI EXT
,00, $len_sni_listlen # server_name list_length
,00 # server_name type (hostname)
,00, $len_servername_hex # server_name length
,$servername_hexstr " # server_name target
fi
fd_socket 5 || return 6
code2network " $TLS_CLIENT_HELLO $all_extensions "
data = $( echo $NW_STR )
[ [ " $DEBUG " -ge 4 ] ] && echo " \" $data \" "
printf -- " $data " >& 5 2>/dev/null &
sleep $USLEEP_SND
return 0
2015-05-17 22:43:53 +02:00
}
2015-06-22 18:32:40 +02:00
# arg1: TLS version low byte
# (00: SSLv3, 01: TLS 1.0, 02: TLS 1.1, 03: TLS 1.2)
2015-05-17 22:43:53 +02:00
tls_sockets( ) {
2015-09-17 15:30:15 +02:00
local -i ret = 0
local -i save = 0
local lines
local tls_low_byte
local cipher_list_2send
tls_low_byte = " $1 "
if [ [ -n " $2 " ] ] ; then # use supplied string in arg2 if there is one
cipher_list_2send = " $2 "
else # otherwise use std ciphers then
if [ [ " $tls_low_byte " = = "03" ] ] ; then
cipher_list_2send = " $TLS12_CIPHER "
else
cipher_list_2send = " $TLS_CIPHER "
fi
fi
[ [ " $DEBUG " -ge 2 ] ] && echo "sending client hello..."
socksend_tls_clienthello " $tls_low_byte " " $cipher_list_2send "
ret = $? # 6 means opening socket didn't succeed, e.g. timeout
# if sending didn't succeed we don't bother
if [ [ $ret -eq 0 ] ] ; then
sockread_serverhello 32768
2015-09-22 17:14:36 +02:00
TLS_NOW = $( LC_ALL = C date "+%s" )
2015-09-17 15:30:15 +02:00
[ [ " $DEBUG " -ge 2 ] ] && outln "reading server hello..."
if [ [ " $DEBUG " -ge 3 ] ] ; then
hexdump -C $SOCK_REPLY_FILE | head -6
echo
fi
parse_tls_serverhello " $SOCK_REPLY_FILE "
save = $?
# see https://secure.wand.net.nz/trac/libprotoident/wiki/SSL
lines = $( count_lines " $( hexdump -C " $SOCK_REPLY_FILE " 2>$ERRFILE ) " )
[ [ " $DEBUG " -ge 2 ] ] && out " (returned $lines lines) "
# determine the return value for higher level, so that they can tell what the result is
if [ [ $save -eq 1 ] ] || [ [ $lines -eq 1 ] ] ; then
ret = 1 # NOT available
else
if [ [ 03$tls_low_byte -eq $DETECTED_TLS_VERSION ] ] ; then
ret = 0 # protocol available, TLS version returned equal to the one send
else
[ [ $DEBUG -ge 2 ] ] && echo -n " protocol send: 0x03 $tls_low_byte , returned: 0x $DETECTED_TLS_VERSION "
ret = 2 # protocol NOT available, server downgraded to $DETECTED_TLS_VERSION
fi
fi
debugme outln
else
debugme " stuck on sending: $ret "
fi
close_socket
TMPFILE = $SOCK_REPLY_FILE
tmpfile_handle $FUNCNAME .dd
return $ret
2015-05-17 22:43:53 +02:00
}
####### vulnerabilities follow #######
2015-06-22 18:32:40 +02:00
# general overview which browser "supports" which vulnerability:
2015-05-17 22:43:53 +02:00
# http://en.wikipedia.org/wiki/Transport_Layer_Security-SSL#Web_browsers
# mainly adapted from https://gist.github.com/takeshixx/10107280
2015-07-22 13:11:20 +02:00
run_heartbleed( ) {
2015-11-08 22:14:28 +01:00
[ $VULN_COUNT -le $VULN_THRESHLD ] && outln && pr_headlineln " Testing for heartbleed vulnerability " && outln
2015-09-17 15:30:15 +02:00
pr_bold " Heartbleed\c" ; out " (CVE-2014-0160) "
2015-05-17 22:43:53 +02:00
2015-10-11 23:07:16 +02:00
[ [ -z " $TLS_EXTENSIONS " ] ] && determine_tls_extensions
if ! grep -q heartbeat <<< " $TLS_EXTENSIONS " ; then
pr_green "not vulnerable (OK)"
outln " (no heartbeat extension)"
return 0
fi
2015-09-17 15:30:15 +02:00
2015-10-11 23:07:16 +02:00
# determine TLS versions offered <-- needs to come from another place
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY -tlsextdebug >$TMPFILE 2>$ERRFILE </dev/null
2015-09-17 15:30:15 +02:00
if $HAS_SED_E ; then
tls_proto_offered = $( grep -aw Protocol $TMPFILE | sed -E 's/[^[:digit:]]//g' )
else
tls_proto_offered = $( grep -aw Protocol $TMPFILE | sed -r 's/[^[:digit:]]//g' )
fi
2015-10-11 23:07:16 +02:00
#FIXME: for SSLv3 only we need to set tls_hexcode and the record layer TLS version correctly
2015-09-17 15:30:15 +02:00
case $tls_proto_offered in
12) tls_hexcode = "x03, x03" ; ;
11) tls_hexcode = "x03, x02" ; ;
*) tls_hexcode = "x03, x01" ; ;
esac
heartbleed_payload = " , x18, $tls_hexcode , x00, x03, x01, x40, x00 "
client_hello = "
# TLS header ( 5 bytes)
,x16, # content type (x16 for handshake)
2015-10-11 23:07:16 +02:00
x03, x01, # TLS record layer version
2015-09-17 15:30:15 +02:00
x00, xdc, # length
# Handshake header
x01, # type (x01 for ClientHello)
x00, x00, xd8, # length
$tls_hexcode , # TLS version
# Random (32 byte)
x53, x43, x5b, x90, x9d, x9b, x72, x0b,
xbc, x0c, xbc, x2b, x92, xa8, x48, x97,
xcf, xbd, x39, x04, xcc, x16, x0a, x85,
x03, x90, x9f, x77, x04, x33, xd4, xde,
x00, # session ID length
x00, x66, # cipher suites length
# cipher suites (51 suites)
xc0, x14, xc0, x0a, xc0, x22, xc0, x21,
x00, x39, x00, x38, x00, x88, x00, x87,
xc0, x0f, xc0, x05, x00, x35, x00, x84,
xc0, x12, xc0, x08, xc0, x1c, xc0, x1b,
x00, x16, x00, x13, xc0, x0d, xc0, x03,
x00, x0a, xc0, x13, xc0, x09, xc0, x1f,
xc0, x1e, x00, x33, x00, x32, x00, x9a,
x00, x99, x00, x45, x00, x44, xc0, x0e,
xc0, x04, x00, x2f, x00, x96, x00, x41,
xc0, x11, xc0, x07, xc0, x0c, xc0, x02,
x00, x05, x00, x04, x00, x15, x00, x12,
x00, x09, x00, x14, x00, x11, x00, x08,
x00, x06, x00, x03, x00, xff,
x01, # compression methods length
x00, # compression method (x00 for NULL)
x00, x49, # extensions length
# extension: ec_point_formats
x00, x0b, x00, x04, x03, x00, x01, x02,
# extension: elliptic_curves
x00, x0a, x00, x34, x00, x32, x00, x0e,
x00, x0d, x00, x19, x00, x0b, x00, x0c,
x00, x18, x00, x09, x00, x0a, x00, x16,
x00, x17, x00, x08, x00, x06, x00, x07,
x00, x14, x00, x15, x00, x04, x00, x05,
x00, x12, x00, x13, x00, x01, x00, x02,
x00, x03, x00, x0f, x00, x10, x00, x11,
# extension: session ticket TLS
x00, x23, x00, x00,
# extension: heartbeat
x00, x0f, x00, x01, x01"
fd_socket 5 || return 6
[ [ $DEBUG -ge 2 ] ] && outln " \nsending client hello (TLS version $tls_hexcode ) "
socksend " $client_hello " 1
sockread 16384
[ [ $DEBUG -ge 2 ] ] && outln "\nreading server hello"
if [ [ $DEBUG -ge 3 ] ] ; then
echo " $SOCKREPLY " | " ${ HEXDUMPVIEW [@] } " | head -20
outln "[...]"
outln " \nsending payload with TLS version $tls_hexcode : "
fi
socksend " $heartbleed_payload " 1
sockread 16384 $HEARTBLEED_MAX_WAITSOCK
retval = $?
if [ [ $DEBUG -ge 3 ] ] ; then
outln "\nheartbleed reply: "
echo " $SOCKREPLY " | " ${ HEXDUMPVIEW [@] } "
outln
fi
lines_returned = $( echo " $SOCKREPLY " | " ${ HEXDUMP [@] } " | wc -l | sed 's/ //g' )
if [ [ $lines_returned -gt 1 ] ] ; then
pr_red "VULNERABLE (NOT ok)"
ret = 1
else
pr_green "not vulnerable (OK)"
ret = 0
fi
[ [ $retval -eq 3 ] ] && out " (timed out)"
outln
close_socket
tmpfile_handle $FUNCNAME .txt
return $ret
2015-05-17 22:43:53 +02:00
}
# helper function
ok_ids( ) {
2015-09-17 15:30:15 +02:00
pr_greenln "\n ok -- something resetted our ccs packets"
return 0
2015-05-17 22:43:53 +02:00
}
#FIXME: At a certain point heartbleed and ccs needs to be changed and make use of code2network using a file, then tls_sockets
2015-07-22 13:11:20 +02:00
run_ccs_injection( ) {
2015-09-17 15:30:15 +02:00
# see https://www.openssl.org/news/secadv_20140605.txt
# mainly adapted from Ramon de C Valle's C code from https://gist.github.com/rcvalle/71f4b027d61a78c42607
2015-11-08 22:14:28 +01:00
[ [ $VULN_COUNT -le $VULN_THRESHLD ] ] && outln && pr_headlineln " Testing for CCS injection vulnerability " && outln
2015-09-17 15:30:15 +02:00
pr_bold " CCS" ; out " (CVE-2014-0224) "
2015-05-17 22:43:53 +02:00
2015-10-11 23:07:16 +02:00
# determine TLS versions offered <-- needs to come from another place
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY >$TMPFILE 2>$ERRFILE </dev/null
2015-09-17 15:30:15 +02:00
if $HAS_SED_E ; then
tls_proto_offered = $( grep -aw Protocol $TMPFILE | sed -E 's/[^[:digit:]]//g' )
else
tls_proto_offered = $( grep -aw Protocol $TMPFILE | sed -r 's/[^[:digit:]]//g' )
fi
case $tls_proto_offered in
12) tls_hexcode = "x03, x03" ; ;
11) tls_hexcode = "x03, x02" ; ;
*) tls_hexcode = "x03, x01" ; ;
2015-10-11 23:07:16 +02:00
#FIXME: for SSLv3 only we need to set tls_hexcode and the record layer TLS version correctly
2015-09-17 15:30:15 +02:00
esac
ccs_message = " , x14, $tls_hexcode ,x00, x01, x01 "
client_hello = "
# TLS header (5 bytes)
2015-10-11 23:07:16 +02:00
,x16, # content type (x16 for handshake)
x03, x01, # TLS version in record layer is always TLS 1.0 (except SSLv3)
x00, x93, # length
2015-09-17 15:30:15 +02:00
# Handshake header
2015-10-11 23:07:16 +02:00
x01, # type (x01 for ClientHello)
x00, x00, x8f, # length
$tls_hexcode , # TLS version
2015-09-17 15:30:15 +02:00
# Random (32 byte)
x53, x43, x5b, x90, x9d, x9b, x72, x0b,
xbc, x0c, xbc, x2b, x92, xa8, x48, x97,
xcf, xbd, x39, x04, xcc, x16, x0a, x85,
x03, x90, x9f, x77, x04, x33, xd4, xde,
x00, # session ID length
x00, x68, # cipher suites length
# Cipher suites (51 suites)
xc0, x13, xc0, x12, xc0, x11, xc0, x10,
xc0, x0f, xc0, x0e, xc0, x0d, xc0, x0c,
xc0, x0b, xc0, x0a, xc0, x09, xc0, x08,
xc0, x07, xc0, x06, xc0, x05, xc0, x04,
xc0, x03, xc0, x02, xc0, x01, x00, x39,
x00, x38, x00, x37, x00, x36, x00, x35, x00, x34,
x00, x33, x00, x32, x00, x31, x00, x30,
x00, x2f, x00, x16, x00, x15, x00, x14,
x00, x13, x00, x12, x00, x11, x00, x10,
x00, x0f, x00, x0e, x00, x0d, x00, x0c,
x00, x0b, x00, x0a, x00, x09, x00, x08,
x00, x07, x00, x06, x00, x05, x00, x04,
x00, x03, x00, x02, x00, x01, x01, x00"
fd_socket 5 || return 6
2015-05-17 22:43:53 +02:00
2015-07-07 22:59:31 +02:00
# we now make a standard handshake ...
2015-09-17 15:30:15 +02:00
debugme out "\nsending client hello, "
socksend " $client_hello " 1
sockread 16384
debugme outln "\nreading server hello"
if [ [ $DEBUG -ge 3 ] ] ; then
echo " $SOCKREPLY " | " ${ HEXDUMPVIEW [@] } " | head -20
outln "[...]"
outln " \npayload #1 with TLS version $tls_hexcode : "
fi
2015-05-17 22:43:53 +02:00
2015-07-07 22:59:31 +02:00
# ... and then send the a change cipher spec message
2015-09-17 15:30:15 +02:00
socksend " $ccs_message " 1 || ok_ids
sockread 2048 $CCS_MAX_WAITSOCK
if [ [ $DEBUG -ge 3 ] ] ; then
outln "\n1st reply: "
out " $SOCKREPLY " | " ${ HEXDUMPVIEW [@] } " | head -20
2015-07-07 22:59:31 +02:00
# ok: 15 | 0301 | 02 | 02 | 0a
# ALERT | TLS 1.0 | Length=2 | Unexpected Message (0a)
# or just timed out
2015-09-17 15:30:15 +02:00
outln
outln " payload #2 with TLS version $tls_hexcode : "
fi
2015-05-17 22:43:53 +02:00
2015-09-17 15:30:15 +02:00
socksend " $ccs_message " 2 || ok_ids
sockread 2048 $CCS_MAX_WAITSOCK
retval = $?
2015-05-17 22:43:53 +02:00
2015-09-17 15:30:15 +02:00
if [ [ $DEBUG -ge 3 ] ] ; then
outln "\n2nd reply: "
printf -- " $SOCKREPLY " | " ${ HEXDUMPVIEW [@] } "
2015-07-07 22:59:31 +02:00
# not ok: 15 | 0301 | 02 | 02 | 15
# ALERT | TLS 1.0 | Length=2 | Decryption failed (21)
2015-05-17 22:43:53 +02:00
# ok: 0a or nothing: ==> RST
2015-09-17 15:30:15 +02:00
outln
fi
byte6 = $( echo " $SOCKREPLY " | " ${ HEXDUMPPLAIN [@] } " | sed 's/^..........//' )
lines = $( echo " $SOCKREPLY " | " ${ HEXDUMP [@] } " | count_lines )
debugme echo " lines: $lines , byte6: $byte6 "
if [ [ " $byte6 " = = "0a" ] ] || [ [ " $lines " -gt 1 ] ] ; then
pr_green "not vulnerable (OK)"
ret = 0
else
pr_red "VULNERABLE (NOT ok)"
ret = 1
fi
[ [ $retval -eq 3 ] ] && out " (timed out)"
outln
close_socket
tmpfile_handle $FUNCNAME .txt
return $ret
2015-05-17 22:43:53 +02:00
}
2015-08-24 23:50:03 +02:00
local_problem( ) {
2015-09-17 15:30:15 +02:00
pr_litemagentaln " Local problem: $1 "
2015-08-24 23:50:03 +02:00
}
2015-07-22 13:11:20 +02:00
run_renego( ) {
2015-05-17 22:43:53 +02:00
# no SNI here. Not needed as there won't be two different SSL stacks for one IP
2015-09-17 15:30:15 +02:00
local legacycmd = ""
local insecure_renogo_str = "Secure Renegotiation IS NOT"
local sec_renego sec_client_renego
2015-05-17 22:43:53 +02:00
2015-10-15 14:15:07 +02:00
[ $VULN_COUNT -le $VULN_THRESHLD ] && outln && pr_headlineln " Testing for Renegotiation vulnerabilities " && outln
2015-05-17 22:43:53 +02:00
2015-09-17 15:30:15 +02:00
pr_bold " Secure Renegotiation " ; out "(CVE-2009-3555) " # and RFC5746, OSVDB 59968-59974
# community.qualys.com/blogs/securitylabs/2009/11/05/ssl-and-tls-authentication-gap-vulnerability-discovered
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $OPTIMAL_PROTO $STARTTLS $BUGS -connect $NODEIP :$PORT $SNI $PROXY 2>& 1 </dev/null >$TMPFILE 2>$ERRFILE
2015-10-11 23:07:16 +02:00
if sclient_connect_successful $? $TMPFILE ; then
2015-09-17 15:30:15 +02:00
grep -iaq " $insecure_renogo_str " $TMPFILE
sec_renego = $? # 0= Secure Renegotiation IS NOT supported
2015-05-17 22:43:53 +02:00
#FIXME: didn't occur to me yet but why not also to check on "Secure Renegotiation IS supported"
2015-09-17 15:30:15 +02:00
case $sec_renego in
0) pr_redln "VULNERABLE (NOT ok)" ; ;
1) pr_greenln "not vulnerable (OK)" ; ;
*) pr_litemagentaln " FIXME (bug): $sec_renego " ; ;
esac
else
pr_litemagentaln "handshake didn't succeed"
fi
pr_bold " Secure Client-Initiated Renegotiation " # RFC 5746
# see: https://community.qualys.com/blogs/securitylabs/2011/10/31/tls-renegotiation-and-denial-of-service-attacks
# http://blog.ivanristic.com/2009/12/testing-for-ssl-renegotiation.html -- head/get doesn't seem to be needed though
case " $OSSL_VER " in
0.9.8*) # we need this for Mac OSX unfortunately
case " $OSSL_VER_APPENDIX " in
[ a-l] ) local_problem " $OPENSSL cannot test this secure renegotiation vulnerability "
return 3 ; ;
[ m-z] ) ; ; # all ok
esac ; ;
1.0.1*| 1.0.2*) legacycmd = "-legacy_renegotiation" ; ;
0.9.9*| 1.0*) ; ; # all ok
esac
2015-10-11 23:07:16 +02:00
if $CLIENT_AUTH ; then
pr_litemagentaln "client authentication prevents this from being tested"
2015-09-17 15:30:15 +02:00
sec_client_renego = 1
else
2015-10-11 23:07:16 +02:00
# We need up to two tries here, as some LiteSpeed servers don't answer on "R" and block. Thus first try in the background
# msg enables us to look deeper into it while debugging
2015-11-03 23:29:53 +01:00
echo R | $OPENSSL s_client $OPTIMAL_PROTO $BUGS $legacycmd $STARTTLS -msg -connect $NODEIP :$PORT $SNI $PROXY >$TMPFILE 2>>$ERRFILE &
2015-10-11 23:07:16 +02:00
wait_kill $! $HEADER_MAXSLEEP
if [ [ $? -eq 3 ] ] ; then
pr_litegreen "likely not vulnerable (OK)" ; outln " (timed out)" # it hung
sec_client_renego = 1
else
# second try in the foreground as we are sure now it won't hang
2015-11-03 23:29:53 +01:00
echo R | $OPENSSL s_client $legacycmd $STARTTLS $BUGS -msg -connect $NODEIP :$PORT $SNI $PROXY >$TMPFILE 2>>$ERRFILE
2015-10-11 23:07:16 +02:00
sec_client_renego = $? # 0=client is renegotiating & doesn't return an error --> vuln!
case $sec_client_renego in
0) pr_litered "VULNERABLE (NOT ok)" ; outln ", DoS threat" ; ;
1) pr_litegreenln "not vulnerable (OK)" ; ;
*) " FIXME (bug): $sec_client_renego " ; ;
esac
fi
2015-09-17 15:30:15 +02:00
fi
#FIXME Insecure Client-Initiated Renegotiation is missing
tmpfile_handle $FUNCNAME .txt
return $(( $sec_renego + $sec_client_renego ))
2015-05-17 22:43:53 +02:00
#FIXME: the return value is wrong, should be 0 if all ok. But as the caller doesn't care we don't care either ... yet ;-)
}
2015-07-22 13:11:20 +02:00
run_crime( ) {
2015-09-17 15:30:15 +02:00
local -i ret = 0
local addcmd = ""
# in a nutshell: don't offer TLS/SPDY compression on the server side
# This tests for CRIME Vulnerability (www.ekoparty.org/2012/juliano-rizzo.php) on HTTPS, not SPDY (yet)
2015-05-17 22:43:53 +02:00
# Please note that it is an attack where you need client side control, so in regular situations this
2015-09-17 15:30:15 +02:00
# means anyway "game over", w/wo CRIME
# www.h-online.com/security/news/item/Vulnerability-in-SSL-encryption-is-barely-exploitable-1708604.html
2015-10-15 14:15:07 +02:00
[ $VULN_COUNT -le $VULN_THRESHLD ] && outln && pr_headlineln " Testing for CRIME vulnerability " && outln
2015-09-17 15:30:15 +02:00
pr_bold " CRIME, TLS " ; out "(CVE-2012-4929) "
# first we need to test whether OpenSSL binary has zlib support
$OPENSSL zlib -e -a -in /dev/stdin & >/dev/stdout </dev/null | grep -q zlib
if [ [ $? -eq 0 ] ] ; then
local_problem " $OPENSSL lacks zlib support "
return 7
fi
[ [ " $OSSL_VER " = = "*0.9.8*" ] ] && addcmd = "-no_ssl2"
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $OPTIMAL_PROTO $BUGS $addcmd $STARTTLS -connect $NODEIP :$PORT $PROXY $SNI </dev/null & >$TMPFILE
2015-09-17 15:30:15 +02:00
if grep -a Compression $TMPFILE | grep -aq NONE >/dev/null; then
pr_litegreen "not vulnerable (OK)"
2015-10-11 23:07:16 +02:00
if [ [ $SERVICE != "HTTP" ] ] && ! $CLIENT_AUTH ; then
out " (not using HTTP anyway)"
fi
2015-09-17 15:30:15 +02:00
ret = 0
else
if [ [ $SERVICE = = "HTTP" ] ] ; then
pr_litered "VULNERABLE (NOT ok)"
else
pr_brown "VULNERABLE (NOT ok), but not using HTTP: probably no exploit known"
fi
ret = 1
fi
2015-10-11 23:07:16 +02:00
# not clear whether this is a protocol != HTTP as one needs to have the ability to repeatedly modify the input
# which is done e.g. via javascript in the context of HTTP
2015-09-17 15:30:15 +02:00
outln
2015-05-17 22:43:53 +02:00
# this needs to be re-done i order to remove the redundant check for spdy
2015-09-17 15:30:15 +02:00
# weed out starttls, spdy-crime is a web thingy
# if [[ "x$STARTTLS" != "x" ]]; then
# echo
# return $ret
# fi
# weed out non-webports, spdy-crime is a web thingy. there's a catch thoug, you see it?
# case $PORT in
# 25|465|587|80|110|143|993|995|21)
# echo
# return $ret
# esac
# $OPENSSL s_client help 2>&1 | grep -qw nextprotoneg
# if [[ $? -eq 0 ]]; then
# $OPENSSL s_client -host $NODE -port $PORT -nextprotoneg $NPN_PROTOs $SNI </dev/null 2>/dev/null >$TMPFILE
# if [[ $? -eq 0 ]]; then
# echo
# pr_bold "CRIME Vulnerability, SPDY \c" ; outln "(CVE-2012-4929): \c"
# STR=$(grep Compression $TMPFILE )
# if echo $STR | grep -q NONE >/dev/null; then
# pr_green "not vulnerable (OK)"
# ret=$((ret + 0))
# else
# pr_red "VULNERABLE (NOT ok)"
# ret=$((ret + 1))
# fi
# fi
# fi
# [[ $DEBUG -eq 2 ]] outln "$STR"
tmpfile_handle $FUNCNAME .txt
return $ret
2015-05-17 22:43:53 +02:00
}
# BREACH is a HTTP-level compression & an attack which works against any cipher suite and is agnostic
2015-05-29 19:56:57 +02:00
# to the version of TLS/SSL, more: http://www.breachattack.com/ . Foreign referrers are the important thing here!
2015-10-15 14:15:07 +02:00
# Mitigation: see https://community.qualys.com/message/20360
2015-07-22 13:11:20 +02:00
run_breach( ) {
2015-09-17 15:30:15 +02:00
local header
local -i ret = 0
2015-09-28 22:54:00 +02:00
local -i was_killed = 0
2015-09-17 15:30:15 +02:00
local referer useragent
local url
2015-10-13 22:25:01 +02:00
local spaces = " "
local disclaimer = ""
2015-09-17 15:30:15 +02:00
[ [ $SERVICE != "HTTP" ] ] && return 7
2015-10-15 14:15:07 +02:00
[ [ $VULN_COUNT -le $VULN_THRESHLD ] ] && outln && pr_headlineln " Testing for BREACH (HTTP compression) vulnerability " && outln
2015-09-17 15:30:15 +02:00
pr_bold " BREACH" ; out " (CVE-2013-3587) "
url = " $1 "
[ [ -z " $url " ] ] && url = "/"
2015-10-13 22:25:01 +02:00
disclaimer = " - only supplied \" $url \" tested "
2015-10-11 23:07:16 +02:00
referer = "https://google.com/"
2015-10-15 14:15:07 +02:00
[ [ " $NODE " = ~ google ] ] && referer = "https://yandex.ru/" # otherwise we have a false positive for google.com
2015-10-11 23:07:16 +02:00
useragent = " $UA_STD "
2015-10-15 14:15:07 +02:00
$SNEAKY && useragent = " $UA_SNEAKY "
2015-11-03 23:29:53 +01:00
printf " GET $url HTTP/1.1\r\nHost: $NODE \r\nUser-Agent: $useragent \r\nReferer: $referer \r\nConnection: Close\r\nAccept-encoding: gzip,deflate,compress\r\nAccept: text/*\r\n\r\n " | $OPENSSL s_client $OPTIMAL_PROTO $BUGS -quiet -ign_eof -connect $NODEIP :$PORT $PROXY $SNI 1>$TMPFILE 2>$ERRFILE &
2015-09-28 22:54:00 +02:00
wait_kill $! $HEADER_MAXSLEEP
2015-10-11 23:07:16 +02:00
was_killed = $? # !=0 was killed
result = $( awk '/^Content-Encoding/ { print $2 }' $TMPFILE )
2015-09-28 22:54:00 +02:00
result = $( strip_lf " $result " )
2015-10-11 23:07:16 +02:00
debugme grep '^Content-Encoding' $TMPFILE
if [ [ ! -s $TMPFILE ] ] ; then
2015-09-28 22:54:00 +02:00
pr_litemagenta "failed (HTTP header request stalled"
2015-10-11 23:07:16 +02:00
[ [ $was_killed -ne 0 ] ] && pr_litemagenta " and was terminated"
pr_litemagenta ") "
2015-09-17 15:30:15 +02:00
ret = 3
2015-09-28 22:54:00 +02:00
elif [ [ -z $result ] ] ; then
2015-10-13 22:25:01 +02:00
pr_green "no HTTP compression (OK) "
outln " $disclaimer "
ret = 0
2015-09-28 22:54:00 +02:00
else
2015-10-13 22:25:01 +02:00
pr_litered " potentially NOT ok, uses $result HTTP compression. "
outln " $disclaimer "
outln " $spaces Can be ignored for static pages or if no secrets in the page "
2015-09-28 22:54:00 +02:00
ret = 1
2015-09-17 15:30:15 +02:00
fi
2015-09-28 22:54:00 +02:00
# Any URL can be vulnerable. I am testing now only the given URL!
tmpfile_handle $FUNCNAME .txt
2015-09-17 15:30:15 +02:00
return $ret
2015-05-17 22:43:53 +02:00
}
2015-05-29 19:44:27 +02:00
# Padding Oracle On Downgraded Legacy Encryption, in a nutshell: don't use CBC Ciphers in SSLv3
2015-07-22 13:11:20 +02:00
run_ssl_poodle( ) {
2015-10-11 23:07:16 +02:00
local -i sclient_success = 0
2015-09-17 15:30:15 +02:00
local cbc_ciphers
local cbc_ciphers = "SRP-DSS-AES-256-CBC-SHA:SRP-RSA-AES-256-CBC-SHA:SRP-AES-256-CBC-SHA:RSA-PSK-AES256-CBC-SHA:PSK-AES256-CBC-SHA:SRP-DSS-AES-128-CBC-SHA:SRP-RSA-AES-128-CBC-SHA:SRP-AES-128-CBC-SHA:IDEA-CBC-SHA:IDEA-CBC-MD5:RC2-CBC-MD5:RSA-PSK-AES128-CBC-SHA:PSK-AES128-CBC-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-DES-CBC3-SHA:SRP-DSS-3DES-EDE-CBC-SHA:SRP-RSA-3DES-EDE-CBC-SHA:SRP-3DES-EDE-CBC-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:DH-RSA-DES-CBC3-SHA:DH-DSS-DES-CBC3-SHA:AECDH-DES-CBC3-SHA:ADH-DES-CBC3-SHA:ECDH-RSA-DES-CBC3-SHA:ECDH-ECDSA-DES-CBC3-SHA:DES-CBC3-SHA:DES-CBC3-MD5:RSA-PSK-3DES-EDE-CBC-SHA:PSK-3DES-EDE-CBC-SHA:EXP1024-DHE-DSS-DES-CBC-SHA:EDH-RSA-DES-CBC-SHA:EDH-DSS-DES-CBC-SHA:DH-RSA-DES-CBC-SHA:DH-DSS-DES-CBC-SHA:ADH-DES-CBC-SHA:EXP1024-DES-CBC-SHA:DES-CBC-SHA:EXP1024-RC2-CBC-MD5:DES-CBC-MD5:EXP-EDH-RSA-DES-CBC-SHA:EXP-EDH-DSS-DES-CBC-SHA:EXP-ADH-DES-CBC-SHA:EXP-DES-CBC-SHA:EXP-RC2-CBC-MD5:EXP-RC2-CBC-MD5"
local cbc_ciphers_krb = "KRB5-IDEA-CBC-SHA:KRB5-IDEA-CBC-MD5:KRB5-DES-CBC3-SHA:KRB5-DES-CBC3-MD5:KRB5-DES-CBC-SHA:KRB5-DES-CBC-MD5:EXP-KRB5-RC2-CBC-SHA:EXP-KRB5-DES-CBC-SHA:EXP-KRB5-RC2-CBC-MD5:EXP-KRB5-DES-CBC-MD5"
2015-10-15 14:15:07 +02:00
[ $VULN_COUNT -le $VULN_THRESHLD ] && outln && pr_headlineln " Testing for SSLv3 POODLE (Padding Oracle On Downgraded Legacy Encryption) " && outln
2015-09-17 15:30:15 +02:00
pr_bold " POODLE, SSL" ; out " (CVE-2014-3566) "
2015-10-11 23:07:16 +02:00
#nr_supported_ciphers=$(count_ciphers $(actually_supported_ciphers $cbc_ciphers:cbc_ciphers_krb))
2015-09-17 15:30:15 +02:00
cbc_ciphers = $( $OPENSSL ciphers -v 'ALL:eNULL' 2>$ERRFILE | awk '/CBC/ { print $1 }' | tr '\n' ':' )
2015-10-11 23:07:16 +02:00
2015-09-17 15:30:15 +02:00
debugme echo $cbc_ciphers
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -ssl3 $STARTTLS $BUGS -cipher $cbc_ciphers -connect $NODEIP :$PORT $PROXY $SNI >$TMPFILE 2>$ERRFILE </dev/null
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE
sclient_success = $?
[ [ $DEBUG -eq 2 ] ] && egrep -q "error|failure" $ERRFILE | egrep -av "unable to get local|verify error"
if [ [ $sclient_success -eq 0 ] ] ; then
2015-09-17 15:30:15 +02:00
pr_litered "VULNERABLE (NOT ok)" ; out ", uses SSLv3+CBC (check TLS_FALLBACK_SCSV mitigation below)"
else
pr_green "not vulnerable (OK)"
fi
outln
tmpfile_handle $FUNCNAME .txt
2015-10-11 23:07:16 +02:00
return $sclient_success
2015-05-17 22:43:53 +02:00
}
2015-05-29 19:56:57 +02:00
# for appliance which use padding, no fallback needed
2015-07-22 13:11:20 +02:00
run_tls_poodle( ) {
2015-09-17 15:30:15 +02:00
pr_bold " POODLE, SSL" ; out " CVE-2014-8730), experimental "
#FIXME
echo "#FIXME"
return 7
2015-05-17 22:43:53 +02:00
}
2015-07-22 13:11:20 +02:00
run_tls_fallback_scsv( ) {
2015-09-17 15:30:15 +02:00
local -i ret = 0
2015-10-15 14:15:07 +02:00
[ $VULN_COUNT -le $VULN_THRESHLD ] && outln && pr_headlineln " Testing for TLS_FALLBACK_SCSV Protection " && outln
2015-09-17 15:30:15 +02:00
pr_bold " TLS_FALLBACK_SCSV" ; out " (RFC 7507), experim. "
# This isn't a vulnerability check per se, but checks for the existence of
# the countermeasure to protect against protocol downgrade attacks.
# First check we have support for TLS_FALLBACK_SCSV in our local OpenSSL
2015-10-11 23:07:16 +02:00
if ! $OPENSSL s_client -h 2>& 1 | grep -q "\-fallback_scsv" ; then
2015-09-17 15:30:15 +02:00
local_problem " $OPENSSL lacks TLS_FALLBACK_SCSV support "
return 4
fi
#TODO: this need some tuning: a) if one protocol is supported only it has practcally no value (theoretical it's interesting though)
# b) for IIS6 + openssl 1.0.2 this won't work
# c) best to make sure that we hit a specific protocol, see https://alpacapowered.wordpress.com/2014/10/20/ssl-poodle-attack-what-is-this-scsv-thingy/
# d) minor: we should do "-state" here
# first: make sure we have tls1_2:
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI -no_tls1_2 >$TMPFILE 2>$ERRFILE </dev/null
2015-10-11 23:07:16 +02:00
if ! sclient_connect_successful $? $TMPFILE ; then
2015-10-15 14:15:07 +02:00
pr_litegreen "No fallback possible, TLS 1.2 is the only protocol (OK)"
2015-09-17 15:30:15 +02:00
ret = 7
else
2015-10-11 23:07:16 +02:00
# ...and do the test (we need to parse the error here!)
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI -no_tls1_2 -fallback_scsv & >$TMPFILE </dev/null
2015-09-17 15:30:15 +02:00
if grep -q "CONNECTED(00" " $TMPFILE " ; then
if grep -qa "BEGIN CERTIFICATE" " $TMPFILE " ; then
pr_brown "Downgrade attack prevention NOT supported"
ret = 1
elif grep -qa "alert inappropriate fallback" " $TMPFILE " ; then
pr_litegreen "Downgrade attack prevention supported (OK)"
ret = 0
elif grep -qa "alert handshake failure" " $TMPFILE " ; then
# see RFC 7507, https://github.com/drwetter/testssl.sh/issues/121
pr_brown "\"handshake failure\" instead of \"inappropriate fallback\" (likely NOT ok)"
ret = 2
elif grep -qa "ssl handshake failure" " $TMPFILE " ; then
pr_brown "some unexpected \"handshake failure\" instead of \"inappropriate fallback\" (likely NOT ok)"
ret = 3
else
pr_litemagenta "Check failed, unexpected result "
out " , run $PROG_NAME -Z --debug=1 and look at $TEMPDIR /*tls_fallback_scsv.txt "
fi
else
pr_litemagenta "test failed (couldn't connect)"
ret = 7
fi
fi
outln
tmpfile_handle $FUNCNAME .txt
return $ret
2015-06-11 21:41:25 +02:00
}
2015-05-27 23:31:25 +02:00
2015-05-17 22:43:53 +02:00
# Factoring RSA Export Keys: don't use EXPORT RSA ciphers, see https://freakattack.com/
2015-07-22 13:11:20 +02:00
run_freak( ) {
2015-10-11 23:07:16 +02:00
local -i sclient_success = 0
2015-09-21 14:03:48 +02:00
local -i nr_supported_ciphers = 0
2015-09-17 15:30:15 +02:00
# with correct build it should list these 7 ciphers (plus the two latter as SSLv2 ciphers):
local exportrsa_cipher_list = "EXP1024-DES-CBC-SHA:EXP1024-RC4-SHA:EXP-EDH-RSA-DES-CBC-SHA:EXP-DH-RSA-DES-CBC-SHA:EXP-DES-CBC-SHA:EXP-RC2-CBC-MD5:EXP-RC2-CBC-MD5:EXP-RC4-MD5:EXP-RC4-MD5"
local addtl_warning = ""
2015-10-15 14:15:07 +02:00
[ $VULN_COUNT -le $VULN_THRESHLD ] && outln && pr_headlineln " Testing for FREAK attack " && outln
2015-09-17 15:30:15 +02:00
pr_bold " FREAK" ; out " (CVE-2015-0204) "
2015-09-21 14:03:48 +02:00
nr_supported_ciphers = $( count_ciphers $( actually_supported_ciphers $exportrsa_cipher_list ) )
2015-09-17 15:30:15 +02:00
#echo "========= ${PIPESTATUS[*]}
2015-09-21 14:03:48 +02:00
case $nr_supported_ciphers in
2015-09-17 15:30:15 +02:00
0) local_problem " $OPENSSL doesn't have any EXPORT RSA ciphers configured "
return 7 ; ;
1| 2| 3)
2015-09-21 14:03:48 +02:00
addtl_warning = " ( $magenta " " tested only with $nr_supported_ciphers out of 9 ciphers only! $off ) " ; ;
2015-09-17 15:30:15 +02:00
8| 9| 10| 11)
addtl_warning = "" ; ;
4| 5| 6| 7)
2015-09-21 14:03:48 +02:00
addtl_warning = " (tested with $nr_supported_ciphers /9 ciphers) " ; ;
2015-09-17 15:30:15 +02:00
esac
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS $BUGS -cipher $exportrsa_cipher_list -connect $NODEIP :$PORT $PROXY $SNI >$TMPFILE 2>$ERRFILE </dev/null
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE
sclient_success = $?
[ [ $DEBUG -eq 2 ] ] && egrep -a "error|failure" $ERRFILE | egrep -av "unable to get local|verify error"
if [ [ $sclient_success -eq 0 ] ] ; then
2015-09-17 15:30:15 +02:00
pr_red "VULNERABLE (NOT ok)" ; out ", uses EXPORT RSA ciphers"
else
pr_green "not vulnerable (OK)" ; out " $addtl_warning "
fi
outln
debugme echo $( actually_supported_ciphers $exportrsa_cipher_list )
2015-09-21 14:03:48 +02:00
debugme echo $nr_supported_ciphers
2015-09-17 15:30:15 +02:00
tmpfile_handle $FUNCNAME .txt
return $ret
2015-05-17 22:43:53 +02:00
}
2015-05-27 14:28:18 +02:00
# see https://weakdh.org/logjam.html
2015-07-22 13:11:20 +02:00
run_logjam( ) {
2015-10-11 23:07:16 +02:00
local -i sclient_success = 0
2015-09-17 15:30:15 +02:00
local exportdhe_cipher_list = "EXP1024-DHE-DSS-DES-CBC-SHA:EXP1024-DHE-DSS-RC4-SHA:EXP-EDH-RSA-DES-CBC-SHA:EXP-EDH-DSS-DES-CBC-SHA"
2015-09-21 14:03:48 +02:00
local -i nr_supported_ciphers = 0
2015-09-17 15:30:15 +02:00
local addtl_warning = ""
2015-10-15 14:15:07 +02:00
[ $VULN_COUNT -le $VULN_THRESHLD ] && outln && pr_headlineln " Testing for LOGJAM vulnerability " && outln
2015-09-17 15:30:15 +02:00
pr_bold " LOGJAM" ; out " (CVE-2015-4000), experimental "
2015-09-21 14:03:48 +02:00
nr_supported_ciphers = $( count_ciphers $( actually_supported_ciphers $exportdhe_cipher_list ) )
2015-09-17 15:30:15 +02:00
2015-09-21 14:03:48 +02:00
case $nr_supported_ciphers in
2015-09-17 15:30:15 +02:00
0) local_problem " $OPENSSL doesn't have any DHE EXPORT ciphers configured "
return 3 ; ;
2015-09-21 14:03:48 +02:00
1| 2) addtl_warning = " ( $magenta " " tested w/ $nr_supported_ciphers /4 ciphers only! $off ) " ; ;
3) addtl_warning = " (tested w/ $nr_supported_ciphers /4 ciphers) " ; ;
2015-09-17 15:30:15 +02:00
4) ; ;
esac
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS $BUGS -cipher $exportdhe_cipher_list -connect $NODEIP :$PORT $PROXY $SNI >$TMPFILE 2>$ERRFILE </dev/null
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE
sclient_success = $?
[ [ $DEBUG -eq 2 ] ] && egrep -a "error|failure" $ERRFILE | egrep -av "unable to get local|verify error"
2015-09-17 15:30:15 +02:00
addtl_warning = " $addtl_warning , common primes not checked. "
if $HAS_DH_BITS ; then
if ! $do_allciphers && ! $do_cipher_per_proto && $HAS_DH_BITS ; then
addtl_warning = " $addtl_warning \" $PROG_NAME -E/-e\" spots candidates "
else
2015-09-22 20:09:26 +02:00
$HAS_DH_BITS && addtl_warning = " $addtl_warning See below for any DH ciphers + bit size "
2015-09-17 15:30:15 +02:00
fi
fi
2015-10-11 23:07:16 +02:00
if [ [ $sclient_success -eq 0 ] ] ; then
2015-09-17 15:30:15 +02:00
pr_red "VULNERABLE (NOT ok)" ; out ", uses DHE EXPORT ciphers, common primes not checked."
else
pr_green "not vulnerable (OK)" ; out " $addtl_warning "
fi
outln
debugme echo $( actually_supported_ciphers $exportdhe_cipher_list )
2015-09-21 14:03:48 +02:00
debugme echo $nr_supported_ciphers
2015-09-17 15:30:15 +02:00
tmpfile_handle $FUNCNAME .txt
2015-10-11 23:07:16 +02:00
return $sclient_success
2015-05-27 14:28:18 +02:00
}
2015-06-28 13:52:42 +02:00
# TODO: perfect candidate for replacement by sockets, so is freak
2015-05-27 14:28:18 +02:00
2015-05-17 22:43:53 +02:00
# Browser Exploit Against SSL/TLS: don't use CBC Ciphers in SSLv3 TLSv1.0
2015-07-22 13:11:20 +02:00
run_beast( ) {
2015-09-17 15:30:15 +02:00
local hexcode dash cbc_cipher sslvers kx auth enc mac export
local detected_proto
2015-10-11 23:07:16 +02:00
local -i sclient_success = 0
2015-09-17 15:30:15 +02:00
local detected_cbc_ciphers = ""
local higher_proto_supported = ""
2015-10-11 23:07:16 +02:00
local -i sclient_success = 0
2015-09-17 15:30:15 +02:00
local vuln_beast = false
local spaces = " "
local cr = $'\n'
local first = true
local continued = false
2015-10-01 13:27:14 +02:00
local cbc_cipher_list = "EXP-RC2-CBC-MD5:IDEA-CBC-SHA:EXP-DES-CBC-SHA:DES-CBC-SHA:DES-CBC3-SHA:EXP-DH-DSS-DES-CBC-SHA:DH-DSS-DES-CBC-SHA:DH-DSS-DES-CBC3-SHA:EXP-DH-RSA-DES-CBC-SHA:DH-RSA-DES-CBC-SHA:DH-RSA-DES-CBC3-SHA:EXP-EDH-DSS-DES-CBC-SHA:EDH-DSS-DES-CBC-SHA:EDH-DSS-DES-CBC3-SHA:EXP-EDH-RSA-DES-CBC-SHA:EDH-RSA-DES-CBC-SHA:EDH-RSA-DES-CBC3-SHA:EXP-ADH-DES-CBC-SHA:ADH-DES-CBC-SHA:ADH-DES-CBC3-SHA:KRB5-DES-CBC-SHA:KRB5-DES-CBC3-SHA:KRB5-IDEA-CBC-SHA:KRB5-DES-CBC-MD5:KRB5-DES-CBC3-MD5:KRB5-IDEA-CBC-MD5:EXP-KRB5-DES-CBC-SHA:EXP-KRB5-RC2-CBC-SHA:EXP-KRB5-DES-CBC-MD5:EXP-KRB5-RC2-CBC-MD5:AES128-SHA:DH-DSS-AES128-SHA:DH-RSA-AES128-SHA:DHE-DSS-AES128-SHA:DHE-RSA-AES128-SHA:ADH-AES128-SHA:AES256-SHA:DH-DSS-AES256-SHA:DH-RSA-AES256-SHA:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:ADH-AES256-SHA:AES128-SHA256:AES256-SHA256:DH-DSS-AES128-SHA256:DH-RSA-AES128-SHA256:DHE-DSS-AES128-SHA256:CAMELLIA128-SHA:DH-DSS-CAMELLIA128-SHA:DH-RSA-CAMELLIA128-SHA:DHE-DSS-CAMELLIA128-SHA:DHE-RSA-CAMELLIA128-SHA:ADH-CAMELLIA128-SHA:EXP1024-DES-CBC-SHA:EXP1024-DHE-DSS-DES-CBC-SHA:DHE-RSA-AES128-SHA256:DH-DSS-AES256-SHA256:DH-RSA-AES256-SHA256:DHE-DSS-AES256-SHA256:DHE-RSA-AES256-SHA256:ADH-AES128-SHA256:ADH-AES256-SHA256:CAMELLIA256-SHA:DH-DSS-CAMELLIA256-SHA:DH-RSA-CAMELLIA256-SHA:DHE-DSS-CAMELLIA256-SHA:DHE-RSA-CAMELLIA256-SHA:ADH-CAMELLIA256-SHA:PSK-3DES-EDE-CBC-SHA:PSK-AES128-CBC-SHA:PSK-AES256-CBC-SHA:SEED-SHA:DH-DSS-SEED-SHA:DH-RSA-SEED-SHA:DHE-DSS-SEED-SHA:DHE-RSA-SEED-SHA:ADH-SEED-SHA:ECDH-ECDSA-DES-CBC3-SHA:ECDH-ECDSA-AES128-SHA:ECDH-ECDSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA:ECDH-RSA-DES-CBC3-SHA:ECDH-RSA-AES128-SHA:ECDH-RSA-AES256-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:AECDH-DES-CBC3-SHA:AECDH-AES128-SHA:AECDH-AES256-SHA:SRP-3DES-EDE-CBC-SHA:SRP-RSA-3DES-EDE-CBC-SHA:SRP-DSS-3DES-EDE-CBC-SHA:SRP-AES-128-CBC-SHA:SRP-RSA-AES-128-CBC-SHA:SRP-DSS-AES-128-CBC-SHA:SRP-AES-256-CBC-SHA:SRP-RSA-AES-256-CBC-SHA:SRP-DSS-AES-256-CBC-SHA:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDH-ECDSA-AES128-SHA256:ECDH-ECDSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA384:ECDH-RSA-AES128-SHA256:ECDH-RSA-AES256-SHA384:RC2-CBC-MD5:EXP-RC2-CBC-MD5:IDEA-CBC-MD5:DES-CBC-MD5:DES-CBC3-MD5"
2015-09-17 15:30:15 +02:00
if [ [ $VULN_COUNT -le $VULN_THRESHLD ] ] || $WIDE ; then
2015-11-08 22:14:28 +01:00
outln
pr_headlineln " Testing for BEAST vulnerability "
outln
2015-09-17 15:30:15 +02:00
fi
pr_bold " BEAST" ; out " (CVE-2011-3389) "
$WIDE && outln
2015-10-11 23:07:16 +02:00
# output in wide mode if cipher doesn't exist is not ok
2015-09-17 15:30:15 +02:00
>$ERRFILE
2015-10-01 13:27:14 +02:00
# first determine whether it's mitogated by higher protocols
for proto in tls1_1 tls1_2; do
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -state -" $proto " $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI 2>>$ERRFILE >$TMPFILE </dev/null
2015-10-11 23:07:16 +02:00
if sclient_connect_successful $? $TMPFILE ; then
2015-10-01 13:27:14 +02:00
higher_proto_supported = " $higher_proto_supported " " $( grep -aw "Protocol" $TMPFILE | sed -e 's/^.*Protocol .*://' -e 's/ //g' ) "
fi
done
2015-09-17 15:30:15 +02:00
for proto in ssl3 tls1; do
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -" $proto " $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI >$TMPFILE 2>>$ERRFILE </dev/null
2015-10-11 23:07:16 +02:00
if ! sclient_connect_successful $? $TMPFILE ; then # protocol supported?
if $continued ; then # second round: we hit TLS1:
2015-10-15 14:15:07 +02:00
pr_litegreenln "no SSL3 or TLS1"
2015-09-17 15:30:15 +02:00
return 0
else # protocol not succeeded but it';s the first time
continued = true
2015-10-01 13:27:14 +02:00
continue # protocol not supported, so we do not need to check each cipher with that protocol
2015-09-17 15:30:15 +02:00
fi
fi # protocol succeeded
2015-10-01 13:27:14 +02:00
# now we test in one shot with the precompiled ciphers
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -" $proto " -cipher " $cbc_cipher_list " $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI >$TMPFILE 2>>$ERRFILE </dev/null
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE || continue
2015-09-17 15:30:15 +02:00
if $WIDE ; then
outln " \n $( toupper $proto ) : " ;
2015-10-01 13:27:14 +02:00
neat_header # NOT_THAT_NICE: we display the header also if in the end no cbc cipher is available on the client side
2015-09-17 15:30:15 +02:00
fi
2015-10-01 13:27:14 +02:00
for ciph in $( colon_to_spaces " $cbc_cipher_list " ) ; do
2015-09-30 14:54:39 +02:00
read hexcode dash cbc_cipher sslvers kx auth enc mac < <( $OPENSSL ciphers -V " $ciph " 2>>$ERRFILE ) # -V doesn't work with openssl < 1.0
# ^^^^^ process substitution as shopt will either segfault or doesn't work with old bash versions
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -cipher " $cbc_cipher " -" $proto " $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI >$TMPFILE 2>>$ERRFILE </dev/null
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE
sclient_success = $?
[ [ $sclient_success -eq 0 ] ] && vuln_beast = true
2015-09-17 15:30:15 +02:00
if $WIDE ; then
normalize_ciphercode $hexcode
if [ [ " $SHOW_EACH_C " -ne 0 ] ] ; then
neat_list $HEXC $cbc_cipher $kx $enc
2015-10-11 23:07:16 +02:00
if [ [ $sclient_success -eq 0 ] ] ; then
2015-10-01 13:27:14 +02:00
[ [ -n " $higher_proto_supported " ] ] && \
pr_yellowln "available" || \
pr_brownln "available"
2015-09-17 15:30:15 +02:00
else
outln "not a/v"
fi
else
2015-10-11 23:07:16 +02:00
[ [ $sclient_success -eq 0 ] ] && neat_list $HEXC $cbc_cipher $kx $enc && outln
2015-09-17 15:30:15 +02:00
fi
else # short display:
2015-10-11 23:07:16 +02:00
if [ [ $sclient_success -eq 0 ] ] ; then
2015-09-17 15:30:15 +02:00
detected_cbc_ciphers = " $detected_cbc_ciphers " " $( grep -aw "Cipher" $TMPFILE | egrep -avw "New|is" | sed -e 's/^.*Cipher.*://' -e 's/ //g' ) "
vuln_beast = true
fi
fi
2015-09-30 14:54:39 +02:00
done
2015-09-17 15:30:15 +02:00
if ! $WIDE ; then
if [ [ -n " $detected_cbc_ciphers " ] ] ; then
detected_cbc_ciphers = $( echo " $detected_cbc_ciphers " | sed -e " s/ /\\ ${ cr } ${ spaces } /9 " -e " s/ /\\ ${ cr } ${ spaces } /6 " -e " s/ /\\ ${ cr } ${ spaces } /3 " )
! $first && out " $spaces "
2015-10-01 13:27:14 +02:00
out " $( toupper $proto ) : "
[ [ -n " $higher_proto_supported " ] ] && \
pr_yellowln " $detected_cbc_ciphers " || \
pr_brownln " $detected_cbc_ciphers "
2015-09-17 15:30:15 +02:00
detected_cbc_ciphers = "" # empty for next round
first = false
else
[ [ $proto = = "tls1" ] ] && ! $first && echo -n " $spaces "
pr_litegreenln " no CBC ciphers for $( toupper $proto ) (OK) "
first = false
fi
else
$vuln_beast || pr_litegreenln " no CBC ciphers for $( toupper $proto ) (OK) "
fi
done # for proto in ssl3 tls1
if $vuln_beast ; then
2015-10-01 13:27:14 +02:00
if [ [ -n " $higher_proto_supported " ] ] ; then
2015-09-17 15:30:15 +02:00
if $WIDE ; then
outln
2015-10-01 13:27:14 +02:00
# BOT ok seems too harsh for me if we have TLS >1.0
pr_yellow "VULNERABLE"
outln " -- but also supports higher protocols (possible mitigation): $higher_proto_supported "
else
out " ${ spaces } "
pr_yellow "VULNERABLE"
2015-09-17 15:30:15 +02:00
outln " -- but also supports higher protocols (possible mitigation): $higher_proto_supported "
2015-10-01 13:27:14 +02:00
fi
else
if $WIDE ; then
outln
2015-09-17 15:30:15 +02:00
else
2015-10-01 13:27:14 +02:00
out " ${ spaces } "
2015-09-17 15:30:15 +02:00
fi
2015-10-04 12:32:29 +02:00
pr_brown "VULNERABLE (NOT ok)"
outln " -- and no higher protocols as mitigation supported"
2015-09-17 15:30:15 +02:00
fi
fi
2016-01-15 16:37:47 +01:00
$first && pr_litegreenln "no CBC ciphers found for any protocol (OK)"
2015-09-17 15:30:15 +02:00
tmpfile_handle $FUNCNAME .txt
2015-10-01 13:27:14 +02:00
return 0
2015-05-17 22:43:53 +02:00
}
2015-07-22 13:11:20 +02:00
run_lucky13( ) {
2015-05-17 22:43:53 +02:00
#FIXME: to do . CVE-2013-0169
# in a nutshell: don't offer CBC suites (again). MAC as a fix for padding oracles is not enough. Best: TLS v1.2+ AES GCM
2015-09-17 15:30:15 +02:00
echo "FIXME"
return -1
2015-05-17 22:43:53 +02:00
}
# https://tools.ietf.org/html/rfc7465 REQUIRES that TLS clients and servers NEVER negotiate the use of RC4 cipher suites!
# https://en.wikipedia.org/wiki/Transport_Layer_Security#RC4_attacks
# http://blog.cryptographyengineering.com/2013/03/attack-of-week-rc4-is-kind-of-broken-in.html
2015-07-22 13:11:20 +02:00
run_rc4( ) {
2015-09-17 15:30:15 +02:00
local -i rc4_offered = 0
2015-10-11 23:07:16 +02:00
local -i sclient_success
2015-09-17 15:30:15 +02:00
local hexcode dash rc4_cipher sslvers kx auth enc mac export
local rc4_ciphers_list = "ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC4-SHA:DHE-DSS-RC4-SHA:AECDH-RC4-SHA:ADH-RC4-MD5:ECDH-RSA-RC4-SHA:ECDH-ECDSA-RC4-SHA:RC4-SHA:RC4-MD5:RC4-MD5:RSA-PSK-RC4-SHA:PSK-RC4-SHA:KRB5-RC4-SHA:KRB5-RC4-MD5:RC4-64-MD5:EXP1024-DHE-DSS-RC4-SHA:EXP1024-RC4-SHA:EXP-ADH-RC4-MD5:EXP-RC4-MD5:EXP-RC4-MD5:EXP-KRB5-RC4-SHA:EXP-KRB5-RC4-MD5"
if [ [ $VULN_COUNT -le $VULN_THRESHLD ] ] || $WIDE ; then
outln
2015-10-15 14:15:07 +02:00
pr_headlineln " Checking for vulnerable RC4 Ciphers "
outln
2015-09-17 15:30:15 +02:00
fi
pr_bold " RC4" ; out " (CVE-2013-2566, CVE-2015-2808) "
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -cipher $rc4_ciphers_list $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI >$TMPFILE 2>$ERRFILE </dev/null
2015-10-11 23:07:16 +02:00
if sclient_connect_successful $? $TMPFILE ; then
2015-09-17 15:30:15 +02:00
pr_litered "VULNERABLE (NOT ok): "
$WIDE && outln "\n"
rc4_offered = 1
$WIDE && neat_header
while read hexcode dash rc4_cipher sslvers kx auth enc mac; do
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -cipher $rc4_cipher $STARTTLS $BUGS -connect $NODEIP :$PORT $PROXY $SNI </dev/null >$TMPFILE 2>$ERRFILE
2015-10-11 23:07:16 +02:00
sclient_connect_successful $? $TMPFILE
sclient_success = $? # here we may have a fp with openssl < 1.0, TBC
if [ [ $sclient_success -ne 0 ] ] && [ [ " $SHOW_EACH_C " -eq 0 ] ] ; then
continue # no successful connect AND not verbose displaying each cipher
2015-09-17 15:30:15 +02:00
fi
if $WIDE ; then
normalize_ciphercode $hexcode
neat_list $HEXC $rc4_cipher $kx $enc
if [ [ " $SHOW_EACH_C " -ne 0 ] ] ; then
2015-10-11 23:07:16 +02:00
if [ [ $sclient_success -eq 0 ] ] ; then
2015-09-17 15:30:15 +02:00
pr_litered "available"
else
out "not a/v"
fi
else
rc4_offered = 1
out
fi
outln
else
pr_litered " $rc4_cipher "
fi
2015-10-11 23:07:16 +02:00
done < <( $OPENSSL ciphers -V $rc4_ciphers_list :@STRENGTH)
2015-09-17 15:30:15 +02:00
outln
else
2015-10-15 14:15:07 +02:00
pr_litegreenln "no RC4 ciphers detected (OK)"
2015-09-17 15:30:15 +02:00
rc4_offered = 0
fi
outln
tmpfile_handle $FUNCNAME .txt
return $rc4_offered
2015-05-17 22:43:53 +02:00
}
2015-07-22 13:11:20 +02:00
run_youknowwho( ) {
2015-05-29 19:44:27 +02:00
# CVE-2013-2566,
2015-05-17 22:43:53 +02:00
# NOT FIXME as there's no code: http://www.isg.rhul.ac.uk/tls/
# http://blog.cryptographyengineering.com/2013/03/attack-of-week-rc4-is-kind-of-broken-in.html
return 0
# in a nutshell: don't use RC4, really not!
}
# https://www.usenix.org/conference/woot13/workshop-program/presentation/smyth
# https://secure-resumption.com/tlsauth.pdf
2015-07-22 13:11:20 +02:00
run_tls_truncation( ) {
2015-06-02 22:13:19 +02:00
#FIXME: difficult to test, is there any test available: pls let me know
2015-10-11 23:07:16 +02:00
:
2015-05-17 22:43:53 +02:00
}
2015-10-11 23:07:16 +02:00
2015-05-17 22:43:53 +02:00
old_fart( ) {
2015-09-17 15:30:15 +02:00
outln "Get precompiled bins or compile https://github.com/PeterMosmans/openssl ."
fatal " Your $OPENSSL $OSSL_VER version is an old fart... . It doesn\'t make much sense to proceed. " -2
2015-05-17 22:43:53 +02:00
}
2015-06-02 22:13:19 +02:00
# try very hard to determine th install path to get ahold of the mapping file
# it provides "keycode/ RFC style name", see RFCs, cipher(1), www.carbonwind.net/TLS_Cipher_Suites_Project/tls_ssl_cipher_suites_simple_table_all.htm
get_install_dir( ) {
2015-09-17 15:30:15 +02:00
#INSTALL_DIR=$(cd "$(dirname "$0")" && pwd)/$(basename "$0")
INSTALL_DIR = $( dirname ${ BASH_SOURCE [0] } )
2015-10-11 23:07:16 +02:00
[ [ -r " $RUN_DIR /etc/mapping-rfc.txt " ] ] && MAPPING_FILE_RFC = " $RUN_DIR /etc/mapping-rfc.txt "
[ [ -r " $INSTALL_DIR /etc/mapping-rfc.txt " ] ] && MAPPING_FILE_RFC = " $INSTALL_DIR /etc/mapping-rfc.txt "
2015-12-11 13:13:22 +01:00
if [ [ ! -r " $MAPPING_FILE_RFC " ] ] ; then
2015-10-11 23:07:16 +02:00
# those will disapper:
2015-12-11 13:13:22 +01:00
[ [ -r " $RUN_DIR /mapping-rfc.txt " ] ] && MAPPING_FILE_RFC = " $RUN_DIR /mapping-rfc.txt "
[ [ -r " $INSTALL_DIR /mapping-rfc.txt " ] ] && MAPPING_FILE_RFC = " $INSTALL_DIR /mapping-rfc.txt "
fi
2015-09-17 15:30:15 +02:00
# we haven't found the mapping file yet...
if [ [ ! -r " $MAPPING_FILE_RFC " ] ] && which readlink & >/dev/null ; then
readlink -f ls & >/dev/null && \
INSTALL_DIR = $( readlink -f $( basename ${ BASH_SOURCE [0] } ) ) || \
INSTALL_DIR = $( readlink $( basename ${ BASH_SOURCE [0] } ) )
# not sure whether Darwin has -f
INSTALL_DIR = $( dirname $INSTALL_DIR 2>/dev/null)
2015-12-11 13:13:22 +01:00
[ [ -r " $INSTALL_DIR /mapping-rfc.txt " ] ] && MAPPING_FILE_RFC = " $INSTALL_DIR /mapping-rfc.txt "
2015-10-11 23:07:16 +02:00
[ [ -r " $INSTALL_DIR /etc/mapping-rfc.txt " ] ] && MAPPING_FILE_RFC = " $INSTALL_DIR /etc/mapping-rfc.txt "
# will disappear:
2015-09-17 15:30:15 +02:00
fi
# still no mapping file:
if [ [ ! -r " $MAPPING_FILE_RFC " ] ] && which realpath & >/dev/null ; then
INSTALL_DIR = $( dirname $( realpath ${ BASH_SOURCE [0] } ) )
2015-10-11 23:07:16 +02:00
MAPPING_FILE_RFC = " $INSTALL_DIR /etc/mapping-rfc.txt "
# will disappear
2015-12-11 13:13:22 +01:00
[ [ -r " $INSTALL_DIR /mapping-rfc.txt " ] ] && MAPPING_FILE_RFC = " $INSTALL_DIR /mapping-rfc.txt "
2015-09-17 15:30:15 +02:00
fi
[ [ ! -r " $MAPPING_FILE_RFC " ] ] && unset MAPPING_FILE_RFC && pr_litemagentaln "\nNo mapping file found"
debugme echo " $MAPPING_FILE_RFC "
2015-06-02 22:13:19 +02:00
}
2015-07-12 18:46:27 +02:00
test_openssl_suffix( ) {
2015-09-17 15:30:15 +02:00
local naming_ext = " $( uname) . $( uname -m) "
local uname_arch = " $( uname -m) "
local myarch_suffix = ""
[ [ $uname_arch = ~ 64 ] ] && myarch_suffix = 64 || myarch_suffix = 32
if [ [ -f " $1 /openssl " ] ] && [ [ -x " $1 /openssl " ] ] ; then
OPENSSL = " $1 /openssl "
return 0
elif [ [ -f " $1 /openssl. $naming_ext " ] ] && [ [ -x " $1 /openssl. $naming_ext " ] ] ; then
OPENSSL = " $1 /openssl. $naming_ext "
return 0
elif [ [ -f " $1 /openssl. $uname_arch " ] ] && [ [ -x " $1 /openssl. $uname_arch " ] ] ; then
OPENSSL = " $1 /openssl. $uname_arch "
return 0
elif [ [ -f " $1 /openssl $myarch_suffix " ] ] && [ [ -x " $1 /openssl $myarch_suffix " ] ] ; then
OPENSSL = " $1 /openssl $myarch_suffix "
return 0
fi
return 1
2015-07-12 18:46:27 +02:00
}
2015-09-17 15:30:15 +02:00
2015-07-12 18:46:27 +02:00
2015-05-17 22:43:53 +02:00
find_openssl_binary( ) {
2015-09-17 15:30:15 +02:00
# 0. check environment variable whether it's executable
if [ [ -n " $OPENSSL " ] ] && [ [ ! -x " $OPENSSL " ] ] ; then
pr_litemagentaln " \ncannot find specified (\$OPENSSL= $OPENSSL ) binary. "
outln " Looking some place else ..."
elif [ [ -x " $OPENSSL " ] ] ; then
: # 1. all ok supplied $OPENSSL was found and has excutable bit set -- testrun comes below
elif test_openssl_suffix $RUN_DIR ; then
: # 2. otherwise try openssl in path of testssl.sh
elif test_openssl_suffix $RUN_DIR /bin; then
: # 3. otherwise here, this is supposed to be the standard --platform independed path in the future!!!
elif test_openssl_suffix " $( dirname " $( which openssl) " ) " ; then
: # 5. we tried hard and failed, so now we use the system binaries
fi
# no ERRFILE initialized yet, thus we use /dev/null for stderr directly
$OPENSSL version -a 2>/dev/null >/dev/null
if [ [ $? -ne 0 ] ] || [ [ ! -x " $OPENSSL " ] ] ; then
fatal "\ncannot exec or find any openssl binary" -1
fi
# http://www.openssl.org/news/openssl-notes.html
OSSL_VER = $( $OPENSSL version 2>/dev/null | awk -F' ' '{ print $2 }' )
OSSL_VER_MAJOR = $( echo " $OSSL_VER " | sed 's/\..*$//' )
OSSL_VER_MINOR = $( echo " $OSSL_VER " | sed -e 's/^.\.//' | tr -d '[a-zA-Z]-' )
OSSL_VER_APPENDIX = $( echo " $OSSL_VER " | tr -d '0-9.' )
OSSL_VER_PLATFORM = $( $OPENSSL version -p 2>/dev/null | sed 's/^platform: //' )
OSSL_BUILD_DATE = $( $OPENSSL version -a 2>/dev/null | grep '^built' | sed -e 's/built on//' -e 's/: ... //' -e 's/: //' -e 's/ UTC//' -e 's/ +0000//' -e 's/.000000000//' )
echo $OSSL_BUILD_DATE | grep -q "not available" && OSSL_BUILD_DATE = ""
2015-09-22 20:09:26 +02:00
# see #190, reverting logic: unless otherwise proved openssl has no dh bits
case " $OSSL_VER_MAJOR . $OSSL_VER_MINOR " in
1.0.2| 1.1.0) HAS_DH_BITS = true ; ;
esac
# libressl does not have "Server Temp Key" (SSL_get_server_tmp_key)
2015-09-17 15:30:15 +02:00
if $OPENSSL version 2>/dev/null | grep -qi LibreSSL; then
outln
pr_litemagenta "Please note: LibreSSL is not a good choice for testing INSECURE features!"
fi
$OPENSSL s_client -ssl2 2>& 1 | grep -aq "unknown option" || \
HAS_SSL2 = true && \
HAS_SSL2 = false
$OPENSSL s_client -ssl3 2>& 1 | grep -aq "unknown option" || \
HAS_SSL3 = true && \
HAS_SSL3 = false
2015-10-11 23:07:16 +02:00
$OPENSSL s_client help 2>& 1 | grep -qw '\-alpn' && \
HAS_ALPN = true || \
HAS_ALPN = false
$OPENSSL s_client help 2>& 1 | grep -qw '\-nextprotoneg' && \
HAS_SPDY = true || \
HAS_SPDY = false
2015-09-17 15:30:15 +02:00
return 0
2015-05-17 22:43:53 +02:00
}
openssl_age( ) {
2015-09-17 15:30:15 +02:00
case " $OSSL_VER " in
0.9.7*| 0.9.6*| 0.9.5*)
# 0.9.5a was latest in 0.9.5 an released 2000/4/1, that'll NOT suffice for this test
old_fart ; ;
0.9.8)
case $OSSL_VER_APPENDIX in
a| b| c| d| e) old_fart; ; # no SNI!
# other than that we leave this for MacOSX and FreeBSD but it's a pain and likely gives false negatives/positives
esac
; ;
esac
if [ [ $OSSL_VER_MAJOR -lt 1 ] ] ; then ## mm: Patch for libressl
pr_magentaln " Your \" $OPENSSL \" is way too old (<version 1.0) ! "
case $SYSTEM in
*BSD| Darwin)
outln " Please use binary provided in \$INSTALLDIR/bin/ or from ports/brew or compile from github.com/PeterMosmans/openssl" ; ;
*) outln " Update openssl binaries or compile from github.com/PeterMosmans/openssl" ; ;
esac
ignore_no_or_lame " Type \"yes\" to accept some false negatives or positives "
fi
2015-10-15 14:15:07 +02:00
if [ [ $OSSL_VER_MAJOR .$OSSL_VER_MINOR = = "1.1.0" ] ] ; then
pr_magentaln " $PROG_NAME doesn't work yet with OpenSSL 1.1.0! "
ignore_no_or_lame "Type \"yes\" to accept weird output, false negatives and positives "
fi
2015-09-17 15:30:15 +02:00
outln
2015-05-17 22:43:53 +02:00
}
help( ) {
2015-09-17 15:30:15 +02:00
cat << EOF
2015-05-17 22:43:53 +02:00
2015-05-29 19:44:27 +02:00
$PROG_NAME <options>
2015-05-17 22:43:53 +02:00
2015-06-23 12:58:40 +02:00
-h, --help what you' re looking at
-b, --banner displays banner + version of $PROG_NAME
-v, --version same as previous
-V, --local pretty print all local ciphers
2015-07-17 15:58:07 +02:00
-V, --local <pattern> which local ciphers with <pattern> are available?
( if pattern not a number: word match)
2015-05-17 22:43:53 +02:00
2015-06-23 07:56:56 +02:00
$PROG_NAME <options> URI ( " $PROG_NAME URI " does everything except -E)
2015-05-17 22:43:53 +02:00
2015-06-22 18:32:40 +02:00
-e, --each-cipher checks each local cipher remotely
-E, --cipher-per-proto checks those per protocol
-f, --ciphers checks common cipher suites
2015-12-27 14:51:18 +01:00
-p, --protocols checks TLS/SSL protocols ( including SPDY/HTTP2)
2015-06-22 18:32:40 +02:00
-y, --spdy, --npn checks for SPDY/NPN
2015-12-13 01:20:57 +01:00
-Y, --http2, --alpn checks for HTTP2/ALPN
2015-12-27 14:51:18 +01:00
-S, --server-defaults displays the server' s default picks and certificate info
2015-12-29 10:05:20 +01:00
-P, --server-preference displays the server' s picks: protocol+cipher
2015-07-17 15:58:07 +02:00
-x, --single-cipher <pattern> tests matched <pattern> of ciphers
( if <pattern> not a number: word match)
2016-01-15 15:53:03 +01:00
-c, --client-simulation test client simulations, see which client negotiates with cipher and protocol
-H, --header, --headers tests HSTS, HPKP, server/app banner, security headers, cookie, reverse proxy, IPv4 address
2015-06-22 18:32:40 +02:00
-U, --vulnerable tests all vulnerabilities
-B, --heartbleed tests for heartbleed vulnerability
2015-06-23 12:58:40 +02:00
-I, --ccs, --ccs-injection tests for CCS injection vulnerability
2015-06-22 18:32:40 +02:00
-R, --renegotiation tests for renegotiation vulnerabilities
-C, --compression, --crime tests for CRIME vulnerability
-T, --breach tests for BREACH vulnerability
-O, --poodle tests for POODLE ( SSL) vulnerability
-Z, --tls-fallback checks TLS_FALLBACK_SCSV mitigation
-F, --freak tests for FREAK vulnerability
-A, --beast tests for BEAST vulnerability
-J, --logjam tests for LOGJAM vulnerability
2015-12-27 14:51:18 +01:00
-s, --pfs, --fs, --nsa checks ( perfect) forward secrecy settings
2015-06-22 18:32:40 +02:00
-4, --rc4, --appelbaum which RC4 ciphers are being offered?
2015-05-17 22:43:53 +02:00
special invocations:
2015-06-23 12:58:40 +02:00
-t, --starttls <protocol> does a default run against a STARTTLS enabled <protocol>
2015-07-06 20:42:43 +02:00
--xmpphost <to_domain> for STARTTLS enabled XMPP it supplies the XML stream to-'' domain -- sometimes needed
2015-06-22 18:32:40 +02:00
--mx <domain/host> tests MX records from high to low priority ( STARTTLS, port 25)
2015-11-11 17:49:36 +01:00
--ip <ip> a) tests the supplied <ip> v4 or v6 address instead of resolving host( s) in URI
2015-08-02 00:26:34 +02:00
b) arg "one" means: just test the first DNS returns ( useful for multiple IPs)
2015-09-28 22:54:00 +02:00
--file <fname> mass testing option: Reads command lines from <fname>, one line per instance.
Comments via # allowed, EOF signals end of <fname>. Implicitly turns on "--warnings batch"
2015-05-17 22:43:53 +02:00
partly mandatory parameters:
2015-08-24 22:17:35 +02:00
URI host| host:port| URL| URL:port ( port 443 is assumed unless otherwise specified)
pattern an ignore case word pattern of cipher hexcode or any other string in the name, kx or bits
protocol is one of ftp,smtp,pop3,imap,xmpp,telnet,ldap ( for the latter two you need e.g. the supplied openssl)
2015-05-17 22:43:53 +02:00
2015-11-11 11:56:32 +01:00
tuning options ( can also be preset via environment variables) :
2015-05-17 22:43:53 +02:00
2015-11-11 11:56:32 +01:00
--bugs enables the "-bugs" option of s_client, needed e.g. for some buggy F5s
2015-08-24 22:17:35 +02:00
--assuming-http if protocol check fails it assumes HTTP protocol and enforces HTTP checks
2015-08-28 00:15:51 +02:00
--ssl-native fallback to checks with OpenSSL where sockets are normally used
2015-08-24 22:17:35 +02:00
--openssl <PATH> use this openssl binary ( default: look in \$ PATH, \$ RUN_DIR of $PROG_NAME
--proxy <host>:<port> connect via the specified HTTP proxy
2015-12-27 14:51:18 +01:00
-6 use also IPv6. Works only with supporting OpenSSL version and IPv6 connectivity
2015-11-03 23:29:53 +01:00
--sneaky leave less traces in target logs: user agent, referer
2015-08-24 22:17:35 +02:00
--quiet don' t output the banner. By doing this you acknowledge usage terms normally appearing in the banner
2015-11-12 23:47:43 +01:00
--log, --logging logs stdout to <NODE-YYYYMMDD-HHMM.log> in current working directory
--logfile <file> logs stdout to <file/NODE-YYYYMMDD-HHMM.log> if file is a dir or to specified file
2015-08-24 22:17:35 +02:00
--wide wide output for tests like RC4, BEAST. PFS also with hexcode, kx, strength, RFC name
--show-each for wide outputs: display all ciphers tested -- not only succeeded ones
--warnings <batch| off| false> "batch" doesn' t wait for keypress, "off" or "false" skips connection warning
--color <0| 1| 2> 0: no escape or other codes, 1: b/w escape codes, 2: color ( default)
2015-11-11 11:56:32 +01:00
--debug <0-6> 1: screen output normal but debug output in temp files. 2-6: see line ~120
2015-06-02 22:13:19 +02:00
2015-12-27 14:51:18 +01:00
All options requiring a value can also be called with '=' e.g. testssl.sh -t= smtp --wide --openssl= /usr/bin/openssl <URI>.
2015-07-17 14:33:23 +02:00
<URI> is always the last parameter.
2015-05-29 19:44:27 +02:00
2015-12-27 14:51:18 +01:00
Need HTML output? Just pipe through "aha" ( ANSI HTML Adapter: github.com/theZiz/aha) like
2015-05-17 22:43:53 +02:00
" $PROG_NAME <options> <URI> | aha >output.html "
EOF
2016-01-13 10:21:01 +01:00
#' Fix syntax highlight on sublime
2015-09-17 15:30:15 +02:00
exit $1
2015-05-17 22:43:53 +02:00
}
maketempf( ) {
2015-09-17 15:30:15 +02:00
TEMPDIR = $( mktemp -d /tmp/ssltester.XXXXXX) || exit -6
TMPFILE = $TEMPDIR /tempfile.txt || exit -6
if [ [ " $DEBUG " -eq 0 ] ] ; then
ERRFILE = "/dev/null"
else
ERRFILE = $TEMPDIR /errorfile.txt || exit -6
fi
HOSTCERT = $TEMPDIR /host_certificate.txt
HEADERFILE = $TEMPDIR /http_header.txt
initialize_engine
if [ [ $DEBUG -ne 0 ] ] ; then
cat >$TEMPDIR /environment.txt << EOF
2015-05-17 22:43:53 +02:00
2015-05-31 14:40:12 +02:00
CVS_REL: $CVS_REL
GIT_REL: $GIT_REL
2015-05-29 10:36:14 +02:00
2015-05-17 22:43:53 +02:00
PID: $$
bash version: ${ BASH_VERSINFO [0] } .${ BASH_VERSINFO [1] } .${ BASH_VERSINFO [2] }
status: ${ BASH_VERSINFO [4] }
machine: ${ BASH_VERSINFO [5] }
operating system: $SYSTEM
shellopts: $SHELLOPTS
2015-07-20 14:05:35 +02:00
$OPENSSL version -a:
$( $OPENSSL version -a)
2015-05-29 10:36:14 +02:00
OSSL_VER_MAJOR: $OSSL_VER_MAJOR
OSSL_VER_MINOR: $OSSL_VER_MINOR
OSSL_VER_APPENDIX: $OSSL_VER_APPENDIX
2015-05-29 19:44:27 +02:00
OSSL_BUILD_DATE: " $OSSL_BUILD_DATE "
2015-05-29 10:36:14 +02:00
OSSL_VER_PLATFORM: " $OSSL_VER_PLATFORM "
2015-05-17 22:43:53 +02:00
2015-07-20 14:05:35 +02:00
OPENSSL_CONF: $OPENSSL_CONF
2015-10-11 23:07:16 +02:00
HAS_IPv6: $HAS_IPv6
HAS_SSL2: $HAS_SSL2
HAS_SSL3: $HAS_SSL3
HAS_SPDY: $HAS_SPDY
HAS_ALPN: $HAS_ALPN
2015-05-17 22:43:53 +02:00
PATH: $PATH
PROG_NAME: $PROG_NAME
2015-06-02 22:13:19 +02:00
INSTALL_DIR: $INSTALL_DIR
2015-05-17 22:43:53 +02:00
RUN_DIR: $RUN_DIR
2015-08-24 23:50:03 +02:00
MAPPING_FILE_RFC: $MAPPING_FILE_RFC
2015-05-17 22:43:53 +02:00
CAPATH: $CAPATH
ECHO: $ECHO
COLOR: $COLOR
TERM_DWITH: $TERM_DWITH
2015-11-03 10:30:59 +01:00
INTERACTIVE: $INTERACTIVE
2015-05-29 14:12:22 +02:00
HAS_GNUDATE: $HAS_GNUDATE
2015-06-17 11:33:29 +02:00
HAS_SED_E: $HAS_SED_E
2015-05-17 22:43:53 +02:00
SHOW_EACH_C: $SHOW_EACH_C
SSL_NATIVE: $SSL_NATIVE
ASSUMING_HTTP $ASSUMING_HTTP
SNEAKY: $SNEAKY
DEBUG: $DEBUG
HSTS_MIN: $HSTS_MIN
HPKP_MIN: $HPKP_MIN
CLIENT_MIN_PFS: $CLIENT_MIN_PFS
DAYS2WARN1: $DAYS2WARN1
DAYS2WARN2: $DAYS2WARN2
HEADER_MAXSLEEP: $HEADER_MAXSLEEP
MAX_WAITSOCK: $MAX_WAITSOCK
HEARTBLEED_MAX_WAITSOCK: $HEARTBLEED_MAX_WAITSOCK
CCS_MAX_WAITSOCK: $CCS_MAX_WAITSOCK
USLEEP_SND $USLEEP_SND
USLEEP_REC $USLEEP_REC
EOF
2015-09-17 15:30:15 +02:00
which locale & >/dev/null && locale >>$TEMPDIR /environment.txt || echo "locale doesn't exist" >>$TEMPDIR /environment.txt
$OPENSSL ciphers -V 'ALL:COMPLEMENTOFALL' & >$TEMPDIR /all_local_ciphers.txt
fi
2015-09-22 20:09:26 +02:00
}
2015-05-17 22:43:53 +02:00
2015-09-22 20:09:26 +02:00
mybanner( ) {
local nr_ciphers
local idtag
local bb
local openssl_location = " $( which $OPENSSL ) "
local cwd = ""
2015-05-17 22:43:53 +02:00
2015-09-22 20:09:26 +02:00
$QUIET && return
nr_ciphers = $( count_ciphers " $( $OPENSSL ciphers 'ALL:COMPLEMENTOFALL:@STRENGTH' 2>/dev/null) " )
[ [ -z " $GIT_REL " ] ] && \
idtag = " $CVS_REL " || \
idtag = " $GIT_REL -- $CVS_REL_SHORT "
[ [ " $COLOR " -ne 0 ] ] && idtag = " \033[1;30m $idtag \033[m\033[1m "
bb = $( cat <<EOF
###########################################################
$PROG_NAME $VERSION from $SWURL
( $idtag )
This program is free software. Distribution and
modification under GPLv2 permitted.
USAGE w/o ANY WARRANTY. USE IT AT YOUR OWN RISK!
2015-10-11 23:34:53 +02:00
Please file bugs @ https://testssl.sh/bugs/
2015-09-22 20:09:26 +02:00
###########################################################
EOF
)
pr_bold " $bb "
outln "\n"
2015-11-21 13:39:37 +01:00
outln " Using \" $( $OPENSSL version 2>/dev/null) \" [~ $nr_ciphers ciphers] "
2016-01-15 16:37:47 +01:00
out " on $HNAME : "
2015-09-22 20:09:26 +02:00
[ [ -n " $GIT_REL " ] ] && \
cwd = $( /bin/pwd) || \
cwd = $RUN_DIR
if [ [ " $openssl_location " = ~ $( /bin/pwd) /bin ] ] ; then
2015-11-28 17:33:10 +01:00
OPENSSL_LOCATION = " \$PWD/bin/ $( basename " $openssl_location " ) "
2015-09-22 20:09:26 +02:00
elif [ [ " $openssl_location " = ~ $cwd ] ] && [ [ " $cwd " != '.' ] ] ; then
2015-11-21 13:39:37 +01:00
OPENSSL_LOCATION = " ${ openssl_location %% $cwd } "
2015-09-22 20:09:26 +02:00
else
2015-11-21 13:39:37 +01:00
OPENSSL_LOCATION = " $openssl_location "
2015-09-22 20:09:26 +02:00
fi
2015-11-21 13:39:37 +01:00
echo " $OPENSSL_LOCATION "
2015-09-22 20:09:26 +02:00
outln " (built: \" $OSSL_BUILD_DATE \", platform: \" $OSSL_VER_PLATFORM \")\n "
2015-05-17 22:43:53 +02:00
}
2015-09-22 20:09:26 +02:00
2015-05-17 22:43:53 +02:00
cleanup ( ) {
2015-09-17 15:30:15 +02:00
if [ [ " $DEBUG " -ge 1 ] ] ; then
outln
pr_underline " DEBUG (level $DEBUG ): see files in $TEMPDIR "
outln
else
[ [ -d " $TEMPDIR " ] ] && rm -rf " $TEMPDIR " ;
fi
outln
2015-05-17 22:43:53 +02:00
}
2015-08-24 23:50:03 +02:00
fatal( ) {
2015-09-17 15:30:15 +02:00
pr_magentaln " Fatal error: $1 " >& 2
exit $2
2015-08-24 23:50:03 +02:00
}
2015-05-17 22:43:53 +02:00
# for now only GOST engine
initialize_engine( ) {
2015-09-17 15:30:15 +02:00
grep -q '^# testssl config file' " $OPENSSL_CONF " 2>/dev/null && return 0 # have been here already
if ! $OPENSSL engine gost -vvvv -t -c 2>/dev/null >/dev/null; then
outln
pr_litemagenta " No engine or GOST support via engine with your $OPENSSL " ; outln
return 1
elif $OPENSSL engine gost -vvvv -t -c 2>& 1 | grep -iq "No such" ; then
outln
pr_litemagenta " No engine or GOST support via engine with your $OPENSSL " ; outln
return 1
else # we have engine support
if [ [ -n " $OPENSSL_CONF " ] ] ; then
pr_litemagentaln "For now I am providing the config file in to have GOST support"
else
OPENSSL_CONF = $TEMPDIR /gost.conf || exit -6
# see https://www.mail-archive.com/openssl-users@openssl.org/msg65395.html
cat >$OPENSSL_CONF << EOF
2015-07-13 23:24:23 +02:00
# testssl config file for openssl
2015-05-17 22:43:53 +02:00
2015-07-13 23:24:23 +02:00
openssl_conf = openssl_def
2015-07-02 16:39:41 +02:00
2015-05-17 22:43:53 +02:00
[ openssl_def ]
engines = engine_section
[ engine_section ]
gost = gost_section
[ gost_section ]
engine_id = gost
default_algorithms = ALL
CRYPT_PARAMS = id-Gost28147-89-CryptoPro-A-ParamSet
EOF
2015-09-17 15:30:15 +02:00
export OPENSSL_CONF
fi
fi
return 0
2015-05-17 22:43:53 +02:00
}
ignore_no_or_lame( ) {
2015-09-17 15:30:15 +02:00
local a
[ [ " $WARNINGS " = = "off" ] ] && return 0
[ [ " $WARNINGS " = = "false" ] ] && return 0
[ [ " $WARNINGS " = = "batch" ] ] && return 1
pr_magenta " $1 "
read a
case $a in
Y| y| Yes| YES| yes) return 0; ;
default) ; ;
esac
return 1
2015-05-17 22:43:53 +02:00
}
2015-06-15 12:13:16 +02:00
# arg1: URI
# arg2: protocol
2015-05-17 22:43:53 +02:00
parse_hn_port( ) {
2015-09-17 15:30:15 +02:00
local tmp_port
NODE = " $1 "
# strip "https" and trailing urlpath supposed it was supplied additionally
echo " $NODE " | grep -q 'https://' && NODE = $( echo " $NODE " | sed -e 's/^https\:\/\///' )
# strip trailing urlpath
NODE = $( echo " $NODE " | sed -e 's/\/.*$//' )
# was the address supplied like [AA:BB:CC::]:port ?
if echo " $NODE " | grep -q ']' ; then
tmp_port = $( printf " $NODE " | sed 's/\[.*\]//' | sed 's/://' )
# determine v6 port, supposed it was supplied additionally
if [ [ -n " $tmp_port " ] ] ; then
PORT = $tmp_port
NODE = $( sed " s/: $PORT // " <<< " $NODE " )
fi
NODE = $( sed -e 's/\[//' -e 's/\]//' <<< " $NODE " )
else
# determine v4 port, supposed it was supplied additionally
echo " $NODE " | grep -q ':' && \
PORT = $( echo " $NODE " | sed 's/^.*\://' ) && NODE = $( echo " $NODE " | sed 's/\:.*$//' )
fi
debugme echo $NODE :$PORT
SNI = " -servername $NODE "
2015-11-11 11:56:32 +01:00
# now do logging if instructed
if $do_logging ; then
if [ [ -z " $LOGFILE " ] ] ; then
LOGFILE = $NODE -$( date +"%Y%m%d-%H%M" .log)
elif [ [ -d " $LOGFILE " ] ] ; then
# actually we were instructed to place all files in a DIR instead of the current working dir
LOGFILE = $LOGFILE /$NODE -$( date +"%Y%m%d-%H%M" .log)
else
: # just for clarity: a log file was specified, no need to do anything else
fi
2015-11-21 13:39:37 +01:00
>$LOGFILE
outln " ## Scan started as: \" $PROG_NAME $CMDLINE \" " >>${ LOGFILE }
2015-12-08 13:31:52 +01:00
outln " ## ( $VERSION ${ GIT_REL_SHORT :- $CVS_REL_SHORT } from $REL_DATE , at $HNAME : $OPENSSL_LOCATION )\n " >>${ LOGFILE }
2015-11-11 11:56:32 +01:00
exec > >( tee -a ${ LOGFILE } )
# not decided yet. Maybe good to have a separate file or none at all
#exec 2> >(tee -a ${LOGFILE} >&2)
fi
2015-09-17 15:30:15 +02:00
URL_PATH = $( echo " $1 " | sed 's/https:\/\///' | sed 's/' " ${ NODE } " '//' | sed 's/.*' " ${ PORT } " '//' ) # remove protocol and node part and port
URL_PATH = $( echo " $URL_PATH " | sed 's/\/\//\//g' ) # we rather want // -> /
[ [ -z " $URL_PATH " ] ] && URL_PATH = "/"
debugme echo $URL_PATH
return 0 # NODE, URL_PATH, PORT is set now
2015-06-16 14:04:44 +02:00
}
2015-07-22 13:11:20 +02:00
# args: string containing ip addresses
2015-08-01 23:11:27 +02:00
filter_ip6_address( ) {
2015-09-17 15:30:15 +02:00
local a
for a in " $@ " ; do
if ! is_ipv6addr " $a " ; then
continue
fi
if $HAS_SED_E ; then
echo " $a " | sed -E 's/^abcdeABCDEFf0123456789:]//g' | sed -e '/^$/d' -e '/^;;/d'
else
echo " $a " | sed -r 's/[^abcdefABCDEF0123456789:]//g' | sed -e '/^$/d' -e '/^;;/d'
fi
done
2015-07-22 13:11:20 +02:00
}
2015-07-23 17:11:33 +02:00
2015-08-01 23:11:27 +02:00
filter_ip4_address( ) {
2015-09-17 15:30:15 +02:00
local a
for a in " $@ " ; do
if ! is_ipv4addr " $a " ; then
continue
fi
if $HAS_SED_E ; then
echo " $a " | sed -E 's/[^[:digit:].]//g' | sed -e '/^$/d'
else
echo " $a " | sed -r 's/[^[:digit:].]//g' | sed -e '/^$/d'
fi
done
2015-07-22 13:11:20 +02:00
}
2015-07-13 23:24:23 +02:00
2015-08-12 00:17:28 +02:00
get_local_aaaa( ) {
2015-09-17 15:30:15 +02:00
local ip6 = ""
local etchosts = "/etc/hosts /c/Windows/System32/drivers/etc/hosts"
# for security testing sometimes we have local entries. Getent is BS under Linux for localhost: No network, no resolution
ip6 = $( grep -wh " $NODE " $etchosts 2>/dev/null | grep ':' | grep -v '^#' | egrep " [[:space:]] $NODE " | awk '{ print $1 }' )
if is_ipv6addr " $ip6 " ; then
echo " $ip6 "
else
echo ""
fi
2015-08-12 00:17:28 +02:00
}
get_local_a( ) {
2015-09-17 15:30:15 +02:00
local ip4 = ""
local etchosts = "/etc/hosts /c/Windows/System32/drivers/etc/hosts"
# for security testing sometimes we have local entries. Getent is BS under Linux for localhost: No network, no resolution
ip4 = $( grep -wh " $1 " $etchosts 2>/dev/null | egrep -v ':|^#' | egrep " [[:space:]] $1 " | awk '{ print $1 }' )
if is_ipv4addr " $ip4 " ; then
echo " $ip4 "
else
echo ""
fi
2015-08-12 00:17:28 +02:00
}
2015-09-21 16:43:47 +02:00
check_resolver_bins( ) {
2015-11-28 17:33:10 +01:00
if ! which dig & > /dev/null && ! which host & > /dev/null && ! which drill & > /dev/null && ! which nslookup & >/dev/null; then
fatal "Neither \"dig\", \"host\", \"drill\" or \"nslookup\" is present" "-3"
2015-09-21 16:43:47 +02:00
fi
return 0
}
2015-07-23 17:11:33 +02:00
# arg1: a host name. Returned will be 0-n IPv4 addresses
get_a_record( ) {
2015-09-17 15:30:15 +02:00
local ip4 = ""
local saved_openssl_conf = " $OPENSSL_CONF "
OPENSSL_CONF = "" # see https://github.com/drwetter/testssl.sh/issues/134
2015-11-01 02:01:52 +01:00
if [ [ " $NODE " = = *.local ] ] ; then
2015-11-06 02:04:04 +01:00
if which avahi-resolve & >/dev/null; then
2015-11-05 22:54:29 +01:00
ip4 = $( filter_ip4_address $( avahi-resolve -4 -n " $1 " 2>/dev/null | awk '{ print $2 }' ) )
2015-11-06 02:04:04 +01:00
elif which dig & >/dev/null; then
ip4 = $( filter_ip4_address $( dig @224.0.0.251 -p 5353 +short -t a +notcp " $1 " 2>/dev/null | sed '/^;;/d' ) )
2015-11-01 02:01:52 +01:00
else
2015-11-05 22:54:29 +01:00
fatal "Local hostname given but no 'avahi-resolve' or 'dig' avaliable."
2015-11-01 02:01:52 +01:00
fi
2015-11-03 10:30:59 +01:00
fi
2015-09-17 15:30:15 +02:00
if [ [ -z " $ip4 " ] ] ; then
which dig & > /dev/null && \
ip4 = $( filter_ip4_address $( dig +short -t a " $1 " 2>/dev/null | sed '/^;;/d' ) )
fi
if [ [ -z " $ip4 " ] ] ; then
which host & > /dev/null && \
ip4 = $( filter_ip4_address $( host -t a " $1 " 2>/dev/null | grep -v alias | sed 's/^.*address //' ) )
fi
2015-11-23 14:54:41 +01:00
if [ [ -z " $ip4 " ] ] ; then
which drill & > /dev/null && \
ip4 = $( filter_ip4_address $( drill a " $1 " 2>/dev/null | awk '/^\;\;\sANSWER\sSECTION\:$/,/\;\;\sAUTHORITY\sSECTION\:$/ { print $5,$6 }' | sed '/^\s$/d' ) )
fi
2015-09-17 15:30:15 +02:00
if [ [ -z " $ip4 " ] ] ; then
if which nslookup & >/dev/null; then
ip4 = $( filter_ip4_address $( nslookup -querytype= a " $1 " 2>/dev/null | awk '/^Name/,/EOF/ { print $0 }' | grep -v Name) )
fi
fi
OPENSSL_CONF = " $saved_openssl_conf " # see https://github.com/drwetter/testssl.sh/issues/134
echo " $ip4 "
2015-07-23 17:11:33 +02:00
}
# arg1: a host name. Returned will be 0-n IPv6 addresses
get_aaaa_record( ) {
2015-09-17 15:30:15 +02:00
local ip6 = ""
local saved_openssl_conf = " $OPENSSL_CONF "
OPENSSL_CONF = "" # see https://github.com/drwetter/testssl.sh/issues/134
if [ [ -z " $ip6 " ] ] ; then
2015-11-01 02:01:52 +01:00
if [ [ " $NODE " = = *.local ] ] ; then
2015-11-06 02:04:04 +01:00
if which avahi-resolve & >/dev/null; then
2015-11-05 22:54:29 +01:00
ip6 = $( filter_ip6_address $( avahi-resolve -6 -n " $NODE " 2>/dev/null | awk '{ print $2 }' ) )
2015-11-06 02:04:04 +01:00
elif which dig & >/dev/null; then
ip6 = $( filter_ip6_address $( dig @ff02::fb -p 5353 -t aaaa +short +notcp " $NODE " ) )
2015-11-01 02:01:52 +01:00
else
2015-11-05 22:54:29 +01:00
fatal "Local hostname given but no 'avahi-resolve' or 'dig' avaliable."
2015-11-01 02:01:52 +01:00
fi
elif which host & > /dev/null ; then
2015-09-17 15:30:15 +02:00
ip6 = $( filter_ip6_address $( host -t aaaa " $NODE " | grep -v alias | grep -v "no AAAA record" | sed 's/^.*address //' ) )
elif which dig & > /dev/null; then
ip6 = $( filter_ip6_address $( dig +short -t aaaa " $NODE " 2>/dev/null) )
2015-11-23 14:54:41 +01:00
elif which drill & > /dev/null; then
ip6 = $( filter_ip6_address $( drill aaaa " $NODE " 2>/dev/null | awk '/^\;\;\sANSWER\sSECTION\:$/,/^\;\;\sAUTHORITY\sSECTION\:$/ { print $5,$6 }' | sed '/^\s$/d' ) )
2015-09-17 15:30:15 +02:00
elif which nslookup & >/dev/null; then
ip6 = $( filter_ip6_address $( nslookup -type= aaaa " $NODE " 2>/dev/null | grep -A10 Name | grep -v Name) )
fi
fi
OPENSSL_CONF = " $saved_openssl_conf " # see https://github.com/drwetter/testssl.sh/issues/134
echo " $ip6 "
2015-07-23 17:11:33 +02:00
}
2015-06-16 14:04:44 +02:00
# now get all IP addresses
determine_ip_addresses( ) {
2015-09-17 15:30:15 +02:00
local ip4 = ""
local ip6 = ""
if is_ipv4addr " $NODE " ; then
ip4 = " $NODE " # only an IPv4 address was supplied as an argument, no hostname
SNI = "" # override Server Name Indication as we test the IP only
else
ip4 = $( get_local_a $NODE ) # is there a local host entry?
if [ [ -z $ip4 ] ] ; then # empty: no (LOCAL_A is predefined as false)
2015-09-21 16:43:47 +02:00
check_resolver_bins
2015-09-17 15:30:15 +02:00
ip4 = $( get_a_record $NODE )
else
2015-09-26 22:44:33 +02:00
LOCAL_A = true # we have the ip4 from local host entry and need to signal this to testssl
2015-09-17 15:30:15 +02:00
fi
2015-09-26 22:44:33 +02:00
# same now for ipv6
2015-09-17 15:30:15 +02:00
ip6 = $( get_local_aaaa $NODE )
2015-09-26 22:44:33 +02:00
if [ [ -z $ip6 ] ] ; then
check_resolver_bins
2015-09-17 15:30:15 +02:00
ip6 = $( get_aaaa_record $NODE )
2015-09-26 22:44:33 +02:00
else
LOCAL_AAAA = true # we have a local ipv6 entry and need to signal this to testssl
fi
fi
if [ [ -z " $ip4 " ] ] ; then # IPv6 only address
if $HAS_IPv6 ; then
IPADDRs = $( newline_to_spaces " $ip6 " )
IP46ADDRs = " $IPADDRs " # IP46ADDRs are the ones to display, IPADDRs the ones to test
fi
else
if $HAS_IPv6 && [ [ -n " $ip6 " ] ] ; then
IPADDRs = $( newline_to_spaces " $ip4 $ip6 " )
IP46ADDRs = " $IPADDRs "
else
IPADDRs = $( newline_to_spaces " $ip4 " )
IP46ADDRs = $( newline_to_spaces " $ip4 $ip6 " )
fi
2015-09-17 15:30:15 +02:00
fi
if [ [ -z " $IPADDRs " ] ] && [ [ -z " $CMDLINE_IP " ] ] ; then
fatal " No IPv4 address for \" $NODE \" available " -1
fi
return 0 # IPADDR and IP46ADDR is set now
2015-06-16 14:04:44 +02:00
}
determine_rdns( ) {
2015-09-17 15:30:15 +02:00
local saved_openssl_conf = " $OPENSSL_CONF "
OPENSSL_CONF = "" # see https://github.com/drwetter/testssl.sh/issues/134
2015-11-07 02:16:21 +01:00
if [ [ " $NODE " = = *.local ] ] ; then
2015-11-06 02:04:04 +01:00
if which avahi-resolve & >/dev/null; then
2015-11-05 22:54:29 +01:00
rDNS = $( avahi-resolve -a $NODEIP 2>/dev/null | awk '{ print $2 }' )
2015-11-06 02:04:04 +01:00
elif which dig & >/dev/null; then
rDNS = $( dig -x $NODEIP @224.0.0.251 -p 5353 +notcp +noall +answer | awk '/PTR/ { print $NF }' )
2015-11-05 22:54:29 +01:00
fi
elif which dig & > /dev/null; then
2015-09-17 15:30:15 +02:00
rDNS = $( dig -x $NODEIP +noall +answer | awk '/PTR/ { print $NF }' ) # +short returns also CNAME, e.g. openssl.org
elif which host & > /dev/null; then
rDNS = $( host -t PTR $NODEIP 2>/dev/null | awk '/pointer/ { print $NF }' )
2015-11-23 14:54:41 +01:00
elif which drill & > /dev/null; then
rDNS = $( drill -x ptr $NODEIP 2>/dev/null | awk '/^\;\;\sANSWER\sSECTION\:$/,/\;\;\sAUTHORITY\sSECTION\:$/ { print $5,$6 }' | sed '/^\s$/d' )
2015-09-17 15:30:15 +02:00
elif which nslookup & > /dev/null; then
rDNS = $( nslookup -type= PTR $NODEIP 2>/dev/null | grep -v 'canonical name =' | grep 'name = ' | awk '{ print $NF }' | sed 's/\.$//' )
fi
OPENSSL_CONF = " $saved_openssl_conf " # see https://github.com/drwetter/testssl.sh/issues/134
2015-10-06 12:30:29 +02:00
rDNS = " $( echo $rDNS ) "
2015-10-05 09:56:21 +02:00
[ [ -z " $rDNS " ] ] && rDNS = " --"
2015-09-17 15:30:15 +02:00
return 0
2015-06-16 14:04:44 +02:00
}
2015-05-17 22:43:53 +02:00
2015-07-23 17:11:33 +02:00
get_mx_record( ) {
2015-09-17 15:30:15 +02:00
local mx = ""
local saved_openssl_conf = " $OPENSSL_CONF "
OPENSSL_CONF = "" # see https://github.com/drwetter/testssl.sh/issues/134
2015-09-21 16:43:47 +02:00
check_resolver_bins
2015-09-17 15:30:15 +02:00
if which host & > /dev/null; then
mxs = $( host -t MX " $1 " 2>/dev/null | grep 'handled by' | sed -e 's/^.*by //g' -e 's/\.$//' )
elif which dig & > /dev/null; then
mxs = $( dig +short -t MX " $1 " 2>/dev/null)
2015-11-23 14:54:41 +01:00
elif which drill & > /dev/null; then
mxs = $( drill mx " $1 " 2>/dev/null | awk '/^\;\;\sANSWER\sSECTION\:$/,/\;\;\sAUTHORITY\sSECTION\:$/ { print $5,$6 }' | sed '/^\s$/d' )
2015-09-17 15:30:15 +02:00
elif which nslookup & > /dev/null; then
mxs = $( nslookup -type= MX " $1 " 2>/dev/null | grep 'mail exchanger = ' | sed 's/^.*mail exchanger = //g' )
else
2015-11-28 17:33:10 +01:00
fatal "No dig, host, drill or nslookup" -3
2015-09-17 15:30:15 +02:00
fi
OPENSSL_CONF = " $saved_openssl_conf "
echo " $mxs "
2015-07-23 17:11:33 +02:00
}
# We need to get the IP address of the proxy so we can use it in fd_socket
2015-11-03 10:30:59 +01:00
#
check_proxy( ) {
2015-09-17 15:30:15 +02:00
if [ [ -n " $PROXY " ] ] ; then
if ! $OPENSSL s_client help 2>& 1 | grep -qw proxy; then
fatal " Your $OPENSSL is too old to support the \"--proxy\" option " -1
fi
PROXYNODE = ${ PROXY % : * }
PROXYPORT = ${ PROXY #* : }
2015-09-18 15:12:01 +02:00
is_number " $PROXYPORT " || fatal " Proxy port cannot be determined from \" $PROXY \" " "-3"
2015-09-17 15:30:15 +02:00
2015-09-18 15:12:01 +02:00
#if is_ipv4addr "$PROXYNODE" || is_ipv6addr "$PROXYNODE" ; then
# IPv6 via openssl -proxy: that doesn't work. Sockets does
2015-10-15 14:15:07 +02:00
#FIXME: to finish this with LibreSSL which supports an IPv6 proxy
2015-09-18 15:12:01 +02:00
if is_ipv4addr " $PROXYNODE " ; then
PROXYIP = " $PROXYNODE "
else
2015-09-21 16:43:47 +02:00
check_resolver_bins
2015-09-18 15:12:01 +02:00
PROXYIP = $( get_a_record $PROXYNODE 2>/dev/null | grep -v alias | sed 's/^.*address //' )
[ [ -z " $PROXYIP " ] ] && fatal " Proxy IP cannot be determined from \" $PROXYNODE \" " "-3"
fi
2015-09-17 15:30:15 +02:00
PROXY = " -proxy $PROXYIP : $PROXYPORT "
fi
2015-07-23 17:11:33 +02:00
}
2015-06-16 14:04:44 +02:00
2015-11-03 13:13:10 +01:00
# this is only being called from determine_optimal_proto in order to check whether we have a server
# with client authentication, a server with no SSL session ID switched off
#
sclient_auth( ) {
[ [ $1 -eq 0 ] ] && return 0 # no client auth (CLIENT_AUTH=false is preset globally)
if [ [ -n $( awk '/Master-Key: / { print $2 }' " $2 " ) ] ] ; then # connect succeeded
if grep -q '^<<< .*CertificateRequest' " $2 " ; then # CertificateRequest message in -msg
CLIENT_AUTH = true
return 0
fi
if [ [ -z $( awk '/Session-ID: / { print $2 }' " $2 " ) ] ] ; then # probably no SSL session
if [ [ 2 -eq $( grep -c CERTIFICATE " $2 " ) ] ] ; then # do another sanity check to be sure
CLIENT_AUTH = false
NO_SSL_SESSIONID = true # NO_SSL_SESSIONI is preset globally to false for all other cases
return 0
fi
fi
fi
# what's left now is: master key empty, handshake returned not successful, session ID empty --> not sucessful
return 1
}
# this function determines OPTIMAL_PROTO. It is a workaround function as under certain circumstances
# (e.g. IIS6.0 and openssl 1.0.2 as opposed to 1.0.1) needs a protocol otherwise s_client -connect will fail!
# Circumstances observed so far: 1.) IIS 6 2.) starttls + dovecot imap
2015-10-11 23:07:16 +02:00
# The first try in the loop is empty as we prefer not to specify always a protocol if it works w/o.
2015-09-14 11:03:10 +02:00
#
determine_optimal_proto( ) {
2015-09-17 15:30:15 +02:00
local all_failed
local addcmd = ""
2015-10-11 23:07:16 +02:00
#TODO: maybe query known openssl version before this workaround. 1.0.1 doesn't need this
2015-09-17 15:30:15 +02:00
2015-10-11 23:07:16 +02:00
>$ERRFILE
2015-09-17 15:30:15 +02:00
if [ [ -n " $1 " ] ] ; then
# starttls workaround needed see https://github.com/drwetter/testssl.sh/issues/188
# kind of odd
for STARTTLS_OPTIMAL_PROTO in -tls1_2 -tls1 -ssl3 -tls1_1 -ssl2; do
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $STARTTLS_OPTIMAL_PROTO $BUGS -connect " $NODEIP : $PORT " $PROXY -msg -starttls $1 </dev/null >$TMPFILE 2>>$ERRFILE
2015-11-03 13:13:10 +01:00
if sclient_auth $? $TMPFILE ; then
2015-10-11 23:07:16 +02:00
all_failed = 1
break
fi
2015-09-17 15:30:15 +02:00
all_failed = 0
done
debugme echo " STARTTLS_OPTIMAL_PROTO: $STARTTLS_OPTIMAL_PROTO "
else
for OPTIMAL_PROTO in '' -tls1_2 -tls1 -ssl3 -tls1_1 -ssl2 '' ; do
2015-11-03 23:29:53 +01:00
$OPENSSL s_client $OPTIMAL_PROTO $BUGS -connect " $NODEIP : $PORT " -msg $PROXY $SNI </dev/null >$TMPFILE 2>>$ERRFILE
2015-11-03 13:13:10 +01:00
if sclient_auth $? $TMPFILE ; then
2015-10-11 23:07:16 +02:00
all_failed = 1
break
fi
2015-09-17 15:30:15 +02:00
all_failed = 0
done
debugme echo " OPTIMAL_PROTO: $OPTIMAL_PROTO "
fi
2015-09-22 20:09:26 +02:00
grep -q '^Server Temp Key' $TMPFILE && HAS_DH_BITS = true # FIX #190
2015-09-17 15:30:15 +02:00
if [ [ $all_failed -eq 0 ] ] ; then
outln
2015-10-05 09:56:21 +02:00
if $HAS_IPv6 ; then
pr_bold " Your $OPENSSL is not IPv6 aware, or $NODEIP : $PORT "
else
pr_bold " $NODEIP : $PORT "
fi
2015-10-11 23:07:16 +02:00
tmpfile_handle $FUNCNAME .txt
pr_boldln "doesn't seem a TLS/SSL enabled server" ;
2015-09-17 15:30:15 +02:00
ignore_no_or_lame " Note that the results might look ok but they are nonsense. Proceed ? "
[ [ $? -ne 0 ] ] && exit -2
fi
2015-10-11 23:07:16 +02:00
tmpfile_handle $FUNCNAME .txt
return 0
2015-09-14 11:03:10 +02:00
}
2015-06-16 14:04:44 +02:00
# arg1: ftp smtp, pop3, imap, xmpp, telnet, ldap (maybe with trailing s)
determine_service( ) {
2015-09-17 15:30:15 +02:00
local ua
local protocol
2015-10-11 23:07:16 +02:00
if ! fd_socket; then # check if we can connect to $NODEIP:$PORT
2015-09-19 15:03:40 +02:00
[ [ -n " $PROXY " ] ] && \
fatal " You're sure $PROXYNODE : $PROXYPORT allows tunneling here? Can't connect to \" $NODEIP : $PORT \" " -2 || \
fatal " Can't connect to \" $NODEIP : $PORT \"\nMake sure a firewall is not between you and your scanning target! " -2
2015-09-17 15:30:15 +02:00
fi
close_socket
2015-10-15 14:15:07 +02:00
datebanner " Start"
2015-09-17 15:30:15 +02:00
outln
2015-10-11 23:07:16 +02:00
if [ [ -z " $1 " ] ] ; then
# no STARTTLS.
determine_optimal_proto " $1 "
2015-09-17 15:30:15 +02:00
$SNEAKY && \
ua = " $UA_SNEAKY " || \
ua = " $UA_STD "
GET_REQ11 = " GET $URL_PATH HTTP/1.1\r\nHost: $NODE \r\nUser-Agent: $ua \r\nConnection: Close\r\nAccept: text/*\r\n\r\n "
HEAD_REQ11 = " HEAD $URL_PATH HTTP/1.1\r\nHost: $NODE \r\nUser-Agent: $ua \r\nAccept: text/*\r\n\r\n "
GET_REQ10 = " GET $URL_PATH HTTP/1.0\r\nUser-Agent: $ua \r\nConnection: Close\r\nAccept: text/*\r\n\r\n "
HEAD_REQ10 = " HEAD $URL_PATH HTTP/1.0\r\nUser-Agent: $ua \r\nAccept: text/*\r\n\r\n "
runs_HTTP $OPTIMAL_PROTO
2015-10-11 23:07:16 +02:00
else
# STARTTLS
2015-10-13 08:31:54 +02:00
protocol = ${ 1 %s } # strip trailing 's' in ftp(s), smtp(s), pop3(s), etc
2015-09-17 15:30:15 +02:00
case " $protocol " in
ftp| smtp| pop3| imap| xmpp| telnet| ldap)
STARTTLS = " -starttls $protocol "
SNI = ""
if [ [ $protocol = = "xmpp" ] ] ; then
# for XMPP, openssl has a problem using -connect $NODEIP:$PORT. thus we use -connect $NODE:$PORT instead!
NODEIP = " $NODE "
if [ [ -n " $XMPP_HOST " ] ] ; then
if ! $OPENSSL s_client --help 2>& 1 | grep -q xmpphost; then
fatal " Your $OPENSSL does not support the \"-xmpphost\" option " -3
fi
STARTTLS = " $STARTTLS -xmpphost $XMPP_HOST " # it's a hack -- instead of changing calls all over the place
# see http://xmpp.org/rfcs/rfc3920.html
fi
fi
2015-11-03 23:29:53 +01:00
$OPENSSL s_client -connect $NODEIP :$PORT $PROXY $BUGS $STARTTLS 2>$ERRFILE >$TMPFILE </dev/null
2015-09-17 15:30:15 +02:00
if [ [ $? -ne 0 ] ] ; then
debugme cat $TMPFILE
outln
fatal " $OPENSSL couldn't establish STARTTLS via $protocol to $NODEIP : $PORT " -2
fi
2015-09-22 20:09:26 +02:00
grep -q '^Server Temp Key' $TMPFILE && HAS_DH_BITS = true # FIX #190
2015-10-05 09:56:21 +02:00
out " Service set: $CORRECT_SPACES STARTTLS via "
2015-09-17 15:30:15 +02:00
toupper " $protocol "
[ [ -n " $XMPP_HOST " ] ] && echo -n " (XMPP domain=\' $XMPP_HOST \') "
outln
; ;
*) outln
fatal "momentarily only ftp, smtp, pop3, imap, xmpp, telnet and ldap allowed" -1
; ;
esac
fi
2015-11-03 10:30:59 +01:00
#outln
2015-10-15 14:15:07 +02:00
tmpfile_handle $FUNCNAME .txt
2015-09-17 15:30:15 +02:00
return 0 # OPTIMAL_PROTO, GET_REQ*/HEAD_REQ* is set now
2015-05-17 22:43:53 +02:00
}
display_rdns_etc( ) {
2015-10-05 09:56:21 +02:00
local ip
2015-06-15 12:13:16 +02:00
2015-09-18 15:12:01 +02:00
if [ [ -n " $PROXY " ] ] ; then
2015-10-05 09:56:21 +02:00
out " Via Proxy: $CORRECT_SPACES "
2015-09-18 15:12:01 +02:00
outln " $PROXYIP : $PROXYPORT "
fi
2015-10-05 09:56:21 +02:00
if [ [ $( count_words " $IP46ADDRs " ) -gt 1 ] ] ; then
out " further IP addresses: $CORRECT_SPACES "
for ip in $IP46ADDRs ; do
if [ [ " $ip " = = " $NODEIP " ] ] || [ [ " [ $ip ] " = = " $NODEIP " ] ] ; then
continue
else
out " $ip "
fi
2015-05-17 22:43:53 +02:00
done
2015-09-17 15:30:15 +02:00
outln
fi
if " $LOCAL_A " ; then
2015-09-19 15:03:40 +02:00
outln " A record via /etc/hosts "
2015-12-08 13:31:52 +01:00
elif [ [ -n " $CMDLINE_IP " ] ] ; then
2016-01-15 16:37:47 +01:00
outln " A record via supplied IP \" $CMDLINE_IP \" "
2015-09-17 15:30:15 +02:00
fi
2015-10-05 09:56:21 +02:00
if [ [ -n " $rDNS " ] ] ; then
2015-10-06 12:30:29 +02:00
if $HAS_IPv6 ; then
2015-10-05 09:56:21 +02:00
printf " %-23s %s" " rDNS $NODEIP : " " $rDNS "
2015-10-06 12:30:29 +02:00
else
printf " %-23s %s" " rDNS ( $NODEIP ): " " $rDNS "
fi
2015-10-05 09:56:21 +02:00
fi
2015-05-17 22:43:53 +02:00
}
datebanner( ) {
2015-10-15 14:15:07 +02:00
pr_reverse " $1 $( date +%F) $( date +%T) -->> $NODEIP : $PORT ( $NODE ) <<-- "
outln "\n"
[ [ " $1 " = ~ Start ] ] && display_rdns_etc
2015-05-17 22:43:53 +02:00
}
2015-08-28 00:15:51 +02:00
# one line with char $1 over screen width $2
2015-10-05 09:56:21 +02:00
draw_line( ) {
2015-09-17 15:30:15 +02:00
printf -- " $1 " '%.s' $( eval "echo {1.." $(( $2 )) "}" )
2015-05-31 14:40:12 +02:00
}
2015-05-17 22:43:53 +02:00
2015-07-23 17:11:33 +02:00
2015-05-31 14:40:12 +02:00
mx_all_ips( ) {
2015-09-17 15:30:15 +02:00
local mxs mx
local mxport
local -i ret = 0
STARTTLS_PROTOCOL = "smtp"
# test first higher priority servers
mxs = $( get_mx_record " $1 " | sort -n | sed -e 's/^.* //' -e 's/\.$//' | tr '\n' ' ' )
mxport = ${ 2 :- 25 }
if [ [ -n " $mxs " ] ] && [ [ " $mxs " != ' ' ] ] ; then
[ [ $mxport = = "465" ] ] && \
STARTTLS_PROTOCOL = "" # no starttls for Port 465, on all other ports we speak starttls
pr_bold " Testing now all MX records (on port $mxport ): " ; outln " $mxs "
for mx in $mxs ; do
2015-10-05 09:56:21 +02:00
draw_line "-" $(( TERM_DWITH * 2 / 3 ))
2015-09-17 15:30:15 +02:00
outln
parse_hn_port " $mx : $mxport "
determine_ip_addresses || continue
if [ [ $( count_words " $( echo -n " $IPADDRs " ) " ) -gt 1 ] ] ; then # we have more than one ipv4 address to check
pr_bold " Testing all IPv4 addresses (port $PORT ): " ; outln " $IPADDRs "
for ip in $IPADDRs ; do
NODEIP = " $ip "
lets_roll " ${ STARTTLS_PROTOCOL } "
done
else
NODEIP = " $IPADDRs "
lets_roll " ${ STARTTLS_PROTOCOL } "
fi
ret = $(( $? + ret))
done
2015-10-05 09:56:21 +02:00
draw_line "-" $(( TERM_DWITH * 2 / 3 ))
2015-09-17 15:30:15 +02:00
outln
pr_bold " Done testing now all MX records (on port $mxport ): " ; outln " $mxs "
else
pr_boldln " $1 has no MX records(s) "
fi
return $ret
2015-05-17 22:43:53 +02:00
}
2015-12-08 13:31:52 +01:00
run_mass_testing_parallel( ) {
local cmdline = ""
if [ [ ! -r " $FNAME " ] ] && $IKNOW_FNAME ; then
fatal " Can't read file \" $FNAME \" " "-1"
fi
pr_reverse " ====== Running in parallel file batch mode with file=\" $FNAME \" ====== " ; outln
outln "(output is in ....\n)"
while read cmdline; do
cmdline = $( filter_input " $cmdline " )
[ [ -z " $cmdline " ] ] && continue
[ [ " $cmdline " = = "EOF" ] ] && break
echo " $0 -q $cmdline "
draw_line "=" $(( TERM_DWITH / 2 )) ; outln;
determine_logfile
$0 -q $cmdline >$LOGFILE &
sleep $PARALLEL_SLEEP
done < " $FNAME "
exit $?
}
2015-09-28 22:54:00 +02:00
run_mass_testing( ) {
local cmdline = ""
if [ [ ! -r " $FNAME " ] ] && $IKNOW_FNAME ; then
fatal " Can't read file \" $FNAME \" " "-1"
fi
pr_reverse " ====== Running in file batch mode with file=\" $FNAME \" ====== " ; outln "\n"
while read cmdline; do
cmdline = $( filter_input " $cmdline " )
[ [ -z " $cmdline " ] ] && continue
[ [ " $cmdline " = = "EOF" ] ] && break
echo " $0 -q $cmdline "
2015-10-05 09:56:21 +02:00
draw_line "=" $(( TERM_DWITH / 2 )) ; outln;
2015-09-28 22:54:00 +02:00
$0 -q $cmdline
done < " $FNAME "
exit $?
}
2015-05-17 22:43:53 +02:00
2015-09-03 12:14:47 +02:00
# This initializes boolean global do_* variables. They keep track of what to do
# -- as the name insinuates
2015-05-17 22:43:53 +02:00
initialize_globals( ) {
2015-09-17 15:30:15 +02:00
do_allciphers = false
do_vulnerabilities = false
do_beast = false
do_breach = false
do_ccs_injection = false
do_cipher_per_proto = false
do_crime = false
do_freak = false
do_logjam = false
do_header = false
do_heartbleed = false
do_mx_all_ips = false
2015-09-28 22:54:00 +02:00
do_mass_testing = false
2015-11-11 11:56:32 +01:00
do_logging = false
2015-09-17 15:30:15 +02:00
do_pfs = false
do_protocols = false
do_rc4 = false
do_renego = false
do_std_cipherlists = false
do_server_defaults = false
do_server_preference = false
do_spdy = false
2015-12-13 01:20:57 +01:00
do_http2 = false
2015-09-17 15:30:15 +02:00
do_ssl_poodle = false
do_tls_fallback_scsv = false
do_test_just_one = false
do_tls_sockets = false
2016-01-13 10:21:01 +01:00
do_client_simulation = false
2015-05-17 22:43:53 +02:00
}
2015-09-03 12:14:47 +02:00
# Set default scanning options for the boolean global do_* variables.
2015-05-17 22:43:53 +02:00
set_scanning_defaults( ) {
2015-09-17 15:30:15 +02:00
do_allciphers = true
do_vulnerabilities = true
do_beast = true
do_breach = true
do_ccs_injection = true
do_crime = true
do_freak = true
do_logjam = true
do_header = true
do_heartbleed = true
do_pfs = true
do_protocols = true
do_rc4 = true
do_renego = true
do_std_cipherlists = true
do_server_defaults = true
do_server_preference = true
do_spdy = true
2015-12-13 01:20:57 +01:00
do_http2 = true
2015-09-17 15:30:15 +02:00
do_ssl_poodle = true
do_tls_fallback_scsv = true
2016-01-13 10:21:01 +01:00
do_client_simulation = true
2015-09-17 15:30:15 +02:00
VULN_COUNT = 10
2015-05-17 22:43:53 +02:00
}
query_globals( ) {
2015-09-17 15:30:15 +02:00
local gbl
local true_nr = 0
for gbl in do_allciphers do_vulnerabilities do_beast do_breach do_ccs_injection do_cipher_per_proto do_crime \
do_freak do_logjam do_header do_heartbleed do_mx_all_ips do_pfs do_protocols do_rc4 do_renego \
2015-12-13 01:20:57 +01:00
do_std_cipherlists do_server_defaults do_server_preference do_spdy do_http2 do_ssl_poodle do_tls_fallback_scsv \
2016-01-13 10:21:01 +01:00
do_client_simulation do_test_just_one do_tls_sockets do_mass_testing ; do
2015-09-17 15:30:15 +02:00
[ [ " ${ !gbl } " = = "true" ] ] && let true_nr++
done
return $true_nr
2015-05-17 22:43:53 +02:00
}
debug_globals( ) {
2015-09-17 15:30:15 +02:00
local gbl
for gbl in do_allciphers do_vulnerabilities do_beast do_breach do_ccs_injection do_cipher_per_proto do_crime \
do_freak do_logjam do_header do_heartbleed do_rc4 do_mx_all_ips do_pfs do_protocols do_rc4 do_renego \
2015-12-13 01:20:57 +01:00
do_std_cipherlists do_server_defaults do_server_preference do_spdy do_http2 do_ssl_poodle do_tls_fallback_scsv \
2016-01-13 10:21:01 +01:00
do_client_simulation do_test_just_one do_tls_sockets do_mass_testing; do
2015-09-17 15:30:15 +02:00
printf "%-22s = %s\n" $gbl " ${ !gbl } "
done
2015-05-17 22:43:53 +02:00
printf "%-22s : %s\n" URI: " $URI "
}
2015-06-01 12:01:38 +02:00
# arg1+2 are just the options
parse_opt_equal_sign( ) {
2015-09-17 15:30:15 +02:00
if [ [ " $1 " = = *= * ] ] ; then
echo " $1 " | awk -F'=' '{ print $2 }'
return 1 # = means we don't need to shift args!
else
echo $2
return 0 # we need to shift
fi
2015-06-01 12:01:38 +02:00
}
2015-06-28 13:52:42 +02:00
parse_cmd_line( ) {
2015-09-17 15:30:15 +02:00
# Set defaults if only an URI was specified, maybe ToDo: use "="-option, then: ${i#*=} i.e. substring removal
[ [ " $# " -eq 1 ] ] && set_scanning_defaults
while [ [ $# -gt 0 ] ] ; do
case $1 in
-h| --help)
help 0
; ;
-b| --banner| -v| --version)
find_openssl_binary
maketempf
mybanner
exit 0
; ;
--mx)
do_mx_all_ips = true
PORT = 25
; ;
--mx465) # doesn't work with major ISPs
do_mx_all_ips = true
PORT = 465
; ;
--mx587) # doesn't work with major ISPs
do_mx_all_ips = true
PORT = 587
; ;
--ip| --ip= *)
CMDLINE_IP = $( parse_opt_equal_sign " $1 " " $2 " )
[ [ $? -eq 0 ] ] && shift
; ;
-V| -V= *| --local| --local= *) # this is only displaying local ciphers, thus we don't put it in the loop
find_openssl_binary
maketempf # for GOST support
mybanner
openssl_age
prettyprint_local $( parse_opt_equal_sign " $1 " " $2 " )
exit $?
; ;
-x| -x= *| --single[ -_] cipher| --single[ -_] cipher = *)
do_test_just_one = true
single_cipher = $( parse_opt_equal_sign " $1 " " $2 " )
[ [ $? -eq 0 ] ] && shift
; ;
-t| -t= *| --starttls| --starttls= *)
do_starttls = true
STARTTLS_PROTOCOL = $( parse_opt_equal_sign " $1 " " $2 " )
[ [ $? -eq 0 ] ] && shift
case $STARTTLS_PROTOCOL in
ftp| smtp| pop3| imap| xmpp| telnet| ldap| nntp) ; ;
ftps| smtps| pop3s| imaps| xmpps| telnets| ldaps| nntps) ; ;
*) pr_magentaln " \nunrecognized STARTTLS protocol \" $1 \", see help " 1>& 2
help 1 ; ;
esac
; ;
--xmpphost| --xmpphost= *)
XMPP_HOST = $( parse_opt_equal_sign " $1 " " $2 " )
[ [ $? -eq 0 ] ] && shift
; ;
-e| --each-cipher)
do_allciphers = true
; ;
-E| --cipher-per-proto| --cipher_per_proto)
do_cipher_per_proto = true
; ;
-p| --protocols)
do_protocols = true
do_spdy = true
2015-12-13 01:20:57 +01:00
do_http2 = true
2015-09-17 15:30:15 +02:00
; ;
-y| --spdy| --npn)
do_spdy = true
; ;
2015-12-13 01:20:57 +01:00
-Y| --http2| --alpn)
do_http2 = true
; ;
2015-09-17 15:30:15 +02:00
-f| --ciphers)
do_std_cipherlists = true
; ;
-S| --server[ -_] defaults)
do_server_defaults = true
; ;
2015-12-29 10:05:20 +01:00
-P| --server[ _-] preference| --preference)
2015-09-17 15:30:15 +02:00
do_server_preference = true
; ;
-H| --header| --headers)
do_header = true
; ;
2016-01-13 10:21:01 +01:00
-c| --client-simulation)
do_client_simulation = true
; ;
2015-09-17 15:30:15 +02:00
-U| --vulnerable)
do_vulnerabilities = true
do_heartbleed = true
do_ccs_injection = true
do_renego = true
do_crime = true
do_breach = true
do_ssl_poodle = true
do_tls_fallback_scsv = true
do_freak = true
do_logjam = true
do_beast = true
do_rc4 = true
VULN_COUNT = 10
; ;
-B| --heartbleed)
do_heartbleed = true
let "VULN_COUNT++"
; ;
-I| --ccs| --ccs[ -_] injection)
do_ccs_injection = true
let "VULN_COUNT++"
; ;
-R| --renegotiation)
do_renego = true
let "VULN_COUNT++"
; ;
-C| --compression| --crime)
do_crime = true
let "VULN_COUNT++"
; ;
-T| --breach)
do_breach = true
let "VULN_COUNT++"
; ;
-O| --poodle)
do_ssl_poodle = true
do_tls_fallback_scsv = true
let "VULN_COUNT++"
; ;
-Z| --tls[ _-] fallback| tls[ _-] fallback[ _-] scs)
do_tls_fallback_scsv = true
let "VULN_COUNT++"
; ;
-F| --freak)
do_freak = true
let "VULN_COUNT++"
; ;
-J| --logjam)
do_logjam = true
let "VULN_COUNT++"
; ;
-A| --beast)
do_beast = true
let "VULN_COUNT++"
; ;
-4| --rc4| --appelbaum)
do_rc4 = true
let "VULN_COUNT++"
; ;
-s| --pfs| --fs| --nsa)
do_pfs = true
; ;
--devel) ### this development feature will soon disappear
HEX_CIPHER = ""
2015-10-11 23:07:16 +02:00
# DEBUG=3 ./testssl.sh --devel 03 "cc, 13, c0, 13" google.de --> TLS 1.2
# DEBUG=3 ./testssl.sh --devel 01 yandex.ru --> TLS 1.0
# DEBUG=3 ./testssl.sh --devel 00 <host which supports SSLv3>
# DEBUG=3 ./testssl.sh --devel 22 <host which still supports SSLv2>
2015-09-17 15:30:15 +02:00
TLS_LOW_BYTE = " $2 " ;
if [ [ $# -eq 4 ] ] ; then # protocol AND ciphers specified
HEX_CIPHER = " $3 "
shift
fi
shift
do_tls_sockets = true
outln " \nTLS_LOW_BYTE/HEX_CIPHER: ${ TLS_LOW_BYTE } / ${ HEX_CIPHER } "
; ;
--wide)
WIDE = true
; ;
--assuming[ _-] http| --assume[ -_] http)
ASSUMING_HTTP = true
; ;
--sneaky)
SNEAKY = true
; ;
-q| --quiet)
QUIET = true
; ;
--file| --file= *)
# no shift here as otherwise URI is empty and it bails out
FNAME = $( parse_opt_equal_sign " $1 " " $2 " )
2015-09-28 22:54:00 +02:00
[ [ $? -eq 0 ] ] && shift
2015-09-17 15:30:15 +02:00
IKNOW_FNAME = true
2015-09-28 22:54:00 +02:00
WARNINGS = batch # set this implicitly!
do_mass_testing = true
2015-09-17 15:30:15 +02:00
; ;
--warnings| --warnings= *)
WARNINGS = $( parse_opt_equal_sign " $1 " " $2 " )
[ [ $? -eq 0 ] ] && shift
case " $WARNINGS " in
batch| off| false ) ; ;
*) pr_magentaln "\nwarnings can be either \"batch\", \"off\" or \"false\""
2015-11-11 11:56:32 +01:00
help 1
2015-09-17 15:30:15 +02:00
esac
; ;
--show[ -_] each)
2015-09-22 20:09:26 +02:00
SHOW_EACH_C = 1 #FIXME: sense is vice versa
2015-09-17 15:30:15 +02:00
; ;
2015-11-03 23:29:53 +01:00
--bugs)
BUGS = "-bugs"
; ;
2015-09-17 15:30:15 +02:00
--debug| --debug= *)
DEBUG = $( parse_opt_equal_sign " $1 " " $2 " )
[ [ $? -eq 0 ] ] && shift
case $DEBUG in
[ 0-6] ) ; ;
*) pr_magentaln " \nunrecognized debug value \" $1 \", must be between 0..6 " 1>& 2
2015-11-11 11:56:32 +01:00
help 1
2015-09-17 15:30:15 +02:00
esac
; ;
--color| --color= *)
COLOR = $( parse_opt_equal_sign " $1 " " $2 " )
[ [ $? -eq 0 ] ] && shift
case $COLOR in
[ 0-2] ) ; ;
*) COLOR = 2
pr_magentaln " \nunrecognized color: \" $1 \", must be between 0..2 " 1>& 2
2015-11-11 11:56:32 +01:00
help 1
2015-09-17 15:30:15 +02:00
esac
; ;
2015-11-11 11:56:32 +01:00
--log| --logging)
do_logging = true
; ; # DEFINITION of LOGFILE if no arg specified via ENV or automagically in parse_hn_ports()
# following does the same but we can specify a log location additionally
--logfile= *)
LOGFILE = $( parse_opt_equal_sign " $1 " " $2 " )
[ [ $? -eq 0 ] ] && shift
do_logging = true
; ;
2015-09-17 15:30:15 +02:00
--openssl| --openssl= *)
OPENSSL = $( parse_opt_equal_sign " $1 " " $2 " )
[ [ $? -eq 0 ] ] && shift
; ;
--proxy| --proxy= *)
PROXY = $( parse_opt_equal_sign " $1 " " $2 " )
[ [ $? -eq 0 ] ] && shift
; ;
2015-10-05 09:56:21 +02:00
-6) # doesn't work automagically. My versions have -DOPENSSL_USE_IPV6, CentOS/RHEL/FC do not
HAS_IPv6 = true
; ;
2015-09-22 20:09:26 +02:00
--has[ -_] dhbits| --has[ _-] dh[ -_] bits) # For CentOS, RHEL and FC with openssl server temp key backport on version 1.0.1, see #190. But should work automagically
HAS_DH_BITS = true
; ;
2015-09-17 15:30:15 +02:00
--ssl_native| --ssl-native)
SSL_NATIVE = true
; ;
( --) shift
break
; ;
( -*) pr_magentaln " \n $0 : unrecognized option \" $1 \" " 1>& 2;
help 1
; ;
( *) break
; ;
esac
shift
done
# Show usage if no options were specified
2015-09-28 22:54:00 +02:00
if [ [ -z " $1 " ] ] && [ [ -z " $FNAME " ] ] ; then
help 0
else
2015-09-17 15:30:15 +02:00
# left off here is the URI
2015-09-28 22:54:00 +02:00
URI = " $1 "
2015-12-08 13:31:52 +01:00
# parameter after URI supplied:
[ [ -n " $2 " ] ] && echo && fatal "URI comes last" "1"
2015-09-28 22:54:00 +02:00
fi
2015-09-17 15:30:15 +02:00
2015-11-11 11:56:32 +01:00
[ [ " $DEBUG " -ge 5 ] ] && debug_globals
2015-09-17 15:30:15 +02:00
# if we have no "do_*" set here --> query_globals: we do a standard run -- otherwise just the one specified
query_globals && set_scanning_defaults
2015-05-17 22:43:53 +02:00
}
2015-09-26 22:44:33 +02:00
# connect call from openssl needs ipv6 in square brackets
nodeip_to_proper_ip6( ) {
2015-10-05 09:56:21 +02:00
local len_nodeip = 0
if is_ipv6addr $NODEIP ; then
NODEIP = " [ $NODEIP ] "
len_nodeip = ${# NODEIP }
CORRECT_SPACES = " $( draw_line " " " $(( len_nodeip - 16 )) " ) "
# IPv6 addresses are longer, this varaible takes care that "further IP" and "Service" is properly aligned
fi
2015-09-26 22:44:33 +02:00
}
2015-10-11 23:07:16 +02:00
reset_hostdepended_vars( ) {
TLS_EXTENSIONS = ""
PROTOS_OFFERED = ""
OPTIMAL_PROTO = ""
}
2015-05-17 22:43:53 +02:00
lets_roll( ) {
2015-09-17 15:30:15 +02:00
local ret
[ [ -z " $NODEIP " ] ] && fatal " $NODE doesn't resolve to an IP address " -1
2015-09-26 22:44:33 +02:00
nodeip_to_proper_ip6
2015-10-11 23:07:16 +02:00
reset_hostdepended_vars
2015-09-17 15:30:15 +02:00
determine_rdns
determine_service " $1 " # any starttls service goes here
2015-10-11 23:07:16 +02:00
$do_tls_sockets && { [ [ $TLS_LOW_BYTE -eq 22 ] ] && \
2015-09-17 15:30:15 +02:00
sslv2_sockets || \
tls_sockets " $TLS_LOW_BYTE " " $HEX_CIPHER " ; echo " $? " ; exit 0; }
$do_test_just_one && test_just_one ${ single_cipher }
# all top level functions now following have the prefix "run_"
$do_protocols && { run_protocols; ret = $(( $? + ret)) ; }
$do_spdy && { run_spdy; ret = $(( $? + ret)) ; }
2015-12-13 01:20:57 +01:00
$do_http2 && { run_http2; ret = $(( $? + ret)) ; }
2015-09-17 15:30:15 +02:00
$do_std_cipherlists && { run_std_cipherlists; ret = $(( $? + ret)) ; }
$do_pfs && { run_pfs; ret = $(( $? + ret)) ; }
$do_server_preference && { run_server_preference; ret = $(( $? + ret)) ; }
$do_server_defaults && { run_server_defaults; ret = $(( $? + ret)) ; }
if $do_header ; then
#TODO: refactor this into functions
if [ [ $SERVICE = = "HTTP" ] ] ; then
run_http_header " $URL_PATH "
run_http_date " $URL_PATH "
run_hsts " $URL_PATH "
run_hpkp " $URL_PATH "
run_server_banner " $URL_PATH "
run_application_banner " $URL_PATH "
run_cookie_flags " $URL_PATH "
run_more_flags " $URL_PATH "
run_rp_banner " $URL_PATH "
fi
fi
# vulnerabilities
if [ [ $VULN_COUNT -gt $VULN_THRESHLD ] ] || $do_vulnerabilities ; then
2015-10-15 14:15:07 +02:00
outln; pr_headlineln " Testing vulnerabilities "
outln
2015-09-17 15:30:15 +02:00
fi
$do_heartbleed && { run_heartbleed; ret = $(( $? + ret)) ; }
$do_ccs_injection && { run_ccs_injection; ret = $(( $? + ret)) ; }
$do_renego && { run_renego; ret = $(( $? + ret)) ; }
$do_crime && { run_crime; ret = $(( $? + ret)) ; }
$do_breach && { run_breach " $URL_PATH " ; ret = $(( $? + ret)) ; }
$do_ssl_poodle && { run_ssl_poodle; ret = $(( $? + ret)) ; }
$do_tls_fallback_scsv && { run_tls_fallback_scsv; ret = $(( $? + ret)) ; }
$do_freak && { run_freak; ret = $(( $? + ret)) ; }
$do_logjam && { run_logjam; ret = $(( $? + ret)) ; }
$do_beast && { run_beast; ret = $(( $? + ret)) ; }
$do_rc4 && { run_rc4; ret = $(( $? + ret)) ; }
$do_allciphers && { run_allciphers; ret = $(( $? + ret)) ; }
$do_cipher_per_proto && { run_cipher_per_proto; ret = $(( $? + ret)) ; }
2016-01-13 10:21:01 +01:00
$do_client_simulation && { run_client_simulation; ret = $(( $? + ret)) ; }
2015-09-17 15:30:15 +02:00
outln
2015-10-15 14:15:07 +02:00
datebanner " Done"
2015-09-17 15:30:15 +02:00
return $ret
2015-05-17 22:43:53 +02:00
}
################# main #################
2015-06-02 22:13:19 +02:00
get_install_dir
2015-05-17 22:43:53 +02:00
initialize_globals
2015-06-28 13:52:42 +02:00
parse_cmd_line " $@ "
2015-11-03 10:30:59 +01:00
set_color_functions
2015-05-26 12:51:10 +02:00
find_openssl_binary
2015-07-20 14:05:35 +02:00
maketempf
2015-05-26 12:51:10 +02:00
mybanner
2015-06-29 23:28:37 +02:00
check_proxy
2015-05-17 22:43:53 +02:00
openssl_age
2015-06-16 14:04:44 +02:00
# TODO: it's ugly to have those two vars here --> main()
ret = 0
ip = ""
2015-09-28 22:54:00 +02:00
$do_mass_testing && run_mass_testing
2015-08-01 23:11:27 +02:00
2015-06-16 14:04:44 +02:00
#TODO: there shouldn't be the need for a special case for --mx, only the ip adresses we would need upfront and the do-parser
2015-08-01 23:11:27 +02:00
if $do_mx_all_ips ; then
2015-09-17 15:30:15 +02:00
query_globals # if we have just 1x "do_*" --> we do a standard run -- otherwise just the one specified
[ [ $? -eq 1 ] ] && set_scanning_defaults
mx_all_ips " ${ URI } " $PORT
ret = $?
else
parse_hn_port " ${ URI } " # NODE, URL_PATH, PORT, IPADDR and IP46ADDR is set now
if ! determine_ip_addresses && [ [ -z " $CMDLINE_IP " ] ] ; then
fatal "No IP address could be determined"
fi
if [ [ -n " $CMDLINE_IP " ] ] ; then
[ [ " $CMDLINE_IP " = = "one" ] ] && \
CMDLINE_IP = $( echo -n " $IPADDRs " | awk '{ print $1 }' )
NODEIP = " $CMDLINE_IP " # specific ip address for NODE was supplied
lets_roll " ${ STARTTLS_PROTOCOL } "
ret = $?
else # no --ip was supplied
if [ [ $( count_words " $( echo -n " $IPADDRs " ) " ) -gt 1 ] ] ; then # we have more than one ipv4 address to check
pr_bold " Testing all IPv4 addresses (port $PORT ): " ; outln " $IPADDRs "
for ip in $IPADDRs ; do
2015-11-03 10:30:59 +01:00
draw_line "-" $(( TERM_DWITH * 2 / 3 ))
2015-09-17 15:30:15 +02:00
outln
NODEIP = " $ip "
lets_roll " ${ STARTTLS_PROTOCOL } "
ret = $(( $? + ret))
done
2015-11-03 10:30:59 +01:00
draw_line "-" $(( TERM_DWITH * 2 / 3 ))
2015-09-17 15:30:15 +02:00
outln
pr_bold " Done testing now all IP addresses (on port $PORT ): " ; outln " $IPADDRs "
else # we need just one ip4v to check
NODEIP = " $IPADDRs "
lets_roll " ${ STARTTLS_PROTOCOL } "
ret = $?
fi
fi
2015-05-17 22:43:53 +02:00
fi
2015-09-08 19:30:03 +02:00
exit $?
2015-05-17 22:43:53 +02:00
2015-06-16 14:04:44 +02:00
2016-01-15 17:30:47 +01:00
# $Id: testssl.sh,v 1.438 2016/01/15 16:30:46 dirkw Exp $
