Fixed regression in printing results

And improve it with the effective number of renego before disconnection as it is now tracked.
2024-12-29 04:49:44 +01:00 · 2024-01-19 16:22:50 +01:00 · 2024-01-19 16:22:50 +01:00 · 02a3c2cc14
commit 02a3c2cc14
parent ad04a90b2a
1 changed files with 2 additions and 2 deletions
--- a/testssl.sh
+++ b/testssl.sh
@ -17095,7 +17095,7 @@ run_renego() {
                                   rm -f $TEMPDIR/was_killed
                              else
                                   # If we got less than 2/3 successful attempts during the loop with 1s pause, we are in presence of exponential backoff.
-                                   if [[ $loop_reneg -le $(($ssl_reneg_attempts*2/3)) ]]; then
+                                   if [[ $tmp_result -eq 0 ]] && [[ $loop_reneg -le $(($ssl_reneg_attempts*2/3)) ]]; then
                                        tmp_result=2
                                   fi
                              fi
@ -17103,7 +17103,7 @@ run_renego() {
                                   0) pr_svrty_high "VULNERABLE (NOT ok)"; outln ", DoS threat ($ssl_reneg_attempts attempts)"
                                      fileout "$jsonID" "HIGH" "VULNERABLE, DoS threat" "$cve" "$cwe" "$hint"
                                      ;;
-                                   1) pr_svrty_good "not vulnerable (OK)"; outln " -- mitigated (disconnect within $ssl_reneg_attempts)"
+                                   1) pr_svrty_good "not vulnerable (OK)"; outln " -- mitigated (disconnect after $loop_reneg/$ssl_reneg_attempts attemps)"
                                      fileout "$jsonID" "OK" "not vulnerable, mitigated" "$cve" "$cwe"
                                      ;;
                                   2) pr_svrty_good "not vulnerable (OK)"; \