Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-06-08 08:08:35 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request from testssl/fix_2708_TLS_FALLBACK_SCSV

Browse Source 
Set POODLE var when exiting run_ssl_poodle()
This commit is contained in:
Dirk Wetter 2025-03-20 10:45:57 +01:00 committed by GitHub
commit 692b9c9260
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 3 additions and 1 deletions

4
testssl.sh

@ -17955,10 +17955,12 @@ run_ssl_poodle() {
pr_bold " POODLE, SSL"; out " ($cve) " pr_bold " POODLE, SSL"; out " ($cve) "
if "$TLS13_ONLY" || [[ $(has_server_protocol ssl3) -eq 1 ]]; then if "$TLS13_ONLY" || [[ $(has_server_protocol ssl3) -eq 1 ]]; then
# one condition should normally suffice but we don't know when run_poddle() was called # one condition should normally suffice but we don't know when run_poodle() was called
pr_svrty_best "not vulnerable (OK)" pr_svrty_best "not vulnerable (OK)"
outln ", no SSLv3 support" outln ", no SSLv3 support"
fileout "$jsonID" "OK" "not vulnerable, no SSLv3" "$cve" "$cwe" fileout "$jsonID" "OK" "not vulnerable, no SSLv3" "$cve" "$cwe"
# otherwise we'll get a non-zero return code and a message 'Rerun including POODLE SSL check' @ TLS_FALLBACK_SCSV, see #2708
POODLE=1
return 0 return 0
fi fi