mirror of
https://github.com/drwetter/testssl.sh.git
synced 2025-01-03 23:39:45 +01:00
Merge pull request #2447 from Odinmylord/3.2
Add Brainpool signature algorithms to output
This commit is contained in:
commit
bbf770ac7f
@ -10441,7 +10441,7 @@ run_fs() {
|
|||||||
local -a ffdhe_groups_output=("ffdhe2048" "ffdhe3072" "ffdhe4096" "ffdhe6144" "ffdhe8192")
|
local -a ffdhe_groups_output=("ffdhe2048" "ffdhe3072" "ffdhe4096" "ffdhe6144" "ffdhe8192")
|
||||||
local -a supported_curve
|
local -a supported_curve
|
||||||
local -a sigalgs_hex=("01,01" "01,02" "01,03" "02,01" "02,02" "02,03" "03,01" "03,02" "03,03" "04,01" "04,02" "04,03" "04,20" "05,01" "05,02" "05,03" "05,20" "06,01" "06,02" "06,03" "06,20" "07,08" "08,04" "08,05" "08,06" "08,07" "08,08" "08,09" "08,0a" "08,0b" "08,1a" "08,1b" "08,1c")
|
local -a sigalgs_hex=("01,01" "01,02" "01,03" "02,01" "02,02" "02,03" "03,01" "03,02" "03,03" "04,01" "04,02" "04,03" "04,20" "05,01" "05,02" "05,03" "05,20" "06,01" "06,02" "06,03" "06,20" "07,08" "08,04" "08,05" "08,06" "08,07" "08,08" "08,09" "08,0a" "08,0b" "08,1a" "08,1b" "08,1c")
|
||||||
local -a sigalgs_strings=("RSA+MD5" "DSA+MD5" "ECDSA+MD5" "RSA+SHA1" "DSA+SHA1" "ECDSA+SHA1" "RSA+SHA224" "DSA+SHA224" "ECDSA+SHA224" "RSA+SHA256" "DSA+SHA256" "ECDSA+SHA256" "RSA+SHA256" "RSA+SHA384" "DSA+SHA384" "ECDSA+SHA384" "RSA+SHA384" "RSA+SHA512" "DSA+SHA512" "ECDSA+SHA512" "RSA+SHA512" "SM2+SM3" "RSA-PSS-RSAE+SHA256" "RSA-PSS-RSAE+SHA384" "RSA-PSS-RSAE+SHA512" "Ed25519" "Ed448" "RSA-PSS-PSS+SHA256" "RSA-PSS-PSS+SHA384" "RSA-PSS-PSS+SHA512" "ECDSA+SHA256" "ECDSA+SHA384" "ECDSA+SHA512")
|
local -a sigalgs_strings=("RSA+MD5" "DSA+MD5" "ECDSA+MD5" "RSA+SHA1" "DSA+SHA1" "ECDSA+SHA1" "RSA+SHA224" "DSA+SHA224" "ECDSA+SHA224" "RSA+SHA256" "DSA+SHA256" "ECDSA+SHA256" "RSA+SHA256" "RSA+SHA384" "DSA+SHA384" "ECDSA+SHA384" "RSA+SHA384" "RSA+SHA512" "DSA+SHA512" "ECDSA+SHA512" "RSA+SHA512" "SM2+SM3" "RSA-PSS-RSAE+SHA256" "RSA-PSS-RSAE+SHA384" "RSA-PSS-RSAE+SHA512" "Ed25519" "Ed448" "RSA-PSS-PSS+SHA256" "RSA-PSS-PSS+SHA384" "RSA-PSS-PSS+SHA512" "ECDSA-BRAINPOOL+SHA256" "ECDSA-BRAINPOOL+SHA384" "ECDSA-BRAINPOOL+SHA512")
|
||||||
local -a tls13_supported_sigalgs=("false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false")
|
local -a tls13_supported_sigalgs=("false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false")
|
||||||
local -a tls12_supported_sigalgs=("false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false")
|
local -a tls12_supported_sigalgs=("false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false" "false")
|
||||||
local rsa_cipher="" ecdsa_cipher="" dss_cipher=""
|
local rsa_cipher="" ecdsa_cipher="" dss_cipher=""
|
||||||
@ -15092,7 +15092,8 @@ parse_tls_serverhello() {
|
|||||||
fi
|
fi
|
||||||
fi
|
fi
|
||||||
if [[ 0x$peering_signing_digest -eq 8 ]] && \
|
if [[ 0x$peering_signing_digest -eq 8 ]] && \
|
||||||
[[ 0x$peer_signature_type -ge 4 ]] && [[ 0x$peer_signature_type -le 11 ]]; then
|
[[ 0x$peer_signature_type -ge 4 ]] && [[ 0x$peer_signature_type -le 11 ]] || \
|
||||||
|
[[ 0x$peer_signature_type -ge 26 ]] && [[ 0x$peer_signature_type -le 28 ]]; then
|
||||||
case $peer_signature_type in
|
case $peer_signature_type in
|
||||||
04) peering_signing_digest="SHA256"; peer_signature_type="RSA-PSS-RSAE" ;;
|
04) peering_signing_digest="SHA256"; peer_signature_type="RSA-PSS-RSAE" ;;
|
||||||
05) peering_signing_digest="SHA384"; peer_signature_type="RSA-PSS-RSAE" ;;
|
05) peering_signing_digest="SHA384"; peer_signature_type="RSA-PSS-RSAE" ;;
|
||||||
@ -15102,6 +15103,9 @@ parse_tls_serverhello() {
|
|||||||
09) peering_signing_digest="SHA256"; peer_signature_type="RSA-PSS-PSS" ;;
|
09) peering_signing_digest="SHA256"; peer_signature_type="RSA-PSS-PSS" ;;
|
||||||
0A) peering_signing_digest="SHA384"; peer_signature_type="RSA-PSS-PSS" ;;
|
0A) peering_signing_digest="SHA384"; peer_signature_type="RSA-PSS-PSS" ;;
|
||||||
0B) peering_signing_digest="SHA512"; peer_signature_type="RSA-PSS-PSS" ;;
|
0B) peering_signing_digest="SHA512"; peer_signature_type="RSA-PSS-PSS" ;;
|
||||||
|
1A) peering_signing_digest="SHA256"; peer_signature_type="ECDSA-BRAINPOOL" ;;
|
||||||
|
1B) peering_signing_digest="SHA384"; peer_signature_type="ECDSA-BRAINPOOL" ;;
|
||||||
|
1C) peering_signing_digest="SHA512"; peer_signature_type="ECDSA-BRAINPOOL" ;;
|
||||||
esac
|
esac
|
||||||
if [[ -n "$peering_signing_digest" ]]; then
|
if [[ -n "$peering_signing_digest" ]]; then
|
||||||
echo "Peer signing digest: $peering_signing_digest" >> $TMPFILE
|
echo "Peer signing digest: $peering_signing_digest" >> $TMPFILE
|
||||||
|
Loading…
Reference in New Issue
Block a user