Merge pull request #2673 from dcooper16/avoid_subshell

Avoid subshell overhead
2025-10-31 13:55:25 +01:00 · 2025-02-27 10:31:04 +01:00
parent 78dd0a13c9 c38f46880f
commit c9d1ba4fcc
1 changed files with 2 additions and 2 deletions
--- a/testssl.sh
+++ b/testssl.sh
@@ -10931,7 +10931,7 @@ run_fs() {
                    # Versions of TLS prior to 1.3 close the connection if the client does not support the curve
                    # used in the certificate. The easiest solution is to move the curves to the end of the list.
                    # instead of removing them from the ClientHello. This is only needed if there is no RSA certificate.
-                    if (! "$HAS_TLS13" || [[ "$proto" == "-no_tls1_3" ]]) && [[ ! "$ecdhe_cipher_list" == *RSA* ]]; then
+                    if { ! "$HAS_TLS13" || [[ "$proto" == "-no_tls1_3" ]]; } && [[ ! "$ecdhe_cipher_list" == *RSA* ]]; then
                         while true; do
                              curves_to_test=""
                              for (( i=low; i < high; i++ )); do
@@ -11001,7 +11001,7 @@ run_fs() {
               # Versions of TLS prior to 1.3 close the connection if the client does not support the curve
               # used in the certificate. The easiest solution is to move the curves to the end of the list.
               # instead of removing them from the ClientHello. This is only needed if there is no RSA certificate.
-               if ([[ "$proto" == 03 ]] && [[ ! "$ecdhe_cipher_list" == *RSA* ]]); then
+               if [[ "$proto" == 03 ]] && [[ ! "$ecdhe_cipher_list" == *RSA* ]]; then
                    while true; do
                         curves_to_test=""
                         for (( i=0; i < nr_curves; i++ )); do