Fix alignment in run_allciphers()
This commit makes no changes to the code, it just corrects the indentation.
This commit is contained in:
parent
e8d7e16a9d
commit
db1709b389
126
testssl.sh
126
testssl.sh
|
@ -2051,70 +2051,70 @@ run_allciphers() {
|
||||||
done
|
done
|
||||||
|
|
||||||
for (( bundle_size/=4; bundle_size>=1; bundle_size/=4 )); do
|
for (( bundle_size/=4; bundle_size>=1; bundle_size/=4 )); do
|
||||||
# Note that since the number of ciphers isn't a power of 4, the number
|
# Note that since the number of ciphers isn't a power of 4, the number
|
||||||
# of bundles may be may be less than 4**(round_num+1), and the final
|
# of bundles may be may be less than 4**(round_num+1), and the final
|
||||||
# bundle may have fewer than bundle_size ciphers.
|
# bundle may have fewer than bundle_size ciphers.
|
||||||
num_bundles=$nr_ciphers/$bundle_size
|
num_bundles=$nr_ciphers/$bundle_size
|
||||||
mod_check=$nr_ciphers%$bundle_size
|
mod_check=$nr_ciphers%$bundle_size
|
||||||
[[ $mod_check -ne 0 ]] && num_bundles=$num_bundles+1
|
[[ $mod_check -ne 0 ]] && num_bundles=$num_bundles+1
|
||||||
for ((i=0;i<num_bundles;i++)); do
|
for ((i=0;i<num_bundles;i++)); do
|
||||||
# parent=index of bundle from previous round that includes this bundle of ciphers
|
# parent=index of bundle from previous round that includes this bundle of ciphers
|
||||||
parent=4**$round_num+$i/4
|
parent=4**$round_num+$i/4
|
||||||
# child=index for this bundle of ciphers
|
# child=index for this bundle of ciphers
|
||||||
child=4*4**$round_num+$i
|
child=4*4**$round_num+$i
|
||||||
if ${ciphers_found[parent]}; then
|
if ${ciphers_found[parent]}; then
|
||||||
ciphers_to_test=""
|
ciphers_to_test=""
|
||||||
end_of_bundle=$i*$bundle_size+$bundle_size
|
end_of_bundle=$i*$bundle_size+$bundle_size
|
||||||
[[ $end_of_bundle -gt $nr_ciphers ]] && end_of_bundle=$nr_ciphers
|
[[ $end_of_bundle -gt $nr_ciphers ]] && end_of_bundle=$nr_ciphers
|
||||||
for ((j=i*bundle_size;j<end_of_bundle;j++)); do
|
for ((j=i*bundle_size;j<end_of_bundle;j++)); do
|
||||||
[[ "${sslvers[j]}" != "SSLv2" ]] && ciphers_to_test="${ciphers_to_test}:${ciph[j]}"
|
[[ "${sslvers[j]}" != "SSLv2" ]] && ciphers_to_test="${ciphers_to_test}:${ciph[j]}"
|
||||||
done
|
done
|
||||||
ciphers_found[child]=false
|
ciphers_found[child]=false
|
||||||
if [[ -n "${ciphers_to_test:1}" ]]; then
|
if [[ -n "${ciphers_to_test:1}" ]]; then
|
||||||
$OPENSSL s_client -cipher "${ciphers_to_test:1}" $STARTTLS $BUGS -connect $NODEIP:$PORT $PROXY $SNI >$TMPFILE 2>$ERRFILE </dev/null
|
$OPENSSL s_client -cipher "${ciphers_to_test:1}" $STARTTLS $BUGS -connect $NODEIP:$PORT $PROXY $SNI >$TMPFILE 2>$ERRFILE </dev/null
|
||||||
sclient_connect_successful "$?" "$TMPFILE"
|
sclient_connect_successful "$?" "$TMPFILE"
|
||||||
[[ "$?" -eq 0 ]] && ciphers_found[child]=true
|
[[ "$?" -eq 0 ]] && ciphers_found[child]=true
|
||||||
fi
|
fi
|
||||||
else
|
else
|
||||||
# No need to test, since test of parent demonstrated none of these ciphers work.
|
# No need to test, since test of parent demonstrated none of these ciphers work.
|
||||||
ciphers_found[child]=false
|
ciphers_found[child]=false
|
||||||
fi
|
fi
|
||||||
|
|
||||||
if $sslv2_supported && [[ $bundle_size -eq 1 ]] && [[ "${sslvers[i]}" == "SSLv2" ]]; then
|
if $sslv2_supported && [[ $bundle_size -eq 1 ]] && [[ "${sslvers[i]}" == "SSLv2" ]]; then
|
||||||
$OPENSSL s_client -cipher "${ciph[i]}" $STARTTLS $BUGS -connect $NODEIP:$PORT $PROXY -ssl2 >$TMPFILE 2>$ERRFILE </dev/null
|
$OPENSSL s_client -cipher "${ciph[i]}" $STARTTLS $BUGS -connect $NODEIP:$PORT $PROXY -ssl2 >$TMPFILE 2>$ERRFILE </dev/null
|
||||||
sclient_connect_successful "$?" "$TMPFILE"
|
sclient_connect_successful "$?" "$TMPFILE"
|
||||||
[[ "$?" -eq 0 ]] && ciphers_found[child]=true
|
[[ "$?" -eq 0 ]] && ciphers_found[child]=true
|
||||||
fi
|
fi
|
||||||
# If this is a "leaf" of the test tree, then print out the results.
|
# If this is a "leaf" of the test tree, then print out the results.
|
||||||
if [[ $bundle_size -eq 1 ]] && ( ${ciphers_found[child]} || "$SHOW_EACH_C"); then
|
if [[ $bundle_size -eq 1 ]] && ( ${ciphers_found[child]} || "$SHOW_EACH_C"); then
|
||||||
export=${export2[i]}
|
export=${export2[i]}
|
||||||
normalize_ciphercode "${hexcode[i]}"
|
normalize_ciphercode "${hexcode[i]}"
|
||||||
if [[ ${kx[i]} == "Kx=ECDH" ]] || [[ ${kx[i]} == "Kx=DH" ]] || [[ ${kx[i]} == "Kx=EDH" ]]; then
|
if [[ ${kx[i]} == "Kx=ECDH" ]] || [[ ${kx[i]} == "Kx=DH" ]] || [[ ${kx[i]} == "Kx=EDH" ]]; then
|
||||||
if ${ciphers_found[child]}; then
|
if ${ciphers_found[child]}; then
|
||||||
dhlen=$(read_dhbits_from_file "$TMPFILE" quiet)
|
dhlen=$(read_dhbits_from_file "$TMPFILE" quiet)
|
||||||
kx[i]="${kx[i]} $dhlen"
|
kx[i]="${kx[i]} $dhlen"
|
||||||
fi
|
fi
|
||||||
fi
|
fi
|
||||||
neat_list "$HEXC" "${ciph[i]}" "${kx[i]}" "${enc[i]}"
|
neat_list "$HEXC" "${ciph[i]}" "${kx[i]}" "${enc[i]}"
|
||||||
available=""
|
available=""
|
||||||
if "$SHOW_EACH_C"; then
|
if "$SHOW_EACH_C"; then
|
||||||
if ${ciphers_found[child]}; then
|
if ${ciphers_found[child]}; then
|
||||||
available="available"
|
available="available"
|
||||||
pr_cyan "$available"
|
pr_cyan "$available"
|
||||||
else
|
else
|
||||||
available="not a/v"
|
available="not a/v"
|
||||||
out "$available"
|
out "$available"
|
||||||
fi
|
fi
|
||||||
fi
|
fi
|
||||||
if "$SHOW_SIGALGO" && ${ciphers_found[child]}; then
|
if "$SHOW_SIGALGO" && ${ciphers_found[child]}; then
|
||||||
$OPENSSL x509 -noout -text -in $TMPFILE | awk -F':' '/Signature Algorithm/ { print $2 }' | head -1
|
$OPENSSL x509 -noout -text -in $TMPFILE | awk -F':' '/Signature Algorithm/ { print $2 }' | head -1
|
||||||
else
|
else
|
||||||
outln
|
outln
|
||||||
fi
|
fi
|
||||||
fileout "cipher_$HEXC" "INFO" "$(neat_list "$HEXC" "${ciph[i]}" "${kx[i]}" "${enc[i]}") $available"
|
fileout "cipher_$HEXC" "INFO" "$(neat_list "$HEXC" "${ciph[i]}" "${kx[i]}" "${enc[i]}") $available"
|
||||||
fi
|
fi
|
||||||
done
|
done
|
||||||
round_num=round_num+1
|
round_num=round_num+1
|
||||||
done
|
done
|
||||||
|
|
||||||
outln
|
outln
|
||||||
|
|
Loading…
Reference in New Issue