Merge branch '2.9dev' into run_pfs_sockets

Conflicts: testssl.sh
2025-02-04 23:01:15 +01:00 · 2016-12-21 09:04:11 -05:00 · 2016-12-21 09:04:11 -05:00 · eaf5671b17
commit eaf5671b17
parent 9f8aff5758 7a4c6294ac
1 changed files with 6 additions and 5 deletions
--- a/testssl.sh
+++ b/testssl.sh
@ -3861,7 +3861,7 @@ run_client_simulation() {
 # generic function whether $1 is supported by s_client ($2: string to display)
 locally_supported() {
     [[ -n "$2" ]] && out "$2 "
-     if $OPENSSL s_client "$1" 2>&1 | grep -aq "unknown option"; then
+     if $OPENSSL s_client "$1" -connect x 2>&1 | grep -aq "unknown option"; then
          local_problem_ln "$OPENSSL doesn't support \"s_client $1\""
          return 7
     fi
@ -6146,7 +6146,7 @@ run_pfs() {
          for curve in "${curves_ossl[@]}"; do
               ossl_supported[nr_curves]=false
               supported_curve[nr_curves]=false
-               $OPENSSL s_client -curves $curve 2>&1 | egrep -iaq "Error with command|unknown option"
+               $OPENSSL s_client -curves $curve -connect x 2>&1 | egrep -iaq "Error with command|unknown option"
               [[ $? -ne 0 ]] && ossl_supported[nr_curves]=true && nr_ossl_curves+=1
               nr_curves+=1
          done
@ -9565,6 +9565,7 @@ run_rc4() {
               fi
               if "$WIDE"; then
                    #FIXME: JSON+CSV in wide mode is missing
+                    export="${export2[i]}"
                    neat_list "${normalized_hexcode[i]}" "${ciph[i]}" "${kx[i]}" "${enc[i]}"
                    if "$SHOW_EACH_C"; then
                         if "${ciphers_found[i]}"; then
@ -9727,13 +9728,13 @@ find_openssl_binary() {

     OPENSSL_NR_CIPHERS=$(count_ciphers "$($OPENSSL ciphers 'ALL:COMPLEMENTOFALL:@STRENGTH' 2>/dev/null)")

-     $OPENSSL s_client -ssl2 2>&1 | grep -aq "unknown option" || \
+     $OPENSSL s_client -ssl2 -connect x 2>&1 | grep -aq "unknown option" || \
          HAS_SSL2=true

-     $OPENSSL s_client -ssl3 2>&1 | grep -aq "unknown option" || \
+     $OPENSSL s_client -ssl3 -connect x 2>&1 | grep -aq "unknown option" || \
          HAS_SSL3=true

-     $OPENSSL s_client -no_ssl2 2>&1 | grep -aq "unknown option" || \
+     $OPENSSL s_client -no_ssl2 -connect x 2>&1 | grep -aq "unknown option" || \
          HAS_NO_SSL2=true

     $OPENSSL s_client -help 2>$s_client_has