854028166d
Including AppleMail
2022-05-31 15:12:16 +02:00
b274e3b858
correct openssl 3.0.3 data which made CI action fail
2022-05-31 14:32:47 +02:00
6536eaddb6
remove Java 12 and OSX 10 in baseline file
2022-05-31 14:09:19 +02:00
a21a343c1c
disable Java 12 and Safari on OS X 10.12
2022-05-31 12:17:38 +02:00
09432f0346
minor fix: italic markdown
2022-05-31 12:10:36 +02:00
f90b473b32
Add Thunderbid 91.9 to hanshak simulation
2022-05-31 12:10:11 +02:00
6023acd58c
Merge branch '3.1dev' into update_clients1
2022-05-31 12:09:23 +02:00
acc063e078
Merge pull request #2181 from dcooper16/continue_server_pref_on_error
...
Continue run_server_preference() on error
2022-05-31 11:37:08 +02:00
e6f6bcaaa7
Merge pull request #2191 from drwetter/pr2189
...
Fix CRIME test
2022-05-30 14:58:48 +02:00
dfbb9f8122
Fix Actions
...
this one works locally...
2022-05-30 13:37:07 +02:00
8d817e1dcf
PR to merge #2189
...
added: changes in CI so that it goes through
2022-05-25 18:46:08 +02:00
f3fe2ac401
Merge branch 'EliteTK-fix-crime-tls1.3' into pr2189
2022-05-25 18:45:13 +02:00
fc0cc67d47
Make run_crime use $jsonID instead of repeating
...
This also seems more consistent across the code.
2022-05-23 13:57:31 +01:00
326a65e7ad
Fix CRIME test on servers only supporting TLS 1.3
...
As jsonID is not set by run_crime, make the fileout invocation for
servers supporting only TLS 1.3 use the literal "CRIME_TLS" instead.
Previously running testssl with CSV or JSON output would produce an item
with the wrong ID.
2022-05-23 13:53:38 +01:00
706262095b
Continue run_server_preference() on error
...
Currently run_server_preference() will stop if it cannot determine whether the server enforces a cipher preference order.
This commit changes run_server_preference() so it will continue running even if this case, so that the list of ciphers supported with each TLS protocol is provided. Since it is not known whether the server enforces a cipher order, the list of supported ciphers is ordered by strength.
2022-05-16 09:28:02 -04:00
d931eb470c
Merge pull request #2186 from drwetter/censys_fix_2127
...
Fix censys link in DROWN section
2022-05-14 13:57:46 +02:00
04463784a8
Fix censys link in DROWN section
...
See #2127 . the line seems very long though.
Note: this was previously commited as #2184 but as there were two mistakes
and one other thing which could be improved I decided to make a hard reset.
Apologize if it caused inconvenience.
2022-05-14 12:06:09 +02:00
1eb8347174
Update comparion/diff file for CI
...
... for the time being
2022-05-10 13:08:44 +02:00
b89574e5c7
Merge pull request #2180 from dcooper16/ossl_ffdhe
...
Check for OpenSSL support for ffdhe groups
2022-05-10 07:47:56 +02:00
86158f0bdf
Firefox 100, Chrom and Edge 101 (Win10)
...
- disabled Opera (too old)
- disabled ATS 9 / iOS 9
- reenabled Android 8.1
2022-05-09 17:49:16 +02:00
66c3e35dba
Check for OpenSSL support for ffdhe groups
...
OpenSSL 3.0.0 and later supports specifying the FFDHE groups from RFC 7919 in the "-groups" (or "-curves") option of s_client.
This commit modifies find_openssl_binary() to check whether $OPENSSL supports this. This information is then used by run_client_simulation(), if client simulation testing is being performed using $OPENSSL. If the "curves" for a client include FFDHE groups, then they will be included in the simulated ClientHello.
2022-05-09 09:46:40 -04:00
6bd80b3baa
Merge branch '3.1dev' into update_clients1
2022-05-06 10:32:01 +02:00
22d8cd3adf
Go client (1.17)
2022-05-06 10:06:03 +02:00
ff23a2ba22
Merge pull request #2177 from drwetter/dependabot/github_actions/docker/setup-buildx-action-2
...
Bump docker/setup-buildx-action from 1 to 2
2022-05-06 08:17:49 +02:00
4935679f50
Merge pull request #2176 from drwetter/dependabot/github_actions/docker/metadata-action-4
...
Bump docker/metadata-action from 3 to 4
2022-05-06 08:17:33 +02:00
f1ce1a21bb
Merge pull request #2175 from drwetter/dependabot/github_actions/docker/setup-qemu-action-2.0.0
...
Bump docker/setup-qemu-action from 1.2.0 to 2.0.0
2022-05-06 08:17:09 +02:00
acfbaf8408
Merge pull request #2174 from drwetter/dependabot/github_actions/docker/login-action-2.0.0
...
Bump docker/login-action from 1.14.1 to 2.0.0
2022-05-06 08:16:42 +02:00
c332d03323
Merge pull request #2173 from drwetter/dependabot/github_actions/docker/build-push-action-3.0.0
...
Bump docker/build-push-action from 2.10.0 to 3.0.0
2022-05-06 08:15:59 +02:00
f434dd963d
Bump docker/setup-buildx-action from 1 to 2
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 1 to 2.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](https://github.com/docker/setup-buildx-action/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-05-06 00:31:01 +00:00
d40591bf00
Bump docker/metadata-action from 3 to 4
...
Bumps [docker/metadata-action](https://github.com/docker/metadata-action ) from 3 to 4.
- [Release notes](https://github.com/docker/metadata-action/releases )
- [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md )
- [Commits](https://github.com/docker/metadata-action/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: docker/metadata-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-05-06 00:30:56 +00:00
44ae7c1604
Bump docker/setup-qemu-action from 1.2.0 to 2.0.0
...
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action ) from 1.2.0 to 2.0.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases )
- [Commits](https://github.com/docker/setup-qemu-action/compare/v1.2.0...v2.0.0 )
---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-05-06 00:30:52 +00:00
172115501a
Bump docker/login-action from 1.14.1 to 2.0.0
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 1.14.1 to 2.0.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](https://github.com/docker/login-action/compare/v1.14.1...v2.0.0 )
---
updated-dependencies:
- dependency-name: docker/login-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-05-06 00:30:49 +00:00
7fb9039f83
Bump docker/build-push-action from 2.10.0 to 3.0.0
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 2.10.0 to 3.0.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](https://github.com/docker/build-push-action/compare/v2.10.0...v3.0.0 )
---
updated-dependencies:
- dependency-name: docker/build-push-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-05-06 00:30:45 +00:00
cf79a19598
Add Android 11+12
2022-05-04 19:12:03 +02:00
28e9ddeebd
Teating of FFDHE groups
...
* readded to the markdown
* readded to the clientsimulations for Java 12
2022-05-04 18:29:29 +02:00
ac6f99fe1c
correct FFDHE groups
...
... so that they a recognized by ~/utils/hexstream2curves.sh
2022-05-04 17:44:33 +02:00
c6491a3834
Correct spell checking error
...
and hint to missing ALPN
2022-05-04 15:56:25 +02:00
415043865a
Add Java 17 LTS
...
plus
* amend documentation
* remove TLS 1.3 ciphers in ch_ciphers for consistency reasons
2022-05-04 15:46:36 +02:00
52ed4181f9
Add SSLSocketClient in Java
...
Note this doesn't add alpn (same as openssl). See here https://docs.oracle.com/javase/8/docs/api/javax/net/ssl/SSLSocket.html
if you want to add that.
This code is NOT GPLv2! It was taken from the Oracle web site which didn't list any license
(https://docs.oracle.com/javase/10/security/sample-code-illustrating-secure-socket-connection-client-and-server.htm ).
2022-05-04 15:39:32 +02:00
d84492a75e
Update openssl 3.0.3
2022-05-04 14:32:04 +02:00
cc7a88386d
Update documention how to add a client simulation
2022-05-04 12:38:12 +02:00
859da96ad0
Merge pull request #2167 from drwetter/fix_banner
...
Minor changes to banner
2022-05-04 10:48:18 +02:00
03803cf0c9
Add Safari for macOS
2022-05-03 22:11:31 +02:00
34cc20b0df
Minor changes to banner
...
On macOS indark mode the git tag in grey wasn't visible. It was
changed now to light grey but it has to be tested how it looks
on a white terminal background.
Also CVS variables were removed which had no meaning.
2022-05-03 21:02:56 +02:00
0329eba688
Merge pull request #2164 from drwetter/ftp_starttls_auth_only
...
Relax STARTTLS FTP requirement
2022-04-27 14:49:02 +02:00
6c69fdbf4b
Relax STARTTLS FTP requirement
...
In rare? occassions where the STARTTLS FEAT request only displays AUTH instead
of AUTH TLS, testssl.sh fails as it cannot upgrade to TLS.
Required by RFC 4217 is only AUTH ("MUST"), AUTH TLS is optional ("should"), see section 6.
This commit relaxes the presence of TLS after AUTH and it fixes #2132 .
2022-04-27 13:34:03 +02:00
ab33f6c0b6
Merge pull request #2163 from drwetter/fix-permissions-githubdockeraction
...
Hotfix reenabling write permissions
2022-04-25 10:18:49 +02:00
e5efdd6cb4
Hotfix reenabling write permissions
...
see #2158
2022-04-25 10:17:05 +02:00
db80ef14f0
Merge pull request #2156 from dcooper16/fix_run_server_defaults
...
Fix run_server_defaults()
2022-04-25 08:54:52 +02:00
5053105d3f
Merge pull request #2154 from dcooper16/server_pref_no_default_cipher
...
Fix run_server_preference() with no default protocol
2022-04-24 19:30:18 +02:00