91a35026b6
Fix OPENSSL_CONF problem for OPENSSL2
...
In #2727 there were workarounds introduced which sped up processing decryption of
ChaCha20 and and AES-GCM by using OPENSSL2 when it is supporting such functions.
However when OPENSSL2 is called and OPENSSL_CONF still points to the autogenerated
file which works for `~/bin/openssl.$(uname -s).$(uname -m)` the decryption `$plaintext`
will be empty which later on caused a negative value, see #2780 .
This fixes #2780 by prepending `OPENSSL_CONF=''` to each OPENSSL2 instance. Also it
makes `chacha20()` and `gcm-decrypt()` more robust. It is now more readable now.
At other places $OPENSSL2 were prepended by `OPENSSL_CONF=''` also if there weren't
any obvious errors noticed.
Also now all OPENSSL2 vars will appear in /tmp/testssl.XXXXXX/environment.txt when
debugging.
It was also noticed that the `find_socat()` function had room for improvements, it was
not set in any case when `socat was in $PATH or supplied via env SOCAT.
2025-06-11 18:47:14 +02:00
735cc668c0
Merge pull request #2792 from testssl/fix_issuerCN
...
Fix missing issuer CN
2025-06-11 11:13:21 +02:00
0a89d5c94f
Some cert need 5 lines to reach the CN
2025-06-11 09:06:41 +02:00
fd6dbb22bd
Merge pull request #2790 from testssl/FixServerHeaderParser
...
Fix parser for server header
2025-06-11 08:48:36 +02:00
39029e9995
fix orthographic error
2025-06-10 23:13:00 +02:00
61947405e0
Fix missing issuer CN
...
This fixes a problem which was introduced @ 8d8f83ace5Fixes #2789
2025-06-10 22:54:11 +02:00
889aedc0e4
Fix parser for server header
...
Do word match and exclude minus sign
This fixes #2787 for 3.2.
2025-06-10 21:59:40 +02:00
fbbf68857f
Merge pull request #2785 from testssl/stderr
...
Ensure that stderr is caught / $prg=testssl.sh
2025-05-28 20:16:32 +02:00
ba360bae7e
remove extra quote sign
2025-05-28 10:21:10 +02:00
7183bb1206
Add changed headers at target ...
...
... so that runners pass
2025-05-27 22:48:04 +02:00
1fb3a2224f
Ensure that stderr is caught / $prg=testssl.sh
...
As suggested in #2780 this PR redirects all stderr on a perl level
to stdout so that we should see all errors which we miss because
we can't redirect (>/dev/null in check) or we haven't redirected yet.
Also old checks are imporved, so that $prg is used as in newer
checks.
2025-05-27 10:54:25 +02:00
75d8f8aa90
Merge pull request #2782 from testssl/ccsInjectionFix
...
Fix CCS injection regression
2025-05-22 00:50:04 +02:00
0daf83cf76
fix typo
2025-05-21 14:22:13 +02:00
cd575526a7
Fix CCS injection regression
...
The rhs of the pattern was off by one byte and it worked in practise until recent PR #2657 .
This fixes #2691 for 3.2 .
2025-05-21 14:17:54 +02:00
388f3a3321
Merge pull request #2761 from testssl/mac_runner
...
PoC github action runner macos-14
2025-05-20 17:59:19 +02:00
a76e06f887
Polish some sentences
...
... wrt to the now even better unit testing.
2025-05-20 16:50:39 +02:00
f8f00de5a0
Shorten name for badge
2025-05-20 16:43:06 +02:00
d87f5f68de
Sync runners / rename comments for badge
2025-05-20 16:37:48 +02:00
ce96cc5816
Add badge for MacOS rummer
2025-05-20 16:36:29 +02:00
7815b67695
Merge branch '3.2' into mac_runner
2025-05-20 16:31:34 +02:00
242256bd58
Merge pull request #2778 from testssl/drwetter-patch-1
...
slight rewording
2025-05-20 12:38:42 +02:00
81b377bda9
slight rewording
2025-05-20 12:37:57 +02:00
d0143b181b
Handle space problem
2025-05-20 10:48:54 +02:00
85d8d44fbe
Try to fix the renegotiation problem
...
as suggested, see https://github.com/testssl/testssl.sh/issues/2765#issuecomment-2891140503
2025-05-19 16:24:46 +02:00
a685fc252d
Take shorter OPenSSL cipher name into account
...
AEAD-CHACHA20-POLY1305-SHA256 vs.
TLS_CHACHA20_POLY1305_SHA256
2025-05-19 13:52:03 +02:00
54964a9bc6
Merge pull request #2777 from polarathene/chore/consistent-dockerfile
...
chore: `Dockerfile` consistency
2025-05-19 13:10:45 +02:00
9dc4ea338b
docs: Dockerfile - Use ref links
2025-05-19 12:09:44 +12:00
af57ec4659
docs: Docker - Minor corrections
2025-05-19 11:47:49 +12:00
5b899958ec
chore: Dockerfile - Adopt HereDoc syntax
2025-05-19 11:47:15 +12:00
0d0c5d0ab9
Merge pull request #2771 from polarathene/ci/docker-prefer-dist-local
...
ci: Docker - Prefer `dist-local` stage
2025-05-18 16:24:43 +02:00
35457f9d99
Merge pull request #2776 from testssl/drwetter-patch-1
...
More badges
2025-05-17 18:22:29 +02:00
9f73f782a1
Update Readme.md
...
Bluesky badge
2025-05-17 16:35:58 +02:00
05fb3c3fe9
Identation
2025-05-17 16:20:40 +02:00
d0aa6fa84d
Update Readme.md
...
More badges
2025-05-17 16:19:42 +02:00
8d1bcab878
Merge pull request #2775 from testssl/ubuntu_runner
...
Fix indentation
2025-05-16 19:06:57 +02:00
7df43ea752
More badges
...
see https://shields.io/badges
2025-05-16 19:06:24 +02:00
5b2e8ac12c
fix indentation
2025-05-16 18:21:20 +02:00
c109cafa17
Merge branch '3.2' into mac_runner
2025-05-16 18:16:58 +02:00
42b3352106
rename Dockerfile
2025-05-16 18:15:57 +02:00
b77563951d
Rename runner, change suffix for Dockerfile
2025-05-16 18:14:35 +02:00
222ad8ae36
Fix indentation
2025-05-16 18:07:09 +02:00
ce6cdfea75
Merge pull request #2774 from testssl/ubuntu_runner
...
Update / rename runner to be in sync w Mac runner
2025-05-16 18:05:34 +02:00
cbd15020e2
Change reference to badge
2025-05-16 17:59:00 +02:00
5e248c05dc
Update / rename runner to be in sync w Mac runner
2025-05-16 17:50:33 +02:00
0ab5e2d878
Merge branch '3.2' into ci/docker-prefer-dist-local
2025-05-16 17:23:30 +02:00
6aa1c58c34
Merge pull request #2773 from testssl/drwetter-patch-1
...
Dockerfile
2025-05-16 16:11:46 +02:00
3977057a1e
Update unit_tests.yml
...
Dockerfile.alpine here
2025-05-16 16:11:22 +02:00
bc4a1ab402
Merge pull request #2772 from Tazmaniac/docker-fix
...
Lowercase the repository name.
2025-05-16 09:20:14 +02:00
495778c808
Lowercase the repository name.
...
To please buildx
2025-05-15 20:32:13 +02:00
4db9cb5afe
Unify ECDH bitlength
2025-05-14 14:07:07 +02:00
