testssl.sh

mirror of https://github.com/drwetter/testssl.sh.git synced 2026-03-22 10:43:31 +01:00

Author	SHA1	Message	Date
Dirk Wetter	9c086b2e15	Merge pull request #3002 from testssl/dependabot/github_actions/docker/build-push-action-7 Bump docker/build-push-action from 6 to 7	2026-03-12 11:02:37 +01:00
Dirk Wetter	3142e73b99	Merge pull request #3001 from testssl/dependabot/github_actions/docker/setup-buildx-action-4 Bump docker/setup-buildx-action from 3 to 4	2026-03-12 11:02:13 +01:00
Dirk Wetter	a24990ef90	Merge pull request #3000 from testssl/dependabot/github_actions/docker/metadata-action-6 Bump docker/metadata-action from 5 to 6	2026-03-12 11:01:45 +01:00
Dirk Wetter	63a07e38e1	Merge pull request #2999 from testssl/dependabot/github_actions/docker/setup-qemu-action-4 Bump docker/setup-qemu-action from 3 to 4	2026-03-12 11:01:01 +01:00
Dirk Wetter	a7f16fd189	Merge pull request #2998 from testssl/dependabot/github_actions/docker/login-action-4 Bump docker/login-action from 3 to 4	2026-03-12 11:00:30 +01:00
dependabot[bot]	c4b429e467	Bump docker/build-push-action from 6 to 7 Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 6 to 7. - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](https://github.com/docker/build-push-action/compare/v6...v7) --- updated-dependencies: - dependency-name: docker/build-push-action dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-06 00:22:46 +00:00
dependabot[bot]	ccf0bfe9f2	Bump docker/setup-buildx-action from 3 to 4 Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3 to 4. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](https://github.com/docker/setup-buildx-action/compare/v3...v4) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-06 00:22:42 +00:00
dependabot[bot]	8ced01c172	Bump docker/metadata-action from 5 to 6 Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 5 to 6. - [Release notes](https://github.com/docker/metadata-action/releases) - [Commits](https://github.com/docker/metadata-action/compare/v5...v6) --- updated-dependencies: - dependency-name: docker/metadata-action dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-06 00:22:22 +00:00
dependabot[bot]	79f1a35b7a	Bump docker/setup-qemu-action from 3 to 4 Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 3 to 4. - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](https://github.com/docker/setup-qemu-action/compare/v3...v4) --- updated-dependencies: - dependency-name: docker/setup-qemu-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-05 00:22:19 +00:00
dependabot[bot]	539af80ead	Bump docker/login-action from 3 to 4 Bumps [docker/login-action](https://github.com/docker/login-action) from 3 to 4. - [Release notes](https://github.com/docker/login-action/releases) - [Commits](https://github.com/docker/login-action/compare/v3...v4) --- updated-dependencies: - dependency-name: docker/login-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-05 00:22:16 +00:00
Dirk Wetter	87ecc1c9f2	Merge pull request #2997 from testssl/drwetter-patch-1 don't use 3.0 docker images anymore	2026-02-19 10:53:34 +01:00
Dirk Wetter	81fb5f967f	don't use 3.0 anymore	2026-02-19 10:52:31 +01:00
Dirk Wetter	552e10ce8a	Merge pull request #2995 from testssl/drwetter-patch-1 Amend IPv6 with host networking	2026-02-18 10:32:48 +01:00
Dirk Wetter	8aca6f0665	Amend IPv6 with host networking	2026-02-18 10:31:24 +01:00
Dirk Wetter	aef8616e5b	Merge pull request #2992 from testssl/back2thedev Change banner back to 3.3dev	2026-02-18 10:25:29 +01:00
Dirk Wetter	4086cb593e	Merge pull request #2994 from testssl/drwetter-patch-1 Docker + IPv6	2026-02-18 10:01:48 +01:00
Dirk Wetter	6cc8c857a8	Docker + IPv6	2026-02-18 10:00:57 +01:00
Dirk	094c61caea	Change banner back to 3.3dev	2026-02-13 14:25:58 +01:00
Dirk Wetter	cdc892e323	Merge pull request #2991 from testssl/3.3snap1 Add "dev" to the version banner to clarify v3.3dev-snapshot-2602	2026-02-13 13:46:54 +01:00
Dirk	c895a5c268	Add "dev" to the version banner to clarify And modify the banner accordingly depending on whether it's a snapshot release or not.	2026-02-13 11:18:13 +01:00
Dirk Wetter	a9fc8a17c5	Merge pull request #2989 from testssl/3.3snap1 Prepare for a snapshot release	2026-02-13 08:36:20 +01:00
Dirk	c600b2cb38	Prepare for a snapshot release - "3.3" still signals it's not oldstable - "snapshot-YYMM" speaks for itself	2026-02-12 23:15:07 +01:00
Dirk Wetter	18a1264223	Merge pull request #2985 from testssl/fix_2983_robot_timeout Finalize renaming MAX_WAITSOCK --> ROBOT_TIMEOUT	2026-02-11 21:36:17 +01:00
Dirk	ee316ef7ee	Google has KEMs wjhich openssl doesn't show	2026-02-11 20:06:24 +01:00
Dirk	98d3c8399f	Fix typo in ROBOT_TIMEOUT ... which may led to false positives Also in a number of tests the timeout was re-adjusted so that the robot check performs ~25% faster -- on MacOS. On Linux it's about the same.	2026-02-11 19:00:38 +01:00
Dirk	496373a60f	Finalize renaming MAX_WAITSOCK --> ROBOT_TIMEOUT The commit `51a35b0344` changed variable names but there were leftovers. Also before the tiemout values were reduced, so that the check may run faster. What was left were that some timeout values were still too long. Thus MAX_WAITSOCK is now completely changed to ROBOT_TIMEOUT . Also when the ROBOT check identified something as potentially vulnerable, the timeout value ist increased to 8 seconds which is less than in 3.2 . Tests however showed so far that there were no false positives or negatives. Moreover it changes the local variable robottimeout to robot_timeout. This PR fixes #2983 for 3.3dev .	2026-01-22 19:57:32 +01:00
Dirk Wetter	79db2763b6	Merge pull request #2982 from testssl/feature_2806 Flag absence of extended master secret extension	2026-01-15 15:19:45 +01:00
Dirk	ca55c5b180	Exempt the debug statement "Extended master secret extension detected"	2026-01-15 11:20:01 +01:00
Dirk	d78fae2dce	Add extended_master_secret extension	2026-01-14 20:37:33 +01:00
Dirk	52ffa95696	Flag absence of extended master secret extension This PR fixes #2806 and implements a feature request. TLS >=1.2 MUST support support the extended_master_secret extension to address an attack resulting from TLS session parameters not being properly authenticated in a Triple Handshake scanario (https://ieeexplore.ieee.org/document/6956559). Only if the extension is missing there will be a medium severity level finding. JSON output will be generated in any case. Also in determine_tls_extensions() some documenation about tls extensions to be send were added.	2026-01-14 20:22:59 +01:00
Dirk Wetter	251d5ac02a	Merge pull request #2981 from testssl/fix_2973 Remove VULN_THRESHLD relic	2026-01-13 20:05:44 +01:00
Dirk	cf77cd2ad4	fix spelling	2026-01-13 17:33:33 +01:00
Dirk	3e10b3a9a2	Remove VULN_THRESHLD relic This fixes #2973. There was a while back an extra headline when one or a defined other number of vulnerabilities were checked. The extra headline was removed n #2967 but some leftover code needed to be removed as well. In the aforementioned previous PR it seems run_starttls_injection() and run_rc4() were forgotten. This PR removes extra headlines in those functions as well.	2026-01-13 17:24:27 +01:00
Dirk Wetter	4e10bd24da	Merge pull request #2979 from testssl/drwetter-patch-1 general remarks, check boxes	2026-01-13 10:36:30 +01:00
Dirk Wetter	62934191d3	minor tweaking	2026-01-13 10:35:50 +01:00
Dirk Wetter	edbec494c6	Merge pull request #2980 from testssl/OPENSSL2_hint Suggest alternative $OPENSSL2 when $OPENSSL fails	2026-01-13 10:30:31 +01:00
Dirk	45b27872c9	fix typo	2026-01-12 21:22:45 +01:00
Dirk	d360b27b83	Suggest alternative $OPENSSL2 when $OPENSSL fails .. as an UI improvement for the user. Implemented for Ticketbleed and during startup in determine_optimal_proto() . For the latter it could be considered later to automagically pick $OPENSSL2 .	2026-01-12 21:07:15 +01:00
Dirk Wetter	2ea57ec490	typos	2025-12-26 20:28:28 +01:00
Dirk Wetter	c89a41e627	general remarks, check boxes	2025-12-26 20:26:26 +01:00
Dirk Wetter	6a5a69fcfd	Merge pull request #2978 from testssl/drwetter-patch-1 Polish	2025-12-20 23:24:50 +01:00
Dirk Wetter	f16e270e6a	Polish	2025-12-20 23:24:15 +01:00
Dirk Wetter	ee8055ef61	Merge pull request #2977 from testssl/drwetter-patch-1 Add FAQ	2025-12-20 23:19:59 +01:00
Dirk Wetter	1650b445ef	Add FAQ	2025-12-20 23:19:22 +01:00
Dirk Wetter	4c27d8a8b9	Merge pull request #2975 from testssl/badges_patch Update badges	2025-12-19 15:19:34 +01:00
Dirk Wetter	2274c6cd5b	Merge pull request #2974 from testssl/robot_timeout_doc Add ROBOT_TIMEOUT to documentation	2025-12-19 15:18:50 +01:00
Dirk	bca823a0cc	Update badges - sort them better - add forks+stars - remove gitter	2025-12-19 15:17:07 +01:00
Dirk	3ac39032fa	Add ROBOT_TIMEOUT to documentation Also * remove VULN_THRESHLD from docs Note: pandoc was a different version, so the roff output has different encodings for different special chars.	2025-12-19 15:07:40 +01:00
Dirk Wetter	61d0189f8f	Merge pull request #2969 from testssl/mitigate_2083 Mitigate inconsistent test results for ROBOT	2025-12-19 13:59:48 +01:00
Dirk Wetter	6cd5b4364c	Merge branch '3.3dev' into mitigate_2083	2025-12-15 13:13:50 +01:00

1 2 3 4 5 ...

5314 Commits