Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-09-04 02:58:28 +02:00
Code Issues Packages Projects Releases Wiki Activity
5,053 Commits 16 Branches 34 Tags
c6062a22543174aec97b27fc29d39ccf8282df4c
Commit Graph

5053 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Dirk
c6062a2254 do not output the whole output 
text + html , comp_ok --> ok
 2025-07-11 14:42:05 +02:00
Dirk Wetter
137c7e2fbb Merge pull request #2832 from testssl/12_diff_homebrew_(3.2) 
For Mac: use homebrew's openssl (3.2)
 2025-07-10 11:19:41 +02:00
Dirk Wetter
9290f819af Merge pull request #2836 from testssl/drwetter-patch-1 
rating bump to 2009r
 2025-07-10 09:41:52 +02:00
Dirk Wetter
28514d3a88 rating bump to 2009r 2025-07-10 09:41:19 +02:00
Dirk Wetter
f674cde6de Merge pull request #2834 from magnuslarsen/3.2 
feat: bump ssllabs rating guide to 2009r
 2025-07-10 09:36:33 +02:00
Dirk Wetter
d63617c0f6 make it compatible when run locally 2025-07-10 09:14:08 +02:00
Magnus Larsen
826adbd6d7 feat: bump ssllabs rating guide to 2009r 2025-07-10 08:20:01 +02:00
Dirk Wetter
815e737bfe Check the correct file 2025-07-09 18:10:30 +02:00
Dirk Wetter
1f589565c7 we changed above the ECDH bit length already 2025-07-09 16:17:28 +02:00
Dirk Wetter
822c6b31d7 fix stnax errors 2025-07-09 15:22:48 +02:00
Dirk Wetter
4f52cbbedf Copy LibreSSL change of naming scheme from t/61_diff_testsslsh.t 
... also if NOW only ciphers seem affected.
 2025-07-09 13:31:18 +02:00
Dirk Wetter
b8aadef737 For Mac: use homebrew's openssl (3.2) 
... so that we have a comparison between OpenSSL and LibreSSL. Otherwise this test would be completely futile for MacOS.
Also change the displayed text.
 2025-07-08 23:47:19 +02:00
Dirk Wetter
b783fbc660 Merge pull request #2826 from testssl/fix_2825 
Fix not working --disable-rating switch
 2025-07-07 14:01:50 +02:00
Dirk Wetter
0b79356357 Fix not working --disable-rating switch 
The logic was wrong when calling set_rating_state() in parse_cmd_line()
as do_rating was set before to true through set_scanning_defaults().

This PR fixes that by querying ${SKIP_TESTS[@]} instead and then calling
set_rating_state() when no --disable-rating was supplied .
 2025-07-07 12:01:43 +02:00
Dirk Wetter
8cb32a3db9 Merge pull request #2819 from testssl/perf_improvements 
Make code2network() faster by using bash instead of tr
 2025-07-03 18:14:54 +02:00
Dirk Wetter
9511f3b9db Fix 52_ocsp_revoked (OCSP --> CRL) 2025-07-03 16:59:54 +02:00
Dirk Wetter
4b5409122c Merge pull request #2820 from testssl/performance_hint 
Performance hint for openssl
 2025-07-02 17:37:21 +02:00
Dirk Wetter
6de18d3a22 was 2x first 2025-07-02 17:36:33 +02:00
Dirk Wetter
6083938a47 Performance hint for openssl 2025-07-02 17:34:29 +02:00
Dirk Wetter
2829827cc2 Merge pull request #2817 from testssl/errormsg_2807 
Improve error message for sockets fail and Alpine
 2025-06-29 17:06:01 +02:00
Dirk
3792bceeda Improve error message for sockets fail and Alpine 
See $2807 .

Also some prln_magenta were modified (see #2816) to pr_warning.
 2025-06-29 15:24:44 +02:00
Dirk Wetter
d80e0e9f95 Make code2network() faster by using bash only 2025-06-27 19:09:01 +02:00
Dirk Wetter
9b1a7ae1f8 Merge pull request #2814 from testssl/revert-2813-revert_2772_for_testing 
Revert "Revert lowercase conversion for repo"
 2025-06-24 12:07:08 +02:00
Dirk
78a613dae3 Remove the scheudule part as it will not work anymore 2025-06-24 12:06:00 +02:00
Dirk Wetter
b56302518b Revert "Revert lowercase conversion for repo" 2025-06-23 23:12:59 +02:00
Dirk Wetter
6dc26b09fe Merge pull request #2813 from testssl/revert_2772_for_testing 
Revert lowercase conversion for repo
 2025-06-23 21:38:32 +02:00
Dirk
d44692331b Revert lowercase conversion for repo 
... which was done in #2772 . This is done for testing as building the container doesn't
work anymore, see #2810 .

Action logs say it was build but it's unclear why it is still based on 3.2rc4 .
Hence this test.

The schedule was commented out as it would not apply either here as 3.3dev is
 now the default version.
 2025-06-23 21:17:49 +02:00
Dirk Wetter
bed43df2df Merge pull request #2812 from testssl/ghcr_workflow_no_unittest 
YAML file doesn't need the unit tests
 2025-06-23 21:04:43 +02:00
Dirk Wetter
58719e4492 YAML file doesn't need the unit tests 2025-06-23 21:00:33 +02:00
Dirk Wetter
5fe854b830 Merge pull request #2809 from testssl/improve_2798 
Minor improvements to #2798
 2025-06-23 20:29:27 +02:00
Dirk Wetter
4d75527a4b Merge pull request #2808 from testssl/fix_sectigo_x46.forLinux 
Add sectigo CA E46 and R46 for Linux.pem
 2025-06-23 20:29:07 +02:00
Dirk Wetter
c9a11a9fb0 Minor improvements to #2798 
see https://github.com/testssl/testssl.sh/pull/2798#issuecomment-2972834180
 2025-06-23 18:43:34 +02:00
Dirk Wetter
71f0f32cf5 Merge pull request #2798 from secinto/3.2 
Modify grading for incomplete chain. 

suggested corrections will be done after merge
 2025-06-23 18:41:00 +02:00
Dirk Wetter
b4f9e51865 Add lf so that gh action doesn't complain 2025-06-23 18:21:44 +02:00
Dirk Wetter
1403503077 Add Sectigo x46 CAs from recent Debian update 2025-06-23 18:20:14 +02:00
Dirk Wetter
a209f92d4f Merge pull request #2804 from testssl/readiness_for_new_stuff 
Reflect version 3.0.10 version is EOL
 2025-06-15 09:28:24 +02:00
Dirk Wetter
99a05cb261 Merge pull request #2801 from HarrisonTCodes/fix-readme-deepwiki-link 
Fix README DeepWiki Link
 2025-06-14 17:14:37 +02:00
Dirk
637fb86c83 typo 2025-06-14 17:11:30 +02:00
Dirk
c4ad4d7d42 Reflect version 3.0.10 version is EOL 2025-06-14 17:09:24 +02:00
HarrisonTCodes
246ecbf490 fix deepwiki link 2025-06-14 14:56:37 +01:00
secinto
529a373b2e Update testssl.sh 
Modified grading for incomplete chain
 2025-06-13 10:54:13 +02:00
Dirk Wetter
b6a951d40a Merge pull request #2797 from testssl/bump_version 
Bump version
v3.2.1 		2025-06-13 10:24:25 +02:00
Dirk
f2aa87ba66 Bump version 
"just" bugfix release.
 2025-06-12 17:26:06 +02:00
Dirk Wetter
949042866b Merge pull request #2796 from testssl/plaintext_len_AKA_openssl2conf_problem 
Fix OPENSSL_CONF problem for OPENSSL2
 2025-06-11 20:38:29 +02:00
Dirk
235a6a0f88 add another OPENSSL_CONF='' 2025-06-11 19:02:06 +02:00
Dirk
91a35026b6 Fix OPENSSL_CONF problem for OPENSSL2 
In #2727 there were workarounds introduced which sped up processing decryption of
ChaCha20 and and AES-GCM by using OPENSSL2 when it is supporting such functions.

However when OPENSSL2 is called and OPENSSL_CONF still points to the autogenerated
file which works for `~/bin/openssl.$(uname -s).$(uname -m)` the decryption `$plaintext`
will be empty which later on caused a negative value, see #2780 .

This fixes #2780 by prepending `OPENSSL_CONF=''` to each OPENSSL2 instance. Also it
makes `chacha20()` and `gcm-decrypt()` more robust. It is now more readable now.

At other places $OPENSSL2 were prepended by `OPENSSL_CONF=''` also if there weren't
any obvious errors noticed.

Also now all OPENSSL2 vars will appear in /tmp/testssl.XXXXXX/environment.txt when
debugging.

It was also noticed that the `find_socat()` function had room for improvements, it was
not set in any case when `socat was in $PATH or supplied via env SOCAT.
 2025-06-11 18:47:14 +02:00
Dirk Wetter
735cc668c0 Merge pull request #2792 from testssl/fix_issuerCN 
Fix missing issuer CN
 2025-06-11 11:13:21 +02:00
Dirk Wetter
0a89d5c94f Some cert need 5 lines to reach the CN 2025-06-11 09:06:41 +02:00
Dirk Wetter
fd6dbb22bd Merge pull request #2790 from testssl/FixServerHeaderParser 
Fix parser for server header
 2025-06-11 08:48:36 +02:00
Dirk Wetter
39029e9995 fix orthographic error 2025-06-10 23:13:00 +02:00