mirror of
https://github.com/mozilla/cipherscan.git
synced 2024-11-22 22:33:40 +01:00
make handling of self signed certs more robust
openssl sometimes will print the filename, then the error, and finish with OK, matching the colon and space prevents from considering such certs to be valid
This commit is contained in:
parent
0071870c7c
commit
0e6c40ad83
@ -221,7 +221,7 @@ test_cipher_on_target() {
|
|||||||
local saved="False"
|
local saved="False"
|
||||||
if ${OPENSSLBIN} verify "${trust_source[@]}" \
|
if ${OPENSSLBIN} verify "${trust_source[@]}" \
|
||||||
-untrusted <(echo "$tmp") <(echo "$cert") 2>/dev/null | \
|
-untrusted <(echo "$tmp") <(echo "$cert") 2>/dev/null | \
|
||||||
grep 'OK$' >/dev/null; then
|
grep ': OK$' >/dev/null; then
|
||||||
|
|
||||||
# if the certificate is an intermediate CA it may be useful
|
# if the certificate is an intermediate CA it may be useful
|
||||||
# for connecting to servers that are misconfigured so save it
|
# for connecting to servers that are misconfigured so save it
|
||||||
|
Loading…
Reference in New Issue
Block a user