mirror of
https://github.com/mozilla/cipherscan.git
synced 2024-11-04 23:13:41 +01:00
add ability to ignore results from untrusted servers
This commit is contained in:
parent
ff620f5b26
commit
45dc1da3f6
@ -9,6 +9,8 @@ import sys
|
||||
from collections import defaultdict
|
||||
import os
|
||||
|
||||
report_untrused=False
|
||||
|
||||
cipherstats = defaultdict(int)
|
||||
pfsstats = defaultdict(int)
|
||||
protocolstats = defaultdict(int)
|
||||
@ -43,6 +45,7 @@ for r,d,flist in os.walk(path):
|
||||
TLS1_2 = False
|
||||
dualstack = False
|
||||
ECDSA = False
|
||||
trusted = False
|
||||
|
||||
""" process the file """
|
||||
f_abs = os.path.join(r,f)
|
||||
@ -57,11 +60,12 @@ for r,d,flist in os.walk(path):
|
||||
if len(results['ciphersuite']) < 1:
|
||||
continue
|
||||
|
||||
total += 1
|
||||
|
||||
""" loop over list of ciphers """
|
||||
for entry in results['ciphersuite']:
|
||||
|
||||
if 'True' in entry['trusted']:
|
||||
trusted = True
|
||||
|
||||
""" store the ciphers supported """
|
||||
if 'AES-GCM' in entry['cipher']:
|
||||
if not AESGCM:
|
||||
@ -126,6 +130,12 @@ for r,d,flist in os.walk(path):
|
||||
TLS1_2 = True
|
||||
json_file.close()
|
||||
|
||||
""" don't store stats from unusued servers """
|
||||
if report_untrused == False and trusted == False:
|
||||
continue
|
||||
|
||||
total += 1
|
||||
|
||||
""" done with this file, storing the stats """
|
||||
if DHE or ECDHE:
|
||||
pfsstats['Support PFS'] += 1
|
||||
|
Loading…
Reference in New Issue
Block a user