2
0
mirror of https://github.com/mozilla/cipherscan.git synced 2024-11-04 23:13:41 +01:00

add ability to ignore results from untrusted servers

This commit is contained in:
Hubert Kario 2014-04-05 01:33:33 +02:00
parent ff620f5b26
commit 45dc1da3f6

View File

@ -9,6 +9,8 @@ import sys
from collections import defaultdict
import os
report_untrused=False
cipherstats = defaultdict(int)
pfsstats = defaultdict(int)
protocolstats = defaultdict(int)
@ -43,6 +45,7 @@ for r,d,flist in os.walk(path):
TLS1_2 = False
dualstack = False
ECDSA = False
trusted = False
""" process the file """
f_abs = os.path.join(r,f)
@ -57,11 +60,12 @@ for r,d,flist in os.walk(path):
if len(results['ciphersuite']) < 1:
continue
total += 1
""" loop over list of ciphers """
for entry in results['ciphersuite']:
if 'True' in entry['trusted']:
trusted = True
""" store the ciphers supported """
if 'AES-GCM' in entry['cipher']:
if not AESGCM:
@ -126,6 +130,12 @@ for r,d,flist in os.walk(path):
TLS1_2 = True
json_file.close()
""" don't store stats from unusued servers """
if report_untrused == False and trusted == False:
continue
total += 1
""" done with this file, storing the stats """
if DHE or ECDHE:
pfsstats['Support PFS'] += 1