2
0
mirror of https://github.com/mozilla/cipherscan.git synced 2024-11-22 14:23:41 +01:00

add ability to ignore results from untrusted servers

This commit is contained in:
Hubert Kario 2014-04-05 01:33:33 +02:00
parent ff620f5b26
commit 45dc1da3f6

View File

@ -9,6 +9,8 @@ import sys
from collections import defaultdict from collections import defaultdict
import os import os
report_untrused=False
cipherstats = defaultdict(int) cipherstats = defaultdict(int)
pfsstats = defaultdict(int) pfsstats = defaultdict(int)
protocolstats = defaultdict(int) protocolstats = defaultdict(int)
@ -43,6 +45,7 @@ for r,d,flist in os.walk(path):
TLS1_2 = False TLS1_2 = False
dualstack = False dualstack = False
ECDSA = False ECDSA = False
trusted = False
""" process the file """ """ process the file """
f_abs = os.path.join(r,f) f_abs = os.path.join(r,f)
@ -57,11 +60,12 @@ for r,d,flist in os.walk(path):
if len(results['ciphersuite']) < 1: if len(results['ciphersuite']) < 1:
continue continue
total += 1
""" loop over list of ciphers """ """ loop over list of ciphers """
for entry in results['ciphersuite']: for entry in results['ciphersuite']:
if 'True' in entry['trusted']:
trusted = True
""" store the ciphers supported """ """ store the ciphers supported """
if 'AES-GCM' in entry['cipher']: if 'AES-GCM' in entry['cipher']:
if not AESGCM: if not AESGCM:
@ -126,6 +130,12 @@ for r,d,flist in os.walk(path):
TLS1_2 = True TLS1_2 = True
json_file.close() json_file.close()
""" don't store stats from unusued servers """
if report_untrused == False and trusted == False:
continue
total += 1
""" done with this file, storing the stats """ """ done with this file, storing the stats """
if DHE or ECDHE: if DHE or ECDHE:
pfsstats['Support PFS'] += 1 pfsstats['Support PFS'] += 1