cipherscan

LittleNellie/cipherscan

Fork 0

mirror of https://github.com/mozilla/cipherscan.git synced 2024-11-21 22:13:40 +01:00

Commit Graph

Select branches

Hide Pull Requests

master

output20150918

sni_by_default

snidefault

tls13

#10

#10

#100

#102

#103

#104

#105

#107

#109

#109

#11

#11

#117

#12

#120

#121

#122

#123

#124

#125

#126

#128

#13

#13

#131

#134

#135

#136

#136

#138

#14

#142

#143

#149

#15

#156

#157

#159

#159

#16

#160

#161

#166

#169

#169

#17

#170

#171

#172

#173

#177

#18

#181

#184

#19

#190

#191

#191

#194

#194

#20

#21

#22

#23

#23

#24

#24

#25

#25

#26

#26

#27

#27

#28

#29

#3

#30

#31

#31

#32

#32

#33

#34

#34

#35

#36

#37

#37

#38

#39

#39

#4

#40

#40

#41

#42

#43

#44

#45

#45

#46

#46

#47

#48

#48

#5

#50

#53

#54

#58

#59

#6

#6

#60

#61

#62

#65

#67

#67

#68

#7

#7

#70

#74

#74

#75

#75

#76

#77

#79

#8

#8

#80

#81

#82

#89

#9

#9

#90

#91

#92

#92

#93

#93

#95

#96

#97

#98

#99

4d77c87494 properly detect ECDSA certs for keysize compare #107 Hubert Kario 2015-11-17 15:31:46 +0100
e8ba5ab8fe Update analyze.py Emantor 2015-11-17 09:01:52 +0100
1e65be5fd5 Added copy of the MPL Julien Vehent 2015-10-18 08:45:20 -0400
b03320887f Merge pull request #100 from tomato42/compress-and-renego-info Julien Vehent 2015-10-17 09:10:08 -0400
d7a7458667 Add handling of TLS-dependent pubkey sizes. #93 Richard Soderberg 2015-09-18 16:38:41 -0700
8757bbd039 Add handling for TLS-dependent trusted values. Richard Soderberg 2015-09-18 16:36:03 -0700
eb752c541c Add handling for TLS-variant ticket hint value. Richard Soderberg 2015-09-18 16:29:32 -0700
638e0cbd10 Add handling for TLS-variant results for the PFS value. Richard Soderberg 2015-09-18 16:12:21 -0700
0be95b821a Emit an array of certificate signature algorithms, where applicable. Richard Soderberg 2015-09-18 15:39:07 -0700
32bf52a452 Store the found protocols in an array, rather than a CSV-joined string. Richard Soderberg 2015-09-18 14:59:30 -0700
1828183e3f Extract the list of TLS versions to test into an array. Richard Soderberg 2015-09-18 14:56:32 -0700
3107661b7c Unroll the if-return/elif-return/else-return chain in test_cipher_on_target. Richard Soderberg 2015-09-18 14:21:38 -0700
34d6ca62bd Merge pull request #104 from injcristianrojas/master Julien Vehent 2015-09-23 15:16:23 -0400
f717a556e5 Untrusted certificate alert should be red #104 Cristián Rojas 2015-09-23 15:59:24 -0300
29bdf5fdcb Merge pull request #103 from PeterMosmans/msys Julien Vehent 2015-09-22 12:53:17 -0400
c00474805d Fallback to default openssl when supplied openssl can't be executed #103 Peter Mosmans 2015-09-22 19:25:27 +1000
5a10991008 Merge pull request #102 from floatingatoll/negative-nope Julien Vehent 2015-09-21 16:05:26 -0400
c9412e395d workaround bash 4.2- not having unset A[-1] support #102 Richard Soderberg 2015-09-21 12:51:18 -0700
aa093bc86d add openssl options to help message #100 Hubert Kario 2014-11-08 19:11:11 +0100
99a0b6be07 collect stats about compression and renegotiation Hubert Kario 2014-11-01 21:06:23 +0100
73b21d3977 Merge pull request #99 from tomato42/tolerance-report Julien Vehent 2015-09-21 10:33:10 -0400
dbce87cb1a fix printing of test data for intolerant servers #99 Hubert Kario 2015-09-21 16:18:37 +0200
0011abcec7 readme update Julien Vehent 2015-09-21 09:38:34 -0400
4916e89087 remove unneeded echo Julien Vehent 2015-09-21 09:31:03 -0400
ce91e221d1 Merge pull request #98 from tomato42/custom-openssl-fixes Julien Vehent 2015-09-21 09:29:51 -0400
035d8c0a19 Merge pull request #97 from tomato42/uri-handling Julien Vehent 2015-09-21 09:29:03 -0400
50ef7960f7 Merge pull request #96 from tomato42/ecdsa-keys Julien Vehent 2015-09-21 09:25:16 -0400
4620627454 Merge pull request #65 from tomato42/tls12-kex Julien Vehent 2015-09-21 09:23:18 -0400
2ba7dc6dbf fix custom openssl with GOST config incompatibility #98 Hubert Kario 2015-09-19 20:02:15 +0200
9cea1cdc67 handle hostnames that are URIs #97 Hubert Kario 2015-09-19 19:43:27 +0200
8337fb7308 fix coloring of cert key sizes #96 Hubert Kario 2015-09-19 19:22:40 +0200
8f5b1eedc9 tests for ordering of sig algs in TLS 1.2 PFS kex #65 Hubert Kario 2014-11-07 02:41:52 +0100
434b383f01 add test for TLSv1.2 PFS key exchange Hubert Kario 2014-11-01 20:26:31 +0100
67c2a7cfe4 Merge pull request #95 from tomato42/auto-colour Julien Vehent 2015-09-19 11:05:16 -0400
bb2d3223f8 autodetect if the colors should be used #95 Hubert Kario 2015-09-19 16:16:11 +0200
0fe7013641 Fix colors Julien Vehent 2015-09-19 08:38:57 -0400
f618e9a12e stop reading the SSL certificate after we get the sigalg from it #92 Richard Soderberg 2015-09-18 14:30:21 -0700
87ecf60212 Unroll the if-return/elif-return/else-return chain in test_cipher_on_target. Richard Soderberg 2015-09-18 14:21:38 -0700
460f9cf1f6 Merge pull request #91 from floatingatoll/fix-1 Julien Vehent 2015-09-18 16:50:11 -0400
e27f614f08 revert unintended inclusion of sigalg skipping from 9ea1749f #91 Richard Soderberg 2015-09-18 13:40:05 -0700
4ffd2de58d Merge pull request #90 from jvehent/snidefault Julien Vehent 2015-09-18 16:04:50 -0400
8618d44371 Merge branch 'snidefault' of github.com:jvehent/cipherscan into snidefault #90 #172 snidefault Julien Vehent 2015-09-18 16:00:39 -0400
3131abb333 Add warning if target is not fqdn and SNI needs to be disabled Julien Vehent 2015-09-18 15:58:31 -0400
5284dda0fb Enable SNI by default only if target is a fqdn and -servername not supplied Julien Vehent 2015-09-18 13:36:09 -0400
72e2b4f6e9 Enable Server Name Indication by default Julien Vehent 2015-09-18 13:14:11 -0400
901e3cbdfc Merge pull request #89 from jvehent/output20150918 Julien Vehent 2015-09-18 15:42:26 -0400
5526c58ffb Merge pull request #82 from floatingatoll/various_fixes Julien Vehent 2015-09-18 15:41:44 -0400
179cbe8db1 refuse to permit --allciphers and --json together #82 Richard Soderberg 2015-09-18 11:56:28 -0700
8f3341a165 openssl fallback and version warnings should go to STDERR Richard Soderberg 2015-09-18 11:53:18 -0700
f11a0e3594 Revert "When in JSON mode, run curve and tolerance tests" #89 output20150918 Julien Vehent 2015-09-18 14:50:03 -0400
5d5568f03a use colors instead of ok/ko Julien Vehent 2015-09-18 14:50:00 -0400
8a03b8d4e7 fix pubkey quality test Julien Vehent 2015-09-18 14:49:51 -0400
ce2f97f05c Replace instances of [[ $ == "" ]] with [[ -z "" ]]. Richard Soderberg 2015-09-18 11:39:29 -0700
236b0b8cfe Fixes instances of "SC2128: Expanding an array without an index only gives the first element.". Richard Soderberg 2015-09-05 04:40:07 -0700
b2521c8e42 Fixes instances of "SC2053: Quote the rhs of == in [[ ]] to prevent glob matching." Richard Soderberg 2015-09-05 04:35:58 -0700
24268e063e Fixes one instance of "SC2124: Assigning an array to a string! Assign as array, or use * instead of @ to concatenate." Richard Soderberg 2015-09-05 04:33:06 -0700
bc79c51065 Fixes instances of SC2086, SC2046 errors regarding unquoted variables. Richard Soderberg 2015-09-05 04:25:55 -0700
c103805a38 Replace instances of [[ $ != "" ]] with [[ -n "" ]]. Richard Soderberg 2015-09-05 04:17:47 -0700
5c09af67fd Remove one unnecessary string-to-array-to-string from get_curve_name(). Richard Soderberg 2015-09-05 04:10:58 -0700
9ea1749f6c Pre-cache the cipher array-to-string result to do one less join. Richard Soderberg 2015-09-05 04:04:46 -0700
d2e1784eb8 Simplify test_serverside_ordering() to use half as many assignments. Richard Soderberg 2015-09-05 04:01:36 -0700
b91b153bbd Replace instances of string-ish [[ -lt ]] with arithmetic (( < )). Richard Soderberg 2015-09-05 03:36:40 -0700
34ae0ccab9 Replace instances of string-ish [[ -ne ]] with arithmetic (( != )). Richard Soderberg 2015-09-05 03:26:34 -0700
3d3789828b Replace instances of string-ish [[ -gt ]] with arithmetic (( > )). Richard Soderberg 2015-09-05 03:03:02 -0700
9c63841e46 Replace instances of string-ish [[ -eq ]] with arithmetic (( == )). Richard Soderberg 2015-09-05 02:23:22 -0700
90ac19cfe8 Replace an instance of string-ish [[ $? -gt 0 ]] with arithmetic (( $? != 0 )). Richard Soderberg 2015-09-05 03:27:00 -0700
871ad92ae2 Simplify signature algorithm extraction to use a capturing regex and string substitution. Richard Soderberg 2015-09-05 03:13:46 -0700
2764a16693 Replace OLDIFS/IFS joins with join_array_by_char(), avoiding $(...) subshell slowdown. Richard Soderberg 2015-09-05 02:46:04 -0700
487f7cb6a4 Replace an echo | awk printf with builtin printf. Richard Soderberg 2015-09-05 02:20:39 -0700
a342ff7579 Assign r=pass/fail once only, rather than twice for fail->pass. Richard Soderberg 2015-09-05 02:19:18 -0700
9e3154389e Replace unnecessary test of command; if $? with if command. Richard Soderberg 2015-09-05 02:17:49 -0700
fc71ed7204 Replace |sort|uniq with more efficient |sort -u. Richard Soderberg 2015-09-05 02:16:10 -0700
644c1aa83a Replace numeric ALLCIPHERS comparison with simpler -n test. Richard Soderberg 2015-09-05 02:15:44 -0700
7a697e28bc Enable SNI by default only if target is a fqdn and -servername not supplied Julien Vehent 2015-09-18 13:36:09 -0400
9952d90cf4 Enable Server Name Indication by default Julien Vehent 2015-09-18 13:14:11 -0400
3dd0f58f4c When in JSON mode, run curve and tolerance tests Julien Vehent 2015-09-18 12:36:41 -0400
55918f3afb Add OK/KO flags in terminal output Julien Vehent 2015-09-18 12:36:26 -0400
d90f3b0324 Enable Server Name Indication by default #171 sni_by_default Julien Vehent 2015-09-18 13:04:31 -0400
afc1755519 squash with ok/ko Julien Vehent 2015-09-18 13:03:38 -0400
cfc3e67782 When in JSON mode, run curve and tolerance tests Julien Vehent 2015-09-18 12:36:41 -0400
1b917883b8 Add OK/KO flags in terminal output Julien Vehent 2015-09-18 12:36:26 -0400
249b3be23d Rephrase TLS tolerance output in terminal Julien Vehent 2015-09-18 12:35:17 -0400
0de6abab61 Merge pull request #81 from floatingatoll/argparse_fixes Julien Vehent 2015-09-18 09:35:42 -0400
5e2b12d940 Merge pull request #80 from floatingatoll/cacerts_logic Julien Vehent 2015-09-18 09:35:06 -0400
b951fd5588 Merge pull request #79 from floatingatoll/autodetection-perf Julien Vehent 2015-09-18 09:32:33 -0400
9dace07f4d Merge pull request #76 from floatingatoll/curves-by-default Julien Vehent 2015-09-18 09:29:18 -0400
3770389b5c Merge pull request #68 from kenoh/master Julien Vehent 2015-09-18 09:27:41 -0400
4b87301eb4 separate darwin and non-darwin OS autodetection, add NOAUTODETECT support for top1m performance #79 Richard Soderberg 2015-09-03 23:52:58 -0700
12ede64882 bash4 version check failure should go to STDERR. Richard Soderberg 2015-09-05 05:02:29 -0700
6adda69af5 Revise CACERTS autodetection logic, ensure that CACERTS/CAPATH is readable/directory, add undocumented CAPATH env override. #80 Richard Soderberg 2015-09-05 00:37:44 -0700
5dc692566a Refuse to accept both --cafile and --capath. Richard Soderberg 2015-09-05 00:34:24 -0700
097bd0c43b Rewrite HOST[:PORT] extraction routine (less sed, more validation). #81 Richard Soderberg 2015-09-05 01:36:50 -0700
d81ee1c801 Refuse to proceed if no HOST[:PORT] is provided after the options. Richard Soderberg 2015-09-05 01:06:09 -0700
28555b03f0 Refuse to proceed if the final argument starts with a hyphen. Richard Soderberg 2015-09-05 01:01:19 -0700
e35a6155bc Add --cafile <filename.crt>, alongside --capath <dirpath/>. Richard Soderberg 2015-09-05 00:22:40 -0700
0728751208 move bash4 detection as early as possible in the script to permit logic later on Richard Soderberg 2015-09-05 00:03:55 -0700
3f3e22b09a Merge pull request #77 from floatingatoll/bashisms Julien Vehent 2015-09-03 10:13:30 -0400
22adaf188a verify that the openssl binary is emitting a valid s_client -help. #77 Richard Soderberg 2015-09-03 07:02:38 -0700
9a0e055628 remove crude_grep in favor of a simple =~ substring match. Richard Soderberg 2015-09-03 06:58:05 -0700
f0142c323a remove one unnecessary assignment when on Darwin. Richard Soderberg 2015-09-03 06:47:47 -0700