Skip to content

Version 24.01.24
Compare
Choose a tag to compare
@EnDe EnDe released this 27 Jan 23:20
· 978 commits to master since this release
24.01.24
37c17eb

NOTE

This release is a major redesign (refactoring) of the project. The top
directory now contains the main tools only. All modules, documentations and
(user) contributed tools are in sub-directories.
These changes are also reflected in the directories available at github.

If older versions should be used, please get the correspondig `o-saft.tgz`
from that version, see below.

Functionally the options `--v`  and  `--trace`  behave different now.

Beside many formal changes, following bugfixes and changes have been done.

BUGFIX

* o-saft.pl: BT: print sorted list of ciphers for --ciphermode=dump (important for testing only)
* o-saft.pl: BF: avoid "Use of ..." for --legacy=testsslserver
  output for --legacy=testsslserver  may now miss some informations values
* t/Makefile.warnings: BT: duplicate target warning-141 removed
* OSaft/Ciphers: BD: description for $cipher_results adapted to new definitions
* Net/SSLhello.pm: BF: typos in cipher suite names corrected
* o-saft-dbx.pm: BF: avoid "Use of uninitialized value in join or string ..."; output for --trace=3 improved
* o-saft-man.pm: BF: <details> tag with overflow-y:auto
* o-saft-man.pm: BF: <aside> tag with higher z-index

CHANGES

* o-saft-man.pm: EF: man_src_grep() improved and adapted to new syntax for --help=exit
* t/Makefile.warnings: ET: warning-061 and warning-145 added
* t/Makefile.exit: ET: targets adapted to changes in o-saft.pl 2.163
* t/Makefile.cmd: ET: adapted to changes in o-saft.pl 2.163: --trace-CMD is now --v
* t/Makefile.dev: ET: testarg-dev-grep_subs improved
* t/Makefile.dev: EF: additional filter in target testcmd-dev-grep_desc
* t/Makefile: ET: environment variable PERL5LIB and PERL_HASH_SEED are set for all test* targets
* t/Makefile: ED: OSAFT.pm renamed to LIB.pm; o-saft-usr.pm renamed to OSaft/Usr.pm
* OSaft/Data.pm: EF: text fpr cnt_ciphers, cnt_totals improved
* OSaft/Doc/devel.txt: ED: OVERVIEW section added
* Net/SSLinfo.pm: EF: definition of variables and subs done at begnning; trace output improved
* Net/SSLhello.pm: EF: using _trace_* functions for some output with --trace*
* Net/SSLhello.pm: EF: definition of variables and subs done at begnning; trace output improved
* Net/SSLhello.pm: EF: using normalised timestamp for --trace-time
* Net/SSLhello.pm: EF: format of timestamp for --trace-time adapted to main
* Net/SSLhello.pm: EF: print %SSLINFO with --trace instead of --v
* Net/SSLhello.pm: ED: formal changes for trace output
* Net/SSLhello.pm: EF: don't pass -nextprotoneg together with -tls1_3 to openssl
* o-saft-dbx.pm: EF: output of HASH for --trace=3 improved
* osaft.pm: EF: DTLSv1* enabled
* osaft.pm: EF: hints 'openssl3' and 'openssl3c' added
* osaft.pm: EF: regex for 'OWASP_D' and 'OWASP_NA' improved
* osaft.pm: EF: get_ciphers_range() improved
* o-saft.pl: EF: --v and --trace improved (_y_CMD() repleced by_vprint())
* o-saft.pl: EF: sort some values for +check output
* o-saft.pl: EF: "local $\ =" removed to avoid unexpected behaviour in subs
* o-saft.pl: EF: avoid PFS checks with --ciphermode=openssl; may lead to wrong PFS output
* o-saft.pl: EF: --tracekey does not print "= reading file ..." information
* o-saft.pl: EF: check --legacy= option for +cipher; print warning
* o-saft.pl: EF: print hint when using openssl >2.0 and --ciphermode=openssl
* o-saft.pl: _get_cipherlist_*() replace by _get_cipherslist()
* o-saft.pl: EF: _eval_cipherranges() replaced by osaft::get_ciphers_range()
* o-saft.pl: EF: checking openssl's protocol options adapated to OpenSSL 3.0.11
* o-saft.pl: EF: printing "Total number of ciphers" 'cnt_totals' unified
* o-saft.pl: EF: +cipher-sh reimplemented
* OSaft/Ciphers: EF: sort_results() improved
* OSaft/Ciphers: EF: cipher 0x02FFFFFF added for internal use
* OSaft/Ciphers: EF: find_names() allows OpenSSL-style patterns
* OSaft/Ciphers: EF: sort_names() adapted to new ciphers (added in 2.89)
* OSaft/Ciphers: EF: aliases for some ciphers added
* OSaft/Doc/rfc.txt: ED: more RFCs added
* OSaft/Doc/help.txt: ED: HTML layout for some list items improved
* o-saft.pm EF: openssl configuration cfg{openssl} improved
* o-saft-man.pm EF: EF: support --trace option; --v supported for tool itself only
* o-saft-man.pm EF: parent caller defines file to retrieve (grep) data from
* o-saft-man.pm ED: <li> tags improved
* o-saft-dbx.pm EF: _vprintme() removed

NEW

* OSaft/Doc/openssl.txt: ND: file for internal (developer) documentation
* Net/SSLinfo.pm: EF: test_openssl() for --test-openssl implemented
* t/Makefile.mod: ET: target testarg-mod-Net-SSLinfo.pm_--test-openssl added
* t/Makefile.cipher: ET: targets added to test +cipher --trace*
* t/Makefile.cipher: ET: target testcmd-cipher-+cipher---openssl-local_ added
* t/Makefile.warnings: ET: warning-015 implemented, warning-413 implemented
* osaft.pm EF: cfg{openssl_version} added
* OSaft/Ciphers: EF: cophers TLS13_GOSTR341112_256* added
* OSaft/Trace.pm: NF: added (replace o-saft-dbx.pm 2.44)
* OSaft/USR.pm: NF: added (replace o-saft-usr.pm 2.8)
Assets 2
Loading