Sākums Izpētīt Palīdzība
Pierakstīties
mmn
/
sslsniff
Vērot 1
Pievienot zvaigznīti 0
Atdalīts 0
Faili Problēmas 0 Izmaiņu pieprasījumi 0 Vikivietne
Atzars: master
Atzari Tagi
sslsniff
/
SSLBridge.hpp

SSLBridge.hpp 2.5 KB
Patstāvīgā saite Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105 
  1. /*
    2. 

  2.  * Copyright (c) 2002-2009 Moxie Marlinspike
    3. 

  3.  *
    4. 

  4.  * This program is free software; you can redistribute it and/or
    5. 

  5.  * modify it under the terms of the GNU General Public License as
    6. 

  6.  * published by the Free Software Foundation; either version 3 of the
    7. 

  7.  * License, or (at your option) any later version.
    8. 

  8.  *
    9. 

  9.  * This program is distributed in the hope that it will be useful, but
    10. 

  10.  * WITHOUT ANY WARRANTY; without even the implied warranty of
    11. 

  11.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
    12. 

  12.  * General Public License for more details.
    13. 

  13.  *
    14. 

  14.  * You should have received a copy of the GNU General Public License
    15. 

  15.  * along with this program; if not, write to the Free Software
    16. 

  16.  * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
    17. 

  17.  * USA
    18. 

  18.  */
    19. 

  19. 

  20. #ifndef __SSL_BRIDGE_H__
    21. 

  21. #define __SSL_BRIDGE_H__
    22. 

  22. 

  23. #include <boost/asio.hpp>
    24. 

  24. #include <boost/shared_ptr.hpp>
    25. 

  25. 

  26. #include <openssl/pem.h>
    27. 

  27. #include <openssl/conf.h>
    28. 

  28. #include <openssl/x509v3.h>
    29. 

  29. #include <openssl/ssl.h>
    30. 

  30. #include <openssl/err.h>
    31. 

  31. 

  32. #include <sys/poll.h>
    33. 

  33. #include <sys/socket.h>
    34. 

  34. #include <sys/types.h>
    35. 

  35. #include <netinet/in.h>
    36. 

  36. #include <arpa/inet.h>
    37. 

  37. #include <list>
    38. 

  38. #include <map>
    39. 

  39. 

  40. #include "util/Util.hpp"
    41. 

  41. #include "certificate/Certificate.hpp"
    42. 

  42. #include "certificate/CertificateManager.hpp"
    43. 

  43. 

  44. #include "SessionCache.hpp"
    45. 

  45. #include "Logger.hpp"
    46. 

  46. 

  47. using namespace boost::asio;
    48. 

  48. 

  49. class SSLConnectionError : public std::exception {
    50. 

  50. public:
    51. 

  51.   virtual const char* what() const throw() {
    52. 

  52.     return "Error with SSL connection...";
    53. 

  53.   }
    54. 

  54. };
    55. 

  55. 

  56. class SSLBridge {
    57. 

  57. 

  58. protected:
    59. 

  59.   boost::shared_ptr<ip::tcp::socket> clientSocket;
    60. 

  60.   ip::tcp::socket *serverSocket;
    61. 

  61.   std::string serverName;
    62. 

  62. 

  63.   bool closed;
    64. 

  64. 

  65.   SSL *serverSession;
    66. 

  66.   SSL *clientSession;
    67. 

  67. 

  68.   virtual ip::tcp::endpoint getRemoteEndpoint();
    69. 

  69.   virtual bool readFromClient();
    70. 

  70. 

  71. private:
    72. 

  72.   SessionCache *cache;
    73. 

  73. 

  74.   X509* getServerCertificate();
    75. 

  75.   void buildClientContext(SSL_CTX *context, Certificate *leaf, std::list<Certificate*> *chain);
    76. 

  76.   int isAvailable(int revents);
    77. 

  77.   int isClosed(int revents);
    78. 

  78.   int forwardData(SSL *from, SSL *to);
    79. 

  79.   void setServerName();
    80. 

  80.   bool readFromServer();
    81. 

  81. 

  82. public:
    83. 

  83. 

  84.   SSLBridge(boost::shared_ptr<ip::tcp::socket> clientSocket,
    85. 

  85. 	    ip::tcp::socket *serverSocket) 
    86. 

  86.     : clientSocket(clientSocket), serverSocket(serverSocket),
    87. 

  87.       serverSession(), clientSession(), closed(false)
    88. 

  88.   {
    89. 

  89.     cache = SessionCache::getInstance();
    90. 

  90.   }
    91. 

  91. 

  92.   ~SSLBridge() {
    93. 

  93.     close();
    94. 

  94.   }
    95. 

  95. 

  96.   void handshakeWithClient(CertificateManager &manager, bool wildcardOK);
    97. 

  97.   void handshakeWithServer();
    98. 

  98.   void shuttleData();
    99. 

  99.   virtual void close();
    100. 

  100. };
    101. 

  101. 

  102. 

  103. 

  104. #endif
    105. 

  105.