Archives
/
SSLproxy
mirror of https://github.com/sonertari/SSLproxy
2
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 1374d37722 Decouple stats from proto code Move connect logging to the topmost callback functions, amap Improve and clean up Soner Tari 2018-10-20 15:29:51 +0300
  • 0c2d12f35d Decouple connect logging from proxy code Improve and clean up Soner Tari 2018-10-20 02:03:21 +0300
  • 3e0cbc2905 Rearrange and clean up Soner Tari 2018-10-19 15:03:36 +0300
  • 59c11017bd Refactor to move common logging and stats code to topmost callback functions Log only orig content in the topmost readcb Improve and clean up Soner Tari 2018-10-19 01:31:10 +0300
  • 6c4dff69eb Move proto specific structs from h to c files Soner Tari 2018-10-18 02:42:47 +0300
  • 13040639b7 Add static and NONNULL attrib Rename, improve, and clean up Soner Tari 2018-10-18 02:00:49 +0300
  • f681b31497 Decouple ssl from tcp and other protocols Improve and clean up Soner Tari 2018-10-17 16:28:21 +0300
  • 0c55600ec7 Move ssl proto to its own file, but still needs more refactoring to decouple ssl from other protocols, especially tcp Rename and clean up Soner Tari 2018-10-16 03:37:07 +0300
  • 8fc9b0a44d Move tcp proto to its own file Rename and clean up Soner Tari 2018-10-16 01:51:07 +0300
  • b10643908f Move passthrough proto to its own file Rename and clean up Soner Tari 2018-10-15 19:22:27 +0300
  • bb0afcfee6 Introduce ssl ctx, complete all protocol setup, so remove function tables and related code Fix header string alloc and insert Other improvements, fixes, and clean-up Soner Tari 2018-10-15 13:42:40 +0300
  • 429c4c7a32 Refactor for code reuse Clean up Soner Tari 2018-10-12 21:59:16 +0300
  • c25e1ca0f5 Refactor child conns and autossl Other fixes and improvements Soner Tari 2018-10-12 00:07:30 +0300
  • 8aae4c1125 Separate http protocol from proxy code and move http related functions to protohttp source files Introduce protocol context, and set http protocol up using http context and interface functions in http protocol driver, the rest of the protocols still runs on callback function tables Refactor for further short functions Other fixes and improvements Soner Tari 2018-10-08 21:42:49 +0300
  • 96254a65ae Refactor for fd_readcb_funcs and conn_connect_funcs tables, better enum names Soner Tari 2018-10-06 03:24:14 +0300
  • 5412ec5803 Refactor for better names and simplify Soner Tari 2018-10-05 16:55:02 +0300
  • 1eb4789e8c Use callback function tables, instead of if-else statements to run parent callback functions, fifth iteration Soner Tari 2018-10-05 04:55:24 +0300
  • 31a9468230 Exit loop when seen_resp_header Soner Tari 2018-10-04 21:33:33 +0300
  • ef8f2b9c3f Refactor parent conn code to decouple proxy code from content logging, fourth iteration Soner Tari 2018-10-04 02:56:02 +0300
  • 5799b8f978 Refactor parent readcb and writecb code for shorter functions, separate functions for different modes, protocols, and connection ends, third iteration Soner Tari 2018-10-02 01:46:12 +0300
  • df8a10d661 Refactor parent eventcb code for shorter functions, separate functions for different modes and connection ends, second iteration Soner Tari 2018-09-30 02:43:48 +0300
  • 0bfe71a6a9 Refactor for shorter functions, separate functions for different modes and connection ends, first iteration Soner Tari 2018-09-29 23:47:18 +0300
  • df8b79eb9b Apply coding style and clean up Soner Tari 2018-09-27 17:36:52 +0300
  • ddf80a3b7f Handle error conditions correctly Soner Tari 2018-09-26 23:45:52 +0300
  • c8e3736dea Fix autossl feature, needs refactoring because the code has become complex now Soner Tari 2018-09-26 22:13:07 +0300
  • 59bf997d57 Refactor writecb functions, remove redundant code, improve and clean up Soner Tari 2018-09-25 12:24:23 +0300
  • 0fc3f53bfd Allow processing multiple events in eventcb Combine functions to reduce redundant function calls Improve and clean up Soner Tari 2018-09-24 03:09:05 +0300
  • bb6584e310 Refactor to reuse content logging code, remove redundant code, improve and clean up Soner Tari 2018-09-24 00:41:00 +0300
  • a314be6e94 Add conn context and is_child fields to proxy context struct to get rid of extra function params and to simplify conditionals Remove redundant parent/conn pointer vars Use conn instead of parent amap Soner Tari 2018-09-23 02:02:15 +0300
  • 96397e1280 Remove redundant header insertion code and clean up Soner Tari 2018-09-22 23:14:49 +0300
  • 9213734c95 Enable header insertion for tcp and ssl proxspecs as well, reported by @Sfinx Remove redundant mail field of proxyspec Soner Tari 2018-09-22 02:34:25 +0300
  • b67f5c6e58 Dirty close srv_dst ssl in all cases while switching to passthrough mode Fix a possible crash since bev may not be srv_dst.bev Soner Tari 2018-09-21 13:09:36 +0300
  • 4c682c3312 Fix connection stalls after switching to passthrough mode when we get srv_dst writecb while ssl shutdown is still in progress, and srv_dst readcb never fires, so dirty close srv_dst ssl Soner Tari 2018-09-21 03:14:37 +0300
  • 78e07becb4 Close and free dst while switching to passthrough mode, otherwise causes signal 6 crashes Soner Tari 2018-09-20 15:41:05 +0300
  • 57992beb86 Fix passthrough option Soner Tari 2018-09-20 00:52:24 +0300
  • 2998ad7e4d Disable 3 tests for which LibreSSL gives refcount errors v0.5.7 Soner Tari 2018-09-16 14:32:17 +0300
  • d2e9ab4487 Merge sslsplit-develop changes Soner Tari 2018-09-15 02:51:26 +0300
  • a584363f62 Add defined(LIBRESSL_VERSION_NUMBER) directives to fix signal 6 and 10 crashes: LibreSSL versions up to v2.7.4 behave like OPENSSL_VERSION_NUMBER < 0x1000200fL, beware not just OPENSSL_VERSION_NUMBER < 0x10100000L Fix up:port af, use a different var, because utm port af is always AF_INET, and it breaks the target address af if the listening address is AF_INET6 Enable -O2 C flag, because LibreSSL is compiled with -O2 too Soner Tari 2018-08-22 22:48:55 +0300
  • 859da0ac4c Merge sslsplit develop changes Soner Tari 2018-08-04 15:20:50 +0300
  • 0c8348db75 Merge sslsplit develop changes Soner Tari 2018-08-03 23:36:51 +0300
  • e8054deed3 Set option defaults in opts_new() now Use bit instead of int for boolean options Soner Tari 2018-08-03 17:14:21 +0300
  • 7ac3e0a445 Remove most of defined(LIBRESSL_VERSION_NUMBER), LibreSSL behaves more like OPENSSL_VERSION_NUMBER >= 0x10100000L now Soner Tari 2018-08-03 16:07:54 +0300
  • 5a4b8974bf Add fall through comment for missing break in case statement, as gcc (Ubuntu 7.3.0-16ubuntu3) 7.3.0 complains about it now Break out of for loop if max token is reached Soner Tari 2018-08-01 21:38:12 +0300
  • 1e2e5ff5f7 Close the conn if we are out of file descriptors in pxy_conn_setup_child() too Soner Tari 2018-07-06 01:09:37 +0300
  • df061dc7ad Add Travis CI Soner Tari 2018-05-25 14:34:40 +0300
  • 5e2724c38b Update version to 0.5.6 Improve man pages and help message v0.5.6 Soner Tari 2018-05-13 00:49:21 +0300
  • ee3278d2bb Fix a possible memory corruption due to incorrect size allocation for argv Soner Tari 2018-05-10 21:13:53 +0300
  • 442425177c Fix proxyspec definition and examples in usage message Soner Tari 2018-05-09 22:05:03 +0300
  • d9ef42b3a3 Fix the broken unit tests for proxyspec_parse() due to up:utmport in the sslproxy proxspec format Soner Tari 2018-05-09 21:22:40 +0300
  • 27650fab69 Support all command line options in the conf file as well Update with the latest sslsplit-devel changes Soner Tari 2018-05-09 20:05:29 +0300
  • 48aeb3945b Update man pages to 0.5.5 v0.5.5 Soner Tari 2018-03-26 19:06:32 +0300
  • 027b6e3a95 Update with sslsplit develop changes Soner Tari 2018-03-26 18:14:54 +0300
  • e577747ac8 No need to resize the image width, because github fits it to the page width itself Soner Tari 2018-03-19 18:33:22 +0300
  • e06c338724 Fix the url of the Mode of Operation Diagram, github needs direct link to google drive documents, and resize the image using html code, because github markdown does not support resizing Soner Tari 2018-03-19 18:28:56 +0300
  • 8590d61291 Add the Mode of Operation Diagram Soner Tari 2018-03-19 17:44:07 +0300
  • 0b420556ea Add presentation Soner Tari 2018-03-19 14:23:14 +0300
  • 5bba07b27f Use SSL_CTX_set_min_proto_version() and SSL_CTX_set_max_proto_version() functions to force SSL/TLS protocol version for OpenSSL 1.1.0+ Soner Tari 2018-03-16 12:12:48 +0300
  • 6f023e5990 Avoid comparison between signed and unsigned integer, reported by @janusloo on Linux DietPi 4.14.22-v7+ #1096 SMP Mon Feb 26 19:14:22 GMT 2018 armv7l GNU/Linux, I don't see such warnings on 64-bit OpenBSD or Linux though, even with -Wsign-compare Soner Tari 2018-03-11 14:57:58 +0300
  • 0fee063e0c Use %zu for size_t, and avoid comparison between signed and unsigned integer, reported by @janusloo Soner Tari 2018-03-10 22:34:28 +0300
  • f6a63c33b1 Fix time_t portability, see https://www.openbsd.org/papers/eurobsdcon_2013_time_t/mgp00029.html Soner Tari 2018-03-10 21:29:21 +0300
  • 42348cbe41 Add Ciphers option to conf file Soner Tari 2018-02-28 02:16:18 +0300
  • 9d435e180c Update with SSLsplit 0.5.2 and develop branch changes as of 270218 Soner Tari 2018-02-27 22:20:58 +0300
  • ae69b21908 Fix build on Linux, need to implement getdtablecount(2) of OpenBSD Soner Tari 2018-02-20 20:46:08 +0300
  • 6a9b572bac Update man pages to 0.5.4 v0.5.4 Soner Tari 2018-02-09 20:25:30 +0300
  • d76a9a52ad Fix examples Soner Tari 2018-02-08 23:40:18 +0300
  • e2e910ba08 Update title and copyright year Soner Tari 2018-01-18 16:48:52 +0300
  • 4c8831bd90 Update with SSLsplit 0.5.1 changes, fix LibreSSL version issues Add VerifyPeer and AllowWrongHost options Soner Tari 2018-01-18 03:18:53 +0300
  • a56929922d Fix link Soner Tari 2018-01-17 03:59:39 +0300
  • a2b14097dd Verify upstream certificates, see https://insights.sei.cmu.edu/cert/2015/03/the-risks-of-ssl-inspection.html Soner Tari 2018-01-17 03:54:16 +0300
  • 3ae89131dc Use different syslog facilities for error, conn, and stats logs, so they can be filtered into separate log files in syslog.conf v0.5.3 Soner Tari 2017-10-30 01:22:34 +0300
  • 392c6be48c Add SSLproxy copyright to -v output Soner Tari 2017-10-26 21:41:30 +0300
  • b064ffa668 Use llu int as unique conn id, much simpler than uuid v0.5.2 Soner Tari 2017-10-26 20:10:36 +0300
  • 137f017cb5 Fix EXPIRED message bug, other fixes and improvements Soner Tari 2017-10-26 18:57:46 +0300
  • a1c5d05143 Add support for log priority to error logs, so syslogd prints the correct prio for error logs now v0.5.1 Soner Tari 2017-10-15 01:39:30 +0300
  • 179aa4fc8f Close the conn if we are out of file descriptors, or libevent will crash us v0.5.0 Soner Tari 2017-09-04 13:05:51 +0300
  • 4bf27d09e5 Add RemoveHTTPReferer option, Referer causes redirection errors with some sites Soner Tari 2017-09-03 23:11:20 +0300
  • 19f5a70920 Update README Soner Tari 2017-09-02 22:45:01 +0300
  • ee707ab6cb Update man pages Soner Tari 2017-08-24 23:27:50 +0300
  • f7b3930053 Fix divert link Soner Tari 2017-08-24 23:04:46 +0300
  • 077e97dbba Add more CRITICAL error logs Fix some logs Clean-up Soner Tari 2017-08-24 21:52:56 +0300
  • 09c3e864c5 Add sslproxy.conf man page Soner Tari 2017-08-24 17:03:01 +0300
  • a79cf4e0d1 Add sslproxy.conf man page and example sslproxy.conf, and related make changes Soner Tari 2017-08-24 16:16:45 +0300
  • d52ee62079 Add RemoveHTTPAcceptEncoding option Soner Tari 2017-08-24 13:30:23 +0300
  • 8bd7827b8e Improve man page and README Soner Tari 2017-08-23 14:48:39 +0300
  • 32a38b7b4d Update README, fix mistakes Soner Tari 2017-08-23 14:14:21 +0300
  • 867ffe28e6 Fix typo Soner Tari 2017-08-23 04:48:37 +0300
  • 7e8d94d0a6 Fix typos Soner Tari 2017-08-23 04:09:23 +0300
  • 3717bddc36 Update README Soner Tari 2017-08-23 03:27:53 +0300
  • 40f1997bfb Update README Update man page Soner Tari 2017-08-23 02:15:31 +0300
  • 28cfac12e9 Update man page for SSLproxy Soner Tari 2017-08-23 00:37:31 +0300
  • 4fceaaa0e9 Fix compiler warning Rename the man page for the ports package Soner Tari 2017-08-22 02:02:30 +0300
  • 0b5ef8b14d Mark critical errors as CRITICAL Soner Tari 2017-08-21 17:53:24 +0300
  • 9ec58f821b Changes needed while adding SSL proxy support to WUI Separate mail/mails to pop3/pop3s/smtp/smpts for statistics Write connect logs to syslog too, for statistics Fix log lines for statistics, remove fds from err logs Soner Tari 2017-08-20 01:46:57 +0300
  • 7748e3ec1b Add conf file support, with -f command line option, supports a subset of all possible options Soner Tari 2017-08-16 16:01:52 +0300
  • 1a6eab50a5 Tidy and clean logs up Add DEBUG_PROXY directive around all log_dbg_level_printf() and related lines Log stats to syslog, similar to error logs, so that it is simpler to rotate and parse -O w/o -g is failing bufferevent_socket_connect for parent dst, so either enable -O w/ -g, or disable -O w/o -g (-O2 is failing too) Refactoring Soner Tari 2017-08-13 04:36:33 +0300
  • 36c89a0314 Fix crash if no logging enabled Disable debug, the default now Soner Tari 2017-08-11 16:53:46 +0300
  • ea6dc07248 Rename to sslproxy Reduce http headers to just one SSLproxy line Soner Tari 2017-08-11 15:01:51 +0300
  • 4bfc85868b Add support for pop3 (p3scan pop3 proxy) Send sslproxy info only once, in the first packet only Clean-up Soner Tari 2017-08-03 14:55:57 +0300
  • 9e637dd2cc Clean-up Soner Tari 2017-08-01 16:05:25 +0300
  • 1ae732f533 There are 3 dst bevs, writecbs of all of them may fire before connected event, so call eventcb first when that happens for each dst bevs. Check if srv_dst bev is NULL or not: Since both eventcb and writecb for srv_dst are enabled, either eventcb or writecb may get a NULL srv_dst bev, causing a crash with signal 10. Remove unnecessary evutil_closesocket() calls, they could close the fds twice, causing conn stalls Soner Tari 2017-08-01 14:57:49 +0300