gfwleak/tango-tfe
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
This repository has been archived on 2025-09-14. You can view files and clone it, but cannot push or open issues or pull requests.
Files
3f305a9e888b51fb33b645fa062a8c036432cbaa
tango-tfe/platform/src/ssl_policy.cpp

33 lines
802 B
C++
Raw Normal View History

up session cache校验ssl version,增加ssl状态读写的接口。
2019-05-17 21:35:20 +08:00
#include <ssl_stream.h>
#include <tfe_utils.h>
struct ssl_policy_enforcer
{
};
struct ssl_policy_enforcer* ssl_policy_enforcer_create(void)
{
return NULL;
}
enum ssl_stream_action ssl_policy_enforce(struct ssl_stream *upstream, void* u_para)
{
UNUSED struct ssl_policy_enforcer* enforcer=(struct ssl_policy_enforcer*)u_para;
UNUSED int ret=0;
Pinning,Mutual authentication,EV等passthrough功能在windows10测试通过。
2019-05-18 12:39:19 +08:00
int pinning_staus=0, is_ev=0, is_mauth=0;
up session cache校验ssl version,增加ssl状态读写的接口。
2019-05-17 21:35:20 +08:00
ret=ssl_stream_get_integer_opt(upstream, SSL_STREAM_OPT_PINNING_STATUS, &pinning_staus);
assert(ret==1);
ret=ssl_stream_get_integer_opt(upstream, SSL_STREAM_OPT_IS_EV_CERT, &is_ev);
assert(ret==1);
Pinning,Mutual authentication,EV等passthrough功能在windows10测试通过。
2019-05-18 12:39:19 +08:00
ret=ssl_stream_get_integer_opt(upstream, SSL_STREAM_OPT_IS_MUTUAL_AUTH, &is_mauth);
if(pinning_staus>0||is_ev||is_mauth)
up session cache校验ssl version,增加ssl状态读写的接口。
2019-05-17 21:35:20 +08:00
{
return SSL_ACTION_PASSTHROUGH;
}
else
{
return SSL_ACTION_INTERCEPT;
}
}
Reference in New Issue Copy Permalink