gfwleak/tango-tfe
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

ssl_stream在本地记录伪造证书。

Browse Source
This commit is contained in:
zhengchao
2018-10-21 20:34:39 +08:00
parent 9290dd0e0f
commit 537b8e9840
4 changed files with 145 additions and 125 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
platform/src/ssl_stream.cpp
View File

@@ -853,16 +853,8 @@ void ssl_stream_log_error(struct bufferevent * bev, enum tfe_conn_dir dir, void*
{
unsigned long sslerr=0;
int fd=bufferevent_getfd(bev);
struct tfe_stream_addr* addr=tfe_stream_addr_create_by_fd(fd, dir);
char* addr_string=NULL;
if(addr)
{
addr_string=tfe_stream_addr_to_str(addr);
}
else
{
addr_string=tfe_strdup("null");
}
char* addr_string=tfe_string_addr_create_by_fd(fd, dir);
/* Can happen for socket errs, ssl errs;
* may happen for unclean ssl socket shutdowns. */
@@ -941,7 +933,6 @@ void ssl_stream_log_error(struct bufferevent * bev, enum tfe_conn_dir dir, void*
ERR_func_error_string(sslerr));
}
}
tfe_stream_addr_free(addr);
free(addr_string);
}
@@ -994,7 +985,9 @@ static void ssl_server_connected_eventcb(struct bufferevent * bev, short events,
else
{
ATOMIC_INC(&(mgr->stat_val[SSL_FAKE_CRT]));
char* addr_str=tfe_string_addr_create_by_fd(ctx->fd_upstream, CONN_DIR_UPSTREAM);
TFE_LOG_INFO(mgr->logger, "Fake Cert %s %s", addr_str, ctx->s_stream->client_hello->sni);
free(addr_str);
}
}
else
@@ -1470,7 +1463,7 @@ void ask_keyring_on_fail(enum e_future_error error, const char * what, void * us
/*
* Create a SSL stream for the incoming connection, based on the upstream.
*/
void ssl_async_downstream_create(struct future * f, struct ssl_mgr * mgr, struct ssl_stream * upstream,
extern void ssl_async_downstream_create(struct future * f, struct ssl_mgr * mgr, struct ssl_stream * upstream,
evutil_socket_t fd_downstream, int keyring_id, struct event_base * evbase)
{