third-party-mirrors/sslh
1
0
Fork 0
mirror of https://github.com/yrutschle/sslh.git synced 2025-04-12 23:27:15 +03:00
Code Issues Packages Projects Releases Wiki Activity
693 Commits 3 Branches 42 Tags
Commit Graph

73 Commits

Author SHA1 Message Date
Yves Rűtschlé
5cba44f5fa Add built-in MSRDP support 2022-09-11 21:51:06 +02:00
Toni Uhlig
b19f8a6046
fix possible format string exploit if packet dumping enabled 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-09-10 12:53:57 +02:00
Toni Uhlig
b971f3edcd
add wireguard probe 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-08-26 12:27:44 +02:00
Yves Rutschle
fb8fe57bd8
Merge pull request #341 from utoni/add/teamspeak-probe 
add teamspeak3 (voice only) probe
 2022-08-19 18:03:12 +02:00
Toni Uhlig
4cf3749e73
add teamspeak3 (voice only) probe 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-08-14 10:42:58 +02:00
Toni Uhlig
aa17061e26
add openvpn udp probe 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-08-11 17:22:44 +02:00
Yves Rűtschlé
8b604a3db7 defensive programming against inconsistent configuration (fix #336 more) 2022-07-24 17:50:13 +02:00
yrutschle
f6fe735171 sort target protocols as TCP or UDP, so only appropriate probes are called by the listeners 2022-05-05 17:45:40 +02:00
yrutschle
caa62875c1 remove --verbose option 2021-09-27 13:28:21 +02:00
yrutschle
6ea7d48f86 migrate tls.c and probe.c to new log system 2021-09-26 16:55:31 +02:00
yrutschle
e5f16b93ce hexdump writes to parametrable msg_info 2021-09-19 21:54:47 +02:00
yrutschle
a43385b8db remove hardcoded quick50 and teamspeak. to be replaced with a generalised regex setup to come in next version 2021-08-13 18:03:59 +02:00
yrutschle
63f9c4a582 added syslog probe (fixes #34) 2021-08-04 15:29:05 +02:00
yrutschle
4584e719e1 added hardcoded probe for Teamspeak3 2021-08-01 22:01:59 +02:00
yrutschle
75e426c80f added hardcoded probe for QUICK50 2021-08-01 21:35:24 +02:00
yrutschle
ce23f202b7 use pcre2 api directly 2021-07-31 23:12:55 +02:00
yrutschle
37d2756703 move to PCRE for conf file 2021-07-23 22:36:20 +02:00
yrutschle
9ff9723278 precised size types to ssize_t instead of int 2021-02-08 22:50:53 +01:00
yrutschle
1e33455fe7 don't try to probe a connection that's finished (should fix #284) 2020-12-02 22:49:19 +01:00
yrutschle
09597bfa42 refactor: make probe_buffer hexdump input 2020-11-29 10:42:58 +01:00
yrutschle
fccaa5fa9f refactor: separate probe reading from socket from probe on buffer, so we can call probe on buffer independantly 2020-11-11 22:05:45 +01:00
yrutschle
e67d6ff905 removed obsolete support for . Use instead 2020-07-30 09:45:50 +02:00
yrutschle
588883eb42 Fix on-timeout setting so it is no longer ignored (issue #253) 2019-12-27 18:26:16 +01:00
yrutschle
a7b4462c6e Added 'minlength' option 2019-02-03 14:45:14 +01:00
yrutschle
ad0adfb0e1 re-integrate command line support 2018-12-07 08:32:36 +01:00
yrutschle
33ab9d535d code cleanup and adaptation of regex probe 2018-12-04 23:11:04 +01:00
yrutschle
e7ce929020 config file now read to struct with c2s; command line no longer works 2018-11-29 11:56:33 +01:00
yrutschle
80ad31aec0 refactoring: replace magic constants with symbols 2018-11-04 22:25:16 +01:00
yrutschle
aa77922ffd turn ssl setting from command line to tls (ssl no longer exists) 2018-09-30 21:34:22 +02:00
yrutschle
f480eb6c7d refactoring: simpler TLS extension parsing algorithm 2018-09-28 13:58:33 +02:00
yrutschle
6d6ea50066 Merge branch 'master' of https://github.com/yrutschle/sslh 2018-09-23 21:57:16 +02:00
yrutschle
0003680137 remove old tls and ssl targets, only use alpn/sni probe also for TLS with no extensions 2018-09-23 12:07:06 +02:00
Oleg Oshmyan
e8f0d3ea53 Fix HTTP method probing 2018-09-22 15:50:40 +03:00
Yves Rutschle
60df92c2b2 prevent repeated reads on broken sockets 2018-08-14 23:05:49 +02:00
Yves Rutschle
8ad32816a6 last_p might be used uninitialised if last probe has no probe set (which I don't think might happen, but anyhow...) 2018-08-14 22:52:52 +02:00
Yves Rutschle
677e385fec new probing algorithm 2018-08-13 22:29:09 +02:00
Yves Rutschle
94911c1c2a cleaner framework to test all probes methodically (not all tests work as the probe code needs to be reworked) 2018-08-11 23:13:24 +02:00
Yves Rutschle
95e8f5731c document magic constant in socks5 probe 2018-06-13 12:40:02 +00:00
Yves Rutschle
dfd9e14866 fix socks5 probe 2018-06-13 09:52:49 +02:00
Eugene Protozanov
a43dd11fc9 Added support for socks5 protocol 2018-04-16 15:27:31 +04:00
yrutschle
d26eab728c
Merge pull request #143 from astiob/select-fork 
sslh-select: support forking for particular protocols
 2018-01-02 22:26:58 +01:00
Prameet Shah
79ca4df0d7 adb: update protocol sniffer 
Modified is_adb_protocol in patch.c to check if initial host->device
packet sends an empty message for reasons unknown.  This was introduced
in ADB master in https://android-review.googlesource.com/c/342653.
 2018-01-02 06:25:27 -05:00
yrutschle
f8a16c7a29
Merge pull request #146 from guusdk/SSLv2-clienthello 
Allow SSLv2 CLIENT-HELLO (without SSL 2.0)
 2017-12-16 19:09:25 +01:00
Robert de Bath
4e790e074f Move hexdump to verbose level 2 
From the command line you use two "-v" options or in the configuration
file you replace the boolean "verbose:true" with an integer "verbose:2".
 2017-11-27 21:05:07 +00:00
Robert de Bath
64485d7a58 Send hexdump to stderr like other verbose logs. 2017-11-23 20:52:54 +00:00
orbitarm
5b756ebd0a verbose: dump hex value of packet 
uses the hexdump() function to display the hex value of each probed
packet, making it easy to create regex rules for unsupported connections
 2017-11-23 20:52:54 +00:00
Guus der Kinderen
1f98b97756 Allow SSLv2 CLIENT-HELLO (without SSL 2.0) 
The existing TLS probe is documented to ignore SSL 2.0, citing RFC 6176 as a reason.
RFC 6176 does prohibit the usage of SSL 2.0, but does allow for ClientHello messages
in the version 2 CLIENT-HELLO format (as long as those are used to negotiate the use
of a higher protocol).

This commit extends the TLS probe, by making it accept SSL v2 ClientHello messages
that negotiate a version of SSL/TLS 1.0 or higher (which is the same version range
as the original code).
 2017-11-10 19:47:07 +01:00
Oleg Oshmyan
2544f20bdf sslh-select: support forking for particular protocols 
To keep the code simple, use the same event loop in the child process
as in the parent process but close all irrelevant file descriptors.
 2017-10-28 23:27:06 +03:00
Yves Rutschle
067f5d7646 Revert "clarify no space after -F (issue 108)" 
This reverts commit f02ce3821c018719536971dbb1bc1ed1517530a2.

That commit accidently imported code that broke transparent
proxying.
 2017-01-08 12:54:34 +01:00
Yves Rutschlé
f02ce3821c clarify no space after -F (issue 108) 2016-11-06 19:44:47 +00:00