diff options
author | Henrik Nordstrom <henrik@henriknordstrom.net> | 2011-02-08 18:00:59 +0100 |
---|---|---|
committer | Henrik Nordstrom <henrik@henriknordstrom.net> | 2011-02-10 02:59:51 +0100 |
commit | 32adee8743526875c894007c89a988a19d12109f (patch) | |
tree | 33b6233040ef6c388e121de51a03f83b2a91c2b1 /mitmplayback | |
parent | 4ffaadd4355e943d7fa46f3050a1fb780f4d261d (diff) | |
download | mitmproxy-32adee8743526875c894007c89a988a19d12109f.tar.gz mitmproxy-32adee8743526875c894007c89a988a19d12109f.tar.bz2 mitmproxy-32adee8743526875c894007c89a988a19d12109f.zip |
Implement a dummy CA
Diffstat (limited to 'mitmplayback')
-rwxr-xr-x | mitmplayback | 42 |
1 files changed, 33 insertions, 9 deletions
diff --git a/mitmplayback b/mitmplayback index eb147cd9..9d4fe11a 100755 --- a/mitmplayback +++ b/mitmplayback @@ -31,12 +31,24 @@ if __name__ == '__main__': ) parser.add_option( - "-c", "--cert", action="store", - type = "str", dest="cert", default="~/.mitmproxy/cert.pem", + "--cert", action="store", + type = "str", dest="cert", default="~/.mitmproxy/default.pem", help = "SSL certificate file." ) parser.add_option( + "-c", "--cacert", action="store", + type = "str", dest="cacert", default="~/.mitmproxy/ca.pem", + help = "SSL CA certificate file." + ) + + parser.add_option( + "--certpath", action="store", + type = "str", dest="certpath", default=None, + help = "SSL certificate store path." + ) + + parser.add_option( "--ciphers", action="store", type = "str", dest="ciphers", default=None, help = "SSL ciphers." @@ -66,15 +78,27 @@ if __name__ == '__main__': if options.quiet: options.verbose = 0 - certpath = os.path.expanduser(options.cert) - options.cache = os.path.expanduser(options.cache) + if options.cert is not None: + options.cert = os.path.expanduser(options.cert) + if not os.path.exists(options.cert): + print >> sys.stderr, "Creating bogus certificate at %s"%options.cert + utils.make_bogus_cert(options.cert) + if options.cacert is not None: + options.cacert = os.path.expanduser(options.cacert) + if not os.path.exists(options.cacert): + print >> sys.stderr, "Creating bogus CA certificate at %s"%options.cacert + utils.make_bogus_cert(options.cacert, newca=True, commonName="Dummy CA") + if options.certpath is not None: + options.certpath = os.path.expanduser(options.certpath) + elif options.cacert is not None: + options.certpath = os.path.dirname(options.cacert) + if options.cache is not None: + options.cache = os.path.expanduser(options.cache) - if not os.path.exists(certpath): - print >> sys.stderr, "Creating bogus certificate at %s"%options.cert - utils.make_bogus_cert(certpath) - proxy.config = proxy.Config( - certpath, + certfile = options.cert, + certpath = options.certpath, + cacert = options.cacert, ciphers = options.ciphers ) server = proxy.ProxyServer(options.port) |