From 026330a3b014f24f095b839b29186036854de3bc Mon Sep 17 00:00:00 2001
From: Maximilian Hils <git@maximilianhils.com>
Date: Sat, 8 Aug 2015 16:08:57 +0200
Subject: cleaner Exceptions, ssl -> tls, upstream proxy mode

---
 libmproxy/proxy/connection.py | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'libmproxy/proxy/connection.py')

diff --git a/libmproxy/proxy/connection.py b/libmproxy/proxy/connection.py
index 9e03157a..49210e47 100644
--- a/libmproxy/proxy/connection.py
+++ b/libmproxy/proxy/connection.py
@@ -32,6 +32,10 @@ class ClientConnection(tcp.BaseHandler, stateobject.StateObject):
             port=self.address.port
         )
 
+    @property
+    def tls_established(self):
+        return self.ssl_established
+
     _stateobject_attributes = dict(
         ssl_established=bool,
         timestamp_start=float,
@@ -112,6 +116,10 @@ class ServerConnection(tcp.TCPClient, stateobject.StateObject):
             port=self.address.port
         )
 
+    @property
+    def tls_established(self):
+        return self.ssl_established
+
     _stateobject_attributes = dict(
         state=list,
         timestamp_start=float,
-- 
cgit v1.2.3


From 1e40d34e942382bbb11234e0e9232794b3bf6acf Mon Sep 17 00:00:00 2001
From: Thomas Kriechbaumer <thomas@kriechbaumer.name>
Date: Sat, 15 Aug 2015 17:43:46 +0200
Subject: add ALPN to proxy connections

---
 libmproxy/proxy/connection.py | 14 ++------------
 1 file changed, 2 insertions(+), 12 deletions(-)

(limited to 'libmproxy/proxy/connection.py')

diff --git a/libmproxy/proxy/connection.py b/libmproxy/proxy/connection.py
index 49210e47..f33e84cd 100644
--- a/libmproxy/proxy/connection.py
+++ b/libmproxy/proxy/connection.py
@@ -1,6 +1,8 @@
 from __future__ import absolute_import
+
 import copy
 import os
+
 from netlib import tcp, certutils
 from .. import stateobject, utils
 
@@ -75,15 +77,6 @@ class ClientConnection(tcp.BaseHandler, stateobject.StateObject):
         return f
 
     def convert_to_ssl(self, *args, **kwargs):
-        # TODO: read ALPN from server and select same proto for client conn
-        # alpn_select = 'h2'
-        # def alpn_select_callback(conn_, options):
-        #     if alpn_select in options:
-        #         return bytes(alpn_select)
-        #     else:  # pragma no cover
-        #         return options[0]
-        # tcp.BaseHandler.convert_to_ssl(self, alpn_select=alpn_select_callback, *args, **kwargs)
-
         tcp.BaseHandler.convert_to_ssl(self, *args, **kwargs)
         self.timestamp_ssl_setup = utils.timestamp()
 
@@ -184,9 +177,6 @@ class ServerConnection(tcp.TCPClient, stateobject.StateObject):
             if os.path.exists(path):
                 clientcert = path
 
-        # TODO: read ALPN from client and use same list for server conn
-        # self.convert_to_ssl(cert=clientcert, sni=sni, alpn_protos=[netlib.http.http2.HTTP2Protocol.ALPN_PROTO_H2], **kwargs)
-
         self.convert_to_ssl(cert=clientcert, sni=sni, **kwargs)
         self.sni = sni
         self.timestamp_ssl_setup = utils.timestamp()
-- 
cgit v1.2.3


From a2b85048892626e6834df06e9022498814724636 Mon Sep 17 00:00:00 2001
From: Maximilian Hils <git@maximilianhils.com>
Date: Sun, 16 Aug 2015 23:25:02 +0200
Subject: improve protocol handling

---
 libmproxy/proxy/connection.py | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

(limited to 'libmproxy/proxy/connection.py')

diff --git a/libmproxy/proxy/connection.py b/libmproxy/proxy/connection.py
index f33e84cd..f92b53aa 100644
--- a/libmproxy/proxy/connection.py
+++ b/libmproxy/proxy/connection.py
@@ -96,6 +96,9 @@ class ServerConnection(tcp.TCPClient, stateobject.StateObject):
         self.timestamp_ssl_setup = None
         self.protocol = None
 
+    def __nonzero__(self):
+        return bool(self.connection)
+
     def __repr__(self):
         if self.ssl_established and self.sni:
             ssl = "[ssl: {0}] ".format(self.sni)
@@ -132,8 +135,8 @@ class ServerConnection(tcp.TCPClient, stateobject.StateObject):
         d.update(
             address={"address": self.address(),
                      "use_ipv6": self.address.use_ipv6},
-            source_address= ({"address": self.source_address(),
-                              "use_ipv6": self.source_address.use_ipv6} if self.source_address else None),
+            source_address=({"address": self.source_address(),
+                             "use_ipv6": self.source_address.use_ipv6} if self.source_address else None),
             cert=self.cert.to_pem() if self.cert else None
         )
         return d
-- 
cgit v1.2.3


From 96de7ad562da9b5110059988b851c66b51874510 Mon Sep 17 00:00:00 2001
From: Maximilian Hils <git@maximilianhils.com>
Date: Tue, 18 Aug 2015 14:15:08 +0200
Subject: various fixes

---
 libmproxy/proxy/connection.py | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

(limited to 'libmproxy/proxy/connection.py')

diff --git a/libmproxy/proxy/connection.py b/libmproxy/proxy/connection.py
index f92b53aa..c9b57998 100644
--- a/libmproxy/proxy/connection.py
+++ b/libmproxy/proxy/connection.py
@@ -27,6 +27,9 @@ class ClientConnection(tcp.BaseHandler, stateobject.StateObject):
         self.timestamp_ssl_setup = None
         self.protocol = None
 
+    def __nonzero__(self):
+        return bool(self.connection) and not self.finished
+
     def __repr__(self):
         return "<ClientConnection: {ssl}{host}:{port}>".format(
             ssl="[ssl] " if self.ssl_established else "",
@@ -89,7 +92,7 @@ class ServerConnection(tcp.TCPClient, stateobject.StateObject):
     def __init__(self, address):
         tcp.TCPClient.__init__(self, address)
 
-        self.state = []  # a list containing (conntype, state) tuples
+        self.via = None
         self.timestamp_start = None
         self.timestamp_end = None
         self.timestamp_tcp_setup = None
@@ -97,7 +100,7 @@ class ServerConnection(tcp.TCPClient, stateobject.StateObject):
         self.protocol = None
 
     def __nonzero__(self):
-        return bool(self.connection)
+        return bool(self.connection) and not self.finished
 
     def __repr__(self):
         if self.ssl_established and self.sni:
@@ -117,7 +120,6 @@ class ServerConnection(tcp.TCPClient, stateobject.StateObject):
         return self.ssl_established
 
     _stateobject_attributes = dict(
-        state=list,
         timestamp_start=float,
         timestamp_end=float,
         timestamp_tcp_setup=float,
@@ -187,3 +189,5 @@ class ServerConnection(tcp.TCPClient, stateobject.StateObject):
     def finish(self):
         tcp.TCPClient.finish(self)
         self.timestamp_end = utils.timestamp()
+
+ServerConnection._stateobject_attributes["via"] = ServerConnection
\ No newline at end of file
-- 
cgit v1.2.3


From c9fa8491ccc015ddff09ce15a5d718d6b58b515c Mon Sep 17 00:00:00 2001
From: Thomas Kriechbaumer <thomas@kriechbaumer.name>
Date: Wed, 19 Aug 2015 15:23:52 +0200
Subject: improve next_layer detection

---
 libmproxy/proxy/connection.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'libmproxy/proxy/connection.py')

diff --git a/libmproxy/proxy/connection.py b/libmproxy/proxy/connection.py
index c9b57998..c329ed64 100644
--- a/libmproxy/proxy/connection.py
+++ b/libmproxy/proxy/connection.py
@@ -190,4 +190,4 @@ class ServerConnection(tcp.TCPClient, stateobject.StateObject):
         tcp.TCPClient.finish(self)
         self.timestamp_end = utils.timestamp()
 
-ServerConnection._stateobject_attributes["via"] = ServerConnection
\ No newline at end of file
+ServerConnection._stateobject_attributes["via"] = ServerConnection
-- 
cgit v1.2.3


From dd7f50d64bef38fa67b4cace91913d03691dde26 Mon Sep 17 00:00:00 2001
From: Maximilian Hils <git@maximilianhils.com>
Date: Sun, 30 Aug 2015 01:21:58 +0200
Subject: restructure code, remove cruft

---
 libmproxy/proxy/connection.py | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

(limited to 'libmproxy/proxy/connection.py')

diff --git a/libmproxy/proxy/connection.py b/libmproxy/proxy/connection.py
index c329ed64..94f318f6 100644
--- a/libmproxy/proxy/connection.py
+++ b/libmproxy/proxy/connection.py
@@ -12,7 +12,7 @@ class ClientConnection(tcp.BaseHandler, stateobject.StateObject):
         # Eventually, this object is restored from state. We don't have a
         # connection then.
         if client_connection:
-            tcp.BaseHandler.__init__(self, client_connection, address, server)
+            super(ClientConnection, self).__init__(client_connection, address, server)
         else:
             self.connection = None
             self.server = None
@@ -80,11 +80,11 @@ class ClientConnection(tcp.BaseHandler, stateobject.StateObject):
         return f
 
     def convert_to_ssl(self, *args, **kwargs):
-        tcp.BaseHandler.convert_to_ssl(self, *args, **kwargs)
+        super(ClientConnection, self).convert_to_ssl(*args, **kwargs)
         self.timestamp_ssl_setup = utils.timestamp()
 
     def finish(self):
-        tcp.BaseHandler.finish(self)
+        super(ClientConnection, self).finish()
         self.timestamp_end = utils.timestamp()
 
 
-- 
cgit v1.2.3


From a86ec56012136664688fa4a8efcd866b5e3e17a8 Mon Sep 17 00:00:00 2001
From: Maximilian Hils <git@maximilianhils.com>
Date: Sun, 30 Aug 2015 15:27:29 +0200
Subject: move files around

---
 libmproxy/proxy/connection.py | 193 ------------------------------------------
 1 file changed, 193 deletions(-)
 delete mode 100644 libmproxy/proxy/connection.py

(limited to 'libmproxy/proxy/connection.py')

diff --git a/libmproxy/proxy/connection.py b/libmproxy/proxy/connection.py
deleted file mode 100644
index 94f318f6..00000000
--- a/libmproxy/proxy/connection.py
+++ /dev/null
@@ -1,193 +0,0 @@
-from __future__ import absolute_import
-
-import copy
-import os
-
-from netlib import tcp, certutils
-from .. import stateobject, utils
-
-
-class ClientConnection(tcp.BaseHandler, stateobject.StateObject):
-    def __init__(self, client_connection, address, server):
-        # Eventually, this object is restored from state. We don't have a
-        # connection then.
-        if client_connection:
-            super(ClientConnection, self).__init__(client_connection, address, server)
-        else:
-            self.connection = None
-            self.server = None
-            self.wfile = None
-            self.rfile = None
-            self.address = None
-            self.clientcert = None
-            self.ssl_established = None
-
-        self.timestamp_start = utils.timestamp()
-        self.timestamp_end = None
-        self.timestamp_ssl_setup = None
-        self.protocol = None
-
-    def __nonzero__(self):
-        return bool(self.connection) and not self.finished
-
-    def __repr__(self):
-        return "<ClientConnection: {ssl}{host}:{port}>".format(
-            ssl="[ssl] " if self.ssl_established else "",
-            host=self.address.host,
-            port=self.address.port
-        )
-
-    @property
-    def tls_established(self):
-        return self.ssl_established
-
-    _stateobject_attributes = dict(
-        ssl_established=bool,
-        timestamp_start=float,
-        timestamp_end=float,
-        timestamp_ssl_setup=float
-    )
-
-    def get_state(self, short=False):
-        d = super(ClientConnection, self).get_state(short)
-        d.update(
-            address={
-                "address": self.address(),
-                "use_ipv6": self.address.use_ipv6},
-            clientcert=self.cert.to_pem() if self.clientcert else None)
-        return d
-
-    def load_state(self, state):
-        super(ClientConnection, self).load_state(state)
-        self.address = tcp.Address(
-            **state["address"]) if state["address"] else None
-        self.clientcert = certutils.SSLCert.from_pem(
-            state["clientcert"]) if state["clientcert"] else None
-
-    def copy(self):
-        return copy.copy(self)
-
-    def send(self, message):
-        if isinstance(message, list):
-            message = b''.join(message)
-        self.wfile.write(message)
-        self.wfile.flush()
-
-    @classmethod
-    def from_state(cls, state):
-        f = cls(None, tuple(), None)
-        f.load_state(state)
-        return f
-
-    def convert_to_ssl(self, *args, **kwargs):
-        super(ClientConnection, self).convert_to_ssl(*args, **kwargs)
-        self.timestamp_ssl_setup = utils.timestamp()
-
-    def finish(self):
-        super(ClientConnection, self).finish()
-        self.timestamp_end = utils.timestamp()
-
-
-class ServerConnection(tcp.TCPClient, stateobject.StateObject):
-    def __init__(self, address):
-        tcp.TCPClient.__init__(self, address)
-
-        self.via = None
-        self.timestamp_start = None
-        self.timestamp_end = None
-        self.timestamp_tcp_setup = None
-        self.timestamp_ssl_setup = None
-        self.protocol = None
-
-    def __nonzero__(self):
-        return bool(self.connection) and not self.finished
-
-    def __repr__(self):
-        if self.ssl_established and self.sni:
-            ssl = "[ssl: {0}] ".format(self.sni)
-        elif self.ssl_established:
-            ssl = "[ssl] "
-        else:
-            ssl = ""
-        return "<ServerConnection: {ssl}{host}:{port}>".format(
-            ssl=ssl,
-            host=self.address.host,
-            port=self.address.port
-        )
-
-    @property
-    def tls_established(self):
-        return self.ssl_established
-
-    _stateobject_attributes = dict(
-        timestamp_start=float,
-        timestamp_end=float,
-        timestamp_tcp_setup=float,
-        timestamp_ssl_setup=float,
-        address=tcp.Address,
-        source_address=tcp.Address,
-        cert=certutils.SSLCert,
-        ssl_established=bool,
-        sni=str
-    )
-    _stateobject_long_attributes = {"cert"}
-
-    def get_state(self, short=False):
-        d = super(ServerConnection, self).get_state(short)
-        d.update(
-            address={"address": self.address(),
-                     "use_ipv6": self.address.use_ipv6},
-            source_address=({"address": self.source_address(),
-                             "use_ipv6": self.source_address.use_ipv6} if self.source_address else None),
-            cert=self.cert.to_pem() if self.cert else None
-        )
-        return d
-
-    def load_state(self, state):
-        super(ServerConnection, self).load_state(state)
-
-        self.address = tcp.Address(
-            **state["address"]) if state["address"] else None
-        self.source_address = tcp.Address(
-            **state["source_address"]) if state["source_address"] else None
-        self.cert = certutils.SSLCert.from_pem(
-            state["cert"]) if state["cert"] else None
-
-    @classmethod
-    def from_state(cls, state):
-        f = cls(tuple())
-        f.load_state(state)
-        return f
-
-    def copy(self):
-        return copy.copy(self)
-
-    def connect(self):
-        self.timestamp_start = utils.timestamp()
-        tcp.TCPClient.connect(self)
-        self.timestamp_tcp_setup = utils.timestamp()
-
-    def send(self, message):
-        if isinstance(message, list):
-            message = b''.join(message)
-        self.wfile.write(message)
-        self.wfile.flush()
-
-    def establish_ssl(self, clientcerts, sni, **kwargs):
-        clientcert = None
-        if clientcerts:
-            path = os.path.join(
-                clientcerts,
-                self.address.host.encode("idna")) + ".pem"
-            if os.path.exists(path):
-                clientcert = path
-
-        self.convert_to_ssl(cert=clientcert, sni=sni, **kwargs)
-        self.sni = sni
-        self.timestamp_ssl_setup = utils.timestamp()
-
-    def finish(self):
-        tcp.TCPClient.finish(self)
-        self.timestamp_end = utils.timestamp()
-
-ServerConnection._stateobject_attributes["via"] = ServerConnection
-- 
cgit v1.2.3