105 lines
3.5 KiB
Python
105 lines
3.5 KiB
Python
|
# -*- coding: utf-8 -*-
|
||
|
|
"""
|
||
|
|
proxy.py
|
||
|
|
~~~~~~~~
|
||
|
|
⚡⚡⚡ Fast, Lightweight, Pluggable, TLS interception capable proxy server focused on
|
||
|
|
Network monitoring, controls & Application development, testing, debugging.
|
||
|
|
|
||
|
|
:copyright: (c) 2013-present by Abhinav Singh and contributors.
|
||
|
|
:license: BSD, see LICENSE for more details.
|
||
|
|
"""
|
||
|
|
import time
|
||
|
|
import socket
|
||
|
|
import selectors
|
||
|
|
|
||
|
|
from typing import Dict, Any
|
||
|
|
|
||
|
|
from proxy.core.acceptor import AcceptorPool, Work
|
||
|
|
from proxy.core.connection import TcpClientConnection
|
||
|
|
from proxy.common.flags import Flags
|
||
|
|
from proxy.common.types import Readables, Writables
|
||
|
|
from proxy.common.utils import wrap_socket
|
||
|
|
|
||
|
|
|
||
|
|
class EchoSSLServerHandler(Work):
|
||
|
|
"""EchoSSLServerHandler implements Work interface.
|
||
|
|
|
||
|
|
An instance of EchoServerHandler is created for each client
|
||
|
|
connection. EchoServerHandler lifecycle is controlled by
|
||
|
|
Threadless core using asyncio. Implementation must provide
|
||
|
|
get_events and handle_events method. Optionally, also implement
|
||
|
|
intialize, is_inactive and shutdown method.
|
||
|
|
"""
|
||
|
|
|
||
|
|
def __init__(self, *args: Any, **kwargs: Any) -> None:
|
||
|
|
super().__init__(*args, **kwargs)
|
||
|
|
print('Connection accepted from {0}'.format(self.client.addr))
|
||
|
|
|
||
|
|
def initialize(self) -> None:
|
||
|
|
# Acceptors don't perform TLS handshake. Perform the same
|
||
|
|
# here using wrap_socket() utility.
|
||
|
|
assert self.flags.keyfile is not None and self.flags.certfile is not None
|
||
|
|
conn = wrap_socket(self.client.connection, self.flags.keyfile, self.flags.certfile)
|
||
|
|
conn.setblocking(False)
|
||
|
|
# Upgrade plain TcpClientConnection to SSL connection object
|
||
|
|
self.client = TcpClientConnection(conn=conn, addr=self.client.addr)
|
||
|
|
|
||
|
|
def get_events(self) -> Dict[socket.socket, int]:
|
||
|
|
# We always want to read from client
|
||
|
|
# Register for EVENT_READ events
|
||
|
|
events = {self.client.connection: selectors.EVENT_READ}
|
||
|
|
# If there is pending buffer for client
|
||
|
|
# also register for EVENT_WRITE events
|
||
|
|
if self.client.has_buffer():
|
||
|
|
events[self.client.connection] |= selectors.EVENT_WRITE
|
||
|
|
return events
|
||
|
|
|
||
|
|
def handle_events(
|
||
|
|
self,
|
||
|
|
readables: Readables,
|
||
|
|
writables: Writables) -> bool:
|
||
|
|
"""Return True to shutdown work."""
|
||
|
|
if self.client.connection in readables:
|
||
|
|
try:
|
||
|
|
data = self.client.recv()
|
||
|
|
if data is None:
|
||
|
|
# Client closed connection, signal shutdown
|
||
|
|
print(
|
||
|
|
'Connection closed by client {0}'.format(
|
||
|
|
self.client.addr))
|
||
|
|
return True
|
||
|
|
# Echo data back to client
|
||
|
|
self.client.queue(data)
|
||
|
|
except ConnectionResetError:
|
||
|
|
print(
|
||
|
|
'Connection reset by client {0}'.format(
|
||
|
|
self.client.addr))
|
||
|
|
return True
|
||
|
|
|
||
|
|
if self.client.connection in writables:
|
||
|
|
self.client.flush()
|
||
|
|
|
||
|
|
return False
|
||
|
|
|
||
|
|
|
||
|
|
def main() -> None:
|
||
|
|
# This example requires `threadless=True`
|
||
|
|
pool = AcceptorPool(
|
||
|
|
flags=Flags(
|
||
|
|
port=12345,
|
||
|
|
num_workers=1,
|
||
|
|
threadless=True,
|
||
|
|
keyfile='https-key.pem',
|
||
|
|
certfile='https-signed-cert.pem'),
|
||
|
|
work_klass=EchoSSLServerHandler)
|
||
|
|
try:
|
||
|
|
pool.setup()
|
||
|
|
while True:
|
||
|
|
time.sleep(1)
|
||
|
|
finally:
|
||
|
|
pool.shutdown()
|
||
|
|
|
||
|
|
|
||
|
|
if __name__ == '__main__':
|
||
|
|
main()
|