Maximilian Hils
cbee3bdfa6
minor fixes
2016-02-06 00:25:50 +01:00
Maximilian Hils
4bad98cfce
use setup.y environment markers
2016-02-05 23:39:48 +01:00
Maximilian Hils
0336a53aa8
Merge branch 'master' of https://github.com/mitmproxy/netlib
2016-02-02 18:16:05 +01:00
Maximilian Hils
a188ae5ac5
allow creation of certs without CN
2016-02-02 18:15:55 +01:00
Thomas Kriechbaumer
e222858f01
bump dependency and remove deprecated fields
2016-02-02 17:39:49 +01:00
Thomas Kriechbaumer
81b32cf426
Merge pull request #116 from Kriechi/hyperframe
...
migrate to hyperframe
2016-02-01 20:28:14 +01:00
Thomas Kriechbaumer
1e20340126
Merge pull request #118 from mitmproxy/py3-peek
...
Fix Reader.peek() on Python 3
2016-02-01 20:25:28 +01:00
Maximilian Hils
931b5459e9
remove code duplication
2016-02-01 20:19:34 +01:00
Maximilian Hils
a3af0ce71d
tests++
2016-02-01 20:10:18 +01:00
Maximilian Hils
bda49dd178
fix #113 , make Reader.peek() work on Python 3
2016-02-01 19:38:14 +01:00
Maximilian Hils
7c83a709ea
add test for Reader.peek()
2016-02-01 19:24:30 +01:00
Thomas Kriechbaumer
e98c729bb9
test on python3
2016-01-31 20:19:32 +01:00
Thomas Kriechbaumer
280b491ab2
migrate to hyperframe
2016-01-31 20:03:25 +01:00
Thomas Kriechbaumer
d253ebc142
fix test request and response headers
2016-01-30 22:03:24 +01:00
Thomas Kriechbaumer
283c74a0ea
allow pypy again on travis
2016-01-30 13:38:28 +01:00
Thomas Kriechbaumer
2145ded375
fix pypy on travis
2016-01-30 13:35:49 +01:00
Thomas Kriechbaumer
dc7d41e7a5
Merge pull request #115 from Kriechi/move-tservers
...
move tservers to netlib module
2016-01-25 15:22:36 +01:00
Thomas Kriechbaumer
1b487539b1
move tservers to netlib module
2016-01-25 09:20:44 +01:00
Maximilian Hils
0ca0469d6e
Merge pull request #110 from snemes/master
...
Added getter/setter for TCPClient source_address
2016-01-17 20:09:33 +01:00
Sandor Nemes
d12e256749
Merge branch 'master' into master
2016-01-13 15:05:29 +01:00
Thomas Kriechbaumer
e1e2f7464e
Merge pull request #112 from mitmproxy/update-cryptography
...
upgrade cryptography dependency for new wheels
2016-01-13 13:10:23 +01:00
Thomas Kriechbaumer
9e2d050bb3
upgrade cryptography dependency for new wheels
2016-01-13 12:05:38 +01:00
Sandor Nemes
b8e8c4d682
Simplified setting the source_address in the TCPClient constructor
2016-01-11 08:10:36 +01:00
Maximilian Hils
46428412d6
Merge pull request #111 from felixonmars/master
...
Allow cryptography 1.2.*
2016-01-10 18:20:41 +01:00
Felix Yan
739806bfe2
Allow cryptography 1.2.*
2016-01-11 00:37:43 +08:00
Sandor Nemes
4bb9f3d35b
Added getter/setter for TCPClient source_address
2016-01-08 18:04:47 +01:00
Maximilian Hils
d1e6b5366c
bump version
2015-12-25 16:00:50 +01:00
Maximilian Hils
c10b614f70
update ssl_match_hostname dependency, refs #868
2015-12-25 15:56:26 +01:00
Maximilian Hils
71834421bb
bump version
2015-12-03 18:13:24 +01:00
Maximilian Hils
4718f36379
use version specifiers compatible with old setuptools releases
2015-12-03 17:56:57 +01:00
Maximilian Hils
9f224f7dbd
add 3.5 compat classifiers
2015-11-29 19:06:54 +01:00
Maximilian Hils
7cb57e206f
README: mkd -> rst
...
pypi only renders reStructuredText.
2015-11-29 19:04:19 +01:00
Maximilian Hils
4d17ddba38
Merge pull request #105 from bltb/master
...
Allow empty HTTP header value.
2015-11-17 11:19:33 +01:00
Benjamin Lee
52c02bc930
Add test for empty header field value.
2015-11-17 06:51:22 +11:00
Benjamin Lee
cf1889e157
WIP. Add breaking test.
2015-11-17 06:46:48 +11:00
Benjamin Lee
c1385c9a17
Fix to ignore empty header value.
...
According to Augmented BNF in the following RFCs
http://tools.ietf.org/html/rfc5234#section-3.6
http://www.w3.org/Protocols/rfc2616/rfc2616-sec2.html#sec2.1
field-value = *( field-content | LWS )
http://tools.ietf.org/html/rfc7230#section-3.2
field-value = *( field-content / obs-fold )
... the HTTP message header `field-value` is allowed to be empty.
2015-11-17 04:51:20 +11:00
Maximilian Hils
0df7e27c3b
Merge pull request #103 from scone/master
...
Utils port to 3.4 keeping py2 compatibility
2015-11-14 22:15:24 -08:00
Sam Cleveland
ce02874e2a
Fixing test_wsgi to remove py.test warnings
...
Renamed TestApp class to ExampleApp to prevent py.test from trying to
collect it as a test.
2015-11-14 13:42:43 -06:00
Maximilian Hils
5916260849
be more conservative about dependency versions
2015-11-13 20:00:54 +01:00
Sam Cleveland
2bd7bcb371
Porting to Python 3.4
...
Updated wsgi to support Python 3.4 byte strings.
Updated test_wsgi to remove py.test warning for TestApp having an
__init__ constructor.
samc$ sudo py.test netlib/test/test_wsgi.py -r w
= test session starts =
platform darwin -- Python 3.4.1, pytest-2.8.2, py-1.4.30, pluggy-0.3.1
rootdir: /Users/samc/src/python/netlib, inifile:
collected 6 items
netlib/test/test_wsgi.py ......
= 6 passed in 0.20 seconds =
2015-11-11 20:27:10 -06:00
Sam Cleveland
6689a342ae
Porting to Python 3.4
...
Fixed byte string formatting for hexdump.
= test session starts =
platform darwin -- Python 3.4.1, pytest-2.8.2, py-1.4.30, pluggy-0.3.1
rootdir: /Users/samc/src/python/netlib, inifile:
collected 11 items
netlib/test/test_utils.py ...........
= 11 passed in 0.23 seconds =
2015-11-11 19:53:51 -06:00
Sam Cleveland
2d48f12332
Revert "Porting netlib to python3.4"
...
This reverts commit 8237183485
.
2015-11-11 19:41:42 -06:00
Sam Cleveland
8237183485
Porting netlib to python3.4
...
Updated utils.py using 2to3-3.4
Updated hexdump to use .format() with .encode() to support python 3.4
Python 3.5 supports .format() on bytes objects, but 3.4 is the current
default on Ubuntu.
samc$ py.test netlib/test/test_utils.py
= test session starts =
platform darwin -- Python 3.4.1, pytest-2.8.2, py-1.4.30, pluggy-0.3.1
rootdir: /Users/samc/src/python/netlib, inifile:
collected 11 items
netlib/test/test_utils.py ...........
= 11 passed in 0.19 seconds =
2015-11-11 11:32:02 -06:00
Aldo Cortesi
9cab9ee5d6
Bump version for next release cycle
2015-11-07 09:30:49 +13:00
Aldo Cortesi
41e91dae00
Add CONTRIBUTORS
2015-11-06 14:08:38 +13:00
Aldo Cortesi
3e2eb3fef1
Bump version
2015-11-06 13:51:15 +13:00
Maximilian Hils
810c2f2414
Merge remote-tracking branch 'origin/hostname-validation'
2015-11-04 21:33:32 +01:00
Maximilian Hils
9d12425d5e
Set default cert expiry to <39 months
...
This sould fix mitmproxy/mitmproxy#815
2015-11-04 11:28:02 +01:00
Maximilian Hils
9d36f8e43f
minor fixes
2015-11-01 18:20:00 +01:00
Maximilian Hils
5af9df326a
fix certificate verification
...
This commit fixes netlib's optional (turned off by default)
certificate verification, which previously did not validate the
cert's host name. As it turns out, verifying the connection's host
name on an intercepting proxy is not really straightforward - if
we receive a connection in transparent mode without SNI, we have no
clue which hosts the client intends to connect to. There are two
basic approaches to solve this problem:
1. Exactly mirror the host names presented by the server in the
spoofed certificate presented to the client.
2. Require the client to send the TLS Server Name Indication
extension. While this does not work with older clients,
we can validate the hostname on the proxy.
Approach 1 is problematic in mitmproxy's use case, as we may want
to deliberately divert connections without the client's knowledge.
As a consequence, we opt for approach 2. While mitmproxy does now
require a SNI value to be sent by the client if certificate
verification is turned on, we retain our ability to present
certificates to the client which are accepted with a maximum
likelihood.
2015-11-01 18:15:30 +01:00