Source code for proxy.core.connection.client
# -*- coding: utf-8 -*-
"""
proxy.py
~~~~~~~~
⚡⚡⚡ Fast, Lightweight, Pluggable, TLS interception capable proxy server focused on
Network monitoring, controls & Application development, testing, debugging.
:copyright: (c) 2013-present by Abhinav Singh and contributors.
:license: BSD, see LICENSE for more details.
"""
import ssl
from typing import Any, Dict, Optional
from .types import tcpConnectionTypes
from .connection import TcpConnection, TcpConnectionUninitializedException
from ...common.types import HostPort, TcpOrTlsSocket
from ...common.constants import DEFAULT_SSL_CONTEXT_OPTIONS
[docs]class TcpClientConnection(TcpConnection):
"""A buffered client connection object."""
def __init__(
self,
conn: TcpOrTlsSocket,
# optional for unix socket servers
addr: Optional[HostPort] = None,
) -> None:
super().__init__(tcpConnectionTypes.CLIENT)
self._conn: Optional[TcpOrTlsSocket] = conn
self.addr: Optional[HostPort] = addr
@property
def address(self) -> str:
return 'unix:client' if not self.addr else '{0}:{1}'.format(self.addr[0], self.addr[1])
@property
def connection(self) -> TcpOrTlsSocket:
if self._conn is None:
raise TcpConnectionUninitializedException()
return self._conn
[docs] def wrap(self, keyfile: str, certfile: str) -> None:
self.connection.setblocking(True)
self.flush()
ctx = ssl.SSLContext(
protocol=(
ssl.PROTOCOL_TLS_CLIENT
if self.tag == 'server'
else ssl.PROTOCOL_TLS_SERVER
),
)
ctx.options |= DEFAULT_SSL_CONTEXT_OPTIONS
ctx.load_cert_chain(certfile=certfile, keyfile=keyfile)
assert self.addr
kwargs: Dict[str, Any] = {'server_side': True}
if self.tag == 'server':
assert self.addr
kwargs['server_hostname'] = self.addr[0]
self._conn = ctx.wrap_socket(self.connection, **kwargs)
self.connection.setblocking(False)