Article delegate-en/34 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
[Reference:<_A29@delegate-en.ML_>]
Newsgroups: mail-lists.delegate-en

[DeleGate-En] Re: DeleGate SSL
14 Aug 1998 06:03:26 GMT ysato@etl.go.jp (Yutaka Sato 佐藤豊)


In message <_A29@delegate-en.ML_>
on 08/13/98(23:18:36)
you "J.Francois" <pduaabdyi-qjyh54lfbnxr.ml@ml.delegate.org> wrote:
 |SSL - The client<--->proxy part works fine.
 |      However, as a relay proxy it does not rewrite
 |      the HTML to HTTPS so it fails on some WWW pages.
 |      If you go to https://proxy.magusnet.com/-_-http://www.yahoo.com/
 |      you will get a good SSL connection but will not be able to navigate
 |      any of the other Yahoo pages. If you look at the document source
 |      all of the links are rewritten as http:// instead of https://

I reproduced the problem running a HTTP/HTTPS gatewaying proxy like:

  delegated -P8080 -v \
    SERVER=https FCL="sslway -ac" REMITTABLE=http RELIABLE="*"

It will be fixed with the enclosed patch.

 |      Browsers ( Netscape 4.05 US on Linux 2.0.34/Win95/Solaris 2.5.1 )
 |      SSL only works with SSLV2. SSLV3 fails.
 |      I am using SSLeay-0.9.0b and DeleGate-5.6.0

It may be related with the function called in filters/sslway.c,
especially "SSLv23_method()".  Since I almost forgot around the
coding, I will appreciate someone to find out how to modify the
code appropriately...

Cheers,
Yutaka
--
Yutaka Sato <ysato@etl.go.jp> http://www.etl.go.jp/~ysato/   @ @ 
Computer Science Division, Electrotechnical Laboratory      ( - )
1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan            _<   >_


*** url.c.orig	Tue Jul 28 12:59:21 1998
--- url.c	Fri Aug 14 14:52:01 1998
***************
*** 1076,1081 ****
--- 1076,1082 ----
  	char *up;
  	char *proto,*val;
  	char *hostport,*delegate;
+ 	char *dproto;
  	char *path,xpath[URLSZ];
  	char *search;
  	char *gselector;
***************
*** 1096,1101 ****
--- 1097,1105 ----
  	if( callback_it(proto) == 0 )
  		return 0;
  
+ 	dproto = getv(av,"dproto");
+ 	if( dproto == NULL )
+ 		dproto = "http";
  	delegate = getv(av,"delegate");
  	if( delegate == 0 )
  		return 0;
***************
*** 1117,1123 ****
  	if( !isREACHABLE(proto,hostport) )
  		return 0;
  
! 	if( streq(proto,"http") )
  	if( delegate && hostport && streq(delegate,hostport) )
  		return 0; /* no rewriting is necessary */
  
--- 1121,1127 ----
  	if( !isREACHABLE(proto,hostport) )
  		return 0;
  
! 	if( streq(proto,dproto) )
  	if( delegate && hostport && streq(delegate,hostport) )
  		return 0; /* no rewriting is necessary */
  
***************
*** 1131,1137 ****
  	oURLbuf[olen] = 0;
  
  	up = url;
! 	up = Sprintf(up,"http://");
  
  	if( !GOPHER_ON_HTTP && streq(proto,"gopher") ){
  		up = Sprintf(url,"gopher://");
--- 1135,1141 ----
  	oURLbuf[olen] = 0;
  
  	up = url;
! 	up = Sprintf(up,"%s://",dproto);
  
  	if( !GOPHER_ON_HTTP && streq(proto,"gopher") ){
  		up = Sprintf(url,"gopher://");

  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V