GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 16:57:00 +08:00
Code Issues Packages Projects Releases Wiki Activity

bypass AnyConnect client auto-update mechanism

Browse Source
This commit is contained in:
Kevin Cernekee
2013-07-07 13:31:03 -07:00
committed by Nikos Mavrogiannopoulos
parent 0de1a803d3
commit 190e1d7994
3 changed files with 18 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
src/worker-extras.c
View File

@@ -98,11 +98,18 @@ struct stat st;
return 0;
}
int get_cscot_handler(worker_st *ws, unsigned http_ver)
int get_string_handler(worker_st *ws, unsigned http_ver)
{
int ret;
const char *data;
int len;
oclog(ws, LOG_DEBUG, "requested CSCOT: %s", ws->req.url);
oclog(ws, LOG_DEBUG, "requested fixed string: %s", ws->req.url);
if (!strcmp(ws->req.url, "/2/binaries/update.txt"))
data = "0,0,0000\n";
else
data = "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<vpn rev=\"1.0\">\n</vpn>\n";
len = strlen(data);
tls_cork(ws->session);
ret = tls_printf(ws->session, "HTTP/1.%u 200 OK\r\n", http_ver);
@@ -121,13 +128,11 @@ int ret;
if (ret < 0)
return -1;
#define MANIFEST "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<vpn rev=\"1.0\">\n" \
"</vpn>\n"
ret = tls_printf(ws->session, "Content-Length: %u\r\n\r\n", (unsigned)sizeof(MANIFEST)-1);
ret = tls_printf(ws->session, "Content-Length: %d\r\n\r\n", len);
if (ret < 0)
return -1;
ret = tls_puts(ws->session, MANIFEST);
ret = tls_send(ws->session, data, len);
if (ret < 0)
return -1;

8
src/worker-vpn.c
View File

@@ -97,9 +97,13 @@ const static struct known_urls_st known_urls[] = {
LL("/", get_auth_handler, post_auth_handler),
LL("/auth", get_auth_handler, post_auth_handler),
#ifdef ANYCONNECT_CLIENT_COMPAT
LL("/1/index.html", get_auth_handler, post_auth_handler),
LL("/1/index.html", get_empty_handler, NULL),
LL("/2/index.html", get_empty_handler, NULL),
LL("/2/Linux", get_empty_handler, NULL),
LL("/2/VPNManifest.xml", get_string_handler, NULL),
LL("/2/binaries/update.txt", get_string_handler, NULL),
LL("/profiles", get_config_handler, NULL),
LL("/+CSCOT+/translation-table", get_cscot_handler, NULL),
LL("/+CSCOT+/translation-table", get_string_handler, NULL),
#endif
{NULL, 0, 0, NULL, NULL}
};

2
src/worker.h
View File

@@ -131,7 +131,7 @@ int post_auth_handler(worker_st *server, unsigned http_ver);
int get_empty_handler(worker_st *server, unsigned http_ver);
int get_config_handler(worker_st *ws, unsigned http_ver);
int get_cscot_handler(worker_st *ws, unsigned http_ver);
int get_string_handler(worker_st *ws, unsigned http_ver);
void set_resume_db_funcs(gnutls_session_t);