صفحهٔ اصلی گشت‌و‌گذار راهنما
ورود
SoftwareDesign
/
csu3_am335x
8
0
انشعاب 0
پرونده‌ها مشکلات 0 درخواست واکشی 0 ویکی
شاخه: master
شاخه‌ها تگ‌ها
csu3_am335x
/
EVSE
/
GPL
/
openvpn-2.4.9
/
sample
/
sample-plugins
/
keying-material-exporter-demo
/
README

README 2.3 KB
لینک دائمی تاريخچه خام

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768 
  1. OpenVPN plugin examples.                            Daniel Kubec <niel@rtfm.cz>
    2. 

  2. 

  3. Examples provided:
    4. 

  4. 

  5. keyingmaterialexporter.c   -- Example based on TLS Keying Material Exporters over HTTP [RFC-5705]
    6. 

  6.                               (openvpn/doc/keying-material-exporter.txt)
    7. 

  7. 

  8. This example demonstrates authenticating a user over HTTP who have already
    9. 

  9. established an OpenVPN connecting using the --keying-material-exporter
    10. 

  10. feature.
    11. 

  11. 

  12. Requires:
    13. 

  13. OpenVPN RFC-5705 Support, OpenSSL >= 1.0.1
    14. 

  14. 

  15. Files:
    16. 

  16.   http-server.py -- Example HTTP Server listen  0.0.0.0:8080
    17. 

  17.   http-client.py -- Example HTTP Client connect 10.8.0.1:8080 [GET /$SESSIONID]
    18. 

  18. 

  19.   server.ovpn    -- Example HTTP SSO VPN Server configuration
    20. 

  20.   client.ovpn    -- Example HTTP SSO VPN Client configuration
    21. 

  21. 

  22.   keyingmaterialexporter.c,
    23. 

  23.   keyingmaterialexporter.so  -- Example OpenVPN Client and Server plugin
    24. 

  24. 

  25. To build:
    26. 

  26.   ./build keyingmaterialexporter
    27. 

  27. 

  28. To use in OpenVPN:
    29. 

  29. 

  30. Enter openvpn/sample/sample-plugins/keyingmaterialexporter directory
    31. 

  31. and in separate terminals, start these four processes:
    32. 

  32. 

  33. $ openvpn --config ./server.ovpn
    34. 

  34. $ openvpn --config ./client.ovpn
    35. 

  35. $ ./http-server.py
    36. 

  36. $ ./http-client.py
    37. 

  37. 

  38. Test:
    39. 

  39. 

  40. openvpn --config ./server.ovpn
    41. 

  41. ##############################
    42. 

  42. 

  43. PLUGIN SSO: app session created
    44. 

  44. PLUGIN_CALL: POST ./keyingmaterialexporter.so/PLUGIN_TLS_VERIFY status=0
    45. 

  45. PLUGIN SSO: app session key:  a5885abc84d361803f58ede1ef9c0adf99e720cd
    46. 

  46. PLUGIN SSO: app session file: /tmp/openvpn_sso_a5885abc84d361803f58ede1ef9c0adf99e720cd
    47. 

  47. PLUGIN SSO: app session user: Test-Client
    48. 

  48. 

  49. openvpn --config ./client.ovpn
    50. 

  50. ##############################
    51. 

  51. PLUGIN SSO: app session created
    52. 

  52. PLUGIN_CALL: POST ./keyingmaterialexporter.so/PLUGIN_TLS_VERIFY status=0
    53. 

  53. PLUGIN SSO: app session key:  a5885abc84d361803f58ede1ef9c0adf99e720cd
    54. 

  54. PLUGIN SSO: app session file: /tmp/openvpn_sso_user
    55. 

  55. PLUGIN_CALL: POST ./keyingmaterialexporter.so/PLUGIN_TLS_FINAL status=0
    56. 

  56. 

  57. HTTP_SERVER:
    58. 

  58. http-server.py
    59. 

  59. ################
    60. 

  60. http server started
    61. 

  61. session file: /tmp/openvpn_sso_a5885abc84d361803f58ede1ef9c0adf99e720cd
    62. 

  62. 10.8.0.1 - - [02/Apr/2015 15:03:33] "GET /a5885abc84d361803f58ede1ef9c0adf99e720cd HTTP/1.1" 200 -
    63. 

  63. session user: Test-Client
    64. 

  64. session key:  a5885abc84d361803f58ede1ef9c0adf99e720cd
    65. 

  65. 

  66. HTTP_SERVER:
    67. 

  67. http-client.py
    68. 

  68. <html><body><h1>Greetings Test-Client. You are authorized</h1></body></html>
    69.