aboutsummaryrefslogtreecommitdiffstats
path: root/libmproxy/script.py
diff options
context:
space:
mode:
authorAldo Cortesi <aldo@nullcube.com>2011-06-11 15:16:16 +1200
committerAldo Cortesi <aldo@nullcube.com>2011-06-11 15:16:16 +1200
commit7d7803a4d9a21d95a005294f4eaca326bc076138 (patch)
treedcfe3cf51caae972525572d096f70268948574bf /libmproxy/script.py
parent62f9864395fcb9933992257d5beabf84e532f85f (diff)
downloadmitmproxy-7d7803a4d9a21d95a005294f4eaca326bc076138.tar.gz
mitmproxy-7d7803a4d9a21d95a005294f4eaca326bc076138.tar.bz2
mitmproxy-7d7803a4d9a21d95a005294f4eaca326bc076138.zip
Add a hideous kludge to fix not-yet-valid certificates.
- The OpenSSL x509 has no way to explicitly set the notBefore value on certificates. - If two systems have the same configured time, it's possible to return a certificate before the validity start time has arrived. - We "solve" this by waiting for one second when a certificate is first generated before returning the cert. The alternative is to rewrite pretty much all of our certificate generation, a thought too horrible to contemplate.
Diffstat (limited to 'libmproxy/script.py')
0 files changed, 0 insertions, 0 deletions