anyproxy/lib/certMgr.js

var exec = require('child_process').exec,
    spawn        = require('child_process').spawn,
    path         = require("path"),
    fs           = require("fs"),
    os           = require("os"),
    color        = require('colorful'),
    readline     = require('readline'),
    util         = require('./util'),
    asyncTask    = require("async-task-mgr");

//TODO : unstable in windows
var certDir      = path.join(util.getUserHome(),"/.anyproxy_certs/"),
    cmdDir       = path.join(__dirname,"..","./cert/"),
    cmd_genRoot  = path.join(cmdDir,"./gen-rootCA"),
    cmd_genCert  = path.join(cmdDir,"./gen-cer"),
    asyncTaskMgr = new asyncTask();

if(!fs.existsSync(certDir)){
    try{
        fs.mkdirSync(certDir,0777); //may fail in windows
    }catch(e){
        console.log("===========");
        console.log("failed to create cert dir ,please create one by yourself - " + certDir);
        console.log("this error will not block main thread unless you use https-related features in anyproxy");
        console.log("===========");
    }
}

function getCertificate(hostname,cb){
    var keyFile = path.join(certDir , "__hostname.key".replace(/__hostname/,hostname) ),
        crtFile = path.join(certDir , "__hostname.crt".replace(/__hostname/,hostname) );

    if(!fs.existsSync(keyFile) || !fs.existsSync(crtFile)){
        asyncTaskMgr.addTask(hostname,function(cb){
            createCert(hostname,function(err){
                cb(err ? err : null);
            });
        },function(err){
            if(!err){
                cb(null , fs.readFileSync(keyFile) , fs.readFileSync(crtFile) );
            }else{
                cb(err);
            }
        });

    }else{
        cb(null , fs.readFileSync(keyFile) , fs.readFileSync(crtFile) );
    }
}

function createCert(hostname,callback){
    checkRootCA();

    var cmd = cmd_genCert + " __host __path".replace(/__host/,hostname).replace(/__path/,certDir);
    exec(cmd,{ cwd : certDir },function(err,stdout,stderr){
        if(err){
            callback && callback(new Error("error when generating certificate"),null);
        }else{
            var tipText = "certificate created for __HOST".replace(/__HOST/,hostname);
            console.log(color.yellow(color.bold("[internal https]")) + color.yellow(tipText));
            callback(null);
        }
    });  
}

function clearCerts(cb){
    exec("rm *.key *.csr *.crt",{cwd : certDir},cb);
}

function isRootCAFileExists(){
   var crtFile = path.join(certDir,"rootCA.crt"),
       keyFile = path.join(certDir,"rootCA.key");
       
   return (fs.existsSync(crtFile) && fs.existsSync(keyFile)); 
}

function checkRootCA(){
    if(!isRootCAFileExists()){
        console.log(color.red("can not find rootCA.crt or rootCA.key"));
        console.log(color.red("you may generate one by the following methods"));
        console.log(color.red("\twhen using globally : anyproxy --root"));
        console.log(color.red("\twhen using as a module : require(\"anyproxy\").generateRootCA();"));
        process.exit(0);        
    }
}

function generateRootCA(){
    if(isRootCAFileExists()){
        console.log(color.yellow("rootCA exists at " + certDir));
        var rl = readline.createInterface({
            input : process.stdin,
            output: process.stdout
        });

        rl.question("do you really want to generate a new one ?)(yes/NO)", function(answer) {
            if(/yes/i.test(answer)){
                startGenerating();
            }else{
                console.log("will not generate a new one");
                process.exit(0);
            }

            rl.close();
        });
    }else{
        startGenerating();
    }

    function startGenerating(){
        //clear old certs
        clearCerts(function(){
            console.log(color.green("temp certs cleared"));

            var spawnSteam = spawn(cmd_genRoot,['.'],{cwd:certDir,stdio: 'inherit'});
            spawnSteam.on('close', function (code) {
                if(code == 0){
                    console.log(color.green("rootCA generated"));
                    console.log(color.green(color.bold("please trust the rootCA.crt in " + certDir)));
                    console.log(color.green(color.bold("or you may get it via anyproxy webinterface")));
                    process.exit(0);
                }else{
                    console.log(color.red("fail to generate root CA"));
                }
            });

        });
    }
}


function getRootCAFilePath(){
    if(isRootCAFileExists()){
        return path.join(certDir,"rootCA.crt");
    }else{
        return "";
    }
}

module.exports.getRootCAFilePath  = getRootCAFilePath;
module.exports.generateRootCA     = generateRootCA;
module.exports.getCertificate     = getCertificate;
module.exports.createCert         = createCert;
module.exports.clearCerts         = clearCerts;
module.exports.isRootCAFileExists = isRootCAFileExists;
update 2014-08-11 16:43:14 +08:00			`var exec = require('child_process').exec,`
add bin.js 2014-08-13 11:51:39 +08:00			`spawn = require('child_process').spawn,`
update 2014-08-11 16:43:14 +08:00			`path = require("path"),`
			`fs = require("fs"),`
			`os = require("os"),`
add bin.js 2014-08-13 11:51:39 +08:00			`color = require('colorful'),`
can be used as a node module 2014-08-14 10:59:49 +08:00			`readline = require('readline'),`
userHome default rule 2014-09-06 09:50:49 +08:00			`util = require('./util'),`
update doc ,ready to push to npm 2014-08-13 17:30:16 +08:00			`asyncTask = require("async-task-mgr");`
update 2014-08-11 16:43:14 +08:00
update flat-style ui 2014-12-08 17:13:41 +08:00			`//TODO : unstable in windows`
userHome default rule 2014-09-06 09:50:49 +08:00			`var certDir = path.join(util.getUserHome(),"/.anyproxy_certs/"),`
fix dirname 2014-08-13 13:52:31 +08:00			`cmdDir = path.join(__dirname,"..","./cert/"),`
fix cert issue 2014-09-12 10:28:39 +08:00			`cmd_genRoot = path.join(cmdDir,"./gen-rootCA"),`
			`cmd_genCert = path.join(cmdDir,"./gen-cer"),`
add bin.js 2014-08-13 11:51:39 +08:00			`asyncTaskMgr = new asyncTask();`
update 2014-08-11 16:43:14 +08:00
fix cert issue 2014-09-12 10:28:39 +08:00			`if(!fs.existsSync(certDir)){`
update doc, bugfix for certMgr 2014-11-13 10:05:56 +08:00			`try{`
			`fs.mkdirSync(certDir,0777); //may fail in windows`
			`}catch(e){`
			`console.log("===========");`
			`console.log("failed to create cert dir ,please create one by yourself - " + certDir);`
			`console.log("this error will not block main thread unless you use https-related features in anyproxy");`
			`console.log("===========");`
			`}`
update 2014-08-11 16:43:14 +08:00			`}`

			`function getCertificate(hostname,cb){`
			`var keyFile = path.join(certDir , "__hostname.key".replace(/__hostname/,hostname) ),`
			`crtFile = path.join(certDir , "__hostname.crt".replace(/__hostname/,hostname) );`

			`if(!fs.existsSync(keyFile) \|\| !fs.existsSync(crtFile)){`
update doc ,ready to push to npm 2014-08-13 17:30:16 +08:00			`asyncTaskMgr.addTask(hostname,function(cb){`
			`createCert(hostname,function(err){`
			`cb(err ? err : null);`
			`});`
			`},function(err){`
update 2014-08-11 16:43:14 +08:00			`if(!err){`
			`cb(null , fs.readFileSync(keyFile) , fs.readFileSync(crtFile) );`
			`}else{`
			`cb(err);`
			`}`
			`});`

			`}else{`
			`cb(null , fs.readFileSync(keyFile) , fs.readFileSync(crtFile) );`
			`}`
			`}`

			`function createCert(hostname,callback){`
add bin.js 2014-08-13 11:51:39 +08:00			`checkRootCA();`
update 2014-08-11 16:43:14 +08:00
fix cert issue 2014-09-12 10:28:39 +08:00			`var cmd = cmd_genCert + " __host __path".replace(/__host/,hostname).replace(/__path/,certDir);`
			`exec(cmd,{ cwd : certDir },function(err,stdout,stderr){`
update 2014-08-11 16:43:14 +08:00			`if(err){`
			`callback && callback(new Error("error when generating certificate"),null);`
			`}else{`
add bin.js 2014-08-13 11:51:39 +08:00			`var tipText = "certificate created for __HOST".replace(/__HOST/,hostname);`
			`console.log(color.yellow(color.bold("[internal https]")) + color.yellow(tipText));`
update 2014-08-11 16:43:14 +08:00			`callback(null);`
			`}`
			`});`
			`}`

			`function clearCerts(cb){`
			`exec("rm .key .csr *.crt",{cwd : certDir},cb);`
			`}`

can be used as a node module 2014-08-14 10:59:49 +08:00			`function isRootCAFileExists(){`
fix cert issue 2014-09-12 10:28:39 +08:00			`var crtFile = path.join(certDir,"rootCA.crt"),`
			`keyFile = path.join(certDir,"rootCA.key");`
can be used as a node module 2014-08-14 10:59:49 +08:00
			`return (fs.existsSync(crtFile) && fs.existsSync(keyFile));`
			`}`
add bin.js 2014-08-13 11:51:39 +08:00
can be used as a node module 2014-08-14 10:59:49 +08:00			`function checkRootCA(){`
			`if(!isRootCAFileExists()){`
add bin.js 2014-08-13 11:51:39 +08:00			`console.log(color.red("can not find rootCA.crt or rootCA.key"));`
can be used as a node module 2014-08-14 10:59:49 +08:00			`console.log(color.red("you may generate one by the following methods"));`
add download link for rootCA.crt, bugfix 2014-11-06 13:55:43 +08:00			`console.log(color.red("\twhen using globally : anyproxy --root"));`
can be used as a node module 2014-08-14 10:59:49 +08:00			`console.log(color.red("\twhen using as a module : require(\"anyproxy\").generateRootCA();"));`
			`process.exit(0);`
add bin.js 2014-08-13 11:51:39 +08:00			`}`
			`}`

			`function generateRootCA(){`
can be used as a node module 2014-08-14 10:59:49 +08:00			`if(isRootCAFileExists()){`
fix cert issue 2014-09-12 10:28:39 +08:00			`console.log(color.yellow("rootCA exists at " + certDir));`
can be used as a node module 2014-08-14 10:59:49 +08:00			`var rl = readline.createInterface({`
fix cert issue 2014-09-12 10:28:39 +08:00			`input : process.stdin,`
can be used as a node module 2014-08-14 10:59:49 +08:00			`output: process.stdout`
			`});`

			`rl.question("do you really want to generate a new one ?)(yes/NO)", function(answer) {`
			`if(/yes/i.test(answer)){`
			`startGenerating();`
			`}else{`
			`console.log("will not generate a new one");`
add bin.js 2014-08-13 11:51:39 +08:00			`process.exit(0);`
can be used as a node module 2014-08-14 10:59:49 +08:00			`}`

			`rl.close();`
			`});`
			`}else{`
			`startGenerating();`
			`}`

			`function startGenerating(){`
fix cert issue 2014-09-12 10:28:39 +08:00			`//clear old certs`
			`clearCerts(function(){`
			`console.log(color.green("temp certs cleared"));`

			`var spawnSteam = spawn(cmd_genRoot,['.'],{cwd:certDir,stdio: 'inherit'});`
			`spawnSteam.on('close', function (code) {`
			`if(code == 0){`
			`console.log(color.green("rootCA generated"));`
			`console.log(color.green(color.bold("please trust the rootCA.crt in " + certDir)));`
add download link for rootCA.crt, bugfix 2014-11-06 13:55:43 +08:00			`console.log(color.green(color.bold("or you may get it via anyproxy webinterface")));`
can be used as a node module 2014-08-14 10:59:49 +08:00			`process.exit(0);`
fix cert issue 2014-09-12 10:28:39 +08:00			`}else{`
			`console.log(color.red("fail to generate root CA"));`
			`}`
			`});`

can be used as a node module 2014-08-14 10:59:49 +08:00			`});`
			`}`
add bin.js 2014-08-13 11:51:39 +08:00			`}`

add download link for rootCA.crt, bugfix 2014-11-06 13:55:43 +08:00
			`function getRootCAFilePath(){`
			`if(isRootCAFileExists()){`
			`return path.join(certDir,"rootCA.crt");`
			`}else{`
			`return "";`
			`}`
			`}`

			`module.exports.getRootCAFilePath = getRootCAFilePath;`
can be used as a node module 2014-08-14 10:59:49 +08:00			`module.exports.generateRootCA = generateRootCA;`
			`module.exports.getCertificate = getCertificate;`
			`module.exports.createCert = createCert;`
			`module.exports.clearCerts = clearCerts;`
			`module.exports.isRootCAFileExists = isRootCAFileExists;`