nuclei/v2/pkg/protocols/utils/utils.go

package utils

import (
	"crypto/tls"
	"crypto/x509"
	"os"
	"strings"

	"github.com/projectdiscovery/nuclei/v2/pkg/types"
)

// CleanStructFieldJSONTag cleans struct json tag field
func CleanStructFieldJSONTag(tag string) string {
	return strings.TrimSuffix(strings.TrimSuffix(tag, ",omitempty"), ",inline")
}

// AddConfiguredClientCertToRequest adds the client certificate authentication to the tls.Config object and returns it
func AddConfiguredClientCertToRequest(tlsConfig *tls.Config, options *types.Options) (*tls.Config, error) {
	// Build the TLS config with the client certificate if it has been configured with the appropriate options.
	// Only one of the options needs to be checked since the validation checks in main.go ensure that all three
	// files are set if any of the client certification configuration options are.
	if len(options.ClientCertFile) > 0 {
		// Load the client certificate using the PEM encoded client certificate and the private key file
		cert, err := tls.LoadX509KeyPair(options.ClientCertFile, options.ClientKeyFile)
		if err != nil {
			return nil, err
		}
		tlsConfig.Certificates = []tls.Certificate{cert}

		// Load the certificate authority PEM certificate into the TLS configuration
		caCert, err := os.ReadFile(options.ClientCAFile)
		if err != nil {
			return nil, err
		}
		caCertPool := x509.NewCertPool()
		caCertPool.AppendCertsFromPEM(caCert)
		tlsConfig.RootCAs = caCertPool
	}
	return tlsConfig, nil
}
Switch logic to a shared package 2021-10-27 12:11:42 -04:00			`package utils`

			`import (`
			`"crypto/tls"`
			`"crypto/x509"`
Refactoring file templates to handle large files in chunks + removing deprecated io methods 2022-02-23 13:54:46 +01:00			`"os"`
Added tlsx integration to nuclei (#2522) * Added tlsx integration to nuclei * tls tests fix * Added helper functions + upgrade tlsx to fix * go mod update * workflow fix to race test on windows Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2022-09-01 23:56:55 +05:30			`"strings"`
Improving error handling in client certificate library (#1237) 2021-11-10 18:12:49 +01:00
			`"github.com/projectdiscovery/nuclei/v2/pkg/types"`
Switch logic to a shared package 2021-10-27 12:11:42 -04:00			`)`

Added tlsx integration to nuclei (#2522) * Added tlsx integration to nuclei * tls tests fix * Added helper functions + upgrade tlsx to fix * go mod update * workflow fix to race test on windows Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2022-09-01 23:56:55 +05:30			`// CleanStructFieldJSONTag cleans struct json tag field`
			`func CleanStructFieldJSONTag(tag string) string {`
			`return strings.TrimSuffix(strings.TrimSuffix(tag, ",omitempty"), ",inline")`
			`}`

Switch logic to a shared package 2021-10-27 12:11:42 -04:00			`// AddConfiguredClientCertToRequest adds the client certificate authentication to the tls.Config object and returns it`
Improving error handling in client certificate library (#1237) 2021-11-10 18:12:49 +01:00			`func AddConfiguredClientCertToRequest(tlsConfig tls.Config, options types.Options) (*tls.Config, error) {`
Switch logic to a shared package 2021-10-27 12:11:42 -04:00			`// Build the TLS config with the client certificate if it has been configured with the appropriate options.`
			`// Only one of the options needs to be checked since the validation checks in main.go ensure that all three`
			`// files are set if any of the client certification configuration options are.`
			`if len(options.ClientCertFile) > 0 {`
			`// Load the client certificate using the PEM encoded client certificate and the private key file`
			`cert, err := tls.LoadX509KeyPair(options.ClientCertFile, options.ClientKeyFile)`
			`if err != nil {`
Improving error handling in client certificate library (#1237) 2021-11-10 18:12:49 +01:00			`return nil, err`
Switch logic to a shared package 2021-10-27 12:11:42 -04:00			`}`
			`tlsConfig.Certificates = []tls.Certificate{cert}`

			`// Load the certificate authority PEM certificate into the TLS configuration`
Refactoring file templates to handle large files in chunks + removing deprecated io methods 2022-02-23 13:54:46 +01:00			`caCert, err := os.ReadFile(options.ClientCAFile)`
Switch logic to a shared package 2021-10-27 12:11:42 -04:00			`if err != nil {`
Improving error handling in client certificate library (#1237) 2021-11-10 18:12:49 +01:00			`return nil, err`
Switch logic to a shared package 2021-10-27 12:11:42 -04:00			`}`
			`caCertPool := x509.NewCertPool()`
			`caCertPool.AppendCertsFromPEM(caCert)`
			`tlsConfig.RootCAs = caCertPool`
			`}`
Improving error handling in client certificate library (#1237) 2021-11-10 18:12:49 +01:00			`return tlsConfig, nil`
Switch logic to a shared package 2021-10-27 12:11:42 -04:00			`}`