| skipped 4 lines |
5 | 5 | | "fmt" |
6 | 6 | | "io" |
7 | 7 | | "time" |
| 8 | + | "crypto/tls" |
| 9 | + | "crypto/x509" |
| 10 | + | "io/ioutil" |
8 | 11 | | |
9 | 12 | | "bitbucket.org/liamstask/goose/lib/goose" |
10 | 13 | | |
11 | | - | _ "github.com/go-sql-driver/mysql" // Blank import needed to import mysql |
| 14 | + | mysql "github.com/go-sql-driver/mysql" |
12 | 15 | | "github.com/gophish/gophish/config" |
13 | 16 | | log "github.com/gophish/gophish/logger" |
14 | 17 | | "github.com/jinzhu/gorm" |
| skipped 81 lines |
96 | 99 | | log.Error(err) |
97 | 100 | | return err |
98 | 101 | | } |
| 102 | + | |
| 103 | + | // Register certificates for tls encrypted db connections |
| 104 | + | if conf.DBSSLCaPath != "" { |
| 105 | + | switch conf.DBName { |
| 106 | + | case "mysql": |
| 107 | + | rootCertPool := x509.NewCertPool() |
| 108 | + | pem, err := ioutil.ReadFile(conf.DBSSLCaPath) |
| 109 | + | if err != nil { |
| 110 | + | log.Error(err) |
| 111 | + | return err |
| 112 | + | } |
| 113 | + | if ok := rootCertPool.AppendCertsFromPEM(pem); !ok { |
| 114 | + | log.Error("Failed to append PEM.") |
| 115 | + | return err |
| 116 | + | } |
| 117 | + | mysql.RegisterTLSConfig("ssl_ca", &tls.Config{ |
| 118 | + | RootCAs: rootCertPool, |
| 119 | + | }) |
| 120 | + | // Default database is sqlite3, which supports no tls, as connection |
| 121 | + | // is file based |
| 122 | + | default: |
| 123 | + | } |
| 124 | + | } |
| 125 | + | |
99 | 126 | | // Open our database connection |
100 | 127 | | i := 0 |
101 | 128 | | for { |
| skipped 50 lines |