| skipped 4 lines |
| 5 | 5 | | "fmt" |
| 6 | 6 | | "io" |
| 7 | 7 | | "time" |
| | 8 | + | "crypto/tls" |
| | 9 | + | "crypto/x509" |
| | 10 | + | "io/ioutil" |
| 8 | 11 | | |
| 9 | 12 | | "bitbucket.org/liamstask/goose/lib/goose" |
| 10 | 13 | | |
| 11 | | - | _ "github.com/go-sql-driver/mysql" // Blank import needed to import mysql |
| | 14 | + | mysql "github.com/go-sql-driver/mysql" |
| 12 | 15 | | "github.com/gophish/gophish/config" |
| 13 | 16 | | log "github.com/gophish/gophish/logger" |
| 14 | 17 | | "github.com/jinzhu/gorm" |
| skipped 81 lines |
| 96 | 99 | | log.Error(err) |
| 97 | 100 | | return err |
| 98 | 101 | | } |
| | 102 | + | |
| | 103 | + | // Register certificates for tls encrypted db connections |
| | 104 | + | if conf.DBSSLCaPath != "" { |
| | 105 | + | switch conf.DBName { |
| | 106 | + | case "mysql": |
| | 107 | + | rootCertPool := x509.NewCertPool() |
| | 108 | + | pem, err := ioutil.ReadFile(conf.DBSSLCaPath) |
| | 109 | + | if err != nil { |
| | 110 | + | log.Error(err) |
| | 111 | + | return err |
| | 112 | + | } |
| | 113 | + | if ok := rootCertPool.AppendCertsFromPEM(pem); !ok { |
| | 114 | + | log.Error("Failed to append PEM.") |
| | 115 | + | return err |
| | 116 | + | } |
| | 117 | + | mysql.RegisterTLSConfig("ssl_ca", &tls.Config{ |
| | 118 | + | RootCAs: rootCertPool, |
| | 119 | + | }) |
| | 120 | + | // Default database is sqlite3, which supports no tls, as connection |
| | 121 | + | // is file based |
| | 122 | + | default: |
| | 123 | + | } |
| | 124 | + | } |
| | 125 | + | |
| 99 | 126 | | // Open our database connection |
| 100 | 127 | | i := 0 |
| 101 | 128 | | for { |
| skipped 50 lines |
Christian Schwartz
committed
with
Jordan Wright
5 years ago
1 parent a1a2de13