Create new NativeFunction and use it then
I am wondering: how can I allow self-signed certs while app using openssl library?
I saw that code which disables certificate validation StackOverflow question/answer hyperlink
static int always_true_callback(X509_STORE_CTX *ctx, void *arg)
{
return 1;
}
This is the method, where I should put this new method, which always returns 1
But I don't have any idea how can I create that method using Frida
What is the proper way of doing this?
Solution
There are many ways to accomplish your goal
TL;DR
var SSL_CTX_set_cert_verify_callback = Module.findExportByName('libssl.so', 'SSL_CTX_set_cert_verify_callback');
Interceptor.attach(SSL_CTX_set_cert_verify_callback, {
onEnter: function(args) {
Interceptor.replace(args[1], new NativeCallback((_arg1, _arg2) => {
return 1;
}, 'int', ['pointer', 'pointer']);
},
});
Hook SSL_CTX_set_cert_verify_callback, once it's called intercept *cb
and replace the return value.
Interceptor.attach(SSL_CTX_set_cert_verify_callback, {
onEnter: function(args) {
Interceptor.attach(args[1]/* *cb */, {
onLeave: function(retval) {
retval.replace(1);
}
});
},
});
replace the bytecode
Interceptor.attach(SSL_CTX_set_cert_verify_callback, {
onEnter: function(args) {
// add a condition so you will patch only once
Memory.patchCode(args[1], 64, code => {
const cw = new Arm64Writer(code, { pc: args[1] });
cw.putMovRegU64('x0', 1);
cw.putRet();
cw.flush();
});
},
});
replace the function with CModule
const cm = new CModule(`
void ret1(void) {
return 1;
}
`);
Interceptor.attach(SSL_CTX_set_cert_verify_callback, {
onEnter: function(args) {
Interceptor.replace(args[1], cm.ret1);
},
});
- Assign multiple values to array in C
- How to compile C code with C headers and CUDA code?
- C program to print the power of 2 Triangle pattern using nested loops
- Issue with interpreting chemical formulae containing multiple levels of parentheses
- Context for dispatch source handler
- How to optimize "don't care" argument with gcc?
- Formatting struct timespec
- Crash or 'segmentation fault' when data is copied/scanned/read to an uninitialized pointer
- Wide character and Locale
- Python extension: using different compiler flags for a C parts and C++ parts
- How to create ECC public key in OpenSSL's "EVP_PKEY" format from the TPM-specific "TPMT_PUBLIC" data structure?
- why does my code in mario more cs50 pset1 print so many hashes for the right pyramid
- How to consider letter by letter of a string and compare them with if functions?
- #ifdef vs #if - which is better/safer as a method for enabling/disabling compilation of particular sections of code?
- #if vs #ifndef vs #ifdef
- What's the purpose of using braces (i.e. {}) for a single-line if or loop?
- Preprocessors in C #if and #ifdef
- How to get "valid data length" of a file?
- Return struct in function in C
- Sizeof operator doesn't work properly after insertion an element
- No previous prototype?
- Passing an array as an argument to a function in C
- Can't find winsock.c or winsock implementation
- Why when flashing my stm32f411re Nucleo board does nothing happen even if I get no errors
- Best practice regarding static library linking and project directory structure in C
- raylib's DrawTextEx doesn't display unicode characters
- named semaphore wont work as assumed in synchronization between process
- How do I set the default launch.json and tasks.json for debugging my C/C++ applications in VS Code
- How to change entry point of C program with gcc?
- Understanding Function Definitions that Return a Function Pointer