kern: support openssl 3.2.x , change ssl_st to ssl_connection_st

[cfc4n]

feat: #464

add the offset generation script.

[cfc4n]

测试 Tests

类库使用deps/openssl目录的源码，

1. 根目录执行bash utils/openssl_offset_3.2.sh，拉取3.2.0 分支的代码，进入目录，执行./Configure ，再执行make即可，不需要执行make install。
2. 将当前terminal的动态链接库增加openssl 3.2的目录，命令为export LD_LIBRARY_PATH=/home/cfc4n/project/ecapture/deps/openssl
3. 借用issue_463目录下的客户端代码进行测试，编译后生成test_tls_client，使用ldd确认ELF文件使用正确的动态链接库版本。
4. 新开一个Terminal，启动eCapture。
5. 回到之前编译openssl 3.2的Terminal里，执行test_tls_client。
6. 在eCapture的终端里，查看捕获结果。

---

The library uses the source code in the deps/openssl directory.

1. Execute bash utils/openssl_offset_3.2.sh in the root directory to fetch the code from branch 3.2.0. Enter the directory and execute ./Configure, then execute make, no need to execute make install.
2. Add openssl 3.2's directory as a dynamic link library for the current terminal, command is export LD_LIBRARY_PATH=/home/cfc4n/project/ecapture/deps/openssl.
3. Use client code under the directory of issue_463 for testing, compile it to generate test_tls_client, use ldd to confirm that ELF file is using correct version of dynamic link library.
4. Open a new terminal and start eCapture there.
5. Return to previous terminal where openssl 3.2 was compiled, execute test_tls_client.
6. View capture results in eCapture's terminal.

text mode

sudo bin/ecapture tls --libssl=/home/cfc4n/project/ecapture/deps/openssl/libssl.so.3 --ssl_version="openssl 3.2.0"
tls_2024/01/28 13:11:17 ECAPTURE :: ecapture Version : linux_aarch64:0.7.2-20240128-f368e82:[CORE]
tls_2024/01/28 13:11:17 ECAPTURE :: Pid Info : 232993
tls_2024/01/28 13:11:17 ECAPTURE :: Kernel Info : 5.15.131
tls_2024/01/28 13:11:17 EBPFProbeOPENSSL	module initialization
tls_2024/01/28 13:11:17 EBPFProbeOPENSSL	master key keylogger:
tls_2024/01/28 13:11:17 ECAPTURE ::	Module.Run()
tls_2024/01/28 13:11:17 EBPFProbeOPENSSL	Text MODEL
tls_2024/01/28 13:11:17 EBPFProbeOPENSSL	OpenSSL/BoringSSL version: openssl 3.2.0
tls_2024/01/28 13:11:17 EBPFProbeOPENSSL	HOOK type:2, binrayPath:/home/cfc4n/project/ecapture/deps/openssl/libssl.so.3
tls_2024/01/28 13:11:17 EBPFProbeOPENSSL	Hook masterKey function:[SSL_get_wbio SSL_in_before SSL_do_handshake]
tls_2024/01/28 13:11:17 EBPFProbeOPENSSL	libPthread:/lib/aarch64-linux-gnu/libc.so.6
tls_2024/01/28 13:11:17 EBPFProbeOPENSSL	target all process.
tls_2024/01/28 13:11:17 EBPFProbeOPENSSL	target all users.
tls_2024/01/28 13:11:17 EBPFProbeOPENSSL	BPF bytecode filename:user/bytecode/openssl_3_2_0_kern.o
tls_2024/01/28 13:11:17 EBPFProbeOPENSSL	perfEventReader created. mapSize:4 MB
tls_2024/01/28 13:11:17 EBPFProbeOPENSSL	perfEventReader created. mapSize:4 MB
tls_2024/01/28 13:11:17 EBPFProbeOPENSSL	module started successfully.
tls_2024/01/28 13:11:17 ECAPTURE :: 	start 1 modules
tls_2024/01/28 13:13:15 UUID:233406_233406_openssl_client_3_1, Name:HTTPRequest, Type:1, Length:39
tls_2024/01/28 13:13:15
GET / HTTP/1.1
Host: www.cnxct.com


tls_2024/01/28 13:13:15 UUID:233406_233406_openssl_client_3_0, Name:HTTPResponse, Type:3, Length:932
tls_2024/01/28 13:13:15
HTTP/1.1 200 OK
Content-Length: 612
Accept-Ranges: bytes
Connection: keep-alive
Content-Type: text/html
Date: Sun, 28 Jan 2024 13:13:14 GMT
Etag: "65b4d88f-264"
Last-Modified: Sat, 27 Jan 2024 10:18:55 GMT
Server: nginx/1.18.0 (Ubuntu)
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload

<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!</title>
<style>
    body {
        width: 35em;
        margin: 0 auto;
        font-family: Tahoma, Verdana, Arial, sans-serif;
    }
</style>
</head>
<body>
<h1>Welcome to nginx!</h1>
<p>If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.</p>

<p>For online documentation and support please refer to
<a href="http://nginx.org/">nginx.org</a>.<br/>
Commercial support is available at
<a href="http://nginx.com/">nginx.com</a>.</p>

<p><em>Thank you for using nginx.</em></p>
</body>
</html>

^Ctls_2024/01/28 13:13:21 EBPFProbeOPENSSL	close.
tls_2024/01/28 13:13:21 EBPFProbeOPENSSL	close

keylog mode

sudo bin/ecapture tls --libssl=/home/cfc4n/project/ecapture/deps/openssl/libssl.so.3 --ssl_version="openssl 3.2.0" -m keylog
tls_2024/01/28 13:13:25 ECAPTURE :: ecapture Version : linux_aarch64:0.7.2-20240128-f368e82:[CORE]
tls_2024/01/28 13:13:25 ECAPTURE :: Pid Info : 233551
tls_2024/01/28 13:13:25 ECAPTURE :: Kernel Info : 5.15.131
tls_2024/01/28 13:13:25 EBPFProbeOPENSSL	module initialization
tls_2024/01/28 13:13:25 EBPFProbeOPENSSL	master key keylogger: ecapture_openssl_key.og
tls_2024/01/28 13:13:25 ECAPTURE ::	Module.Run()
tls_2024/01/28 13:13:25 EBPFProbeOPENSSL	Keylog MODEL
tls_2024/01/28 13:13:25 EBPFProbeOPENSSL	OpenSSL/BoringSSL version: openssl 3.2.0
tls_2024/01/28 13:13:25 EBPFProbeOPENSSL	HOOK type:2, binrayPath:/home/cfc4n/project/ecapture/deps/openssl/libssl.so.3
tls_2024/01/28 13:13:25 EBPFProbeOPENSSL	Hook masterKey function:[SSL_get_wbio SSL_in_before SSL_do_handshake]
tls_2024/01/28 13:13:25 EBPFProbeOPENSSL	target all process.
tls_2024/01/28 13:13:25 EBPFProbeOPENSSL	target all users.
tls_2024/01/28 13:13:25 EBPFProbeOPENSSL	BPF bytecode filename:user/bytecode/openssl_3_2_0_kern.o
tls_2024/01/28 13:13:26 EBPFProbeOPENSSL	perfEventReader created. mapSize:4 MB
tls_2024/01/28 13:13:26 EBPFProbeOPENSSL	module started successfully.
tls_2024/01/28 13:13:26 ECAPTURE :: 	start 1 modules
tls_2024/01/28 13:13:29 EBPFProbeOPENSSL	TLS1_2_VERSION: save CLIENT_RANDOM 98e7c033008797a9b8c3419841b2a3385be63dfde5f36a957f92f430d9eb2680 to file success, 176 bytes
^Ctls_2024/01/28 13:13:35 EBPFProbeOPENSSL	close.
tls_2024/01/28 13:13:35 EBPFProbeOPENSSL	close

[cfc4n]

reviewed.