wolfssl/examples/echoserver/echoserver.c

340 lines
9.6 KiB
C
Raw Normal View History

2011-07-27 00:27:22 +04:00
/* echoserver.c
*
2013-02-06 00:44:17 +04:00
* Copyright (C) 2006-2013 wolfSSL Inc.
2011-07-27 00:27:22 +04:00
*
* This file is part of CyaSSL.
*
* CyaSSL is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* CyaSSL is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA
*/
2011-02-05 22:14:47 +03:00
#ifdef HAVE_CONFIG_H
#include <config.h>
#endif
#include <cyassl/ssl.h>
2011-08-26 01:28:57 +04:00
#include <cyassl/test.h>
2011-02-05 22:14:47 +03:00
#ifndef NO_MAIN_DRIVER
#define ECHO_OUT
#endif
#include "examples/echoserver/echoserver.h"
2011-02-05 22:14:47 +03:00
#ifdef SESSION_STATS
CYASSL_API void PrintSessionStats(void);
2011-02-05 22:14:47 +03:00
#endif
static void SignalReady(void* args)
{
#if defined(_POSIX_THREADS) && defined(NO_MAIN_DRIVER)
/* signal ready to tcp_accept */
func_args* server_args = (func_args*)args;
tcp_ready* ready = server_args->signal;
pthread_mutex_lock(&ready->mutex);
ready->ready = 1;
pthread_cond_signal(&ready->cond);
pthread_mutex_unlock(&ready->mutex);
#endif
2012-09-21 02:39:15 +04:00
(void)args;
2011-02-05 22:14:47 +03:00
}
THREAD_RETURN CYASSL_THREAD echoserver_test(void* args)
2011-02-05 22:14:47 +03:00
{
SOCKET_T sockfd = 0;
CYASSL_METHOD* method = 0;
CYASSL_CTX* ctx = 0;
2011-02-05 22:14:47 +03:00
int doDTLS = 0;
2013-03-12 00:19:43 +04:00
int doPSK = 0;
2011-02-05 22:14:47 +03:00
int outCreated = 0;
2012-09-21 02:39:15 +04:00
int shutDown = 0;
int useAnyAddr = 0;
2011-02-05 22:14:47 +03:00
int argc = ((func_args*)args)->argc;
char** argv = ((func_args*)args)->argv;
#ifdef ECHO_OUT
FILE* fout = stdout;
if (argc >= 2) {
fout = fopen(argv[1], "w");
outCreated = 1;
}
if (!fout) err_sys("can't open output file");
#endif
2012-09-21 02:39:15 +04:00
(void)outCreated;
(void)argc;
(void)argv;
2011-02-05 22:14:47 +03:00
((func_args*)args)->return_code = -1; /* error state */
#ifdef CYASSL_DTLS
doDTLS = 1;
#endif
2012-10-30 23:51:14 +04:00
#ifdef CYASSL_LEANPSK
2013-03-12 00:19:43 +04:00
doPSK = 1;
#endif
#if defined(NO_RSA) && !defined(HAVE_ECC)
doPSK = 1;
2012-10-30 23:51:14 +04:00
#endif
tcp_listen(&sockfd, yasslPort, useAnyAddr, doDTLS);
2011-02-05 22:14:47 +03:00
#if defined(CYASSL_DTLS)
method = CyaDTLSv1_server_method();
2011-02-05 22:14:47 +03:00
#elif !defined(NO_TLS)
method = CyaSSLv23_server_method();
2011-02-05 22:14:47 +03:00
#else
method = CyaSSLv3_server_method();
2011-02-05 22:14:47 +03:00
#endif
ctx = CyaSSL_CTX_new(method);
/* CyaSSL_CTX_set_session_cache_mode(ctx, SSL_SESS_CACHE_OFF); */
2011-02-05 22:14:47 +03:00
#ifdef OPENSSL_EXTRA
CyaSSL_CTX_set_default_passwd_cb(ctx, PasswordCallBack);
2011-02-05 22:14:47 +03:00
#endif
#ifndef NO_FILESYSTEM
2013-03-12 00:19:43 +04:00
if (doPSK == 0) {
2011-02-05 22:14:47 +03:00
#ifdef HAVE_NTRU
/* ntru */
if (CyaSSL_CTX_use_certificate_file(ctx, ntruCert, SSL_FILETYPE_PEM)
2011-02-05 22:14:47 +03:00
!= SSL_SUCCESS)
err_sys("can't load ntru cert file, "
"Please run from CyaSSL home dir");
2011-02-05 22:14:47 +03:00
if (CyaSSL_CTX_use_NTRUPrivateKey_file(ctx, ntruKey)
!= SSL_SUCCESS)
err_sys("can't load ntru key file, "
"Please run from CyaSSL home dir");
2012-09-21 02:39:15 +04:00
#elif defined(HAVE_ECC)
2011-02-05 22:14:47 +03:00
/* ecc */
if (CyaSSL_CTX_use_certificate_file(ctx, eccCert, SSL_FILETYPE_PEM)
2011-02-05 22:14:47 +03:00
!= SSL_SUCCESS)
err_sys("can't load server cert file, "
"Please run from CyaSSL home dir");
2011-02-05 22:14:47 +03:00
if (CyaSSL_CTX_use_PrivateKey_file(ctx, eccKey, SSL_FILETYPE_PEM)
2011-02-05 22:14:47 +03:00
!= SSL_SUCCESS)
err_sys("can't load server key file, "
"Please run from CyaSSL home dir");
#elif defined(NO_CERTS)
/* do nothing, just don't load cert files */
2011-02-05 22:14:47 +03:00
#else
/* normal */
if (CyaSSL_CTX_use_certificate_file(ctx, svrCert, SSL_FILETYPE_PEM)
2011-02-05 22:14:47 +03:00
!= SSL_SUCCESS)
err_sys("can't load server cert file, "
"Please run from CyaSSL home dir");
2011-02-05 22:14:47 +03:00
if (CyaSSL_CTX_use_PrivateKey_file(ctx, svrKey, SSL_FILETYPE_PEM)
2011-02-05 22:14:47 +03:00
!= SSL_SUCCESS)
err_sys("can't load server key file, "
"Please run from CyaSSL home dir");
2011-02-05 22:14:47 +03:00
#endif
2013-03-12 00:19:43 +04:00
} /* doPSK */
#elif !defined(NO_CERTS)
2013-03-12 00:19:43 +04:00
if (!doPSK) {
2012-10-30 23:51:14 +04:00
load_buffer(ctx, svrCert, CYASSL_CERT);
load_buffer(ctx, svrKey, CYASSL_KEY);
}
2011-02-05 22:14:47 +03:00
#endif
#if defined(CYASSL_SNIFFER) && !defined(HAVE_NTRU) && !defined(HAVE_ECC)
/* don't use EDH, can't sniff tmp keys */
CyaSSL_CTX_set_cipher_list(ctx, "AES256-SHA");
#endif
2013-03-12 00:19:43 +04:00
if (doPSK) {
#ifndef NO_PSK
const char *defaultCipherList;
2012-10-30 23:51:14 +04:00
CyaSSL_CTX_set_psk_server_callback(ctx, my_psk_server_cb);
2013-03-12 00:19:43 +04:00
CyaSSL_CTX_use_psk_identity_hint(ctx, "cyassl server");
#ifdef HAVE_NULL_CIPHER
defaultCipherList = "PSK-NULL-SHA256";
#else
defaultCipherList = "PSK-AES128-CBC-SHA256";
#endif
if (CyaSSL_CTX_set_cipher_list(ctx, defaultCipherList) != SSL_SUCCESS)
err_sys("server can't set cipher list 2");
2012-10-30 23:51:14 +04:00
#endif
}
2011-02-05 22:14:47 +03:00
SignalReady(args);
2012-09-21 02:39:15 +04:00
while (!shutDown) {
CYASSL* ssl = 0;
char command[1024+1];
int echoSz = 0;
int clientfd;
int firstRead = 1;
int gotFirstG = 0;
2011-02-05 22:14:47 +03:00
#ifndef CYASSL_DTLS
SOCKADDR_IN_T client;
socklen_t client_len = sizeof(client);
clientfd = accept(sockfd, (struct sockaddr*)&client,
(ACCEPT_THIRD_T)&client_len);
#else
clientfd = udp_read_connect(sockfd);
#endif
if (clientfd == -1) err_sys("tcp accept failed");
ssl = CyaSSL_new(ctx);
2011-02-05 22:14:47 +03:00
if (ssl == NULL) err_sys("SSL_new failed");
CyaSSL_set_fd(ssl, clientfd);
2011-11-02 03:17:45 +04:00
#if !defined(NO_FILESYSTEM) && defined(OPENSSL_EXTRA)
CyaSSL_SetTmpDH_file(ssl, dhParam, SSL_FILETYPE_PEM);
#elif !defined(NO_CERTS)
2011-11-02 03:17:45 +04:00
SetDH(ssl); /* will repick suites with DHE, higher than PSK */
#endif
if (CyaSSL_accept(ssl) != SSL_SUCCESS) {
printf("SSL_accept failed\n");
CyaSSL_free(ssl);
2011-02-05 22:14:47 +03:00
CloseSocket(clientfd);
continue;
}
#if defined(PEER_INFO)
showPeer(ssl);
#endif
2011-02-05 22:14:47 +03:00
while ( (echoSz = CyaSSL_read(ssl, command, sizeof(command)-1)) > 0) {
if (firstRead == 1) {
firstRead = 0; /* browser may send 1 byte 'G' to start */
if (echoSz == 1 && command[0] == 'G') {
gotFirstG = 1;
continue;
}
}
else if (gotFirstG == 1 && strncmp(command, "ET /", 4) == 0) {
strncpy(command, "GET", 4);
/* fall through to normal GET */
}
2011-02-05 22:14:47 +03:00
if ( strncmp(command, "quit", 4) == 0) {
printf("client sent quit command: shutting down!\n");
2012-09-21 02:39:15 +04:00
shutDown = 1;
2011-02-05 22:14:47 +03:00
break;
}
if ( strncmp(command, "break", 5) == 0) {
printf("client sent break command: closing session!\n");
break;
}
#ifdef SESSION_STATS
if ( strncmp(command, "printstats", 10) == 0) {
PrintSessionStats();
break;
}
#endif
if ( strncmp(command, "GET", 3) == 0) {
char type[] = "HTTP/1.0 200 ok\r\nContent-type:"
" text/html\r\n\r\n";
char header[] = "<html><body BGCOLOR=\"#ffffff\">\n<pre>\n";
char body[] = "greetings from CyaSSL\n";
char footer[] = "</body></html>\r\n\r\n";
strncpy(command, type, sizeof(type));
echoSz = sizeof(type) - 1;
strncpy(&command[echoSz], header, sizeof(header));
echoSz += (int)sizeof(header) - 1;
2011-02-05 22:14:47 +03:00
strncpy(&command[echoSz], body, sizeof(body));
echoSz += (int)sizeof(body) - 1;
2011-02-05 22:14:47 +03:00
strncpy(&command[echoSz], footer, sizeof(footer));
echoSz += (int)sizeof(footer);
2011-02-05 22:14:47 +03:00
if (CyaSSL_write(ssl, command, echoSz) != echoSz)
2011-02-05 22:14:47 +03:00
err_sys("SSL_write failed");
break;
}
command[echoSz] = 0;
#ifdef ECHO_OUT
fputs(command, fout);
#endif
if (CyaSSL_write(ssl, command, echoSz) != echoSz)
2011-02-05 22:14:47 +03:00
err_sys("SSL_write failed");
}
#ifndef CYASSL_DTLS
CyaSSL_shutdown(ssl);
2011-02-05 22:14:47 +03:00
#endif
CyaSSL_free(ssl);
2011-02-05 22:14:47 +03:00
CloseSocket(clientfd);
#ifdef CYASSL_DTLS
tcp_listen(&sockfd, yasslPort, useAnyAddr, doDTLS);
2011-02-05 22:14:47 +03:00
SignalReady(args);
#endif
}
CloseSocket(sockfd);
CyaSSL_CTX_free(ctx);
2011-02-05 22:14:47 +03:00
#ifdef ECHO_OUT
if (outCreated)
fclose(fout);
#endif
((func_args*)args)->return_code = 0;
return 0;
}
/* so overall tests can pull in test function */
#ifndef NO_MAIN_DRIVER
int main(int argc, char** argv)
{
func_args args;
#ifdef HAVE_CAVIUM
int ret = OpenNitroxDevice(CAVIUM_DIRECT, CAVIUM_DEV_ID);
if (ret != 0)
err_sys("Cavium OpenNitroxDevice failed");
#endif /* HAVE_CAVIUM */
2011-02-05 22:14:47 +03:00
StartTCP();
args.argc = argc;
args.argv = argv;
CyaSSL_Init();
2011-02-05 22:14:47 +03:00
#ifdef DEBUG_CYASSL
CyaSSL_Debugging_ON();
#endif
2011-09-26 03:35:54 +04:00
if (CurrentDir("echoserver") || CurrentDir("build"))
ChangeDirBack(2);
2011-02-05 22:14:47 +03:00
echoserver_test(&args);
CyaSSL_Cleanup();
2011-02-05 22:14:47 +03:00
#ifdef HAVE_CAVIUM
CspShutdown(CAVIUM_DEV_ID);
#endif
2011-02-05 22:14:47 +03:00
return args.return_code;
}
2012-08-03 00:41:40 +04:00
int myoptind = 0;
char* myoptarg = NULL;
2011-02-05 22:14:47 +03:00
#endif /* NO_MAIN_DRIVER */