From 51bf46288bbb013f79547e21b42f4b985e71fbd0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Moise=CC=81s=20Guimara=CC=83es?= <moises@wolfssl.com>
Date: Wed, 18 Jan 2017 18:18:19 -0200
Subject: [PATCH] adds client example

---
 wrapper/python/wolfssl/examples/client.py | 140 ++++++++++++++++++++++
 wrapper/python/wolfssl/examples/server.py |   4 +-
 2 files changed, 141 insertions(+), 3 deletions(-)
 create mode 100755 wrapper/python/wolfssl/examples/client.py

diff --git a/wrapper/python/wolfssl/examples/client.py b/wrapper/python/wolfssl/examples/client.py
new file mode 100755
index 000000000..33ab063b6
--- /dev/null
+++ b/wrapper/python/wolfssl/examples/client.py
@@ -0,0 +1,140 @@
+#!/usr/bin/env python
+#
+# -*- coding: utf-8 -*-
+#
+# client.py
+#
+# Copyright (C) 2006-2017 wolfSSL Inc.
+#
+# This file is part of wolfSSL. (formerly known as CyaSSL)
+#
+# wolfSSL is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# wolfSSL is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA
+
+# pylint: disable=missing-docstring, invalid-name, import-error
+
+import sys
+import socket
+import argparse
+
+try:
+    import wolfssl
+except ImportError:
+    print("You must run 'python setup.py install' to use the examples")
+    sys.exit()
+
+def build_arg_parser():
+    parser = argparse.ArgumentParser(add_help=False)
+
+    parser.add_argument(
+        "-?", "--help", action="help",
+        help="show this help message and exit"
+    )
+
+    parser.add_argument(
+        "-h", metavar="host", default="127.0.0.1",
+        help="Host to connect to, default 127.0.0.1"
+    )
+
+    parser.add_argument(
+        "-p", metavar="port", type=int, default=11111,
+        help="Port to connect on, not 0, default 11111"
+    )
+
+    parser.add_argument(
+        "-v", metavar="version", type=int, choices=[0, 1, 2, 3], default=3,
+        help="SSL version [0-3], SSLv3(0) - TLS1.2(3)), default 3"
+    )
+
+    parser.add_argument(
+        "-l", metavar="ciphers", type=str, default="",
+        help="Cipher suite list (: delimited)"
+    )
+
+    parser.add_argument(
+        "-c", metavar="certificate", default="./certs/client-cert.pem",
+        help="Certificate file,           default ./certs/client-cert.pem"
+    )
+
+    parser.add_argument(
+        "-k", metavar="key", default="./certs/client-key.pem",
+        help="Key file,                   default ./certs/client-key.pem"
+    )
+
+    parser.add_argument(
+        "-A", metavar="ca_file", default="./certs/ca-cert.pem",
+        help="Certificate Authority file, default ./certs/ca-cert.pem"
+    )
+
+    parser.add_argument(
+        "-d", action="store_true",
+        help="Disable client cert check"
+    )
+
+    parser.add_argument(
+        "-g", action="store_true",
+        help="Send server HTTP GET"
+    )
+
+    return parser
+
+
+def get_method(index):
+    return (
+        wolfssl.PROTOCOL_SSLv3,
+        wolfssl.PROTOCOL_TLSv1,
+        wolfssl.PROTOCOL_TLSv1_1,
+        wolfssl.PROTOCOL_TLSv1_2
+    )[index]
+
+
+def main():
+    args = build_arg_parser().parse_args()
+
+    bind_socket = socket.socket(socket.AF_INET, socket.SOCK_STREAM, 0)
+
+    context = wolfssl.SSLContext(get_method(args.v))
+
+    context.load_cert_chain(args.c, args.k)
+
+    if args.d:
+        context.verify_mode = wolfssl.CERT_NONE
+    else:
+        context.verify_mode = wolfssl.CERT_REQUIRED
+        context.load_verify_locations(args.A)
+
+    if args.l:
+        context.set_ciphers(args.l)
+
+    try:
+        secure_socket = context.wrap_socket(bind_socket)
+
+        secure_socket.connect((args.h, args.p))
+
+        if args.g:
+            secure_socket.write(b"GET / HTTP/1.1\n\n")
+        else:
+            secure_socket.write(b"hello wolfssl")
+
+        print("\n", secure_socket.read(), "\n")
+
+    except KeyboardInterrupt:
+        print()
+
+    finally:
+        secure_socket.close()
+
+
+if __name__ == '__main__':
+    main()
diff --git a/wrapper/python/wolfssl/examples/server.py b/wrapper/python/wolfssl/examples/server.py
index 6d4074716..db78afdf6 100755
--- a/wrapper/python/wolfssl/examples/server.py
+++ b/wrapper/python/wolfssl/examples/server.py
@@ -101,9 +101,8 @@ def get_method(index):
 
 def main():
     args = build_arg_parser().parse_args()
-    print(args)
 
-    bind_socket = socket.socket()
+    bind_socket = socket.socket(socket.AF_INET, socket.SOCK_STREAM, 0)
     bind_socket.bind(("" if args.b else "localhost", args.p))
     bind_socket.listen(5)
 
@@ -141,7 +140,6 @@ def main():
 
         finally:
             if secure_socket:
-                secure_socket.shutdown(socket.SHUT_RDWR)
                 secure_socket.close()
 
         if not args.i: