Added certificate and private key to server example. Enable error strings, server side code and remove slow sha option for Arduino.

2019-01-14 14:04:44 -08:00 · 2019-01-14 14:04:44 -08:00 · bb74dca6e7
commit bb74dca6e7
parent 809fed8f05
3 changed files with 31 additions and 9 deletions
--- a/IDE/ARDUINO/sketches/wolfssl_client/wolfssl_client.ino
+++ b/IDE/ARDUINO/sketches/wolfssl_client/wolfssl_client.ino
@ -33,11 +33,12 @@ int reconnect = 10;

 EthernetClient client;

-WOLFSSL_CTX* ctx = 0;
-WOLFSSL* ssl = 0;
-WOLFSSL_METHOD* method = 0;
+WOLFSSL_CTX* ctx = NULL;
+WOLFSSL* ssl = NULL;

 void setup() {
+  WOLFSSL_METHOD* method;
+
  Serial.begin(9600);

  method = wolfTLSv1_2_client_method();
--- a/IDE/ARDUINO/sketches/wolfssl_server/wolfssl_server.ino
+++ b/IDE/ARDUINO/sketches/wolfssl_server/wolfssl_server.ino
@ -24,6 +24,13 @@
 #include <wolfssl/ssl.h>
 #include <Ethernet.h>

+#define USE_CERT_BUFFERS_256
+#include <wolfssl/certs_test.h>
+
+#ifdef NO_WOLFSSL_SERVER
+  #error Please undefine NO_WOLFSSL_SERVER for this example
+#endif
+
 const int port = 11111; // port to listen on

 int EthernetSend(WOLFSSL* ssl, char* msg, int sz, void* ctx);
@ -32,11 +39,13 @@ int EthernetReceive(WOLFSSL* ssl, char* reply, int sz, void* ctx);
 EthernetServer server(port);
 EthernetClient client;

-WOLFSSL_CTX* ctx = 0;
-WOLFSSL* ssl = 0;
-WOLFSSL_METHOD* method = 0;
+WOLFSSL_CTX* ctx = NULL;
+WOLFSSL* ssl = NULL;

 void setup() {
+  int err;
+  WOLFSSL_METHOD* method;
+
  Serial.begin(9600);

  method = wolfTLSv1_2_server_method();
@ -49,11 +58,26 @@ void setup() {
    Serial.println("unable to get ctx");
    return;
  }
+
  // initialize wolfSSL using callback functions
  wolfSSL_CTX_set_verify(ctx, SSL_VERIFY_NONE, 0);
  wolfSSL_SetIOSend(ctx, EthernetSend);
  wolfSSL_SetIORecv(ctx, EthernetReceive);

+  // setup the private key and certificate
+  err = wolfSSL_CTX_use_PrivateKey_buffer(ctx, ecc_key_der_256, 
+    sizeof_ecc_key_der_256, WOLFSSL_FILETYPE_ASN1);
+  if (err != WOLFSSL_SUCCESS) {
+    Serial.println("error setting key");
+    return;
+  }
+  err = wolfSSL_CTX_use_certificate_buffer(ctx, serv_ecc_der_256, 
+    sizeof_serv_ecc_der_256, WOLFSSL_FILETYPE_ASN1);
+  if (err != WOLFSSL_SUCCESS) {
+    Serial.println("error setting certificate");
+    return;
+  }
+
  // Start the server
  server.begin();
  
--- a/wolfssl/wolfcrypt/settings.h
+++ b/wolfssl/wolfcrypt/settings.h
@ -427,9 +427,6 @@
    #define HAVE_ECC
    #define NO_DH
    #define NO_SESSION_CACHE
-    #define USE_SLOW_SHA
-    #define NO_WOLFSSL_SERVER
-    #define NO_ERROR_STRINGS
 #endif