tools/doimage_kw2/polarssl/programs/ssl/ssl_client1.c - uboot/prism - Git at Google

 /*
  *  SSL client demonstration program
  *
  *  Based on XySSL: Copyright (C) 2006-2008  Christophe Devine
  *
  *  Copyright (C) 2009  Paul Bakker <polarssl_maintainer at polarssl dot org>
  *
  *  All rights reserved.
  *
  *  Redistribution and use in source and binary forms, with or without
  *  modification, are permitted provided that the following conditions
  *  are met:
  *
  *    * Redistributions of source code must retain the above copyright
  *      notice, this list of conditions and the following disclaimer.
  *    * Redistributions in binary form must reproduce the above copyright
  *      notice, this list of conditions and the following disclaimer in the
  *      documentation and/or other materials provided with the distribution.
  *    * Neither the names of PolarSSL or XySSL nor the names of its contributors
  *      may be used to endorse or promote products derived from this software
  *      without specific prior written permission.
  *
  *  THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
  *  "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
  *  LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
  *  FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
  *  OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
  *  SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
  *  TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
  *  PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
  *  LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
  *  NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
  *  SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
  */

 #ifndef _CRT_SECURE_NO_DEPRECATE
 #define _CRT_SECURE_NO_DEPRECATE 1
 #endif

 #include <string.h>
 #include <stdio.h>

 #include "polarssl/net.h"
 #include "polarssl/ssl.h"
 #include "polarssl/havege.h"

 #define SERVER_PORT 443
 /*
 #define SERVER_NAME "localhost"
 #define GET_REQUEST "GET / HTTP/1.0\r\n\r\n"
 */
 #define SERVER_NAME "polarssl.org"
 #define GET_REQUEST \
     "GET /hello/ HTTP/1.1\r\n" \
     "Host: polarssl.org\r\n\r\n"

 #define DEBUG_LEVEL 0

 void my_debug( void *ctx, int level, char *str )
 {
     if( level < DEBUG_LEVEL )
     {
         fprintf( (FILE *) ctx, "%s", str );
         fflush(  (FILE *) ctx  );
     }
 }

 int main( void )
 {
     int ret, len, server_fd;
     unsigned char buf[1024];
     havege_state hs;
     ssl_context ssl;
     ssl_session ssn;

     /*
      * 0. Initialize the RNG and the session data
      */
     havege_init( &hs );
     memset( &ssn, 0, sizeof( ssl_session ) );

     /*
      * 1. Start the connection
      */
     printf( "\n  . Connecting to tcp/%s/%4d...", SERVER_NAME,
                                                  SERVER_PORT );
     fflush( stdout );

     if( ( ret = net_connect( &server_fd, SERVER_NAME,
                                          SERVER_PORT ) ) != 0 )
     {
         printf( " failed\n  ! net_connect returned %d\n\n", ret );
         goto exit;
     }

     printf( " ok\n" );

     /*
      * 2. Setup stuff
      */
     printf( "  . Setting up the SSL/TLS structure..." );
     fflush( stdout );

     if( ( ret = ssl_init( &ssl ) ) != 0 )
     {
         printf( " failed\n  ! ssl_init returned %d\n\n", ret );
         goto exit;
     }

     printf( " ok\n" );

     ssl_set_endpoint( &ssl, SSL_IS_CLIENT );
     ssl_set_authmode( &ssl, SSL_VERIFY_NONE );

     ssl_set_rng( &ssl, havege_rand, &hs );
     ssl_set_dbg( &ssl, my_debug, stdout );
     ssl_set_bio( &ssl, net_recv, &server_fd,
                        net_send, &server_fd );

     ssl_set_ciphers( &ssl, ssl_default_ciphers );
     ssl_set_session( &ssl, 1, 600, &ssn );

     /*
      * 3. Write the GET request
      */
     printf( "  > Write to server:" );
     fflush( stdout );

     len = sprintf( (char *) buf, GET_REQUEST );

     while( ( ret = ssl_write( &ssl, buf, len ) ) <= 0 )
     {
         if( ret != POLARSSL_ERR_NET_TRY_AGAIN )
         {
             printf( " failed\n  ! ssl_write returned %d\n\n", ret );
             goto exit;
         }
     }

     len = ret;
     printf( " %d bytes written\n\n%s", len, (char *) buf );

     /*
      * 7. Read the HTTP response
      */
     printf( "  < Read from server:" );
     fflush( stdout );

     do
     {
         len = sizeof( buf ) - 1;
         memset( buf, 0, sizeof( buf ) );
         ret = ssl_read( &ssl, buf, len );

         if( ret == POLARSSL_ERR_NET_TRY_AGAIN )
             continue;

         if( ret == POLARSSL_ERR_SSL_PEER_CLOSE_NOTIFY )
             break;

         if( ret <= 0 )
         {
             printf( "failed\n  ! ssl_read returned %d\n\n", ret );
             break;
         }

         len = ret;
         printf( " %d bytes read\n\n%s", len, (char *) buf );
     }
     while( 0 );

     ssl_close_notify( &ssl );

 exit:

     net_close( server_fd );
     ssl_free( &ssl );

     memset( &ssl, 0, sizeof( ssl ) );

 #ifdef WIN32
     printf( "  + Press Enter to exit this program.\n" );
     fflush( stdout ); getchar();
 #endif

     return( ret );
 }
	/*
	* SSL client demonstration program
	*
	* Based on XySSL: Copyright (C) 2006-2008 Christophe Devine
	*
	* Copyright (C) 2009 Paul Bakker <polarssl_maintainer at polarssl dot org>
	*
	* All rights reserved.
	*
	* Redistribution and use in source and binary forms, with or without
	* modification, are permitted provided that the following conditions
	* are met:
	*
	* * Redistributions of source code must retain the above copyright
	* notice, this list of conditions and the following disclaimer.
	* * Redistributions in binary form must reproduce the above copyright
	* notice, this list of conditions and the following disclaimer in the
	* documentation and/or other materials provided with the distribution.
	* * Neither the names of PolarSSL or XySSL nor the names of its contributors
	* may be used to endorse or promote products derived from this software
	* without specific prior written permission.
	*
	* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
	* "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
	* LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
	* FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
	* OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
	* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
	* TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
	* PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
	* LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
	* NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
	* SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
	*/

	#ifndef _CRT_SECURE_NO_DEPRECATE
	#define _CRT_SECURE_NO_DEPRECATE 1
	#endif

	#include <string.h>
	#include <stdio.h>

	#include "polarssl/net.h"
	#include "polarssl/ssl.h"
	#include "polarssl/havege.h"

	#define SERVER_PORT 443
	/*
	#define SERVER_NAME "localhost"
	#define GET_REQUEST "GET / HTTP/1.0\r\n\r\n"
	*/
	#define SERVER_NAME "polarssl.org"
	#define GET_REQUEST \
	"GET /hello/ HTTP/1.1\r\n" \
	"Host: polarssl.org\r\n\r\n"

	#define DEBUG_LEVEL 0

	void my_debug( void ctx, int level, char str )
	{
	if( level < DEBUG_LEVEL )
	{
	fprintf( (FILE *) ctx, "%s", str );
	fflush( (FILE *) ctx );
	}
	}

	int main( void )
	{
	int ret, len, server_fd;
	unsigned char buf[1024];
	havege_state hs;
	ssl_context ssl;
	ssl_session ssn;

	/*
	* 0. Initialize the RNG and the session data
	*/
	havege_init( &hs );
	memset( &ssn, 0, sizeof( ssl_session ) );

	/*
	* 1. Start the connection
	*/
	printf( "\n . Connecting to tcp/%s/%4d...", SERVER_NAME,
	SERVER_PORT );
	fflush( stdout );

	if( ( ret = net_connect( &server_fd, SERVER_NAME,
	SERVER_PORT ) ) != 0 )
	{
	printf( " failed\n ! net_connect returned %d\n\n", ret );
	goto exit;
	}

	printf( " ok\n" );

	/*
	* 2. Setup stuff
	*/
	printf( " . Setting up the SSL/TLS structure..." );
	fflush( stdout );

	if( ( ret = ssl_init( &ssl ) ) != 0 )
	{
	printf( " failed\n ! ssl_init returned %d\n\n", ret );
	goto exit;
	}

	printf( " ok\n" );

	ssl_set_endpoint( &ssl, SSL_IS_CLIENT );
	ssl_set_authmode( &ssl, SSL_VERIFY_NONE );

	ssl_set_rng( &ssl, havege_rand, &hs );
	ssl_set_dbg( &ssl, my_debug, stdout );
	ssl_set_bio( &ssl, net_recv, &server_fd,
	net_send, &server_fd );

	ssl_set_ciphers( &ssl, ssl_default_ciphers );
	ssl_set_session( &ssl, 1, 600, &ssn );

	/*
	* 3. Write the GET request
	*/
	printf( " > Write to server:" );
	fflush( stdout );

	len = sprintf( (char *) buf, GET_REQUEST );

	while( ( ret = ssl_write( &ssl, buf, len ) ) <= 0 )
	{
	if( ret != POLARSSL_ERR_NET_TRY_AGAIN )
	{
	printf( " failed\n ! ssl_write returned %d\n\n", ret );
	goto exit;
	}
	}

	len = ret;
	printf( " %d bytes written\n\n%s", len, (char *) buf );

	/*
	* 7. Read the HTTP response
	*/
	printf( " < Read from server:" );
	fflush( stdout );

	do
	{
	len = sizeof( buf ) - 1;
	memset( buf, 0, sizeof( buf ) );
	ret = ssl_read( &ssl, buf, len );

	if( ret == POLARSSL_ERR_NET_TRY_AGAIN )
	continue;

	if( ret == POLARSSL_ERR_SSL_PEER_CLOSE_NOTIFY )
	break;

	if( ret <= 0 )
	{
	printf( "failed\n ! ssl_read returned %d\n\n", ret );
	break;
	}

	len = ret;
	printf( " %d bytes read\n\n%s", len, (char *) buf );
	}
	while( 0 );

	ssl_close_notify( &ssl );

	exit:

	net_close( server_fd );
	ssl_free( &ssl );

	memset( &ssl, 0, sizeof( ssl ) );

	#ifdef WIN32
	printf( " + Press Enter to exit this program.\n" );
	fflush( stdout ); getchar();
	#endif

	return( ret );
	}