[thirdparty/openssl.git] / demos / bio / client-conf.c

/*
 * Copyright 2013-2016 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include <string.h>
#include <openssl/err.h>
#include <openssl/ssl.h>
#include <openssl/conf.h>

int main(int argc, char **argv)
{
    BIO *sbio = NULL, *out = NULL;
    int i, len, rv;
    char tmpbuf[1024];
    SSL_CTX *ctx = NULL;
    SSL_CONF_CTX *cctx = NULL;
    SSL *ssl = NULL;
    CONF *conf = NULL;
    STACK_OF(CONF_VALUE) *sect = NULL;
    CONF_VALUE *cnf;
    const char *connect_str = "localhost:4433";
    long errline = -1;

    conf = NCONF_new(NULL);

    if (NCONF_load(conf, "connect.cnf", &errline) <= 0) {
        if (errline <= 0)
            fprintf(stderr, "Error processing config file\n");
        else
            fprintf(stderr, "Error on line %ld\n", errline);
        goto end;
    }

    sect = NCONF_get_section(conf, "default");

    if (sect == NULL) {
        fprintf(stderr, "Error retrieving default section\n");
        goto end;
    }

    ctx = SSL_CTX_new(TLS_client_method());
    cctx = SSL_CONF_CTX_new();
    SSL_CONF_CTX_set_flags(cctx, SSL_CONF_FLAG_CLIENT);
    SSL_CONF_CTX_set_flags(cctx, SSL_CONF_FLAG_FILE);
    SSL_CONF_CTX_set_ssl_ctx(cctx, ctx);
    for (i = 0; i < sk_CONF_VALUE_num(sect); i++) {
        cnf = sk_CONF_VALUE_value(sect, i);
        rv = SSL_CONF_cmd(cctx, cnf->name, cnf->value);
        if (rv > 0)
            continue;
        if (rv != -2) {
            fprintf(stderr, "Error processing %s = %s\n",
                    cnf->name, cnf->value);
            ERR_print_errors_fp(stderr);
            goto end;
        }
        if (strcmp(cnf->name, "Connect") == 0) {
            connect_str = cnf->value;
        } else {
            fprintf(stderr, "Unknown configuration option %s\n", cnf->name);
            goto end;
        }
    }

    if (!SSL_CONF_CTX_finish(cctx)) {
        fprintf(stderr, "Finish error\n");
        ERR_print_errors_fp(stderr);
        goto end;
    }

    /*
     * We'd normally set some stuff like the verify paths and * mode here
     * because as things stand this will connect to * any server whose
     * certificate is signed by any CA.
     */

    sbio = BIO_new_ssl_connect(ctx);

    BIO_get_ssl(sbio, &ssl);

    if (!ssl) {
        fprintf(stderr, "Can't locate SSL pointer\n");
        goto end;
    }

    /* Don't want any retries */
    SSL_set_mode(ssl, SSL_MODE_AUTO_RETRY);

    /* We might want to do other things with ssl here */

    BIO_set_conn_hostname(sbio, connect_str);

    out = BIO_new_fp(stdout, BIO_NOCLOSE);
    if (BIO_do_connect(sbio) <= 0) {
        fprintf(stderr, "Error connecting to server\n");
        ERR_print_errors_fp(stderr);
        goto end;
    }

    /* Could examine ssl here to get connection info */

    BIO_puts(sbio, "GET / HTTP/1.0\n\n");
    for (;;) {
        len = BIO_read(sbio, tmpbuf, 1024);
        if (len <= 0)
            break;
        BIO_write(out, tmpbuf, len);
    }
 end:
    SSL_CONF_CTX_free(cctx);
    BIO_free_all(sbio);
    BIO_free(out);
    NCONF_free(conf);
    return 0;
}
Commit	Line	Data
9e200689 RS	1	/*
	2	* Copyright 2013-2016 The OpenSSL Project Authors. All Rights Reserved.
	3	*
5e73e6ba	4	* Licensed under the Apache License 2.0 (the "License"). You may not use
9e200689 RS	5	* this file except in compliance with the License. You can obtain a copy
	6	* in the file LICENSE in the source distribution or at
	7	* https://www.openssl.org/source/license.html
	8	*/
	9
919ba009	10	#include <string.h>
3646578a DSH	11	#include <openssl/err.h>
	12	#include <openssl/ssl.h>
	13	#include <openssl/conf.h>
	14
	15	int main(int argc, char **argv)
0f113f3e MC	16	{
	17	BIO sbio = NULL, out = NULL;
	18	int i, len, rv;
	19	char tmpbuf[1024];
	20	SSL_CTX *ctx = NULL;
	21	SSL_CONF_CTX *cctx = NULL;
	22	SSL *ssl = NULL;
	23	CONF *conf = NULL;
	24	STACK_OF(CONF_VALUE) *sect = NULL;
	25	CONF_VALUE *cnf;
	26	const char *connect_str = "localhost:4433";
	27	long errline = -1;
	28
0f113f3e MC	29	conf = NCONF_new(NULL);
	30
	31	if (NCONF_load(conf, "connect.cnf", &errline) <= 0) {
	32	if (errline <= 0)
	33	fprintf(stderr, "Error processing config file\n");
	34	else
	35	fprintf(stderr, "Error on line %ld\n", errline);
	36	goto end;
	37	}
	38
	39	sect = NCONF_get_section(conf, "default");
	40
	41	if (sect == NULL) {
	42	fprintf(stderr, "Error retrieving default section\n");
	43	goto end;
	44	}
	45
13c9bb3e	46	ctx = SSL_CTX_new(TLS_client_method());
0f113f3e MC	47	cctx = SSL_CONF_CTX_new();
	48	SSL_CONF_CTX_set_flags(cctx, SSL_CONF_FLAG_CLIENT);
	49	SSL_CONF_CTX_set_flags(cctx, SSL_CONF_FLAG_FILE);
	50	SSL_CONF_CTX_set_ssl_ctx(cctx, ctx);
	51	for (i = 0; i < sk_CONF_VALUE_num(sect); i++) {
	52	cnf = sk_CONF_VALUE_value(sect, i);
	53	rv = SSL_CONF_cmd(cctx, cnf->name, cnf->value);
	54	if (rv > 0)
	55	continue;
	56	if (rv != -2) {
	57	fprintf(stderr, "Error processing %s = %s\n",
	58	cnf->name, cnf->value);
	59	ERR_print_errors_fp(stderr);
	60	goto end;
	61	}
86885c28	62	if (strcmp(cnf->name, "Connect") == 0) {
0f113f3e MC	63	connect_str = cnf->value;
	64	} else {
	65	fprintf(stderr, "Unknown configuration option %s\n", cnf->name);
	66	goto end;
	67	}
	68	}
	69
	70	if (!SSL_CONF_CTX_finish(cctx)) {
	71	fprintf(stderr, "Finish error\n");
	72	ERR_print_errors_fp(stderr);
919ba009	73	goto end;
0f113f3e MC	74	}
	75
	76	/*
	77	* We'd normally set some stuff like the verify paths and * mode here
	78	* because as things stand this will connect to * any server whose
	79	* certificate is signed by any CA.
	80	*/
	81
	82	sbio = BIO_new_ssl_connect(ctx);
	83
	84	BIO_get_ssl(sbio, &ssl);
	85
	86	if (!ssl) {
	87	fprintf(stderr, "Can't locate SSL pointer\n");
	88	goto end;
	89	}
	90
	91	/* Don't want any retries */
	92	SSL_set_mode(ssl, SSL_MODE_AUTO_RETRY);
	93
	94	/* We might want to do other things with ssl here */
	95
	96	BIO_set_conn_hostname(sbio, connect_str);
	97
	98	out = BIO_new_fp(stdout, BIO_NOCLOSE);
	99	if (BIO_do_connect(sbio) <= 0) {
	100	fprintf(stderr, "Error connecting to server\n");
	101	ERR_print_errors_fp(stderr);
	102	goto end;
	103	}
	104
0f113f3e MC	105	/* Could examine ssl here to get connection info */
	106
	107	BIO_puts(sbio, "GET / HTTP/1.0\n\n");
	108	for (;;) {
	109	len = BIO_read(sbio, tmpbuf, 1024);
	110	if (len <= 0)
	111	break;
	112	BIO_write(out, tmpbuf, len);
	113	}
	114	end:
	115	SSL_CONF_CTX_free(cctx);
	116	BIO_free_all(sbio);
	117	BIO_free(out);
	118	NCONF_free(conf);
	119	return 0;
	120	}