Accueil Explorer Aide
Connexion
RT-Thread-packages
/
esp-idf
miroir de https://github-proxy.rt-thread.io/RT-Thread-packages/esp-idf.git
2
0
Fork 0
Fichiers Tickets 0 Wiki
Aborescence: fe94de0310
Branches Tags
esp-idf
/
examples
/
protocols
/
openssl_client
/
main
/
openssl_client_example_main.c

openssl_client_example_main.c 4.7 KB
Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170 
  1. /* OpenSSL Client Example
    2. 

  2. 

  3.    This example code is in the Public Domain (or CC0 licensed, at your option.)
    4. 

  4. 

  5.    Unless required by applicable law or agreed to in writing, this
    6. 

  6.    software is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR
    7. 

  7.    CONDITIONS OF ANY KIND, either express or implied.
    8. 

  8. */
    9. 

  9. #include "openssl_client_example.h"
    10. 

  10. 

  11. #include "openssl/ssl.h"
    12. 

  12. 

  13. #include "lwip/netdb.h"
    14. 

  14. #include "lwip/sockets.h"
    15. 

  15. 

  16. #include "nvs_flash.h"
    17. 

  17. #include "esp_event.h"
    18. 

  18. #include "esp_log.h"
    19. 

  19. 

  20. #include "protocol_examples_common.h"
    21. 

  21. 

  22. 

  23. static const char *TAG = "openssl_example";
    24. 

  24. 

  25. static int open_connection(const char *host, char *port)
    26. 

  26. {
    27. 

  27.     const struct addrinfo hints = {
    28. 

  28.         .ai_family = AF_INET,
    29. 

  29.         .ai_socktype = SOCK_STREAM,
    30. 

  30.     };
    31. 

  31.     struct addrinfo * res;
    32. 

  32.     struct in_addr *addr;
    33. 

  33.     int sd;
    34. 

  34.     int err = getaddrinfo(host, port, &hints, &res);
    35. 

  35.     if (err < 0) {
    36. 

  36.         ESP_LOGE(TAG, "getaddrinfo() failed for IPV4 destination address. error: %d", err);
    37. 

  37.         return -1;
    38. 

  38.     }
    39. 

  39.     if (res == 0) {
    40. 

  40.         ESP_LOGE(TAG, "getaddrinfo() did not return any addresses");
    41. 

  41.         return -1;
    42. 

  42.     }
    43. 

  43.     addr = &((struct sockaddr_in *)res->ai_addr)->sin_addr;
    44. 

  44.     ESP_LOGI(TAG, "DNS lookup succeeded. IP=%s", inet_ntoa(*addr));
    45. 

  45.     sd = socket(res->ai_family, res->ai_socktype, 0);
    46. 

  46.     if(sd < 0) {
    47. 

  47.         ESP_LOGE(TAG, "Failed to allocate socket.");
    48. 

  48.         freeaddrinfo(res);
    49. 

  49.         return -1;
    50. 

  50.     }
    51. 

  51.     if (connect(sd, res->ai_addr, res->ai_addrlen) != 0) {
    52. 

  52.         ESP_LOGE(TAG, "Socket connect failed");
    53. 

  53.         return -1;
    54. 

  54.     }
    55. 

  55.     return sd;
    56. 

  56. }
    57. 

  57. 

  58. static SSL_CTX* init_contex(void)
    59. 

  59. {
    60. 

  60. 

  61. #if CONFIG_EXAMPLE_OPENSSL_CLIENT_URI_FROM_STDIN
    62. 

  62.     extern const unsigned char cacert_pem_start[] asm("_binary_ca_crt_start");
    63. 

  63.     extern const unsigned char cacert_pem_end[]   asm("_binary_ca_crt_end");
    64. 

  64. #else
    65. 

  65.     extern const unsigned char cacert_pem_start[] asm("_binary_baidu_ca_crt_start");
    66. 

  66.     extern const unsigned char cacert_pem_end[]   asm("_binary_baidu_ca_crt_end");
    67. 

  67. #endif
    68. 

  68.     const unsigned int cacert_pem_bytes = cacert_pem_end - cacert_pem_start;
    69. 

  69. 

  70.     const SSL_METHOD *mtd = TLSv1_1_client_method();
    71. 

  71.     SSL_CTX *ctx = SSL_CTX_new(mtd);   /* Create new context */
    72. 

  72.     SSL_CTX_set_verify(ctx, SSL_VERIFY_PEER, NULL);
    73. 

  73. 

  74.     X509 *x = d2i_X509(NULL, cacert_pem_start, cacert_pem_bytes);
    75. 

  75.     if(!x) {
    76. 

  76.         ESP_LOGI(TAG,"Loading certs failed \n");
    77. 

  77.     }
    78. 

  78.     SSL_CTX_add_client_CA(ctx, x);
    79. 

  79. 

  80.     return ctx;
    81. 

  81. }
    82. 

  82. 

  83. static void start_example(const char *host, char *port)
    84. 

  84. {
    85. 

  85.     SSL_CTX *ctx = NULL;
    86. 

  86.     SSL *ssl = NULL;
    87. 

  87.     int sockfd;
    88. 

  88.     int ret;
    89. 

  89. 

  90.     ctx = init_contex();
    91. 

  91.     if (!ctx) {
    92. 

  92.         ESP_LOGE(TAG, "Failed");
    93. 

  93.         goto failed1;
    94. 

  94.     }
    95. 

  95.     ESP_LOGI(TAG, "Trying connect to %s port %s ...", host, port);
    96. 

  96.     sockfd = open_connection(host, port);
    97. 

  97.     if(sockfd < 0) {
    98. 

  98.         ESP_LOGE(TAG,"Failed");
    99. 

  99.         goto failed1;
    100. 

  100.     }
    101. 

  101.     ESP_LOGI(TAG, "OK");
    102. 

  102.     ESP_LOGI(TAG, "Create SSL obj");
    103. 

  103.     ssl = SSL_new(ctx);
    104. 

  104.     if (!ssl) {
    105. 

  105.         ESP_LOGE(TAG,"Failed");
    106. 

  106.         goto failed2;
    107. 

  107.     }
    108. 

  108.     ESP_LOGI(TAG, "OK");
    109. 

  109.     SSL_set_fd(ssl, sockfd);
    110. 

  110.     ret = SSL_connect(ssl);
    111. 

  111.     if (ret <= 0) {
    112. 

  112.         ESP_LOGE(TAG,"SSL Connection Failed");
    113. 

  113.         goto failed3;
    114. 

  114.     }
    115. 

  115.     ESP_LOGI(TAG,"SSL Connection Succeed");
    116. 

  116. failed3:
    117. 

  117.     SSL_free(ssl);
    118. 

  118.     ssl = NULL;
    119. 

  119. failed2:
    120. 

  120.     close(sockfd);
    121. 

  121.     sockfd = -1;
    122. 

  122. failed1:
    123. 

  123.     SSL_CTX_free(ctx);
    124. 

  124.     ctx = NULL;
    125. 

  125. }
    126. 

  126. 

  127. #if CONFIG_EXAMPLE_OPENSSL_CLIENT_URI_FROM_STDIN
    128. 

  128. static void get_string(char *line, size_t size)
    129. 

  129. {
    130. 

  130.     int count = 0;
    131. 

  131.     while (count < size) {
    132. 

  132.         int c = fgetc(stdin);
    133. 

  133.         if (c == '\n') {
    134. 

  134.             line[count] = '\0';
    135. 

  135.             break;
    136. 

  136.         } else if (c > 0 && c < 127) {
    137. 

  137.             line[count] = c;
    138. 

  138.             ++count;
    139. 

  139.         }
    140. 

  140.         vTaskDelay(10 / portTICK_PERIOD_MS);
    141. 

  141.     }
    142. 

  142. }
    143. 

  143. #endif /* CONFIG_EXAMPLE_OPENSSL_CLIENT_URI_FROM_STDIN */
    144. 

  144. 

  145. void app_main(void)
    146. 

  146. {
    147. 

  147.     char host[128] = EXAMPLE_OPENSSL_TARGET_DOMAIN;
    148. 

  148.     char port[32] = EXAMPLE_OPENSSL_TARGET_PORT;
    149. 

  149. 

  150.     ESP_LOGI(TAG, "[APP] Startup..");
    151. 

  151.     ESP_LOGI(TAG, "[APP] Free memory: %d bytes", esp_get_free_heap_size());
    152. 

  152.     ESP_LOGI(TAG, "[APP] IDF version: %s", esp_get_idf_version());
    153. 

  153. 

  154.     ESP_ERROR_CHECK(nvs_flash_init());
    155. 

  155.     ESP_ERROR_CHECK(esp_netif_init());
    156. 

  156.     ESP_ERROR_CHECK(esp_event_loop_create_default());
    157. 

  157. 

  158.     /* This helper function configures Wi-Fi or Ethernet, as selected in menuconfig.
    159. 

  159.      * Read "Establishing Wi-Fi or Ethernet Connection" section in
    160. 

  160.      * examples/protocols/README.md for more information about this function.
    161. 

  161.      */
    162. 

  162.     ESP_ERROR_CHECK(example_connect());
    163. 

  163. 

  164. #if CONFIG_EXAMPLE_OPENSSL_CLIENT_URI_FROM_STDIN
    165. 

  165.     char line[256] = "";
    166. 

  166.     get_string(line, sizeof(line));
    167. 

  167.     sscanf(line, "%s %s", host, port);
    168. 

  168. #endif /* CONFIG_EXAMPLE_OPENSSL_CLIENT_URI_FROM_STDIN */
    169. 

  169.     start_example(host, port);
    170. 

  170. }
    171.