abc/GmSSL
1
0
Fork 0
mirror of https://github.com/guanzhi/GmSSL.git synced 2026-06-26 07:03:40 +08:00
Code Issues Packages Projects Releases Wiki Activity

tls 1.3 init

Browse Source
This commit is contained in:
Zhi Guan
2021-07-28 16:32:10 +08:00
parent ce7dd7fccf
commit 62d1899760
66 changed files with 3080 additions and 18101 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
tools/certgen.c
View File

@@ -91,7 +91,7 @@ void print_usage(const char *prog)
int main(int argc, char **argv)
{
int ret = -1;
char *prog = basename(argv[0]);
char *prog = argv[0];
char *country = NULL;
char *state = NULL;
char *org = NULL;

2
tools/certverify.c
View File

@@ -105,7 +105,7 @@ void print_usage(const char *prog)
int main(int argc, char **argv)
{
int ret = -1;
char *prog = basename(argv[0]);
char *prog = argv[0];
char *certfile = NULL;
char *cacertfile = NULL;
FILE *certfp = NULL;

3
tools/digest.c
View File

@@ -50,7 +50,6 @@
#include <stdlib.h>
#include <string.h>
#include <unistd.h>
#include <libgen.h>
#include <gmssl/digest.h>
#define FORMAT_HEX 1
@@ -78,7 +77,7 @@ void print_usage(FILE *out, const char *prog)
int main(int argc, char **argv)
{
int ret = -1;
char *prog = basename(argv[0]);
char *prog = argv[0];
int help = 0;
const DIGEST *digest = NULL;
int format = FORMAT_HEX;

3
tools/hmac.c
View File

@@ -50,7 +50,6 @@
#include <stdlib.h>
#include <string.h>
#include <unistd.h>
#include <libgen.h>
#include <gmssl/digest.h>
#define FORMAT_HEX 1
@@ -73,7 +72,7 @@ void print_usage(FILE *out, const char *prog)
int main(int argc, char **argv)
{
int ret = -1;
char *prog = basename(argv[0]);
char *prog = argv[0];
int help = 0;
const DIGEST *digest = NULL;
int format = FORMAT_HEX;

2
tools/oid.c
View File

@@ -103,7 +103,7 @@ int oid_vec_to_der(const unsigned int *oid, size_t oidlen, uint8_t *out, size_t
int main(int argc, char **argv)
{
int ret = -1;
char *prog = basename(argv[0]);
char *prog = argv[0];
int help = 0;
argc--;

3
tools/reqgen.c
View File

@@ -76,7 +76,7 @@ void print_usage(const char *prog)
int main(int argc, char **argv)
{
int ret = -1;
char *prog = basename(argv[0]);
char *prog = argv[0];
char *country = NULL;
char *state = NULL;
char *org = NULL;
@@ -89,7 +89,6 @@ int main(int argc, char **argv)
X509_CERT_REQUEST req;
char *pass;
X509_NAME name;

2
tools/reqsign.c
View File

@@ -71,7 +71,7 @@ void print_usage(const char *prog)
int main(int argc, char **argv)
{
int ret = -1;
char *prog = basename(argv[0]);
char *prog = argv[0];
char *keyfile = NULL;
FILE *keyfp = NULL;

2
tools/sm2decrypt.c
View File

@@ -59,7 +59,7 @@
int main(int argc, char **argv)
{
char *prog = basename(argv[0]);
char *prog = argv[0];
const char *keyfile = NULL;
FILE *keyfp = NULL;
const char *pass = NULL;

2
tools/sm2encrypt.c
View File

@@ -61,7 +61,7 @@
int main(int argc, char **argv)
{
int ret;
char *prog = basename(argv[0]);
char *prog = argv[0];
const char *keyfile = NULL;
const char *certfile = NULL;
FILE *keyfp = NULL;

2
tools/sm2sign.c
View File

@@ -63,7 +63,7 @@
int main(int argc, char **argv)
{
char *prog = basename(argv[0]);
char *prog = argv[0];
const char *id = SM2_DEFAULT_ID;
const char *keyfile = NULL;
FILE *keyfp = NULL;

2
tools/sm2verify.c
View File

@@ -61,7 +61,7 @@
int main(int argc, char **argv)
{
int ret;
char *prog = basename(argv[0]);
char *prog = argv[0];
const char *sig_hex = NULL;
const char *id = SM2_DEFAULT_ID;
const char *keyfile = NULL;

3
tools/sm3sum.c
View File

@@ -50,13 +50,12 @@
#include <string.h>
#include <stdlib.h>
#include <unistd.h>
#include <libgen.h>
#include <gmssl/sm3.h>
int main(int argc, char **argv)
{
char *prog = basename(argv[0]);
char *prog = argv[0];
SM3_CTX ctx;
uint8_t dgst[32];
uint8_t buf[4096];

3
tools/tlcp_client.c
View File

@@ -49,7 +49,6 @@
#include <stdio.h>
#include <string.h>
#include <stdlib.h>
#include <libgen.h>
#include <unistd.h>
#include <gmssl/tls.h>
#include <gmssl/error.h>
@@ -73,7 +72,7 @@ void print_usage(const char *prog)
int main(int argc , char *argv[])
{
int ret = -1;
char *prog = basename(argv[0]);
char *prog = argv[0];
char *host = NULL;
int port = 443;
TLS_CONNECT conn;

3
tools/tlcp_server.c
View File

@@ -49,7 +49,6 @@
#include <stdio.h>
#include <string.h>
#include <stdlib.h>
#include <libgen.h>
#include <unistd.h>
#include <gmssl/sm2.h>
#include <gmssl/tls.h>
@@ -70,7 +69,7 @@ void print_usage(const char *prog)
int main(int argc , char *argv[])
{
int ret = -1;
char *prog = basename(argv[0]);
char *prog = argv[0];
int port = 443;
char *certfile = NULL;
char *signkeyfile = NULL;

3
tools/tls12_client.c
View File

@@ -49,7 +49,6 @@
#include <stdio.h>
#include <string.h>
#include <stdlib.h>
#include <libgen.h>
#include <unistd.h>
#include <gmssl/tls.h>
#include <gmssl/error.h>
@@ -73,7 +72,7 @@ void print_usage(const char *prog)
int main(int argc , char *argv[])
{
int ret = -1;
char *prog = basename(argv[0]);
char *prog = argv[0];
char *host = NULL;
int port = 443;
TLS_CONNECT conn;

3
tools/tls12_server.c
View File

@@ -49,7 +49,6 @@
#include <stdio.h>
#include <string.h>
#include <stdlib.h>
#include <libgen.h>
#include <unistd.h>
#include <gmssl/sm2.h>
#include <gmssl/tls.h>
@@ -67,7 +66,7 @@ void print_usage(const char *prog)
int main(int argc , char *argv[])
{
int ret = -1;
char *prog = basename(argv[0]);
char *prog = argv[0];
int port = 443;
char *certfile = NULL;
char *signkeyfile = NULL;

193
tools/tls13_client.c Normal file
View File

@@ -0,0 +1,193 @@
/*
* Copyright (c) 2021 - 2021 The GmSSL Project. All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
*
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
*
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in
* the documentation and/or other materials provided with the
* distribution.
*
* 3. All advertising materials mentioning features or use of this
* software must display the following acknowledgment:
* "This product includes software developed by the GmSSL Project.
* (http://gmssl.org/)"
*
* 4. The name "GmSSL Project" must not be used to endorse or promote
* products derived from this software without prior written
* permission. For written permission, please contact
* guanzhi1980@gmail.com.
*
* 5. Products derived from this software may not be called "GmSSL"
* nor may "GmSSL" appear in their names without prior written
* permission of the GmSSL Project.
*
* 6. Redistributions of any form whatsoever must retain the following
* acknowledgment:
* "This product includes software developed by the GmSSL Project
* (http://gmssl.org/)"
*
* THIS SOFTWARE IS PROVIDED BY THE GmSSL PROJECT ``AS IS'' AND ANY
* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE GmSSL PROJECT OR
* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
* OF THE POSSIBILITY OF SUCH DAMAGE.
*/
#include <stdio.h>
#include <string.h>
#include <stdlib.h>
#include <unistd.h>
#include <gmssl/tls.h>
#include <gmssl/error.h>
const char *http_get =
"GET / HTTP/1.1\r\n"
"Hostname: aaa\r\n"
"\r\n\r\n";
void print_usage(const char *prog)
{
printf("Usage: %s [options]\n", prog);
printf(" -host <str>\n");
printf(" -port <num>\n");
printf(" -cacerts <file>\n");
printf(" -cert <file>\n");
printf(" -key <file>\n");
}
int main(int argc , char *argv[])
{
int ret = -1;
char *prog = argv[0];
char *host = NULL;
int port = 443;
TLS_CONNECT conn;
char buf[100] = {0};
size_t len = sizeof(buf);
char *cacertsfile = NULL;
char *certfile = NULL;
char *keyfile = NULL;
FILE *cacertsfp = NULL;
FILE *certfp = NULL;
FILE *keyfp = NULL;
SM2_KEY sign_key;
if (argc < 2) {
print_usage(prog);
return 0;
}
argc--;
argv++;
while (argc >= 1) {
if (!strcmp(*argv, "-help")) {
print_usage(prog);
return 0;
} else if (!strcmp(*argv, "-host")) {
if (--argc < 1) goto bad;
host = *(++argv);
} else if (!strcmp(*argv, "-port")) {
if (--argc < 1) goto bad;
port = atoi(*(++argv));
} else if (!strcmp(*argv, "-cacerts")) {
if (--argc < 1) goto bad;
cacertsfile = *(++argv);
} else if (!strcmp(*argv, "-cert")) {
if (--argc < 1) goto bad;
certfile = *(++argv);
} else if (!strcmp(*argv, "-key")) {
if (--argc < 1) goto bad;
keyfile = *(++argv);
} else {
print_usage(prog);
return 0;
}
argc--;
argv++;
}
if (!host /*|| !certfile || !keyfile */) {
print_usage(prog);
return -1;
}
if (cacertsfile) {
if (!(cacertsfp = fopen(cacertsfile, "r"))) {
error_print();
return -1;
}
}
if (certfile) {
if (!(certfp = fopen(certfile, "r"))) {
error_print();
return -1;
}
}
if (keyfile) {
if (!(keyfp = fopen(keyfile, "r"))) {
error_print();
return -1;
}
if (sm2_private_key_from_pem(&sign_key, keyfp) != 1) {
error_print();
return -1;
}
}
memset(&conn, 0, sizeof(conn));
if (tls13_connect(&conn, host, port, cacertsfp, certfp, &sign_key) != 1) {
error_print();
return -1;
}
// 这个client 发收了一个消息就结束了
if (tls_send(&conn, (uint8_t *)"12345\n", 6) != 1) {
error_print();
return -1;
}
for (;;) {
memset(buf, 0, sizeof(buf));
len = sizeof(buf);
if (tls_recv(&conn, (uint8_t *)buf, &len) != 1) {
error_print();
return -1;
}
if (len > 0) {
printf("%s\n", buf);
break;
}
}
return 1;
bad:
fprintf(stderr, "%s: command error\n", prog);
return 0;
}

173
tools/tls13_server.c Normal file
View File

@@ -0,0 +1,173 @@
/*
* Copyright (c) 2021 - 2021 The GmSSL Project. All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
*
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
*
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in
* the documentation and/or other materials provided with the
* distribution.
*
* 3. All advertising materials mentioning features or use of this
* software must display the following acknowledgment:
* "This product includes software developed by the GmSSL Project.
* (http://gmssl.org/)"
*
* 4. The name "GmSSL Project" must not be used to endorse or promote
* products derived from this software without prior written
* permission. For written permission, please contact
* guanzhi1980@gmail.com.
*
* 5. Products derived from this software may not be called "GmSSL"
* nor may "GmSSL" appear in their names without prior written
* permission of the GmSSL Project.
*
* 6. Redistributions of any form whatsoever must retain the following
* acknowledgment:
* "This product includes software developed by the GmSSL Project
* (http://gmssl.org/)"
*
* THIS SOFTWARE IS PROVIDED BY THE GmSSL PROJECT ``AS IS'' AND ANY
* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE GmSSL PROJECT OR
* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
* OF THE POSSIBILITY OF SUCH DAMAGE.
*/
#include <stdio.h>
#include <string.h>
#include <stdlib.h>
#include <unistd.h>
#include <gmssl/sm2.h>
#include <gmssl/tls.h>
#include <gmssl/error.h>
void print_usage(const char *prog)
{
printf("Usage: %s [options]\n", prog);
printf(" -port <num>\n");
printf(" -cert <file>\n");
printf(" -signkey <file>\n");
}
int main(int argc , char *argv[])
{
int ret = -1;
char *prog = argv[0];
int port = 443;
char *certfile = NULL;
char *signkeyfile = NULL;
FILE *certfp = NULL;
FILE *signkeyfp = NULL;
SM2_KEY signkey;
uint8_t verify_buf[4096];
TLS_CONNECT conn;
char buf[1600] = {0};
size_t len = sizeof(buf);
if (argc < 2) {
print_usage(prog);
return 0;
}
argc--;
argv++;
while (argc >= 1) {
if (!strcmp(*argv, "-help")) {
print_usage(prog);
return 0;
} else if (!strcmp(*argv, "-port")) {
if (--argc < 1) goto bad;
port = atoi(*(++argv));
} else if (!strcmp(*argv, "-cert")) {
if (--argc < 1) goto bad;
certfile = *(++argv);
} else if (!strcmp(*argv, "-signkey")) {
if (--argc < 1) goto bad;
signkeyfile = *(++argv);
} else {
print_usage(prog);
return 0;
}
argc--;
argv++;
}
if (!certfile || !signkeyfile) {
print_usage(prog);
return -1;
}
if (!(certfp = fopen(certfile, "r"))) {
error_print();
return -1;
}
if (!(signkeyfp = fopen(signkeyfile, "r"))) {
error_print();
return -1;
}
if (sm2_private_key_from_pem(&signkey, signkeyfp) != 1) {
error_print();
return -1;
}
memset(&conn, 0, sizeof(conn));
if (tls13_accept(&conn, port, certfp, &signkey, certfp) != 1) {
error_print();
return -1;
}
// 我要做一个反射的服务器,接收到用户的输入之后,再反射回去
for (;;) {
// 接收一个消息
// 按道理说第二次执行的时候是不可能成功的了,因此客户端没有数据发过来
do {
len = sizeof(buf);
if (tls_recv(&conn, (uint8_t *)buf, &len) != 1) {
error_print();
return -1;
}
} while (!len);
// 把这个消息再发回去
if (tls_send(&conn, (uint8_t *)buf, len) != 1) {
error_print();
return -1;
}
fprintf(stderr, "-----------------\n\n\n\n\n\n");
}
return 1;
bad:
fprintf(stderr, "%s: command error\n", prog);
return 0;
}