| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 1 | /* |
| 2 | * SSL client for SMTP servers |
| 3 | * |
| Bence Szépkúti | 1e14827 | 2020-08-07 13:07:28 +0200 | [diff] [blame] | 4 | * Copyright The Mbed TLS Contributors |
| Manuel Pégourié-Gonnard | 37ff140 | 2015-09-04 14:21:07 +0200 | [diff] [blame] | 5 | * SPDX-License-Identifier: Apache-2.0 |
| 6 | * |
| 7 | * Licensed under the Apache License, Version 2.0 (the "License"); you may |
| 8 | * not use this file except in compliance with the License. |
| 9 | * You may obtain a copy of the License at |
| 10 | * |
| 11 | * http://www.apache.org/licenses/LICENSE-2.0 |
| 12 | * |
| 13 | * Unless required by applicable law or agreed to in writing, software |
| 14 | * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT |
| 15 | * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 16 | * See the License for the specific language governing permissions and |
| 17 | * limitations under the License. |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 18 | */ |
| 19 | |
| Nicholas Wilson | 61fa436 | 2018-06-25 12:10:00 +0100 | [diff] [blame] | 20 | /* Enable definition of gethostname() even when compiling with -std=c99. Must |
| 21 | * be set before config.h, which pulls in glibc's features.h indirectly. |
| Nicholas Wilson | 2682edf | 2017-12-05 12:08:15 +0000 | [diff] [blame] | 22 | * Harmless on other platforms. */ |
| 23 | #define _POSIX_C_SOURCE 200112L |
| nia | 7eb0e62 | 2020-06-11 12:30:12 +0100 | [diff] [blame] | 24 | #define _XOPEN_SOURCE 600 |
| Nicholas Wilson | 2682edf | 2017-12-05 12:08:15 +0000 | [diff] [blame] | 25 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 26 | #if !defined(MBEDTLS_CONFIG_FILE) |
| Manuel Pégourié-Gonnard | 7f80997 | 2015-03-09 17:05:11 +0000 | [diff] [blame] | 27 | #include "mbedtls/config.h" |
| Manuel Pégourié-Gonnard | cef4ad2 | 2014-04-29 12:39:06 +0200 | [diff] [blame] | 28 | #else |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 29 | #include MBEDTLS_CONFIG_FILE |
| Manuel Pégourié-Gonnard | cef4ad2 | 2014-04-29 12:39:06 +0200 | [diff] [blame] | 30 | #endif |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 31 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 32 | #if defined(MBEDTLS_PLATFORM_C) |
| Manuel Pégourié-Gonnard | 7f80997 | 2015-03-09 17:05:11 +0000 | [diff] [blame] | 33 | #include "mbedtls/platform.h" |
| Rich Evans | f90016a | 2015-01-19 14:26:37 +0000 | [diff] [blame] | 34 | #else |
| Rich Evans | 18b78c7 | 2015-02-11 14:06:19 +0000 | [diff] [blame] | 35 | #include <stdio.h> |
| Simon Butcher | d3138c3 | 2016-04-27 01:26:50 +0100 | [diff] [blame] | 36 | #include <stdlib.h> |
| Andres Amaya Garcia | 67a42ac | 2018-04-29 21:04:29 +0100 | [diff] [blame] | 37 | #define mbedtls_time time |
| 38 | #define mbedtls_time_t time_t |
| 39 | #define mbedtls_fprintf fprintf |
| 40 | #define mbedtls_printf printf |
| Manuel Pégourié-Gonnard | 3ef6a6d | 2018-12-10 14:31:45 +0100 | [diff] [blame] | 41 | #define mbedtls_exit exit |
| Andres Amaya Garcia | 7d42965 | 2018-04-30 22:42:33 +0100 | [diff] [blame] | 42 | #define MBEDTLS_EXIT_SUCCESS EXIT_SUCCESS |
| Andres Amaya Garcia | 67a42ac | 2018-04-29 21:04:29 +0100 | [diff] [blame] | 43 | #define MBEDTLS_EXIT_FAILURE EXIT_FAILURE |
| 44 | #endif /* MBEDTLS_PLATFORM_C */ |
| Rich Evans | f90016a | 2015-01-19 14:26:37 +0000 | [diff] [blame] | 45 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 46 | #if !defined(MBEDTLS_BIGNUM_C) || !defined(MBEDTLS_ENTROPY_C) || \ |
| 47 | !defined(MBEDTLS_SSL_TLS_C) || !defined(MBEDTLS_SSL_CLI_C) || \ |
| 48 | !defined(MBEDTLS_NET_C) || !defined(MBEDTLS_RSA_C) || \ |
| 49 | !defined(MBEDTLS_CTR_DRBG_C) || !defined(MBEDTLS_X509_CRT_PARSE_C) || \ |
| 50 | !defined(MBEDTLS_FS_IO) |
| Manuel Pégourié-Gonnard | 4b3e5ef | 2015-03-27 11:24:27 +0100 | [diff] [blame] | 51 | int main( void ) |
| 52 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 53 | mbedtls_printf("MBEDTLS_BIGNUM_C and/or MBEDTLS_ENTROPY_C and/or " |
| 54 | "MBEDTLS_SSL_TLS_C and/or MBEDTLS_SSL_CLI_C and/or " |
| 55 | "MBEDTLS_NET_C and/or MBEDTLS_RSA_C and/or " |
| 56 | "MBEDTLS_CTR_DRBG_C and/or MBEDTLS_X509_CRT_PARSE_C " |
| Manuel Pégourié-Gonnard | 4b3e5ef | 2015-03-27 11:24:27 +0100 | [diff] [blame] | 57 | "not defined.\n"); |
| Krzysztof Stachowiak | 5e1b195 | 2019-04-24 14:24:46 +0200 | [diff] [blame] | 58 | mbedtls_exit( 0 ); |
| Manuel Pégourié-Gonnard | 4b3e5ef | 2015-03-27 11:24:27 +0100 | [diff] [blame] | 59 | } |
| 60 | #else |
| 61 | |
| Manuel Pégourié-Gonnard | 7f80997 | 2015-03-09 17:05:11 +0000 | [diff] [blame] | 62 | #include "mbedtls/base64.h" |
| 63 | #include "mbedtls/error.h" |
| Andres AG | 788aa4a | 2016-09-14 14:32:09 +0100 | [diff] [blame] | 64 | #include "mbedtls/net_sockets.h" |
| Manuel Pégourié-Gonnard | 7f80997 | 2015-03-09 17:05:11 +0000 | [diff] [blame] | 65 | #include "mbedtls/ssl.h" |
| 66 | #include "mbedtls/entropy.h" |
| 67 | #include "mbedtls/ctr_drbg.h" |
| Mateusz Starzyk | 1aec646 | 2021-02-08 15:34:42 +0100 | [diff] [blame] | 68 | #include "test/certs.h" |
| Manuel Pégourié-Gonnard | 7f80997 | 2015-03-09 17:05:11 +0000 | [diff] [blame] | 69 | #include "mbedtls/x509.h" |
| Rich Evans | 18b78c7 | 2015-02-11 14:06:19 +0000 | [diff] [blame] | 70 | |
| Rich Evans | 18b78c7 | 2015-02-11 14:06:19 +0000 | [diff] [blame] | 71 | #include <stdlib.h> |
| 72 | #include <string.h> |
| Paul Bakker | fdda785 | 2013-11-30 15:15:31 +0100 | [diff] [blame] | 73 | |
| 74 | #if !defined(_MSC_VER) || defined(EFIX64) || defined(EFI32) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 75 | #include <unistd.h> |
| Paul Bakker | fdda785 | 2013-11-30 15:15:31 +0100 | [diff] [blame] | 76 | #else |
| 77 | #include <io.h> |
| Paul Bakker | fdda785 | 2013-11-30 15:15:31 +0100 | [diff] [blame] | 78 | #endif |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 79 | |
| Paul Bakker | 5a83522 | 2011-10-12 09:19:31 +0000 | [diff] [blame] | 80 | #if defined(_WIN32) || defined(_WIN32_WCE) |
| Paul Bakker | 5a83522 | 2011-10-12 09:19:31 +0000 | [diff] [blame] | 81 | #include <winsock2.h> |
| 82 | #include <windows.h> |
| 83 | |
| Paul Bakker | f0fc2a2 | 2013-12-30 15:42:43 +0100 | [diff] [blame] | 84 | #if defined(_MSC_VER) |
| Paul Bakker | 5a83522 | 2011-10-12 09:19:31 +0000 | [diff] [blame] | 85 | #if defined(_WIN32_WCE) |
| 86 | #pragma comment( lib, "ws2.lib" ) |
| 87 | #else |
| 88 | #pragma comment( lib, "ws2_32.lib" ) |
| 89 | #endif |
| Paul Bakker | f0fc2a2 | 2013-12-30 15:42:43 +0100 | [diff] [blame] | 90 | #endif /* _MSC_VER */ |
| Paul Bakker | 5a83522 | 2011-10-12 09:19:31 +0000 | [diff] [blame] | 91 | #endif |
| 92 | |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 93 | #define DFL_SERVER_NAME "localhost" |
| Manuel Pégourié-Gonnard | c0d7494 | 2015-06-23 12:30:57 +0200 | [diff] [blame] | 94 | #define DFL_SERVER_PORT "465" |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 95 | #define DFL_USER_NAME "user" |
| 96 | #define DFL_USER_PWD "password" |
| 97 | #define DFL_MAIL_FROM "" |
| 98 | #define DFL_MAIL_TO "" |
| 99 | #define DFL_DEBUG_LEVEL 0 |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 100 | #define DFL_CA_FILE "" |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 101 | #define DFL_CRT_FILE "" |
| 102 | #define DFL_KEY_FILE "" |
| 103 | #define DFL_FORCE_CIPHER 0 |
| 104 | #define DFL_MODE 0 |
| 105 | #define DFL_AUTHENTICATION 0 |
| 106 | |
| 107 | #define MODE_SSL_TLS 0 |
| 108 | #define MODE_STARTTLS 0 |
| 109 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 110 | #if defined(MBEDTLS_BASE64_C) |
| Rich Evans | 85b05ec | 2015-02-12 11:37:29 +0000 | [diff] [blame] | 111 | #define USAGE_AUTH \ |
| irwir | f5ce5d5 | 2019-01-19 19:05:56 +0300 | [diff] [blame] | 112 | " authentication=%%d default: 0 (disabled)\n" \ |
| 113 | " user_name=%%s default: \"" DFL_USER_NAME "\"\n" \ |
| 114 | " user_pwd=%%s default: \"" DFL_USER_PWD "\"\n" |
| Rich Evans | 85b05ec | 2015-02-12 11:37:29 +0000 | [diff] [blame] | 115 | #else |
| 116 | #define USAGE_AUTH \ |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 117 | " authentication options disabled. (Require MBEDTLS_BASE64_C)\n" |
| 118 | #endif /* MBEDTLS_BASE64_C */ |
| Rich Evans | 85b05ec | 2015-02-12 11:37:29 +0000 | [diff] [blame] | 119 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 120 | #if defined(MBEDTLS_FS_IO) |
| Rich Evans | 85b05ec | 2015-02-12 11:37:29 +0000 | [diff] [blame] | 121 | #define USAGE_IO \ |
| 122 | " ca_file=%%s default: \"\" (pre-loaded)\n" \ |
| 123 | " crt_file=%%s default: \"\" (pre-loaded)\n" \ |
| 124 | " key_file=%%s default: \"\" (pre-loaded)\n" |
| 125 | #else |
| 126 | #define USAGE_IO \ |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 127 | " No file operations available (MBEDTLS_FS_IO not defined)\n" |
| 128 | #endif /* MBEDTLS_FS_IO */ |
| Rich Evans | 85b05ec | 2015-02-12 11:37:29 +0000 | [diff] [blame] | 129 | |
| 130 | #define USAGE \ |
| irwir | f5ce5d5 | 2019-01-19 19:05:56 +0300 | [diff] [blame] | 131 | "\n usage: ssl_mail_client param=<>...\n" \ |
| 132 | "\n acceptable parameters:\n" \ |
| 133 | " server_name=%%s default: " DFL_SERVER_NAME "\n" \ |
| 134 | " server_port=%%d default: " DFL_SERVER_PORT "\n" \ |
| 135 | " debug_level=%%d default: 0 (disabled)\n" \ |
| Rich Evans | 85b05ec | 2015-02-12 11:37:29 +0000 | [diff] [blame] | 136 | " mode=%%d default: 0 (SSL/TLS) (1 for STARTTLS)\n" \ |
| irwir | f5ce5d5 | 2019-01-19 19:05:56 +0300 | [diff] [blame] | 137 | USAGE_AUTH \ |
| 138 | " mail_from=%%s default: \"\"\n" \ |
| 139 | " mail_to=%%s default: \"\"\n" \ |
| 140 | USAGE_IO \ |
| 141 | " force_ciphersuite=<name> default: all enabled\n" \ |
| Rich Evans | 85b05ec | 2015-02-12 11:37:29 +0000 | [diff] [blame] | 142 | " acceptable ciphersuite names:\n" |
| 143 | |
| Simon Butcher | 63cb97e | 2018-12-06 17:43:31 +0000 | [diff] [blame] | 144 | |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 145 | /* |
| 146 | * global options |
| 147 | */ |
| 148 | struct options |
| 149 | { |
| Paul Bakker | ef3f8c7 | 2013-06-24 13:01:08 +0200 | [diff] [blame] | 150 | const char *server_name; /* hostname of the server (client only) */ |
| Manuel Pégourié-Gonnard | c0d7494 | 2015-06-23 12:30:57 +0200 | [diff] [blame] | 151 | const char *server_port; /* port on which the ssl service runs */ |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 152 | int debug_level; /* level of debugging */ |
| 153 | int authentication; /* if authentication is required */ |
| 154 | int mode; /* SSL/TLS (0) or STARTTLS (1) */ |
| Paul Bakker | ef3f8c7 | 2013-06-24 13:01:08 +0200 | [diff] [blame] | 155 | const char *user_name; /* username to use for authentication */ |
| 156 | const char *user_pwd; /* password to use for authentication */ |
| 157 | const char *mail_from; /* E-Mail address to use as sender */ |
| 158 | const char *mail_to; /* E-Mail address to use as recipient */ |
| 159 | const char *ca_file; /* the file with the CA certificate(s) */ |
| 160 | const char *crt_file; /* the file with the client certificate */ |
| 161 | const char *key_file; /* the file with the client key */ |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 162 | int force_ciphersuite[2]; /* protocol/ciphersuite to use, or all */ |
| 163 | } opt; |
| 164 | |
| Manuel Pégourié-Gonnard | 61ee351 | 2015-06-23 17:35:03 +0200 | [diff] [blame] | 165 | static void my_debug( void *ctx, int level, |
| 166 | const char *file, int line, |
| 167 | const char *str ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 168 | { |
| Manuel Pégourié-Gonnard | 61ee351 | 2015-06-23 17:35:03 +0200 | [diff] [blame] | 169 | ((void) level); |
| 170 | |
| 171 | mbedtls_fprintf( (FILE *) ctx, "%s:%04d: %s", file, line, str ); |
| 172 | fflush( (FILE *) ctx ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 173 | } |
| 174 | |
| Manuel Pégourié-Gonnard | 89addc4 | 2015-04-20 10:56:18 +0100 | [diff] [blame] | 175 | static int do_handshake( mbedtls_ssl_context *ssl ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 176 | { |
| 177 | int ret; |
| Manuel Pégourié-Gonnard | e6ef16f | 2015-05-11 19:54:43 +0200 | [diff] [blame] | 178 | uint32_t flags; |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 179 | unsigned char buf[1024]; |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 180 | memset(buf, 0, 1024); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 181 | |
| 182 | /* |
| 183 | * 4. Handshake |
| 184 | */ |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 185 | mbedtls_printf( " . Performing the SSL/TLS handshake..." ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 186 | fflush( stdout ); |
| 187 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 188 | while( ( ret = mbedtls_ssl_handshake( ssl ) ) != 0 ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 189 | { |
| Manuel Pégourié-Gonnard | 8836994 | 2015-05-06 16:19:31 +0100 | [diff] [blame] | 190 | if( ret != MBEDTLS_ERR_SSL_WANT_READ && ret != MBEDTLS_ERR_SSL_WANT_WRITE ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 191 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 192 | #if defined(MBEDTLS_ERROR_C) |
| 193 | mbedtls_strerror( ret, (char *) buf, 1024 ); |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 194 | #endif |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 195 | mbedtls_printf( " failed\n ! mbedtls_ssl_handshake returned %d: %s\n\n", ret, buf ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 196 | return( -1 ); |
| 197 | } |
| 198 | } |
| 199 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 200 | mbedtls_printf( " ok\n [ Ciphersuite is %s ]\n", |
| 201 | mbedtls_ssl_get_ciphersuite( ssl ) ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 202 | |
| 203 | /* |
| 204 | * 5. Verify the server certificate |
| 205 | */ |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 206 | mbedtls_printf( " . Verifying peer X.509 certificate..." ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 207 | |
| Manuel Pégourié-Gonnard | 89addc4 | 2015-04-20 10:56:18 +0100 | [diff] [blame] | 208 | /* In real life, we probably want to bail out when ret != 0 */ |
| Manuel Pégourié-Gonnard | e6ef16f | 2015-05-11 19:54:43 +0200 | [diff] [blame] | 209 | if( ( flags = mbedtls_ssl_get_verify_result( ssl ) ) != 0 ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 210 | { |
| Peter Kolbus | 9a969b6 | 2018-12-11 13:55:56 -0600 | [diff] [blame^] | 211 | #if defined(MBEDTLS_X509_INFO) |
| Manuel Pégourié-Gonnard | 89addc4 | 2015-04-20 10:56:18 +0100 | [diff] [blame] | 212 | char vrfy_buf[512]; |
| Peter Kolbus | 9a969b6 | 2018-12-11 13:55:56 -0600 | [diff] [blame^] | 213 | #endif |
| Manuel Pégourié-Gonnard | 89addc4 | 2015-04-20 10:56:18 +0100 | [diff] [blame] | 214 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 215 | mbedtls_printf( " failed\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 216 | |
| Peter Kolbus | 9a969b6 | 2018-12-11 13:55:56 -0600 | [diff] [blame^] | 217 | #if defined(MBEDTLS_X509_INFO) |
| Manuel Pégourié-Gonnard | e6ef16f | 2015-05-11 19:54:43 +0200 | [diff] [blame] | 218 | mbedtls_x509_crt_verify_info( vrfy_buf, sizeof( vrfy_buf ), " ! ", flags ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 219 | |
| Manuel Pégourié-Gonnard | 89addc4 | 2015-04-20 10:56:18 +0100 | [diff] [blame] | 220 | mbedtls_printf( "%s\n", vrfy_buf ); |
| Peter Kolbus | 9a969b6 | 2018-12-11 13:55:56 -0600 | [diff] [blame^] | 221 | #endif |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 222 | } |
| 223 | else |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 224 | mbedtls_printf( " ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 225 | |
| Peter Kolbus | 9a969b6 | 2018-12-11 13:55:56 -0600 | [diff] [blame^] | 226 | #if defined(MBEDTLS_X509_INFO) |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 227 | mbedtls_printf( " . Peer certificate information ...\n" ); |
| 228 | mbedtls_x509_crt_info( (char *) buf, sizeof( buf ) - 1, " ", |
| 229 | mbedtls_ssl_get_peer_cert( ssl ) ); |
| 230 | mbedtls_printf( "%s\n", buf ); |
| Peter Kolbus | 9a969b6 | 2018-12-11 13:55:56 -0600 | [diff] [blame^] | 231 | #endif |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 232 | |
| 233 | return( 0 ); |
| 234 | } |
| 235 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 236 | static int write_ssl_data( mbedtls_ssl_context *ssl, unsigned char *buf, size_t len ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 237 | { |
| 238 | int ret; |
| 239 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 240 | mbedtls_printf("\n%s", buf); |
| 241 | while( len && ( ret = mbedtls_ssl_write( ssl, buf, len ) ) <= 0 ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 242 | { |
| Manuel Pégourié-Gonnard | 8836994 | 2015-05-06 16:19:31 +0100 | [diff] [blame] | 243 | if( ret != MBEDTLS_ERR_SSL_WANT_READ && ret != MBEDTLS_ERR_SSL_WANT_WRITE ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 244 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 245 | mbedtls_printf( " failed\n ! mbedtls_ssl_write returned %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 246 | return -1; |
| 247 | } |
| 248 | } |
| 249 | |
| 250 | return( 0 ); |
| 251 | } |
| 252 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 253 | static int write_ssl_and_get_response( mbedtls_ssl_context *ssl, unsigned char *buf, size_t len ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 254 | { |
| 255 | int ret; |
| 256 | unsigned char data[128]; |
| 257 | char code[4]; |
| 258 | size_t i, idx = 0; |
| 259 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 260 | mbedtls_printf("\n%s", buf); |
| 261 | while( len && ( ret = mbedtls_ssl_write( ssl, buf, len ) ) <= 0 ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 262 | { |
| Manuel Pégourié-Gonnard | 8836994 | 2015-05-06 16:19:31 +0100 | [diff] [blame] | 263 | if( ret != MBEDTLS_ERR_SSL_WANT_READ && ret != MBEDTLS_ERR_SSL_WANT_WRITE ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 264 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 265 | mbedtls_printf( " failed\n ! mbedtls_ssl_write returned %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 266 | return -1; |
| 267 | } |
| 268 | } |
| 269 | |
| 270 | do |
| 271 | { |
| 272 | len = sizeof( data ) - 1; |
| 273 | memset( data, 0, sizeof( data ) ); |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 274 | ret = mbedtls_ssl_read( ssl, data, len ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 275 | |
| Manuel Pégourié-Gonnard | 8836994 | 2015-05-06 16:19:31 +0100 | [diff] [blame] | 276 | if( ret == MBEDTLS_ERR_SSL_WANT_READ || ret == MBEDTLS_ERR_SSL_WANT_WRITE ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 277 | continue; |
| 278 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 279 | if( ret == MBEDTLS_ERR_SSL_PEER_CLOSE_NOTIFY ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 280 | return -1; |
| 281 | |
| 282 | if( ret <= 0 ) |
| 283 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 284 | mbedtls_printf( "failed\n ! mbedtls_ssl_read returned %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 285 | return -1; |
| 286 | } |
| 287 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 288 | mbedtls_printf("\n%s", data); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 289 | len = ret; |
| 290 | for( i = 0; i < len; i++ ) |
| 291 | { |
| 292 | if( data[i] != '\n' ) |
| 293 | { |
| 294 | if( idx < 4 ) |
| 295 | code[ idx++ ] = data[i]; |
| 296 | continue; |
| 297 | } |
| 298 | |
| 299 | if( idx == 4 && code[0] >= '0' && code[0] <= '9' && code[3] == ' ' ) |
| 300 | { |
| 301 | code[3] = '\0'; |
| 302 | return atoi( code ); |
| 303 | } |
| Paul Bakker | 3c5ef71 | 2013-06-25 16:37:45 +0200 | [diff] [blame] | 304 | |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 305 | idx = 0; |
| 306 | } |
| 307 | } |
| 308 | while( 1 ); |
| 309 | } |
| 310 | |
| Manuel Pégourié-Gonnard | 5db6432 | 2015-06-30 15:40:39 +0200 | [diff] [blame] | 311 | static int write_and_get_response( mbedtls_net_context *sock_fd, unsigned char *buf, size_t len ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 312 | { |
| 313 | int ret; |
| 314 | unsigned char data[128]; |
| 315 | char code[4]; |
| 316 | size_t i, idx = 0; |
| 317 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 318 | mbedtls_printf("\n%s", buf); |
| Manuel Pégourié-Gonnard | 5db6432 | 2015-06-30 15:40:39 +0200 | [diff] [blame] | 319 | if( len && ( ret = mbedtls_net_send( sock_fd, buf, len ) ) <= 0 ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 320 | { |
| irwir | f5ce5d5 | 2019-01-19 19:05:56 +0300 | [diff] [blame] | 321 | mbedtls_printf( " failed\n ! mbedtls_net_send returned %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 322 | return -1; |
| 323 | } |
| 324 | |
| 325 | do |
| 326 | { |
| 327 | len = sizeof( data ) - 1; |
| 328 | memset( data, 0, sizeof( data ) ); |
| Manuel Pégourié-Gonnard | 5db6432 | 2015-06-30 15:40:39 +0200 | [diff] [blame] | 329 | ret = mbedtls_net_recv( sock_fd, data, len ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 330 | |
| 331 | if( ret <= 0 ) |
| 332 | { |
| irwir | f5ce5d5 | 2019-01-19 19:05:56 +0300 | [diff] [blame] | 333 | mbedtls_printf( "failed\n ! mbedtls_net_recv returned %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 334 | return -1; |
| 335 | } |
| 336 | |
| Paul Bakker | df71dd1 | 2014-04-17 16:03:48 +0200 | [diff] [blame] | 337 | data[len] = '\0'; |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 338 | mbedtls_printf("\n%s", data); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 339 | len = ret; |
| 340 | for( i = 0; i < len; i++ ) |
| 341 | { |
| 342 | if( data[i] != '\n' ) |
| 343 | { |
| 344 | if( idx < 4 ) |
| 345 | code[ idx++ ] = data[i]; |
| 346 | continue; |
| 347 | } |
| 348 | |
| 349 | if( idx == 4 && code[0] >= '0' && code[0] <= '9' && code[3] == ' ' ) |
| 350 | { |
| 351 | code[3] = '\0'; |
| 352 | return atoi( code ); |
| 353 | } |
| Manuel Pégourié-Gonnard | 6c5abfa | 2015-02-13 14:12:07 +0000 | [diff] [blame] | 354 | |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 355 | idx = 0; |
| 356 | } |
| 357 | } |
| 358 | while( 1 ); |
| 359 | } |
| 360 | |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 361 | int main( int argc, char *argv[] ) |
| 362 | { |
| Andres Amaya Garcia | 67a42ac | 2018-04-29 21:04:29 +0100 | [diff] [blame] | 363 | int ret = 1, len; |
| 364 | int exit_code = MBEDTLS_EXIT_FAILURE; |
| Manuel Pégourié-Gonnard | 5db6432 | 2015-06-30 15:40:39 +0200 | [diff] [blame] | 365 | mbedtls_net_context server_fd; |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 366 | #if defined(MBEDTLS_BASE64_C) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 367 | unsigned char base[1024]; |
| Mohammad Azim Khan | 9ebdcff | 2018-08-06 11:48:06 +0100 | [diff] [blame] | 368 | /* buf is used as the destination buffer for printing base with the format: |
| 369 | * "%s\r\n". Hence, the size of buf should be at least the size of base |
| 370 | * plus 2 bytes for the \r and \n characters. |
| 371 | */ |
| 372 | unsigned char buf[sizeof( base ) + 2]; |
| 373 | #else |
| 374 | unsigned char buf[1024]; |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 375 | #endif |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 376 | char hostname[32]; |
| Paul Bakker | ef3f8c7 | 2013-06-24 13:01:08 +0200 | [diff] [blame] | 377 | const char *pers = "ssl_mail_client"; |
| Paul Bakker | 508ad5a | 2011-12-04 17:09:26 +0000 | [diff] [blame] | 378 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 379 | mbedtls_entropy_context entropy; |
| 380 | mbedtls_ctr_drbg_context ctr_drbg; |
| 381 | mbedtls_ssl_context ssl; |
| Manuel Pégourié-Gonnard | def0bbe | 2015-05-04 14:56:36 +0200 | [diff] [blame] | 382 | mbedtls_ssl_config conf; |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 383 | mbedtls_x509_crt cacert; |
| 384 | mbedtls_x509_crt clicert; |
| 385 | mbedtls_pk_context pkey; |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 386 | int i; |
| Paul Bakker | 819370c | 2012-09-28 07:04:41 +0000 | [diff] [blame] | 387 | size_t n; |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 388 | char *p, *q; |
| 389 | const int *list; |
| 390 | |
| 391 | /* |
| Manuel Pégourié-Gonnard | 3bd2aae | 2013-09-20 13:10:13 +0200 | [diff] [blame] | 392 | * Make sure memory references are valid in case we exit early. |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 393 | */ |
| Manuel Pégourié-Gonnard | 5db6432 | 2015-06-30 15:40:39 +0200 | [diff] [blame] | 394 | mbedtls_net_init( &server_fd ); |
| Manuel Pégourié-Gonnard | 41d479e | 2015-04-29 00:48:22 +0200 | [diff] [blame] | 395 | mbedtls_ssl_init( &ssl ); |
| Manuel Pégourié-Gonnard | def0bbe | 2015-05-04 14:56:36 +0200 | [diff] [blame] | 396 | mbedtls_ssl_config_init( &conf ); |
| Paul Bakker | 333fdec | 2014-08-04 12:12:09 +0200 | [diff] [blame] | 397 | memset( &buf, 0, sizeof( buf ) ); |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 398 | mbedtls_x509_crt_init( &cacert ); |
| 399 | mbedtls_x509_crt_init( &clicert ); |
| 400 | mbedtls_pk_init( &pkey ); |
| Manuel Pégourié-Gonnard | ec160c0 | 2015-04-28 22:52:30 +0200 | [diff] [blame] | 401 | mbedtls_ctr_drbg_init( &ctr_drbg ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 402 | |
| 403 | if( argc == 0 ) |
| 404 | { |
| 405 | usage: |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 406 | mbedtls_printf( USAGE ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 407 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 408 | list = mbedtls_ssl_list_ciphersuites(); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 409 | while( *list ) |
| 410 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 411 | mbedtls_printf(" %s\n", mbedtls_ssl_get_ciphersuite_name( *list ) ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 412 | list++; |
| 413 | } |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 414 | mbedtls_printf("\n"); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 415 | goto exit; |
| 416 | } |
| 417 | |
| 418 | opt.server_name = DFL_SERVER_NAME; |
| 419 | opt.server_port = DFL_SERVER_PORT; |
| 420 | opt.debug_level = DFL_DEBUG_LEVEL; |
| 421 | opt.authentication = DFL_AUTHENTICATION; |
| 422 | opt.mode = DFL_MODE; |
| 423 | opt.user_name = DFL_USER_NAME; |
| 424 | opt.user_pwd = DFL_USER_PWD; |
| 425 | opt.mail_from = DFL_MAIL_FROM; |
| 426 | opt.mail_to = DFL_MAIL_TO; |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 427 | opt.ca_file = DFL_CA_FILE; |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 428 | opt.crt_file = DFL_CRT_FILE; |
| 429 | opt.key_file = DFL_KEY_FILE; |
| 430 | opt.force_ciphersuite[0]= DFL_FORCE_CIPHER; |
| 431 | |
| 432 | for( i = 1; i < argc; i++ ) |
| 433 | { |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 434 | p = argv[i]; |
| 435 | if( ( q = strchr( p, '=' ) ) == NULL ) |
| 436 | goto usage; |
| 437 | *q++ = '\0'; |
| 438 | |
| 439 | if( strcmp( p, "server_name" ) == 0 ) |
| 440 | opt.server_name = q; |
| 441 | else if( strcmp( p, "server_port" ) == 0 ) |
| Manuel Pégourié-Gonnard | c0d7494 | 2015-06-23 12:30:57 +0200 | [diff] [blame] | 442 | opt.server_port = q; |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 443 | else if( strcmp( p, "debug_level" ) == 0 ) |
| 444 | { |
| 445 | opt.debug_level = atoi( q ); |
| 446 | if( opt.debug_level < 0 || opt.debug_level > 65535 ) |
| 447 | goto usage; |
| 448 | } |
| 449 | else if( strcmp( p, "authentication" ) == 0 ) |
| 450 | { |
| 451 | opt.authentication = atoi( q ); |
| 452 | if( opt.authentication < 0 || opt.authentication > 1 ) |
| 453 | goto usage; |
| 454 | } |
| 455 | else if( strcmp( p, "mode" ) == 0 ) |
| 456 | { |
| 457 | opt.mode = atoi( q ); |
| 458 | if( opt.mode < 0 || opt.mode > 1 ) |
| 459 | goto usage; |
| 460 | } |
| 461 | else if( strcmp( p, "user_name" ) == 0 ) |
| 462 | opt.user_name = q; |
| 463 | else if( strcmp( p, "user_pwd" ) == 0 ) |
| 464 | opt.user_pwd = q; |
| 465 | else if( strcmp( p, "mail_from" ) == 0 ) |
| 466 | opt.mail_from = q; |
| 467 | else if( strcmp( p, "mail_to" ) == 0 ) |
| 468 | opt.mail_to = q; |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 469 | else if( strcmp( p, "ca_file" ) == 0 ) |
| 470 | opt.ca_file = q; |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 471 | else if( strcmp( p, "crt_file" ) == 0 ) |
| 472 | opt.crt_file = q; |
| 473 | else if( strcmp( p, "key_file" ) == 0 ) |
| 474 | opt.key_file = q; |
| 475 | else if( strcmp( p, "force_ciphersuite" ) == 0 ) |
| 476 | { |
| 477 | opt.force_ciphersuite[0] = -1; |
| 478 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 479 | opt.force_ciphersuite[0] = mbedtls_ssl_get_ciphersuite_id( q ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 480 | |
| 481 | if( opt.force_ciphersuite[0] <= 0 ) |
| 482 | goto usage; |
| 483 | |
| 484 | opt.force_ciphersuite[1] = 0; |
| 485 | } |
| 486 | else |
| 487 | goto usage; |
| 488 | } |
| 489 | |
| 490 | /* |
| 491 | * 0. Initialize the RNG and the session data |
| 492 | */ |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 493 | mbedtls_printf( "\n . Seeding the random number generator..." ); |
| Paul Bakker | 508ad5a | 2011-12-04 17:09:26 +0000 | [diff] [blame] | 494 | fflush( stdout ); |
| 495 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 496 | mbedtls_entropy_init( &entropy ); |
| Manuel Pégourié-Gonnard | ec160c0 | 2015-04-28 22:52:30 +0200 | [diff] [blame] | 497 | if( ( ret = mbedtls_ctr_drbg_seed( &ctr_drbg, mbedtls_entropy_func, &entropy, |
| Paul Bakker | ef3f8c7 | 2013-06-24 13:01:08 +0200 | [diff] [blame] | 498 | (const unsigned char *) pers, |
| 499 | strlen( pers ) ) ) != 0 ) |
| Paul Bakker | 508ad5a | 2011-12-04 17:09:26 +0000 | [diff] [blame] | 500 | { |
| Manuel Pégourié-Gonnard | ec160c0 | 2015-04-28 22:52:30 +0200 | [diff] [blame] | 501 | mbedtls_printf( " failed\n ! mbedtls_ctr_drbg_seed returned %d\n", ret ); |
| Paul Bakker | 508ad5a | 2011-12-04 17:09:26 +0000 | [diff] [blame] | 502 | goto exit; |
| 503 | } |
| 504 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 505 | mbedtls_printf( " ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 506 | |
| 507 | /* |
| 508 | * 1.1. Load the trusted CA |
| 509 | */ |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 510 | mbedtls_printf( " . Loading the CA root certificate ..." ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 511 | fflush( stdout ); |
| 512 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 513 | #if defined(MBEDTLS_FS_IO) |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 514 | if( strlen( opt.ca_file ) ) |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 515 | ret = mbedtls_x509_crt_parse_file( &cacert, opt.ca_file ); |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 516 | else |
| 517 | #endif |
| Mateusz Starzyk | 1aec646 | 2021-02-08 15:34:42 +0100 | [diff] [blame] | 518 | #if defined(MBEDTLS_PEM_PARSE_C) |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 519 | ret = mbedtls_x509_crt_parse( &cacert, (const unsigned char *) mbedtls_test_cas_pem, |
| 520 | mbedtls_test_cas_pem_len ); |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 521 | #else |
| 522 | { |
| Mateusz Starzyk | 1aec646 | 2021-02-08 15:34:42 +0100 | [diff] [blame] | 523 | mbedtls_printf("MBEDTLS_PEM_PARSE_C not defined."); |
| Andres Amaya Garcia | 67a42ac | 2018-04-29 21:04:29 +0100 | [diff] [blame] | 524 | goto exit; |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 525 | } |
| 526 | #endif |
| Paul Bakker | 4248823 | 2012-05-16 08:21:05 +0000 | [diff] [blame] | 527 | if( ret < 0 ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 528 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 529 | mbedtls_printf( " failed\n ! mbedtls_x509_crt_parse returned %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 530 | goto exit; |
| 531 | } |
| 532 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 533 | mbedtls_printf( " ok (%d skipped)\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 534 | |
| 535 | /* |
| 536 | * 1.2. Load own certificate and private key |
| 537 | * |
| 538 | * (can be skipped if client authentication is not required) |
| 539 | */ |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 540 | mbedtls_printf( " . Loading the client cert. and key..." ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 541 | fflush( stdout ); |
| 542 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 543 | #if defined(MBEDTLS_FS_IO) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 544 | if( strlen( opt.crt_file ) ) |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 545 | ret = mbedtls_x509_crt_parse_file( &clicert, opt.crt_file ); |
| Paul Bakker | ddf26b4 | 2013-09-18 13:46:23 +0200 | [diff] [blame] | 546 | else |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 547 | #endif |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 548 | ret = mbedtls_x509_crt_parse( &clicert, (const unsigned char *) mbedtls_test_cli_crt, |
| 549 | mbedtls_test_cli_crt_len ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 550 | if( ret != 0 ) |
| 551 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 552 | mbedtls_printf( " failed\n ! mbedtls_x509_crt_parse returned %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 553 | goto exit; |
| 554 | } |
| 555 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 556 | #if defined(MBEDTLS_FS_IO) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 557 | if( strlen( opt.key_file ) ) |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 558 | ret = mbedtls_pk_parse_keyfile( &pkey, opt.key_file, "" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 559 | else |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 560 | #endif |
| Mateusz Starzyk | 1aec646 | 2021-02-08 15:34:42 +0100 | [diff] [blame] | 561 | #if defined(MBEDTLS_PEM_PARSE_C) |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 562 | ret = mbedtls_pk_parse_key( &pkey, (const unsigned char *) mbedtls_test_cli_key, |
| 563 | mbedtls_test_cli_key_len, NULL, 0 ); |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 564 | #else |
| 565 | { |
| Mateusz Starzyk | 1aec646 | 2021-02-08 15:34:42 +0100 | [diff] [blame] | 566 | mbedtls_printf("MBEDTLS_PEM_PARSE_C not defined."); |
| Andres Amaya Garcia | 67a42ac | 2018-04-29 21:04:29 +0100 | [diff] [blame] | 567 | goto exit; |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 568 | } |
| 569 | #endif |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 570 | if( ret != 0 ) |
| 571 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 572 | mbedtls_printf( " failed\n ! mbedtls_pk_parse_key returned %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 573 | goto exit; |
| 574 | } |
| 575 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 576 | mbedtls_printf( " ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 577 | |
| 578 | /* |
| 579 | * 2. Start the connection |
| 580 | */ |
| Manuel Pégourié-Gonnard | c0d7494 | 2015-06-23 12:30:57 +0200 | [diff] [blame] | 581 | mbedtls_printf( " . Connecting to tcp/%s/%s...", opt.server_name, |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 582 | opt.server_port ); |
| 583 | fflush( stdout ); |
| 584 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 585 | if( ( ret = mbedtls_net_connect( &server_fd, opt.server_name, |
| 586 | opt.server_port, MBEDTLS_NET_PROTO_TCP ) ) != 0 ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 587 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 588 | mbedtls_printf( " failed\n ! mbedtls_net_connect returned %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 589 | goto exit; |
| 590 | } |
| 591 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 592 | mbedtls_printf( " ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 593 | |
| 594 | /* |
| 595 | * 3. Setup stuff |
| 596 | */ |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 597 | mbedtls_printf( " . Setting up the SSL/TLS structure..." ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 598 | fflush( stdout ); |
| 599 | |
| Manuel Pégourié-Gonnard | 419d5ae | 2015-05-04 19:32:36 +0200 | [diff] [blame] | 600 | if( ( ret = mbedtls_ssl_config_defaults( &conf, |
| 601 | MBEDTLS_SSL_IS_CLIENT, |
| Manuel Pégourié-Gonnard | b31c5f6 | 2015-06-17 13:53:47 +0200 | [diff] [blame] | 602 | MBEDTLS_SSL_TRANSPORT_STREAM, |
| 603 | MBEDTLS_SSL_PRESET_DEFAULT ) ) != 0 ) |
| Manuel Pégourié-Gonnard | def0bbe | 2015-05-04 14:56:36 +0200 | [diff] [blame] | 604 | { |
| 605 | mbedtls_printf( " failed\n ! mbedtls_ssl_config_defaults returned %d\n\n", ret ); |
| 606 | goto exit; |
| 607 | } |
| 608 | |
| Manuel Pégourié-Gonnard | fcf2fc2 | 2014-03-11 11:10:27 +0100 | [diff] [blame] | 609 | /* OPTIONAL is not optimal for security, |
| 610 | * but makes interop easier in this simplified example */ |
| Manuel Pégourié-Gonnard | 6729e79 | 2015-05-11 09:50:24 +0200 | [diff] [blame] | 611 | mbedtls_ssl_conf_authmode( &conf, MBEDTLS_SSL_VERIFY_OPTIONAL ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 612 | |
| Manuel Pégourié-Gonnard | 6729e79 | 2015-05-11 09:50:24 +0200 | [diff] [blame] | 613 | mbedtls_ssl_conf_rng( &conf, mbedtls_ctr_drbg_random, &ctr_drbg ); |
| 614 | mbedtls_ssl_conf_dbg( &conf, my_debug, stdout ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 615 | |
| Paul Bakker | 645ce3a | 2012-10-31 12:32:41 +0000 | [diff] [blame] | 616 | if( opt.force_ciphersuite[0] != DFL_FORCE_CIPHER ) |
| Manuel Pégourié-Gonnard | 6729e79 | 2015-05-11 09:50:24 +0200 | [diff] [blame] | 617 | mbedtls_ssl_conf_ciphersuites( &conf, opt.force_ciphersuite ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 618 | |
| Manuel Pégourié-Gonnard | 6729e79 | 2015-05-11 09:50:24 +0200 | [diff] [blame] | 619 | mbedtls_ssl_conf_ca_chain( &conf, &cacert, NULL ); |
| Manuel Pégourié-Gonnard | 6729e79 | 2015-05-11 09:50:24 +0200 | [diff] [blame] | 620 | if( ( ret = mbedtls_ssl_conf_own_cert( &conf, &clicert, &pkey ) ) != 0 ) |
| Manuel Pégourié-Gonnard | c5fd391 | 2014-07-08 14:05:52 +0200 | [diff] [blame] | 621 | { |
| Manuel Pégourié-Gonnard | 6729e79 | 2015-05-11 09:50:24 +0200 | [diff] [blame] | 622 | mbedtls_printf( " failed\n ! mbedtls_ssl_conf_own_cert returned %d\n\n", ret ); |
| Manuel Pégourié-Gonnard | c5fd391 | 2014-07-08 14:05:52 +0200 | [diff] [blame] | 623 | goto exit; |
| 624 | } |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 625 | |
| Manuel Pégourié-Gonnard | 06939ce | 2015-05-11 11:25:46 +0200 | [diff] [blame] | 626 | if( ( ret = mbedtls_ssl_setup( &ssl, &conf ) ) != 0 ) |
| 627 | { |
| 628 | mbedtls_printf( " failed\n ! mbedtls_ssl_setup returned %d\n\n", ret ); |
| 629 | goto exit; |
| 630 | } |
| 631 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 632 | if( ( ret = mbedtls_ssl_set_hostname( &ssl, opt.server_name ) ) != 0 ) |
| Manuel Pégourié-Gonnard | c5fd391 | 2014-07-08 14:05:52 +0200 | [diff] [blame] | 633 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 634 | mbedtls_printf( " failed\n ! mbedtls_ssl_set_hostname returned %d\n\n", ret ); |
| Manuel Pégourié-Gonnard | c5fd391 | 2014-07-08 14:05:52 +0200 | [diff] [blame] | 635 | goto exit; |
| 636 | } |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 637 | |
| Manuel Pégourié-Gonnard | 06939ce | 2015-05-11 11:25:46 +0200 | [diff] [blame] | 638 | mbedtls_ssl_set_bio( &ssl, &server_fd, mbedtls_net_send, mbedtls_net_recv, NULL ); |
| 639 | |
| 640 | mbedtls_printf( " ok\n" ); |
| 641 | |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 642 | if( opt.mode == MODE_SSL_TLS ) |
| 643 | { |
| Manuel Pégourié-Gonnard | 89addc4 | 2015-04-20 10:56:18 +0100 | [diff] [blame] | 644 | if( do_handshake( &ssl ) != 0 ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 645 | goto exit; |
| 646 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 647 | mbedtls_printf( " > Get header from server:" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 648 | fflush( stdout ); |
| 649 | |
| 650 | ret = write_ssl_and_get_response( &ssl, buf, 0 ); |
| 651 | if( ret < 200 || ret > 299 ) |
| 652 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 653 | mbedtls_printf( " failed\n ! server responded with %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 654 | goto exit; |
| 655 | } |
| 656 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 657 | mbedtls_printf(" ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 658 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 659 | mbedtls_printf( " > Write EHLO to server:" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 660 | fflush( stdout ); |
| 661 | |
| 662 | gethostname( hostname, 32 ); |
| Paul Bakker | d75ba40 | 2014-01-24 16:11:17 +0100 | [diff] [blame] | 663 | len = sprintf( (char *) buf, "EHLO %s\r\n", hostname ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 664 | ret = write_ssl_and_get_response( &ssl, buf, len ); |
| 665 | if( ret < 200 || ret > 299 ) |
| 666 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 667 | mbedtls_printf( " failed\n ! server responded with %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 668 | goto exit; |
| 669 | } |
| 670 | } |
| 671 | else |
| 672 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 673 | mbedtls_printf( " > Get header from server:" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 674 | fflush( stdout ); |
| 675 | |
| Manuel Pégourié-Gonnard | 5db6432 | 2015-06-30 15:40:39 +0200 | [diff] [blame] | 676 | ret = write_and_get_response( &server_fd, buf, 0 ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 677 | if( ret < 200 || ret > 299 ) |
| 678 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 679 | mbedtls_printf( " failed\n ! server responded with %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 680 | goto exit; |
| 681 | } |
| 682 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 683 | mbedtls_printf(" ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 684 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 685 | mbedtls_printf( " > Write EHLO to server:" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 686 | fflush( stdout ); |
| 687 | |
| 688 | gethostname( hostname, 32 ); |
| Paul Bakker | d75ba40 | 2014-01-24 16:11:17 +0100 | [diff] [blame] | 689 | len = sprintf( (char *) buf, "EHLO %s\r\n", hostname ); |
| Manuel Pégourié-Gonnard | 5db6432 | 2015-06-30 15:40:39 +0200 | [diff] [blame] | 690 | ret = write_and_get_response( &server_fd, buf, len ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 691 | if( ret < 200 || ret > 299 ) |
| 692 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 693 | mbedtls_printf( " failed\n ! server responded with %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 694 | goto exit; |
| 695 | } |
| 696 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 697 | mbedtls_printf(" ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 698 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 699 | mbedtls_printf( " > Write STARTTLS to server:" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 700 | fflush( stdout ); |
| 701 | |
| 702 | gethostname( hostname, 32 ); |
| Paul Bakker | d75ba40 | 2014-01-24 16:11:17 +0100 | [diff] [blame] | 703 | len = sprintf( (char *) buf, "STARTTLS\r\n" ); |
| Manuel Pégourié-Gonnard | 5db6432 | 2015-06-30 15:40:39 +0200 | [diff] [blame] | 704 | ret = write_and_get_response( &server_fd, buf, len ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 705 | if( ret < 200 || ret > 299 ) |
| 706 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 707 | mbedtls_printf( " failed\n ! server responded with %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 708 | goto exit; |
| 709 | } |
| 710 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 711 | mbedtls_printf(" ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 712 | |
| Manuel Pégourié-Gonnard | 89addc4 | 2015-04-20 10:56:18 +0100 | [diff] [blame] | 713 | if( do_handshake( &ssl ) != 0 ) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 714 | goto exit; |
| 715 | } |
| 716 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 717 | #if defined(MBEDTLS_BASE64_C) |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 718 | if( opt.authentication ) |
| 719 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 720 | mbedtls_printf( " > Write AUTH LOGIN to server:" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 721 | fflush( stdout ); |
| 722 | |
| Paul Bakker | d75ba40 | 2014-01-24 16:11:17 +0100 | [diff] [blame] | 723 | len = sprintf( (char *) buf, "AUTH LOGIN\r\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 724 | ret = write_ssl_and_get_response( &ssl, buf, len ); |
| 725 | if( ret < 200 || ret > 399 ) |
| 726 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 727 | mbedtls_printf( " failed\n ! server responded with %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 728 | goto exit; |
| 729 | } |
| 730 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 731 | mbedtls_printf(" ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 732 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 733 | mbedtls_printf( " > Write username to server: %s", opt.user_name ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 734 | fflush( stdout ); |
| 735 | |
| Manuel Pégourié-Gonnard | ba56136 | 2015-06-02 16:30:35 +0100 | [diff] [blame] | 736 | ret = mbedtls_base64_encode( base, sizeof( base ), &n, (const unsigned char *) opt.user_name, |
| Paul Bakker | ef3f8c7 | 2013-06-24 13:01:08 +0200 | [diff] [blame] | 737 | strlen( opt.user_name ) ); |
| Alfred Klomp | 7c03424 | 2014-07-14 22:11:13 +0200 | [diff] [blame] | 738 | |
| 739 | if( ret != 0 ) { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 740 | mbedtls_printf( " failed\n ! mbedtls_base64_encode returned %d\n\n", ret ); |
| Alfred Klomp | 7c03424 | 2014-07-14 22:11:13 +0200 | [diff] [blame] | 741 | goto exit; |
| 742 | } |
| Paul Bakker | d75ba40 | 2014-01-24 16:11:17 +0100 | [diff] [blame] | 743 | len = sprintf( (char *) buf, "%s\r\n", base ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 744 | ret = write_ssl_and_get_response( &ssl, buf, len ); |
| 745 | if( ret < 300 || ret > 399 ) |
| 746 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 747 | mbedtls_printf( " failed\n ! server responded with %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 748 | goto exit; |
| 749 | } |
| 750 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 751 | mbedtls_printf(" ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 752 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 753 | mbedtls_printf( " > Write password to server: %s", opt.user_pwd ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 754 | fflush( stdout ); |
| 755 | |
| Manuel Pégourié-Gonnard | ba56136 | 2015-06-02 16:30:35 +0100 | [diff] [blame] | 756 | ret = mbedtls_base64_encode( base, sizeof( base ), &n, (const unsigned char *) opt.user_pwd, |
| Paul Bakker | ef3f8c7 | 2013-06-24 13:01:08 +0200 | [diff] [blame] | 757 | strlen( opt.user_pwd ) ); |
| Alfred Klomp | 7c03424 | 2014-07-14 22:11:13 +0200 | [diff] [blame] | 758 | |
| 759 | if( ret != 0 ) { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 760 | mbedtls_printf( " failed\n ! mbedtls_base64_encode returned %d\n\n", ret ); |
| Alfred Klomp | 7c03424 | 2014-07-14 22:11:13 +0200 | [diff] [blame] | 761 | goto exit; |
| 762 | } |
| Paul Bakker | d75ba40 | 2014-01-24 16:11:17 +0100 | [diff] [blame] | 763 | len = sprintf( (char *) buf, "%s\r\n", base ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 764 | ret = write_ssl_and_get_response( &ssl, buf, len ); |
| 765 | if( ret < 200 || ret > 399 ) |
| 766 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 767 | mbedtls_printf( " failed\n ! server responded with %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 768 | goto exit; |
| 769 | } |
| 770 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 771 | mbedtls_printf(" ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 772 | } |
| Paul Bakker | 5690efc | 2011-05-26 13:16:06 +0000 | [diff] [blame] | 773 | #endif |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 774 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 775 | mbedtls_printf( " > Write MAIL FROM to server:" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 776 | fflush( stdout ); |
| 777 | |
| Paul Bakker | d75ba40 | 2014-01-24 16:11:17 +0100 | [diff] [blame] | 778 | len = sprintf( (char *) buf, "MAIL FROM:<%s>\r\n", opt.mail_from ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 779 | ret = write_ssl_and_get_response( &ssl, buf, len ); |
| 780 | if( ret < 200 || ret > 299 ) |
| 781 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 782 | mbedtls_printf( " failed\n ! server responded with %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 783 | goto exit; |
| 784 | } |
| 785 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 786 | mbedtls_printf(" ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 787 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 788 | mbedtls_printf( " > Write RCPT TO to server:" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 789 | fflush( stdout ); |
| 790 | |
| Paul Bakker | d75ba40 | 2014-01-24 16:11:17 +0100 | [diff] [blame] | 791 | len = sprintf( (char *) buf, "RCPT TO:<%s>\r\n", opt.mail_to ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 792 | ret = write_ssl_and_get_response( &ssl, buf, len ); |
| 793 | if( ret < 200 || ret > 299 ) |
| 794 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 795 | mbedtls_printf( " failed\n ! server responded with %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 796 | goto exit; |
| 797 | } |
| 798 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 799 | mbedtls_printf(" ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 800 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 801 | mbedtls_printf( " > Write DATA to server:" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 802 | fflush( stdout ); |
| 803 | |
| Paul Bakker | d75ba40 | 2014-01-24 16:11:17 +0100 | [diff] [blame] | 804 | len = sprintf( (char *) buf, "DATA\r\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 805 | ret = write_ssl_and_get_response( &ssl, buf, len ); |
| 806 | if( ret < 300 || ret > 399 ) |
| 807 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 808 | mbedtls_printf( " failed\n ! server responded with %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 809 | goto exit; |
| 810 | } |
| 811 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 812 | mbedtls_printf(" ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 813 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 814 | mbedtls_printf( " > Write content to server:" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 815 | fflush( stdout ); |
| 816 | |
| Manuel Pégourié-Gonnard | 9169921 | 2015-01-22 16:26:39 +0000 | [diff] [blame] | 817 | len = sprintf( (char *) buf, "From: %s\r\nSubject: mbed TLS Test mail\r\n\r\n" |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 818 | "This is a simple test mail from the " |
| Manuel Pégourié-Gonnard | 9169921 | 2015-01-22 16:26:39 +0000 | [diff] [blame] | 819 | "mbed TLS mail client example.\r\n" |
| Paul Bakker | d75ba40 | 2014-01-24 16:11:17 +0100 | [diff] [blame] | 820 | "\r\n" |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 821 | "Enjoy!", opt.mail_from ); |
| 822 | ret = write_ssl_data( &ssl, buf, len ); |
| 823 | |
| 824 | len = sprintf( (char *) buf, "\r\n.\r\n"); |
| 825 | ret = write_ssl_and_get_response( &ssl, buf, len ); |
| 826 | if( ret < 200 || ret > 299 ) |
| 827 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 828 | mbedtls_printf( " failed\n ! server responded with %d\n\n", ret ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 829 | goto exit; |
| 830 | } |
| 831 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 832 | mbedtls_printf(" ok\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 833 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 834 | mbedtls_ssl_close_notify( &ssl ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 835 | |
| Andres Amaya Garcia | 67a42ac | 2018-04-29 21:04:29 +0100 | [diff] [blame] | 836 | exit_code = MBEDTLS_EXIT_SUCCESS; |
| 837 | |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 838 | exit: |
| 839 | |
| Manuel Pégourié-Gonnard | 3d7d00a | 2015-06-30 15:55:03 +0200 | [diff] [blame] | 840 | mbedtls_net_free( &server_fd ); |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 841 | mbedtls_x509_crt_free( &clicert ); |
| 842 | mbedtls_x509_crt_free( &cacert ); |
| 843 | mbedtls_pk_free( &pkey ); |
| 844 | mbedtls_ssl_free( &ssl ); |
| Manuel Pégourié-Gonnard | def0bbe | 2015-05-04 14:56:36 +0200 | [diff] [blame] | 845 | mbedtls_ssl_config_free( &conf ); |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 846 | mbedtls_ctr_drbg_free( &ctr_drbg ); |
| 847 | mbedtls_entropy_free( &entropy ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 848 | |
| Paul Bakker | cce9d77 | 2011-11-18 14:26:47 +0000 | [diff] [blame] | 849 | #if defined(_WIN32) |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 850 | mbedtls_printf( " + Press Enter to exit this program.\n" ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 851 | fflush( stdout ); getchar(); |
| 852 | #endif |
| 853 | |
| Krzysztof Stachowiak | 5e1b195 | 2019-04-24 14:24:46 +0200 | [diff] [blame] | 854 | mbedtls_exit( exit_code ); |
| Paul Bakker | 1496d38 | 2011-05-23 12:07:29 +0000 | [diff] [blame] | 855 | } |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 856 | #endif /* MBEDTLS_BIGNUM_C && MBEDTLS_ENTROPY_C && MBEDTLS_SSL_TLS_C && |
| 857 | MBEDTLS_SSL_CLI_C && MBEDTLS_NET_C && MBEDTLS_RSA_C ** |
| 858 | MBEDTLS_CTR_DRBG_C */ |