Home Verkennen Help
Registreren Inloggen
third
/
libks
spiegel van https://github.com/signalwire/libks.git
2
0
Vork 0
Bestanden Issues 0 Wiki
Boom: 08352dbc58
Aftakkingen Labels
libks
/
tests
/
testwebsock.c

testwebsock.c 7.6 KB
Geschiedenis Ruwe

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309 
  1. /*
    2. 

  2.  * Copyright (c) 2018-2023 SignalWire, Inc
    3. 

  3.  *
    4. 

  4.  * Permission is hereby granted, free of charge, to any person obtaining a copy
    5. 

  5.  * of this software and associated documentation files (the "Software"), to deal
    6. 

  6.  * in the Software without restriction, including without limitation the rights
    7. 

  7.  * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
    8. 

  8.  * copies of the Software, and to permit persons to whom the Software is
    9. 

  9.  * furnished to do so, subject to the following conditions:
    10. 

  10.  *
    11. 

  11.  * The above copyright notice and this permission notice shall be included in all
    12. 

  12.  * copies or substantial portions of the Software.
    13. 

  13.  *
    14. 

  14.  * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
    15. 

  15.  * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
    16. 

  16.  * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
    17. 

  17.  * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
    18. 

  18.  * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
    19. 

  19.  * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
    20. 

  20.  * SOFTWARE.
    21. 

  21.  */
    22. 

  22. 

  23. #include "libks/ks.h"
    24. 

  24. #include <tap.h>
    25. 

  25. 

  26. #ifdef _WINDOWS_
    27. 

  27. #undef unlink
    28. 

  28. #define unlink _unlink
    29. 

  29. #endif
    30. 

  30. 

  31. static char v4[48] = "";
    32. 

  32. static char v6[48] = "";
    33. 

  33. static int mask = 0;
    34. 

  34. static int tcp_port = 8090;
    35. 

  35. 

  36. 

  37. static char __MSG[] = "TESTING................................................................................/TESTING";
    38. 

  38. 

  39. 

  40. typedef struct ssl_profile_s {
    41. 

  41. 	const SSL_METHOD *ssl_method;
    42. 

  42. 	SSL_CTX *ssl_ctx;
    43. 

  43. 	char cert[512];
    44. 

  44. 	char key[512];
    45. 

  45. 	char chain[512];
    46. 

  46. } ssl_profile_t;
    47. 

  47. 

  48. static int init_ssl(ssl_profile_t *profile)
    49. 

  49. {
    50. 

  50. 	const char *err = "";
    51. 

  51. 

  52. 	profile->ssl_ctx = SSL_CTX_new(profile->ssl_method);         /* create context */
    53. 

  53. 	assert(profile->ssl_ctx);
    54. 

  54. 

  55. 	/* Disable SSLv2 */
    56. 

  56. 	SSL_CTX_set_options(profile->ssl_ctx, SSL_OP_NO_SSLv2);
    57. 

  57. 	/* Disable SSLv3 */
    58. 

  58. 	SSL_CTX_set_options(profile->ssl_ctx, SSL_OP_NO_SSLv3);
    59. 

  59. 	/* Disable TLSv1 */
    60. 

  60. 	SSL_CTX_set_options(profile->ssl_ctx, SSL_OP_NO_TLSv1);
    61. 

  61. 	/* Disable Compression CRIME (Compression Ratio Info-leak Made Easy) */
    62. 

  62. 	SSL_CTX_set_options(profile->ssl_ctx, SSL_OP_NO_COMPRESSION);
    63. 

  63. 

  64. 	/* set the local certificate from CertFile */
    65. 

  65. 	if (!ks_zstr(profile->chain)) {
    66. 

  66. 		if (!SSL_CTX_use_certificate_chain_file(profile->ssl_ctx, profile->chain)) {
    67. 

  67. 			err = "CERT CHAIN FILE ERROR";
    68. 

  68. 			goto fail;
    69. 

  69. 		}
    70. 

  70. 	}
    71. 

  71. 

  72. 	if (!SSL_CTX_use_certificate_file(profile->ssl_ctx, profile->cert, SSL_FILETYPE_PEM)) {
    73. 

  73. 		err = "CERT FILE ERROR";
    74. 

  74. 		goto fail;
    75. 

  75. 	}
    76. 

  76. 

  77. 	/* set the private key from KeyFile */
    78. 

  78. 

  79. 	if (!SSL_CTX_use_PrivateKey_file(profile->ssl_ctx, profile->key, SSL_FILETYPE_PEM)) {
    80. 

  80. 		err = "PRIVATE KEY FILE ERROR";
    81. 

  81. 		goto fail;
    82. 

  82. 	}
    83. 

  83. 

  84. 	/* verify private key */
    85. 

  85. 	if ( !SSL_CTX_check_private_key(profile->ssl_ctx) ) {
    86. 

  86. 		err = "PRIVATE KEY FILE ERROR";
    87. 

  87. 		goto fail;
    88. 

  88. 	}
    89. 

  89. 

  90. 	SSL_CTX_set_cipher_list(profile->ssl_ctx, "HIGH:!DSS:!aNULL@STRENGTH");
    91. 

  91. 

  92. 	return 1;
    93. 

  93. 

  94.  fail:
    95. 

  95. 	ks_log(KS_LOG_ERROR, "SSL ERR: %s\n", err);
    96. 

  96. 

  97. 	return 0;
    98. 

  98. 

  99. }
    100. 

  100. 

  101. struct tcp_data {
    102. 

  102. 	ks_socket_t sock;
    103. 

  103. 	ks_sockaddr_t addr;
    104. 

  104. 	int ready;
    105. 

  105. 	char *ip;
    106. 

  106. 	ks_pool_t *pool;
    107. 

  107. 	int ssl;
    108. 

  108. 	ssl_profile_t client_profile;
    109. 

  109. 	ssl_profile_t server_profile;
    110. 

  110. };
    111. 

  111. 

  112. void server_callback(ks_socket_t server_sock, ks_socket_t client_sock, ks_sockaddr_t *addr, void *user_data)
    113. 

  113. {
    114. 

  114. 	struct tcp_data *tcp_data = (struct tcp_data *) user_data;
    115. 

  115. 	ks_size_t bytes;
    116. 

  116. 	kws_t *kws = NULL;
    117. 

  117. 	kws_opcode_t oc;
    118. 

  118. 	uint8_t *data;
    119. 

  119. 

  120. 

  121. 	if (tcp_data->ssl) {
    122. 

  122. 		tcp_data->server_profile.ssl_method = SSLv23_server_method();
    123. 

  123. 		ks_set_string(tcp_data->server_profile.cert, "./testwebsock.pem");
    124. 

  124. 		ks_set_string(tcp_data->server_profile.key, "./testwebsock.pem");
    125. 

  125. 		ks_set_string(tcp_data->server_profile.chain, "./testwebsock.pem");
    126. 

  126. 		init_ssl(&tcp_data->server_profile);
    127. 

  127. 	}
    128. 

  128. 

  129. 	printf("WS %s SERVER SOCK %d connection from %s:%u\n", tcp_data->ssl ? "SSL" : "PLAIN", (int)server_sock, addr->host, addr->port);
    130. 

  130. 

  131. 	if (kws_init(&kws, client_sock, tcp_data->server_profile.ssl_ctx, NULL, KWS_BLOCK, tcp_data->pool) != KS_STATUS_SUCCESS) {
    132. 

  132. 		printf("WS SERVER CREATE FAIL\n");
    133. 

  133. 		goto end;
    134. 

  134. 	}
    135. 

  135. 

  136. 	do {
    137. 

  137. 

  138. 		bytes = kws_read_frame(kws, &oc, &data);
    139. 

  139. 

  140. 		if (bytes <= 0) {
    141. 

  141. 			printf("WS SERVER BAIL %s\n", strerror(ks_errno()));
    142. 

  142. 			break;
    143. 

  143. 		}
    144. 

  144. 		printf("WS SERVER READ %ld bytes [%s]\n", (long)bytes, (char *)data);
    145. 

  145. 	} while(ks_zstr_buf((char *)data) || strcmp((char *)data, __MSG));
    146. 

  146. 

  147. 	bytes = kws_write_frame(kws, WSOC_TEXT, (char *)data, strlen((char *)data));
    148. 

  148. 

  149. 	printf("WS SERVER WRITE %ld bytes\n", (long)bytes);
    150. 

  150. 

  151.  end:
    152. 

  152. 

  153. 	ks_socket_close(&client_sock);
    154. 

  154. 

  155. 	kws_destroy(&kws);
    156. 

  156. 

  157. 	if (tcp_data->ssl) {
    158. 

  158. 		SSL_CTX_free(tcp_data->server_profile.ssl_ctx);
    159. 

  159. 	}
    160. 

  160. 

  161. 	printf("WS SERVER COMPLETE\n");
    162. 

  162. }
    163. 

  163. 

  164. 

  165. 

  166. static void *tcp_sock_server(ks_thread_t *thread, void *thread_data)
    167. 

  167. {
    168. 

  168. 	struct tcp_data *tcp_data = (struct tcp_data *) thread_data;
    169. 

  169. 

  170. 	tcp_data->ready = 1;
    171. 

  171. 	ks_listen_sock(tcp_data->sock, &tcp_data->addr, 0, server_callback, tcp_data);
    172. 

  172. 

  173. 	printf("WS THREAD DONE\n");
    174. 

  174. 

  175. 	return NULL;
    176. 

  176. }
    177. 

  177. 

  178. static int test_ws(char *ip, int ssl)
    179. 

  179. {
    180. 

  180. 	ks_thread_t *thread_p = NULL;
    181. 

  181. 	ks_pool_t *pool;
    182. 

  182. 	ks_sockaddr_t addr;
    183. 

  183. 	int family = AF_INET;
    184. 

  184. 	ks_socket_t cl_sock = KS_SOCK_INVALID;
    185. 

  185. 	struct tcp_data tcp_data = { 0 };
    186. 

  186. 	int r = 1, sanity = 100;
    187. 

  187. 	kws_t *kws = NULL;
    188. 

  188. 

  189. 	ks_pool_open(&pool);
    190. 

  190. 

  191. 	tcp_data.pool = pool;
    192. 

  192. 

  193. 	if (ssl) {
    194. 

  194. 		tcp_data.ssl = 1;
    195. 

  195. 		tcp_data.client_profile.ssl_method = SSLv23_client_method();
    196. 

  196. 		ks_set_string(tcp_data.client_profile.cert, "./testwebsock.pem");
    197. 

  197. 		ks_set_string(tcp_data.client_profile.key, "./testwebsock.pem");
    198. 

  198. 		ks_set_string(tcp_data.client_profile.chain, "./testwebsock.pem");
    199. 

  199. 		init_ssl(&tcp_data.client_profile);
    200. 

  200. 	}
    201. 

  201. 

  202. 

  203. 	if (strchr(ip, ':')) {
    204. 

  204. 		family = AF_INET6;
    205. 

  205. 	}
    206. 

  206. 

  207. 	if (ks_addr_set(&tcp_data.addr, ip, tcp_port, family) != KS_STATUS_SUCCESS) {
    208. 

  208. 		r = 0;
    209. 

  209. 		printf("WS CLIENT Can't set ADDR\n");
    210. 

  210. 		goto end;
    211. 

  211. 	}
    212. 

  212. 

  213. 	if ((tcp_data.sock = socket(family, SOCK_STREAM, IPPROTO_TCP)) == KS_SOCK_INVALID) {
    214. 

  214. 		r = 0;
    215. 

  215. 		printf("WS CLIENT Can't create sock family %d\n", family);
    216. 

  216. 		goto end;
    217. 

  217. 	}
    218. 

  218. 

  219. 	ks_socket_option(tcp_data.sock, SO_REUSEADDR, KS_TRUE);
    220. 

  220. 	ks_socket_option(tcp_data.sock, TCP_NODELAY, KS_TRUE);
    221. 

  221. 

  222. 	tcp_data.ip = ip;
    223. 

  223. 

  224. 	ks_thread_create(&thread_p, tcp_sock_server, &tcp_data, pool);
    225. 

  225. 

  226. 	while(!tcp_data.ready && --sanity > 0) {
    227. 

  227. 		ks_sleep(10000);
    228. 

  228. 	}
    229. 

  229. 

  230. 	ks_addr_set(&addr, ip, tcp_port, family);
    231. 

  231. 	cl_sock = ks_socket_connect(SOCK_STREAM, IPPROTO_TCP, &addr);
    232. 

  232. 

  233. 	printf("WS %s CLIENT SOCKET %d %s %d\n", ssl ? "SSL" : "PLAIN", (int)cl_sock, addr.host, addr.port);
    234. 

  234. 

  235. 	if (kws_init(&kws, cl_sock, tcp_data.client_profile.ssl_ctx, "/verto:tatooine.freeswitch.org:verto", KWS_BLOCK, pool) != KS_STATUS_SUCCESS) {
    236. 

  236. 		printf("WS CLIENT CREATE FAIL\n");
    237. 

  237. 		goto end;
    238. 

  238. 	}
    239. 

  239. 

  240. 	kws_write_frame(kws, WSOC_TEXT, __MSG, strlen(__MSG));
    241. 

  241. 

  242. 	kws_opcode_t oc;
    243. 

  243. 	uint8_t *data;
    244. 

  244. 	ks_ssize_t bytes;
    245. 

  245. 

  246. 	bytes = kws_read_frame(kws, &oc, &data);
    247. 

  247. 	printf("WS CLIENT READ %ld bytes [%s]\n", (long)bytes, (char *)data);
    248. 

  248. 

  249.  end:
    250. 

  250. 

  251. 	kws_destroy(&kws);
    252. 

  252. 

  253. 	if (ssl) {
    254. 

  254. 		SSL_CTX_free(tcp_data.client_profile.ssl_ctx);
    255. 

  255. 	}
    256. 

  256. 

  257. 	if (tcp_data.sock != KS_SOCK_INVALID) {
    258. 

  258. 		ks_socket_shutdown(tcp_data.sock, 2);
    259. 

  259. 		ks_socket_close(&tcp_data.sock);
    260. 

  260. 	}
    261. 

  261. 

  262. 	if (thread_p) {
    263. 

  263. 		ks_thread_join(thread_p);
    264. 

  264. 	}
    265. 

  265. 

  266. 	ks_socket_close(&cl_sock);
    267. 

  267. 

  268. 	ks_pool_close(&pool);
    269. 

  269. 

  270. 	return r;
    271. 

  271. }
    272. 

  272. 

  273. 

  274. 

  275. int main(void)
    276. 

  276. {
    277. 

  277. 	int have_v4 = 0, have_v6 = 0;
    278. 

  278. 	ks_find_local_ip(v4, sizeof(v4), &mask, AF_INET, NULL);
    279. 

  279. 	ks_find_local_ip(v6, sizeof(v6), NULL, AF_INET6, NULL);
    280. 

  280. 	ks_init();
    281. 

  281. 

  282. 	printf("IPS: v4: [%s] v6: [%s]\n", v4, v6);
    283. 

  283. 

  284. 	have_v4 = ks_zstr_buf(v4) ? 0 : 1;
    285. 

  285. 	have_v6 = ks_zstr_buf(v6) ? 0 : 1;
    286. 

  286. 

  287. 	plan((have_v4 * 2) + (have_v6 * 2) + 1);
    288. 

  288. 

  289. 	ok(have_v4 || have_v6);
    290. 

  290. 

  291. 	if (have_v4 || have_v6) {
    292. 

  292. 		ks_gen_cert(".", "testwebsock.pem");
    293. 

  293. 	}
    294. 

  294. 

  295. 	if (have_v4) {
    296. 

  296. 		ok(test_ws(v4, 0));
    297. 

  297. 		ok(test_ws(v4, 1));
    298. 

  298. 	}
    299. 

  299. 

  300. 	if (have_v6) {
    301. 

  301. 		ok(test_ws(v6, 0));
    302. 

  302. 		ok(test_ws(v6, 1));
    303. 

  303. 	}
    304. 

  304. 

  305. 	unlink("./testwebsock.pem");
    306. 

  306. 	ks_shutdown();
    307. 

  307. 

  308. 	done_testing();
    309. 

  309. }
    310.