main-https-socket-reuse.cpp

00001 #include "select-demo.h"
00002 
00003 /**
00004  * This demo shows how to re-use sockets, so the TLS handshake only has to happen once
00005  */
00006 
00007 #if DEMO == DEMO_HTTPS_SOCKET_REUSE
00008 
00009 #include "mbed.h"
00010 #include "mbed_trace.h"
00011 #include "https_request.h"
00012 #include "network-helper.h"
00013 
00014 /* List of trusted root CA certificates
00015  * currently one: Let's Encrypt, the CA for httpbin.org
00016  *
00017  * To add more root certificates, just concatenate them.
00018  */
00019 const char SSL_CA_PEM[] = "-----BEGIN CERTIFICATE-----\n"
00020     "MIIEkjCCA3qgAwIBAgIQCgFBQgAAAVOFc2oLheynCDANBgkqhkiG9w0BAQsFADA/\n"
00021     "MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMT\n"
00022     "DkRTVCBSb290IENBIFgzMB4XDTE2MDMxNzE2NDA0NloXDTIxMDMxNzE2NDA0Nlow\n"
00023     "SjELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUxldCdzIEVuY3J5cHQxIzAhBgNVBAMT\n"
00024     "GkxldCdzIEVuY3J5cHQgQXV0aG9yaXR5IFgzMIIBIjANBgkqhkiG9w0BAQEFAAOC\n"
00025     "AQ8AMIIBCgKCAQEAnNMM8FrlLke3cl03g7NoYzDq1zUmGSXhvb418XCSL7e4S0EF\n"
00026     "q6meNQhY7LEqxGiHC6PjdeTm86dicbp5gWAf15Gan/PQeGdxyGkOlZHP/uaZ6WA8\n"
00027     "SMx+yk13EiSdRxta67nsHjcAHJyse6cF6s5K671B5TaYucv9bTyWaN8jKkKQDIZ0\n"
00028     "Z8h/pZq4UmEUEz9l6YKHy9v6Dlb2honzhT+Xhq+w3Brvaw2VFn3EK6BlspkENnWA\n"
00029     "a6xK8xuQSXgvopZPKiAlKQTGdMDQMc2PMTiVFrqoM7hD8bEfwzB/onkxEz0tNvjj\n"
00030     "/PIzark5McWvxI0NHWQWM6r6hCm21AvA2H3DkwIDAQABo4IBfTCCAXkwEgYDVR0T\n"
00031     "AQH/BAgwBgEB/wIBADAOBgNVHQ8BAf8EBAMCAYYwfwYIKwYBBQUHAQEEczBxMDIG\n"
00032     "CCsGAQUFBzABhiZodHRwOi8vaXNyZy50cnVzdGlkLm9jc3AuaWRlbnRydXN0LmNv\n"
00033     "bTA7BggrBgEFBQcwAoYvaHR0cDovL2FwcHMuaWRlbnRydXN0LmNvbS9yb290cy9k\n"
00034     "c3Ryb290Y2F4My5wN2MwHwYDVR0jBBgwFoAUxKexpHsscfrb4UuQdf/EFWCFiRAw\n"
00035     "VAYDVR0gBE0wSzAIBgZngQwBAgEwPwYLKwYBBAGC3xMBAQEwMDAuBggrBgEFBQcC\n"
00036     "ARYiaHR0cDovL2Nwcy5yb290LXgxLmxldHNlbmNyeXB0Lm9yZzA8BgNVHR8ENTAz\n"
00037     "MDGgL6AthitodHRwOi8vY3JsLmlkZW50cnVzdC5jb20vRFNUUk9PVENBWDNDUkwu\n"
00038     "Y3JsMB0GA1UdDgQWBBSoSmpjBH3duubRObemRWXv86jsoTANBgkqhkiG9w0BAQsF\n"
00039     "AAOCAQEA3TPXEfNjWDjdGBX7CVW+dla5cEilaUcne8IkCJLxWh9KEik3JHRRHGJo\n"
00040     "uM2VcGfl96S8TihRzZvoroed6ti6WqEBmtzw3Wodatg+VyOeph4EYpr/1wXKtx8/\n"
00041     "wApIvJSwtmVi4MFU5aMqrSDE6ea73Mj2tcMyo5jMd6jmeWUHK8so/joWUoHOUgwu\n"
00042     "X4Po1QYz+3dszkDqMp4fklxBwXRsW10KXzPMTZ+sOPAveyxindmjkW8lGy+QsRlG\n"
00043     "PfZ+G6Z6h7mjem0Y+iWlkYcV4PIWL1iwBi8saCbGS5jN2p8M+X+Q7UNKEkROb3N6\n"
00044     "KOqkqm57TH2H3eDJAkSnh6/DNFu0Qg==\n"
00045     "-----END CERTIFICATE-----\n";
00046 
00047 void dump_response(HttpResponse* res) {
00048     printf("Status: %d - %s\n", res->get_status_code(), res->get_status_message().c_str());
00049 
00050     printf("Headers:\n");
00051     for (size_t ix = 0; ix < res->get_headers_length(); ix++) {
00052         printf("\t%s: %s\n", res->get_headers_fields()[ix]->c_str(), res->get_headers_values()[ix]->c_str());
00053     }
00054     printf("\nBody (%d bytes):\n\n%s\n", res->get_body_length(), res->get_body_as_string().c_str());
00055 }
00056 
00057 int main() {
00058     NetworkInterface* network = connect_to_default_network_interface();
00059     if (!network) {
00060         printf("Cannot connect to the network, see serial output\n");
00061         return 1;
00062     }
00063 
00064     mbed_trace_init();
00065 
00066     // Create a TLS socket (which holds a TCPSocket)
00067     printf("\n----- Setting up TLS connection -----\n");
00068 
00069     nsapi_error_t r;
00070 
00071     TLSSocket* socket = new TLSSocket();
00072     if ((r = socket->open(network)) != NSAPI_ERROR_OK) {
00073         printf("TLS socket open failed (%d)\n", r);
00074         return 1;
00075     }
00076     if ((r = socket->set_root_ca_cert(SSL_CA_PEM)) != NSAPI_ERROR_OK) {
00077         printf("TLS socket set_root_ca_cert failed (%d)\n", r);
00078         return 1;
00079     }
00080     if ((r = socket->connect("httpbin.org", 443)) != NSAPI_ERROR_OK) {
00081         printf("TLS socket connect failed (%d)\n", r);
00082         return 1;
00083     }
00084 
00085     // GET request to httpbin.org
00086     {
00087         HttpsRequest* get_req = new HttpsRequest(socket, HTTP_GET, "https://httpbin.org/status/418");
00088 
00089         HttpResponse* get_res = get_req->send();
00090         if (!get_res) {
00091             printf("HttpRequest failed (error code %d)\n", get_req->get_error());
00092             return 1;
00093         }
00094         printf("\n----- HTTPS GET response -----\n");
00095         dump_response(get_res);
00096 
00097         delete get_req;
00098     }
00099 
00100     // POST request to httpbin.org
00101     {
00102         HttpsRequest* post_req = new HttpsRequest(socket, HTTP_POST, "https://httpbin.org/post");
00103         post_req->set_header("Content-Type", "application/json");
00104 
00105         const char body[] = "{\"hello\":\"world\"}";
00106 
00107         HttpResponse* post_res = post_req->send(body, strlen(body));
00108         if (!post_res) {
00109             printf("HttpRequest failed (error code %d)\n", post_req->get_error());
00110             return 1;
00111         }
00112 
00113         printf("\n----- HTTPS POST response -----\n");
00114         dump_response(post_res);
00115 
00116         delete post_req;
00117     }
00118 
00119     socket->close();
00120     delete socket;
00121 
00122     wait(osWaitForever);
00123 }
00124 
00125 #endif