Michael Ansolis / TLS_cyassl

A fork of the TLS_cyassl embedded SSL library with certificate validation disabled.

Dependencies:   cyassl-lib

Fork of TLS_cyassl by Francois Berder

Diff: TLSConnection.cpp

Revision:
0:815067fd66c9
Child:
1:9494492e9bf7
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/TLSConnection.cpp	Thu Sep 12 16:37:08 2013 +0000
@@ -0,0 +1,119 @@
+#define __DEBUG__ 4 //Maximum verbosity
+#ifndef __MODULE__
+#define __MODULE__ "TLSConnection.cpp"
+#endif
+
+#include "dbg.h"
+#include "TLSConnection.h"
+#include <stdlib.h>
+#include <stdio.h>
+#include "bsd_socket.h"
+#include "cert.h"
+#undef NO_CERTS
+#undef NO_FILESYSTEM
+#include "ssl.h"
+#include "logging.h"
+
+const static int HTTPS_PORT = 443;
+
+void printError(CYASSL *ssl, int resultCode) {
+/*
+   int err = CyaSSL_get_error(ssl, resultCode);
+   char errorString[80];
+   CyaSSL_ERR_error_string(err, errorString);
+   printf("Error: CyaSSL_write %s\n", errorString);
+*/
+}
+
+TLSConnection::TLSConnection():
+    Socket(),
+    Endpoint(),
+    _is_connected(false),
+    _ssl_ctx(),
+    _ssl()
+{
+}
+
+void debugCallback(const int logLevel,const char *const logMessage) {
+   //DBG(logMessage);
+}
+
+bool TLSConnection::connect(const char *host)
+{
+    if (init_socket(SOCK_STREAM) < 0)
+        return false;
+
+    if (set_address(host, HTTPS_PORT) != 0)
+        return false;
+
+    if (lwip_connect(_sock_fd, (const struct sockaddr *) &_remoteHost, sizeof(_remoteHost)) < 0) {
+        close();
+        return false;
+    }
+    
+    CyaSSL_Init();
+    CyaSSL_Debugging_ON();
+
+    CyaSSL_SetLoggingCb(&debugCallback);
+
+    CYASSL_METHOD* method = CyaTLSv1_2_client_method();
+    if(method == NULL) 
+    {
+        return false;
+    }
+   
+    _ssl_ctx = CyaSSL_CTX_new(method);
+    if(_ssl_ctx == NULL)
+    {
+        return false;
+    }    
+    CyaSSL_CTX_load_verify_buffer(_ssl_ctx,(unsigned char*)root_cert, root_cert_len,SSL_FILETYPE_ASN1);
+   
+    _ssl = CyaSSL_new(_ssl_ctx);
+    if(_ssl == NULL) 
+    {
+        return false;
+    }
+   
+    CyaSSL_set_fd(_ssl, _sock_fd);
+
+    int result = CyaSSL_connect(_ssl);
+    if(result!=SSL_SUCCESS) 
+    {
+        printError(_ssl,result);
+        return false;
+    }  
+
+    _is_connected = true;
+
+    return true;
+}
+
+bool TLSConnection::is_connected(void)
+{
+    return _is_connected;
+}
+
+int TLSConnection::send_all(char *data, int length)
+{
+    return 0;
+}
+
+int TLSConnection::receive(char *data, int length)
+{
+    return 0;
+}
+
+bool TLSConnection::close(bool shutdown)
+{
+    if(!_is_connected)
+        return true;
+
+    _is_connected = false;
+
+    CyaSSL_CTX_free(_ssl_ctx);
+    CyaSSL_Cleanup();  
+
+    return Socket::close(shutdown) == 0;
+}
+