doc/examples/ex-client-srp.c

   1 /* This example code is placed in the public domain. */
   2
   3 #ifdef HAVE_CONFIG_H
   4 #include <config.h>
   5 #endif
   6
   7 #include <stdio.h>
   8 #include <stdlib.h>
   9 #include <string.h>
  10 #include <gnutls/gnutls.h>
  11
  12 /* Those functions are defined in other examples.
  13  */
  14 extern void check_alert (gnutls_session_t session, int ret);
  15 extern int tcp_connect (void);
  16 extern void tcp_close (int sd);
  17
  18 #define MAX_BUF 1024
  19 #define USERNAME "user"
  20 #define PASSWORD "pass"
  21 #define CAFILE "/etc/ssl/certs/ca-certificates.crt"
  22 #define MSG "GET / HTTP/1.0\r\n\r\n"
  23
  24 int
  25 main (void)
  26 {
  27   int ret;
  28   int sd, ii;
  29   gnutls_session_t session;
  30   char buffer[MAX_BUF + 1];
  31   gnutls_srp_client_credentials_t srp_cred;
  32   gnutls_certificate_credentials_t cert_cred;
  33
  34   gnutls_global_init ();
  35
  36   gnutls_srp_allocate_client_credentials (&srp_cred);
  37   gnutls_certificate_allocate_credentials (&cert_cred);
  38
  39   gnutls_certificate_set_x509_trust_file (cert_cred, CAFILE,
  40                                           GNUTLS_X509_FMT_PEM);
  41   gnutls_srp_set_client_credentials (srp_cred, USERNAME, PASSWORD);
  42
  43   /* connects to server
  44    */
  45   sd = tcp_connect ();
  46
  47   /* Initialize TLS session
  48    */
  49   gnutls_init (&session, GNUTLS_CLIENT);
  50
  51
  52   /* Set the priorities.
  53    */
  54   gnutls_priority_set_direct (session, "NORMAL:+SRP:+SRP-RSA:+SRP-DSS", NULL);
  55
  56   /* put the SRP credentials to the current session
  57    */
  58   gnutls_credentials_set (session, GNUTLS_CRD_SRP, srp_cred);
  59   gnutls_credentials_set (session, GNUTLS_CRD_CERTIFICATE, cert_cred);
  60
  61   gnutls_transport_set_ptr (session, (gnutls_transport_ptr_t) sd);
  62
  63   /* Perform the TLS handshake
  64    */
  65   do
  66     {
  67       ret = gnutls_handshake (session);
  68     }
  69   while (ret < 0 && gnutls_error_is_fatal (ret) == 0);
  70
  71   if (ret < 0)
  72     {
  73       fprintf (stderr, "*** Handshake failed\n");
  74       gnutls_perror (ret);
  75       goto end;
  76     }
  77   else
  78     {
  79       printf ("- Handshake was completed\n");
  80     }
  81
  82   gnutls_record_send (session, MSG, strlen (MSG));
  83
  84   ret = gnutls_record_recv (session, buffer, MAX_BUF);
  85   if (gnutls_error_is_fatal (ret) != 0 || ret == 0)
  86     {
  87       if (ret == 0)
  88         {
  89           printf ("- Peer has closed the GnuTLS connection\n");
  90           goto end;
  91         }
  92       else
  93         {
  94           fprintf (stderr, "*** Error: %s\n", gnutls_strerror (ret));
  95           goto end;
  96         }
  97     }
  98   else
  99     check_alert (session, ret);
 100
 101   if (ret > 0)
 102     {
 103       printf ("- Received %d bytes: ", ret);
 104       for (ii = 0; ii < ret; ii++)
 105         {
 106           fputc (buffer[ii], stdout);
 107         }
 108       fputs ("\n", stdout);
 109     }
 110   gnutls_bye (session, GNUTLS_SHUT_RDWR);
 111
 112 end:
 113
 114   tcp_close (sd);
 115
 116   gnutls_deinit (session);
 117
 118   gnutls_srp_free_client_credentials (srp_cred);
 119   gnutls_certificate_free_credentials (cert_cred);
 120
 121   gnutls_global_deinit ();
 122
 123   return 0;
 124 }