FRET-FreeRTOS/FreeRTOS-Plus/ThirdParty/wolfSSL/wrapper/python/wolfssl/examples/server.py

#!/usr/bin/env python
#
# -*- coding: utf-8 -*-
#
# server.py
#
# Copyright (C) 2006-2020 wolfSSL Inc.
#
# This file is part of wolfSSL.
#
# wolfSSL is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#
# wolfSSL is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
#/

# pylint: disable=missing-docstring, invalid-name, import-error

import sys
import socket
import argparse

try:
    import wolfssl
except ImportError:
    print("You must run 'python setup.py install' to use the examples")
    sys.exit()

def build_arg_parser():
    parser = argparse.ArgumentParser(add_help=False)

    parser.add_argument(
        "-?", "--help", action="help",
        help="show this help message and exit"
    )

    parser.add_argument(
        "-p", metavar="port", type=int, default=11111,
        help="Port to listen on, not 0, default 11111"
    )

    parser.add_argument(
        "-v", metavar="version", type=int, choices=[0, 1, 2, 3], default=3,
        help="SSL version [0-3], SSLv3(0) - TLS1.2(3)), default 3"
    )

    parser.add_argument(
        "-l", metavar="ciphers", type=str, default="",
        help="Cipher suite list (: delimited)"
    )

    parser.add_argument(
        "-c", metavar="certificate", default="./certs/server-cert.pem",
        help="Certificate file,           default ./certs/server-cert.pem"
    )

    parser.add_argument(
        "-k", metavar="key", default="./certs/server-key.pem",
        help="Key file,                   default ./certs/server-key.pem"
    )

    parser.add_argument(
        "-A", metavar="ca_file", default="./certs/client-cert.pem",
        help="Certificate Authority file, default ./certs/client-cert.pem"
    )

    parser.add_argument(
        "-d", action="store_true",
        help="Disable client cert check"
    )

    parser.add_argument(
        "-b", action="store_true",
        help="Bind to any interface instead of localhost only"
    )

    parser.add_argument(
        "-i", action="store_true",
        help="Loop indefinitely (allow repeated connections)"
    )

    return parser


def get_method(index):
    return (
        wolfssl.PROTOCOL_SSLv3,
        wolfssl.PROTOCOL_TLSv1,
        wolfssl.PROTOCOL_TLSv1_1,
        wolfssl.PROTOCOL_TLSv1_2
    )[index]


def main():
    args = build_arg_parser().parse_args()

    bind_socket = socket.socket(socket.AF_INET, socket.SOCK_STREAM, 0)
    bind_socket.bind(("" if args.b else "localhost", args.p))
    bind_socket.listen(5)

    print("Server listening on port", bind_socket.getsockname()[1])

    context = wolfssl.SSLContext(get_method(args.v), server_side=True)

    context.load_cert_chain(args.c, args.k)

    if args.d:
        context.verify_mode = wolfssl.CERT_NONE
    else:
        context.verify_mode = wolfssl.CERT_REQUIRED
        context.load_verify_locations(args.A)

    if args.l:
        context.set_ciphers(args.l)

    while True:
        try:
            secure_socket = None

            new_socket, from_addr = bind_socket.accept()

            secure_socket = context.wrap_socket(new_socket)

            print("Connection received from", from_addr)

            print("\n", secure_socket.read(), "\n")
            secure_socket.write(b"I hear you fa shizzle!")

        except KeyboardInterrupt:
            print()
            break

        finally:
            if secure_socket:
                secure_socket.close()

        if not args.i:
            break

    bind_socket.close()


if __name__ == '__main__':
    main()