blob: 32960ad4118a4b551f5c1bd29375c964ad8db522 [file] [log] [blame]
Paul Bakker1496d382011-05-23 12:07:29 +00001/*
2 * SSL client for SMTP servers
3 *
Bence Szépkúti1e148272020-08-07 13:07:28 +02004 * Copyright The Mbed TLS Contributors
Manuel Pégourié-Gonnard37ff1402015-09-04 14:21:07 +02005 * SPDX-License-Identifier: Apache-2.0
6 *
7 * Licensed under the Apache License, Version 2.0 (the "License"); you may
8 * not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
10 *
11 * http://www.apache.org/licenses/LICENSE-2.0
12 *
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
15 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
Paul Bakker1496d382011-05-23 12:07:29 +000018 */
19
Nicholas Wilson61fa4362018-06-25 12:10:00 +010020/* Enable definition of gethostname() even when compiling with -std=c99. Must
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +020021 * be set before mbedtls_config.h, which pulls in glibc's features.h indirectly.
Nicholas Wilson2682edf2017-12-05 12:08:15 +000022 * Harmless on other platforms. */
Mateusz Starzyk5dd4f6e2021-05-19 19:35:35 +020023
Nicholas Wilson2682edf2017-12-05 12:08:15 +000024#define _POSIX_C_SOURCE 200112L
nia7eb0e622020-06-11 12:30:12 +010025#define _XOPEN_SOURCE 600
Nicholas Wilson2682edf2017-12-05 12:08:15 +000026
Bence Szépkútic662b362021-05-27 11:25:03 +020027#include "mbedtls/build_info.h"
Paul Bakker1496d382011-05-23 12:07:29 +000028
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020029#if defined(MBEDTLS_PLATFORM_C)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +000030#include "mbedtls/platform.h"
Rich Evansf90016a2015-01-19 14:26:37 +000031#else
Rich Evans18b78c72015-02-11 14:06:19 +000032#include <stdio.h>
Simon Butcherd3138c32016-04-27 01:26:50 +010033#include <stdlib.h>
Andres Amaya Garcia67a42ac2018-04-29 21:04:29 +010034#define mbedtls_time time
35#define mbedtls_time_t time_t
36#define mbedtls_fprintf fprintf
37#define mbedtls_printf printf
Manuel Pégourié-Gonnard3ef6a6d2018-12-10 14:31:45 +010038#define mbedtls_exit exit
Andres Amaya Garcia7d429652018-04-30 22:42:33 +010039#define MBEDTLS_EXIT_SUCCESS EXIT_SUCCESS
Andres Amaya Garcia67a42ac2018-04-29 21:04:29 +010040#define MBEDTLS_EXIT_FAILURE EXIT_FAILURE
41#endif /* MBEDTLS_PLATFORM_C */
Rich Evansf90016a2015-01-19 14:26:37 +000042
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020043#if !defined(MBEDTLS_BIGNUM_C) || !defined(MBEDTLS_ENTROPY_C) || \
44 !defined(MBEDTLS_SSL_TLS_C) || !defined(MBEDTLS_SSL_CLI_C) || \
45 !defined(MBEDTLS_NET_C) || !defined(MBEDTLS_RSA_C) || \
46 !defined(MBEDTLS_CTR_DRBG_C) || !defined(MBEDTLS_X509_CRT_PARSE_C) || \
47 !defined(MBEDTLS_FS_IO)
Manuel Pégourié-Gonnard4b3e5ef2015-03-27 11:24:27 +010048int main( void )
49{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020050 mbedtls_printf("MBEDTLS_BIGNUM_C and/or MBEDTLS_ENTROPY_C and/or "
51 "MBEDTLS_SSL_TLS_C and/or MBEDTLS_SSL_CLI_C and/or "
52 "MBEDTLS_NET_C and/or MBEDTLS_RSA_C and/or "
53 "MBEDTLS_CTR_DRBG_C and/or MBEDTLS_X509_CRT_PARSE_C "
Manuel Pégourié-Gonnard4b3e5ef2015-03-27 11:24:27 +010054 "not defined.\n");
Krzysztof Stachowiak5e1b1952019-04-24 14:24:46 +020055 mbedtls_exit( 0 );
Manuel Pégourié-Gonnard4b3e5ef2015-03-27 11:24:27 +010056}
57#else
58
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +000059#include "mbedtls/base64.h"
60#include "mbedtls/error.h"
Andres AG788aa4a2016-09-14 14:32:09 +010061#include "mbedtls/net_sockets.h"
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +000062#include "mbedtls/ssl.h"
63#include "mbedtls/entropy.h"
64#include "mbedtls/ctr_drbg.h"
Mateusz Starzyk1aec6462021-02-08 15:34:42 +010065#include "test/certs.h"
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +000066#include "mbedtls/x509.h"
Rich Evans18b78c72015-02-11 14:06:19 +000067
Rich Evans18b78c72015-02-11 14:06:19 +000068#include <stdlib.h>
69#include <string.h>
Paul Bakkerfdda7852013-11-30 15:15:31 +010070
71#if !defined(_MSC_VER) || defined(EFIX64) || defined(EFI32)
Paul Bakker1496d382011-05-23 12:07:29 +000072#include <unistd.h>
Paul Bakkerfdda7852013-11-30 15:15:31 +010073#else
74#include <io.h>
Paul Bakkerfdda7852013-11-30 15:15:31 +010075#endif
Paul Bakker1496d382011-05-23 12:07:29 +000076
Paul Bakker5a835222011-10-12 09:19:31 +000077#if defined(_WIN32) || defined(_WIN32_WCE)
Paul Bakker5a835222011-10-12 09:19:31 +000078#include <winsock2.h>
79#include <windows.h>
80
Paul Bakkerf0fc2a22013-12-30 15:42:43 +010081#if defined(_MSC_VER)
Paul Bakker5a835222011-10-12 09:19:31 +000082#if defined(_WIN32_WCE)
83#pragma comment( lib, "ws2.lib" )
84#else
85#pragma comment( lib, "ws2_32.lib" )
86#endif
Paul Bakkerf0fc2a22013-12-30 15:42:43 +010087#endif /* _MSC_VER */
Paul Bakker5a835222011-10-12 09:19:31 +000088#endif
89
Paul Bakker1496d382011-05-23 12:07:29 +000090#define DFL_SERVER_NAME "localhost"
Manuel Pégourié-Gonnardc0d74942015-06-23 12:30:57 +020091#define DFL_SERVER_PORT "465"
Paul Bakker1496d382011-05-23 12:07:29 +000092#define DFL_USER_NAME "user"
93#define DFL_USER_PWD "password"
94#define DFL_MAIL_FROM ""
95#define DFL_MAIL_TO ""
96#define DFL_DEBUG_LEVEL 0
Paul Bakker5690efc2011-05-26 13:16:06 +000097#define DFL_CA_FILE ""
Paul Bakker1496d382011-05-23 12:07:29 +000098#define DFL_CRT_FILE ""
99#define DFL_KEY_FILE ""
100#define DFL_FORCE_CIPHER 0
101#define DFL_MODE 0
102#define DFL_AUTHENTICATION 0
103
104#define MODE_SSL_TLS 0
105#define MODE_STARTTLS 0
106
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200107#if defined(MBEDTLS_BASE64_C)
Rich Evans85b05ec2015-02-12 11:37:29 +0000108#define USAGE_AUTH \
irwirf5ce5d52019-01-19 19:05:56 +0300109 " authentication=%%d default: 0 (disabled)\n" \
110 " user_name=%%s default: \"" DFL_USER_NAME "\"\n" \
111 " user_pwd=%%s default: \"" DFL_USER_PWD "\"\n"
Rich Evans85b05ec2015-02-12 11:37:29 +0000112#else
113#define USAGE_AUTH \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200114 " authentication options disabled. (Require MBEDTLS_BASE64_C)\n"
115#endif /* MBEDTLS_BASE64_C */
Rich Evans85b05ec2015-02-12 11:37:29 +0000116
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200117#if defined(MBEDTLS_FS_IO)
Rich Evans85b05ec2015-02-12 11:37:29 +0000118#define USAGE_IO \
119 " ca_file=%%s default: \"\" (pre-loaded)\n" \
120 " crt_file=%%s default: \"\" (pre-loaded)\n" \
121 " key_file=%%s default: \"\" (pre-loaded)\n"
122#else
123#define USAGE_IO \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200124 " No file operations available (MBEDTLS_FS_IO not defined)\n"
125#endif /* MBEDTLS_FS_IO */
Rich Evans85b05ec2015-02-12 11:37:29 +0000126
127#define USAGE \
irwirf5ce5d52019-01-19 19:05:56 +0300128 "\n usage: ssl_mail_client param=<>...\n" \
129 "\n acceptable parameters:\n" \
130 " server_name=%%s default: " DFL_SERVER_NAME "\n" \
131 " server_port=%%d default: " DFL_SERVER_PORT "\n" \
132 " debug_level=%%d default: 0 (disabled)\n" \
Rich Evans85b05ec2015-02-12 11:37:29 +0000133 " mode=%%d default: 0 (SSL/TLS) (1 for STARTTLS)\n" \
irwirf5ce5d52019-01-19 19:05:56 +0300134 USAGE_AUTH \
135 " mail_from=%%s default: \"\"\n" \
136 " mail_to=%%s default: \"\"\n" \
137 USAGE_IO \
138 " force_ciphersuite=<name> default: all enabled\n" \
Rich Evans85b05ec2015-02-12 11:37:29 +0000139 " acceptable ciphersuite names:\n"
140
Simon Butcher63cb97e2018-12-06 17:43:31 +0000141
Paul Bakker1496d382011-05-23 12:07:29 +0000142/*
143 * global options
144 */
145struct options
146{
Paul Bakkeref3f8c72013-06-24 13:01:08 +0200147 const char *server_name; /* hostname of the server (client only) */
Manuel Pégourié-Gonnardc0d74942015-06-23 12:30:57 +0200148 const char *server_port; /* port on which the ssl service runs */
Paul Bakker1496d382011-05-23 12:07:29 +0000149 int debug_level; /* level of debugging */
150 int authentication; /* if authentication is required */
151 int mode; /* SSL/TLS (0) or STARTTLS (1) */
Paul Bakkeref3f8c72013-06-24 13:01:08 +0200152 const char *user_name; /* username to use for authentication */
153 const char *user_pwd; /* password to use for authentication */
154 const char *mail_from; /* E-Mail address to use as sender */
155 const char *mail_to; /* E-Mail address to use as recipient */
156 const char *ca_file; /* the file with the CA certificate(s) */
157 const char *crt_file; /* the file with the client certificate */
158 const char *key_file; /* the file with the client key */
Paul Bakker1496d382011-05-23 12:07:29 +0000159 int force_ciphersuite[2]; /* protocol/ciphersuite to use, or all */
160} opt;
161
Manuel Pégourié-Gonnard61ee3512015-06-23 17:35:03 +0200162static void my_debug( void *ctx, int level,
163 const char *file, int line,
164 const char *str )
Paul Bakker1496d382011-05-23 12:07:29 +0000165{
Manuel Pégourié-Gonnard61ee3512015-06-23 17:35:03 +0200166 ((void) level);
167
168 mbedtls_fprintf( (FILE *) ctx, "%s:%04d: %s", file, line, str );
169 fflush( (FILE *) ctx );
Paul Bakker1496d382011-05-23 12:07:29 +0000170}
171
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100172static int do_handshake( mbedtls_ssl_context *ssl )
Paul Bakker1496d382011-05-23 12:07:29 +0000173{
174 int ret;
Manuel Pégourié-Gonnarde6ef16f2015-05-11 19:54:43 +0200175 uint32_t flags;
Paul Bakker1496d382011-05-23 12:07:29 +0000176 unsigned char buf[1024];
Paul Bakker5690efc2011-05-26 13:16:06 +0000177 memset(buf, 0, 1024);
Paul Bakker1496d382011-05-23 12:07:29 +0000178
179 /*
180 * 4. Handshake
181 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200182 mbedtls_printf( " . Performing the SSL/TLS handshake..." );
Paul Bakker1496d382011-05-23 12:07:29 +0000183 fflush( stdout );
184
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200185 while( ( ret = mbedtls_ssl_handshake( ssl ) ) != 0 )
Paul Bakker1496d382011-05-23 12:07:29 +0000186 {
Manuel Pégourié-Gonnard88369942015-05-06 16:19:31 +0100187 if( ret != MBEDTLS_ERR_SSL_WANT_READ && ret != MBEDTLS_ERR_SSL_WANT_WRITE )
Paul Bakker1496d382011-05-23 12:07:29 +0000188 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200189#if defined(MBEDTLS_ERROR_C)
190 mbedtls_strerror( ret, (char *) buf, 1024 );
Paul Bakker5690efc2011-05-26 13:16:06 +0000191#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200192 mbedtls_printf( " failed\n ! mbedtls_ssl_handshake returned %d: %s\n\n", ret, buf );
Paul Bakker1496d382011-05-23 12:07:29 +0000193 return( -1 );
194 }
195 }
196
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200197 mbedtls_printf( " ok\n [ Ciphersuite is %s ]\n",
198 mbedtls_ssl_get_ciphersuite( ssl ) );
Paul Bakker1496d382011-05-23 12:07:29 +0000199
200 /*
201 * 5. Verify the server certificate
202 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200203 mbedtls_printf( " . Verifying peer X.509 certificate..." );
Paul Bakker1496d382011-05-23 12:07:29 +0000204
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100205 /* In real life, we probably want to bail out when ret != 0 */
Manuel Pégourié-Gonnarde6ef16f2015-05-11 19:54:43 +0200206 if( ( flags = mbedtls_ssl_get_verify_result( ssl ) ) != 0 )
Paul Bakker1496d382011-05-23 12:07:29 +0000207 {
Hanno Becker612a2f12020-10-09 09:19:39 +0100208#if !defined(MBEDTLS_X509_REMOVE_INFO)
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100209 char vrfy_buf[512];
Peter Kolbus9a969b62018-12-11 13:55:56 -0600210#endif
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100211
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200212 mbedtls_printf( " failed\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000213
Hanno Becker612a2f12020-10-09 09:19:39 +0100214#if !defined(MBEDTLS_X509_REMOVE_INFO)
Manuel Pégourié-Gonnarde6ef16f2015-05-11 19:54:43 +0200215 mbedtls_x509_crt_verify_info( vrfy_buf, sizeof( vrfy_buf ), " ! ", flags );
Paul Bakker1496d382011-05-23 12:07:29 +0000216
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100217 mbedtls_printf( "%s\n", vrfy_buf );
Peter Kolbus9a969b62018-12-11 13:55:56 -0600218#endif
Paul Bakker1496d382011-05-23 12:07:29 +0000219 }
220 else
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200221 mbedtls_printf( " ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000222
Hanno Becker612a2f12020-10-09 09:19:39 +0100223#if !defined(MBEDTLS_X509_REMOVE_INFO)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200224 mbedtls_printf( " . Peer certificate information ...\n" );
225 mbedtls_x509_crt_info( (char *) buf, sizeof( buf ) - 1, " ",
226 mbedtls_ssl_get_peer_cert( ssl ) );
227 mbedtls_printf( "%s\n", buf );
Peter Kolbus9a969b62018-12-11 13:55:56 -0600228#endif
Paul Bakker1496d382011-05-23 12:07:29 +0000229
230 return( 0 );
231}
232
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200233static int write_ssl_data( mbedtls_ssl_context *ssl, unsigned char *buf, size_t len )
Paul Bakker1496d382011-05-23 12:07:29 +0000234{
235 int ret;
236
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200237 mbedtls_printf("\n%s", buf);
238 while( len && ( ret = mbedtls_ssl_write( ssl, buf, len ) ) <= 0 )
Paul Bakker1496d382011-05-23 12:07:29 +0000239 {
Manuel Pégourié-Gonnard88369942015-05-06 16:19:31 +0100240 if( ret != MBEDTLS_ERR_SSL_WANT_READ && ret != MBEDTLS_ERR_SSL_WANT_WRITE )
Paul Bakker1496d382011-05-23 12:07:29 +0000241 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200242 mbedtls_printf( " failed\n ! mbedtls_ssl_write returned %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000243 return -1;
244 }
245 }
246
247 return( 0 );
248}
249
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200250static int write_ssl_and_get_response( mbedtls_ssl_context *ssl, unsigned char *buf, size_t len )
Paul Bakker1496d382011-05-23 12:07:29 +0000251{
252 int ret;
253 unsigned char data[128];
254 char code[4];
255 size_t i, idx = 0;
256
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200257 mbedtls_printf("\n%s", buf);
258 while( len && ( ret = mbedtls_ssl_write( ssl, buf, len ) ) <= 0 )
Paul Bakker1496d382011-05-23 12:07:29 +0000259 {
Manuel Pégourié-Gonnard88369942015-05-06 16:19:31 +0100260 if( ret != MBEDTLS_ERR_SSL_WANT_READ && ret != MBEDTLS_ERR_SSL_WANT_WRITE )
Paul Bakker1496d382011-05-23 12:07:29 +0000261 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200262 mbedtls_printf( " failed\n ! mbedtls_ssl_write returned %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000263 return -1;
264 }
265 }
266
267 do
268 {
269 len = sizeof( data ) - 1;
270 memset( data, 0, sizeof( data ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200271 ret = mbedtls_ssl_read( ssl, data, len );
Paul Bakker1496d382011-05-23 12:07:29 +0000272
Manuel Pégourié-Gonnard88369942015-05-06 16:19:31 +0100273 if( ret == MBEDTLS_ERR_SSL_WANT_READ || ret == MBEDTLS_ERR_SSL_WANT_WRITE )
Paul Bakker1496d382011-05-23 12:07:29 +0000274 continue;
275
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200276 if( ret == MBEDTLS_ERR_SSL_PEER_CLOSE_NOTIFY )
Paul Bakker1496d382011-05-23 12:07:29 +0000277 return -1;
278
279 if( ret <= 0 )
280 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200281 mbedtls_printf( "failed\n ! mbedtls_ssl_read returned %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000282 return -1;
283 }
284
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200285 mbedtls_printf("\n%s", data);
Paul Bakker1496d382011-05-23 12:07:29 +0000286 len = ret;
287 for( i = 0; i < len; i++ )
288 {
289 if( data[i] != '\n' )
290 {
291 if( idx < 4 )
292 code[ idx++ ] = data[i];
293 continue;
294 }
295
296 if( idx == 4 && code[0] >= '0' && code[0] <= '9' && code[3] == ' ' )
297 {
298 code[3] = '\0';
299 return atoi( code );
300 }
Paul Bakker3c5ef712013-06-25 16:37:45 +0200301
Paul Bakker1496d382011-05-23 12:07:29 +0000302 idx = 0;
303 }
304 }
305 while( 1 );
306}
307
Manuel Pégourié-Gonnard5db64322015-06-30 15:40:39 +0200308static int write_and_get_response( mbedtls_net_context *sock_fd, unsigned char *buf, size_t len )
Paul Bakker1496d382011-05-23 12:07:29 +0000309{
310 int ret;
311 unsigned char data[128];
312 char code[4];
313 size_t i, idx = 0;
314
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200315 mbedtls_printf("\n%s", buf);
Manuel Pégourié-Gonnard5db64322015-06-30 15:40:39 +0200316 if( len && ( ret = mbedtls_net_send( sock_fd, buf, len ) ) <= 0 )
Paul Bakker1496d382011-05-23 12:07:29 +0000317 {
irwirf5ce5d52019-01-19 19:05:56 +0300318 mbedtls_printf( " failed\n ! mbedtls_net_send returned %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000319 return -1;
320 }
321
322 do
323 {
324 len = sizeof( data ) - 1;
325 memset( data, 0, sizeof( data ) );
Manuel Pégourié-Gonnard5db64322015-06-30 15:40:39 +0200326 ret = mbedtls_net_recv( sock_fd, data, len );
Paul Bakker1496d382011-05-23 12:07:29 +0000327
328 if( ret <= 0 )
329 {
irwirf5ce5d52019-01-19 19:05:56 +0300330 mbedtls_printf( "failed\n ! mbedtls_net_recv returned %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000331 return -1;
332 }
333
Paul Bakkerdf71dd12014-04-17 16:03:48 +0200334 data[len] = '\0';
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200335 mbedtls_printf("\n%s", data);
Paul Bakker1496d382011-05-23 12:07:29 +0000336 len = ret;
337 for( i = 0; i < len; i++ )
338 {
339 if( data[i] != '\n' )
340 {
341 if( idx < 4 )
342 code[ idx++ ] = data[i];
343 continue;
344 }
345
346 if( idx == 4 && code[0] >= '0' && code[0] <= '9' && code[3] == ' ' )
347 {
348 code[3] = '\0';
349 return atoi( code );
350 }
Manuel Pégourié-Gonnard6c5abfa2015-02-13 14:12:07 +0000351
Paul Bakker1496d382011-05-23 12:07:29 +0000352 idx = 0;
353 }
354 }
355 while( 1 );
356}
357
Paul Bakker1496d382011-05-23 12:07:29 +0000358int main( int argc, char *argv[] )
359{
Andres Amaya Garcia67a42ac2018-04-29 21:04:29 +0100360 int ret = 1, len;
361 int exit_code = MBEDTLS_EXIT_FAILURE;
Manuel Pégourié-Gonnard5db64322015-06-30 15:40:39 +0200362 mbedtls_net_context server_fd;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200363#if defined(MBEDTLS_BASE64_C)
Paul Bakker1496d382011-05-23 12:07:29 +0000364 unsigned char base[1024];
Mohammad Azim Khan9ebdcff2018-08-06 11:48:06 +0100365 /* buf is used as the destination buffer for printing base with the format:
366 * "%s\r\n". Hence, the size of buf should be at least the size of base
367 * plus 2 bytes for the \r and \n characters.
368 */
369 unsigned char buf[sizeof( base ) + 2];
370#else
371 unsigned char buf[1024];
Paul Bakker5690efc2011-05-26 13:16:06 +0000372#endif
Paul Bakker1496d382011-05-23 12:07:29 +0000373 char hostname[32];
Paul Bakkeref3f8c72013-06-24 13:01:08 +0200374 const char *pers = "ssl_mail_client";
Paul Bakker508ad5a2011-12-04 17:09:26 +0000375
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200376 mbedtls_entropy_context entropy;
377 mbedtls_ctr_drbg_context ctr_drbg;
378 mbedtls_ssl_context ssl;
Manuel Pégourié-Gonnarddef0bbe2015-05-04 14:56:36 +0200379 mbedtls_ssl_config conf;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200380 mbedtls_x509_crt cacert;
381 mbedtls_x509_crt clicert;
382 mbedtls_pk_context pkey;
Paul Bakker1496d382011-05-23 12:07:29 +0000383 int i;
Paul Bakker819370c2012-09-28 07:04:41 +0000384 size_t n;
Paul Bakker1496d382011-05-23 12:07:29 +0000385 char *p, *q;
386 const int *list;
387
388 /*
Manuel Pégourié-Gonnard3bd2aae2013-09-20 13:10:13 +0200389 * Make sure memory references are valid in case we exit early.
Paul Bakker1496d382011-05-23 12:07:29 +0000390 */
Manuel Pégourié-Gonnard5db64322015-06-30 15:40:39 +0200391 mbedtls_net_init( &server_fd );
Manuel Pégourié-Gonnard41d479e2015-04-29 00:48:22 +0200392 mbedtls_ssl_init( &ssl );
Manuel Pégourié-Gonnarddef0bbe2015-05-04 14:56:36 +0200393 mbedtls_ssl_config_init( &conf );
Paul Bakker333fdec2014-08-04 12:12:09 +0200394 memset( &buf, 0, sizeof( buf ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200395 mbedtls_x509_crt_init( &cacert );
396 mbedtls_x509_crt_init( &clicert );
397 mbedtls_pk_init( &pkey );
Manuel Pégourié-Gonnardec160c02015-04-28 22:52:30 +0200398 mbedtls_ctr_drbg_init( &ctr_drbg );
Paul Bakker1496d382011-05-23 12:07:29 +0000399
400 if( argc == 0 )
401 {
402 usage:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200403 mbedtls_printf( USAGE );
Paul Bakker1496d382011-05-23 12:07:29 +0000404
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200405 list = mbedtls_ssl_list_ciphersuites();
Paul Bakker1496d382011-05-23 12:07:29 +0000406 while( *list )
407 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200408 mbedtls_printf(" %s\n", mbedtls_ssl_get_ciphersuite_name( *list ) );
Paul Bakker1496d382011-05-23 12:07:29 +0000409 list++;
410 }
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200411 mbedtls_printf("\n");
Paul Bakker1496d382011-05-23 12:07:29 +0000412 goto exit;
413 }
414
415 opt.server_name = DFL_SERVER_NAME;
416 opt.server_port = DFL_SERVER_PORT;
417 opt.debug_level = DFL_DEBUG_LEVEL;
418 opt.authentication = DFL_AUTHENTICATION;
419 opt.mode = DFL_MODE;
420 opt.user_name = DFL_USER_NAME;
421 opt.user_pwd = DFL_USER_PWD;
422 opt.mail_from = DFL_MAIL_FROM;
423 opt.mail_to = DFL_MAIL_TO;
Paul Bakker5690efc2011-05-26 13:16:06 +0000424 opt.ca_file = DFL_CA_FILE;
Paul Bakker1496d382011-05-23 12:07:29 +0000425 opt.crt_file = DFL_CRT_FILE;
426 opt.key_file = DFL_KEY_FILE;
427 opt.force_ciphersuite[0]= DFL_FORCE_CIPHER;
428
429 for( i = 1; i < argc; i++ )
430 {
Paul Bakker1496d382011-05-23 12:07:29 +0000431 p = argv[i];
432 if( ( q = strchr( p, '=' ) ) == NULL )
433 goto usage;
434 *q++ = '\0';
435
436 if( strcmp( p, "server_name" ) == 0 )
437 opt.server_name = q;
438 else if( strcmp( p, "server_port" ) == 0 )
Manuel Pégourié-Gonnardc0d74942015-06-23 12:30:57 +0200439 opt.server_port = q;
Paul Bakker1496d382011-05-23 12:07:29 +0000440 else if( strcmp( p, "debug_level" ) == 0 )
441 {
442 opt.debug_level = atoi( q );
443 if( opt.debug_level < 0 || opt.debug_level > 65535 )
444 goto usage;
445 }
446 else if( strcmp( p, "authentication" ) == 0 )
447 {
448 opt.authentication = atoi( q );
449 if( opt.authentication < 0 || opt.authentication > 1 )
450 goto usage;
451 }
452 else if( strcmp( p, "mode" ) == 0 )
453 {
454 opt.mode = atoi( q );
455 if( opt.mode < 0 || opt.mode > 1 )
456 goto usage;
457 }
458 else if( strcmp( p, "user_name" ) == 0 )
459 opt.user_name = q;
460 else if( strcmp( p, "user_pwd" ) == 0 )
461 opt.user_pwd = q;
462 else if( strcmp( p, "mail_from" ) == 0 )
463 opt.mail_from = q;
464 else if( strcmp( p, "mail_to" ) == 0 )
465 opt.mail_to = q;
Paul Bakker5690efc2011-05-26 13:16:06 +0000466 else if( strcmp( p, "ca_file" ) == 0 )
467 opt.ca_file = q;
Paul Bakker1496d382011-05-23 12:07:29 +0000468 else if( strcmp( p, "crt_file" ) == 0 )
469 opt.crt_file = q;
470 else if( strcmp( p, "key_file" ) == 0 )
471 opt.key_file = q;
472 else if( strcmp( p, "force_ciphersuite" ) == 0 )
473 {
474 opt.force_ciphersuite[0] = -1;
475
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200476 opt.force_ciphersuite[0] = mbedtls_ssl_get_ciphersuite_id( q );
Paul Bakker1496d382011-05-23 12:07:29 +0000477
478 if( opt.force_ciphersuite[0] <= 0 )
479 goto usage;
480
481 opt.force_ciphersuite[1] = 0;
482 }
483 else
484 goto usage;
485 }
486
487 /*
488 * 0. Initialize the RNG and the session data
489 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200490 mbedtls_printf( "\n . Seeding the random number generator..." );
Paul Bakker508ad5a2011-12-04 17:09:26 +0000491 fflush( stdout );
492
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200493 mbedtls_entropy_init( &entropy );
Manuel Pégourié-Gonnardec160c02015-04-28 22:52:30 +0200494 if( ( ret = mbedtls_ctr_drbg_seed( &ctr_drbg, mbedtls_entropy_func, &entropy,
Paul Bakkeref3f8c72013-06-24 13:01:08 +0200495 (const unsigned char *) pers,
496 strlen( pers ) ) ) != 0 )
Paul Bakker508ad5a2011-12-04 17:09:26 +0000497 {
Manuel Pégourié-Gonnardec160c02015-04-28 22:52:30 +0200498 mbedtls_printf( " failed\n ! mbedtls_ctr_drbg_seed returned %d\n", ret );
Paul Bakker508ad5a2011-12-04 17:09:26 +0000499 goto exit;
500 }
501
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200502 mbedtls_printf( " ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000503
504 /*
505 * 1.1. Load the trusted CA
506 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200507 mbedtls_printf( " . Loading the CA root certificate ..." );
Paul Bakker1496d382011-05-23 12:07:29 +0000508 fflush( stdout );
509
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200510#if defined(MBEDTLS_FS_IO)
Paul Bakker5690efc2011-05-26 13:16:06 +0000511 if( strlen( opt.ca_file ) )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200512 ret = mbedtls_x509_crt_parse_file( &cacert, opt.ca_file );
Paul Bakker5690efc2011-05-26 13:16:06 +0000513 else
514#endif
Mateusz Starzyk1aec6462021-02-08 15:34:42 +0100515#if defined(MBEDTLS_PEM_PARSE_C)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200516 ret = mbedtls_x509_crt_parse( &cacert, (const unsigned char *) mbedtls_test_cas_pem,
517 mbedtls_test_cas_pem_len );
Paul Bakker5690efc2011-05-26 13:16:06 +0000518#else
519 {
Mateusz Starzyk1aec6462021-02-08 15:34:42 +0100520 mbedtls_printf("MBEDTLS_PEM_PARSE_C not defined.");
Andres Amaya Garcia67a42ac2018-04-29 21:04:29 +0100521 goto exit;
Paul Bakker5690efc2011-05-26 13:16:06 +0000522 }
523#endif
Paul Bakker42488232012-05-16 08:21:05 +0000524 if( ret < 0 )
Paul Bakker1496d382011-05-23 12:07:29 +0000525 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200526 mbedtls_printf( " failed\n ! mbedtls_x509_crt_parse returned %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000527 goto exit;
528 }
529
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200530 mbedtls_printf( " ok (%d skipped)\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000531
532 /*
533 * 1.2. Load own certificate and private key
534 *
535 * (can be skipped if client authentication is not required)
536 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200537 mbedtls_printf( " . Loading the client cert. and key..." );
Paul Bakker1496d382011-05-23 12:07:29 +0000538 fflush( stdout );
539
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200540#if defined(MBEDTLS_FS_IO)
Paul Bakker1496d382011-05-23 12:07:29 +0000541 if( strlen( opt.crt_file ) )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200542 ret = mbedtls_x509_crt_parse_file( &clicert, opt.crt_file );
Paul Bakkerddf26b42013-09-18 13:46:23 +0200543 else
Paul Bakker5690efc2011-05-26 13:16:06 +0000544#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200545 ret = mbedtls_x509_crt_parse( &clicert, (const unsigned char *) mbedtls_test_cli_crt,
546 mbedtls_test_cli_crt_len );
Paul Bakker1496d382011-05-23 12:07:29 +0000547 if( ret != 0 )
548 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200549 mbedtls_printf( " failed\n ! mbedtls_x509_crt_parse returned %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000550 goto exit;
551 }
552
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200553#if defined(MBEDTLS_FS_IO)
Paul Bakker1496d382011-05-23 12:07:29 +0000554 if( strlen( opt.key_file ) )
Manuel Pégourié-Gonnard84dea012021-06-15 11:29:26 +0200555 {
556 ret = mbedtls_pk_parse_keyfile( &pkey, opt.key_file, "",
557 mbedtls_ctr_drbg_random, &ctr_drbg );
558 }
Paul Bakker1496d382011-05-23 12:07:29 +0000559 else
Paul Bakker5690efc2011-05-26 13:16:06 +0000560#endif
Mateusz Starzyk1aec6462021-02-08 15:34:42 +0100561#if defined(MBEDTLS_PEM_PARSE_C)
Manuel Pégourié-Gonnard84dea012021-06-15 11:29:26 +0200562 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200563 ret = mbedtls_pk_parse_key( &pkey, (const unsigned char *) mbedtls_test_cli_key,
Manuel Pégourié-Gonnard84dea012021-06-15 11:29:26 +0200564 mbedtls_test_cli_key_len, NULL, 0, mbedtls_ctr_drbg_random, &ctr_drbg );
565 }
Paul Bakker5690efc2011-05-26 13:16:06 +0000566#else
567 {
Mateusz Starzyk1aec6462021-02-08 15:34:42 +0100568 mbedtls_printf("MBEDTLS_PEM_PARSE_C not defined.");
Andres Amaya Garcia67a42ac2018-04-29 21:04:29 +0100569 goto exit;
Paul Bakker5690efc2011-05-26 13:16:06 +0000570 }
571#endif
Paul Bakker1496d382011-05-23 12:07:29 +0000572 if( ret != 0 )
573 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200574 mbedtls_printf( " failed\n ! mbedtls_pk_parse_key returned %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000575 goto exit;
576 }
577
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200578 mbedtls_printf( " ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000579
580 /*
581 * 2. Start the connection
582 */
Manuel Pégourié-Gonnardc0d74942015-06-23 12:30:57 +0200583 mbedtls_printf( " . Connecting to tcp/%s/%s...", opt.server_name,
Paul Bakker1496d382011-05-23 12:07:29 +0000584 opt.server_port );
585 fflush( stdout );
586
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200587 if( ( ret = mbedtls_net_connect( &server_fd, opt.server_name,
588 opt.server_port, MBEDTLS_NET_PROTO_TCP ) ) != 0 )
Paul Bakker1496d382011-05-23 12:07:29 +0000589 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200590 mbedtls_printf( " failed\n ! mbedtls_net_connect returned %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000591 goto exit;
592 }
593
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200594 mbedtls_printf( " ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000595
596 /*
597 * 3. Setup stuff
598 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200599 mbedtls_printf( " . Setting up the SSL/TLS structure..." );
Paul Bakker1496d382011-05-23 12:07:29 +0000600 fflush( stdout );
601
Manuel Pégourié-Gonnard419d5ae2015-05-04 19:32:36 +0200602 if( ( ret = mbedtls_ssl_config_defaults( &conf,
603 MBEDTLS_SSL_IS_CLIENT,
Manuel Pégourié-Gonnardb31c5f62015-06-17 13:53:47 +0200604 MBEDTLS_SSL_TRANSPORT_STREAM,
605 MBEDTLS_SSL_PRESET_DEFAULT ) ) != 0 )
Manuel Pégourié-Gonnarddef0bbe2015-05-04 14:56:36 +0200606 {
607 mbedtls_printf( " failed\n ! mbedtls_ssl_config_defaults returned %d\n\n", ret );
608 goto exit;
609 }
610
Manuel Pégourié-Gonnardfcf2fc22014-03-11 11:10:27 +0100611 /* OPTIONAL is not optimal for security,
612 * but makes interop easier in this simplified example */
Manuel Pégourié-Gonnard6729e792015-05-11 09:50:24 +0200613 mbedtls_ssl_conf_authmode( &conf, MBEDTLS_SSL_VERIFY_OPTIONAL );
Paul Bakker1496d382011-05-23 12:07:29 +0000614
Manuel Pégourié-Gonnard6729e792015-05-11 09:50:24 +0200615 mbedtls_ssl_conf_rng( &conf, mbedtls_ctr_drbg_random, &ctr_drbg );
616 mbedtls_ssl_conf_dbg( &conf, my_debug, stdout );
Paul Bakker1496d382011-05-23 12:07:29 +0000617
Paul Bakker645ce3a2012-10-31 12:32:41 +0000618 if( opt.force_ciphersuite[0] != DFL_FORCE_CIPHER )
Manuel Pégourié-Gonnard6729e792015-05-11 09:50:24 +0200619 mbedtls_ssl_conf_ciphersuites( &conf, opt.force_ciphersuite );
Paul Bakker1496d382011-05-23 12:07:29 +0000620
Manuel Pégourié-Gonnard6729e792015-05-11 09:50:24 +0200621 mbedtls_ssl_conf_ca_chain( &conf, &cacert, NULL );
Manuel Pégourié-Gonnard6729e792015-05-11 09:50:24 +0200622 if( ( ret = mbedtls_ssl_conf_own_cert( &conf, &clicert, &pkey ) ) != 0 )
Manuel Pégourié-Gonnardc5fd3912014-07-08 14:05:52 +0200623 {
Manuel Pégourié-Gonnard6729e792015-05-11 09:50:24 +0200624 mbedtls_printf( " failed\n ! mbedtls_ssl_conf_own_cert returned %d\n\n", ret );
Manuel Pégourié-Gonnardc5fd3912014-07-08 14:05:52 +0200625 goto exit;
626 }
Paul Bakker1496d382011-05-23 12:07:29 +0000627
Manuel Pégourié-Gonnard06939ce2015-05-11 11:25:46 +0200628 if( ( ret = mbedtls_ssl_setup( &ssl, &conf ) ) != 0 )
629 {
630 mbedtls_printf( " failed\n ! mbedtls_ssl_setup returned %d\n\n", ret );
631 goto exit;
632 }
633
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200634 if( ( ret = mbedtls_ssl_set_hostname( &ssl, opt.server_name ) ) != 0 )
Manuel Pégourié-Gonnardc5fd3912014-07-08 14:05:52 +0200635 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200636 mbedtls_printf( " failed\n ! mbedtls_ssl_set_hostname returned %d\n\n", ret );
Manuel Pégourié-Gonnardc5fd3912014-07-08 14:05:52 +0200637 goto exit;
638 }
Paul Bakker1496d382011-05-23 12:07:29 +0000639
Manuel Pégourié-Gonnard06939ce2015-05-11 11:25:46 +0200640 mbedtls_ssl_set_bio( &ssl, &server_fd, mbedtls_net_send, mbedtls_net_recv, NULL );
641
642 mbedtls_printf( " ok\n" );
643
Paul Bakker1496d382011-05-23 12:07:29 +0000644 if( opt.mode == MODE_SSL_TLS )
645 {
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100646 if( do_handshake( &ssl ) != 0 )
Paul Bakker1496d382011-05-23 12:07:29 +0000647 goto exit;
648
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200649 mbedtls_printf( " > Get header from server:" );
Paul Bakker1496d382011-05-23 12:07:29 +0000650 fflush( stdout );
651
652 ret = write_ssl_and_get_response( &ssl, buf, 0 );
653 if( ret < 200 || ret > 299 )
654 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200655 mbedtls_printf( " failed\n ! server responded with %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000656 goto exit;
657 }
658
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200659 mbedtls_printf(" ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000660
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200661 mbedtls_printf( " > Write EHLO to server:" );
Paul Bakker1496d382011-05-23 12:07:29 +0000662 fflush( stdout );
663
664 gethostname( hostname, 32 );
Paul Bakkerd75ba402014-01-24 16:11:17 +0100665 len = sprintf( (char *) buf, "EHLO %s\r\n", hostname );
Paul Bakker1496d382011-05-23 12:07:29 +0000666 ret = write_ssl_and_get_response( &ssl, buf, len );
667 if( ret < 200 || ret > 299 )
668 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200669 mbedtls_printf( " failed\n ! server responded with %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000670 goto exit;
671 }
672 }
673 else
674 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200675 mbedtls_printf( " > Get header from server:" );
Paul Bakker1496d382011-05-23 12:07:29 +0000676 fflush( stdout );
677
Manuel Pégourié-Gonnard5db64322015-06-30 15:40:39 +0200678 ret = write_and_get_response( &server_fd, buf, 0 );
Paul Bakker1496d382011-05-23 12:07:29 +0000679 if( ret < 200 || ret > 299 )
680 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200681 mbedtls_printf( " failed\n ! server responded with %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000682 goto exit;
683 }
684
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200685 mbedtls_printf(" ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000686
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200687 mbedtls_printf( " > Write EHLO to server:" );
Paul Bakker1496d382011-05-23 12:07:29 +0000688 fflush( stdout );
689
690 gethostname( hostname, 32 );
Paul Bakkerd75ba402014-01-24 16:11:17 +0100691 len = sprintf( (char *) buf, "EHLO %s\r\n", hostname );
Manuel Pégourié-Gonnard5db64322015-06-30 15:40:39 +0200692 ret = write_and_get_response( &server_fd, buf, len );
Paul Bakker1496d382011-05-23 12:07:29 +0000693 if( ret < 200 || ret > 299 )
694 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200695 mbedtls_printf( " failed\n ! server responded with %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000696 goto exit;
697 }
698
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200699 mbedtls_printf(" ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000700
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200701 mbedtls_printf( " > Write STARTTLS to server:" );
Paul Bakker1496d382011-05-23 12:07:29 +0000702 fflush( stdout );
703
704 gethostname( hostname, 32 );
Paul Bakkerd75ba402014-01-24 16:11:17 +0100705 len = sprintf( (char *) buf, "STARTTLS\r\n" );
Manuel Pégourié-Gonnard5db64322015-06-30 15:40:39 +0200706 ret = write_and_get_response( &server_fd, buf, len );
Paul Bakker1496d382011-05-23 12:07:29 +0000707 if( ret < 200 || ret > 299 )
708 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200709 mbedtls_printf( " failed\n ! server responded with %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000710 goto exit;
711 }
712
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200713 mbedtls_printf(" ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000714
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100715 if( do_handshake( &ssl ) != 0 )
Paul Bakker1496d382011-05-23 12:07:29 +0000716 goto exit;
717 }
718
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200719#if defined(MBEDTLS_BASE64_C)
Paul Bakker1496d382011-05-23 12:07:29 +0000720 if( opt.authentication )
721 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200722 mbedtls_printf( " > Write AUTH LOGIN to server:" );
Paul Bakker1496d382011-05-23 12:07:29 +0000723 fflush( stdout );
724
Paul Bakkerd75ba402014-01-24 16:11:17 +0100725 len = sprintf( (char *) buf, "AUTH LOGIN\r\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000726 ret = write_ssl_and_get_response( &ssl, buf, len );
727 if( ret < 200 || ret > 399 )
728 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200729 mbedtls_printf( " failed\n ! server responded with %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000730 goto exit;
731 }
732
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200733 mbedtls_printf(" ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000734
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200735 mbedtls_printf( " > Write username to server: %s", opt.user_name );
Paul Bakker1496d382011-05-23 12:07:29 +0000736 fflush( stdout );
737
Manuel Pégourié-Gonnardba561362015-06-02 16:30:35 +0100738 ret = mbedtls_base64_encode( base, sizeof( base ), &n, (const unsigned char *) opt.user_name,
Paul Bakkeref3f8c72013-06-24 13:01:08 +0200739 strlen( opt.user_name ) );
Alfred Klomp7c034242014-07-14 22:11:13 +0200740
741 if( ret != 0 ) {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200742 mbedtls_printf( " failed\n ! mbedtls_base64_encode returned %d\n\n", ret );
Alfred Klomp7c034242014-07-14 22:11:13 +0200743 goto exit;
744 }
Paul Bakkerd75ba402014-01-24 16:11:17 +0100745 len = sprintf( (char *) buf, "%s\r\n", base );
Paul Bakker1496d382011-05-23 12:07:29 +0000746 ret = write_ssl_and_get_response( &ssl, buf, len );
747 if( ret < 300 || ret > 399 )
748 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200749 mbedtls_printf( " failed\n ! server responded with %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000750 goto exit;
751 }
752
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200753 mbedtls_printf(" ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000754
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200755 mbedtls_printf( " > Write password to server: %s", opt.user_pwd );
Paul Bakker1496d382011-05-23 12:07:29 +0000756 fflush( stdout );
757
Manuel Pégourié-Gonnardba561362015-06-02 16:30:35 +0100758 ret = mbedtls_base64_encode( base, sizeof( base ), &n, (const unsigned char *) opt.user_pwd,
Paul Bakkeref3f8c72013-06-24 13:01:08 +0200759 strlen( opt.user_pwd ) );
Alfred Klomp7c034242014-07-14 22:11:13 +0200760
761 if( ret != 0 ) {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200762 mbedtls_printf( " failed\n ! mbedtls_base64_encode returned %d\n\n", ret );
Alfred Klomp7c034242014-07-14 22:11:13 +0200763 goto exit;
764 }
Paul Bakkerd75ba402014-01-24 16:11:17 +0100765 len = sprintf( (char *) buf, "%s\r\n", base );
Paul Bakker1496d382011-05-23 12:07:29 +0000766 ret = write_ssl_and_get_response( &ssl, buf, len );
767 if( ret < 200 || ret > 399 )
768 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200769 mbedtls_printf( " failed\n ! server responded with %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000770 goto exit;
771 }
772
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200773 mbedtls_printf(" ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000774 }
Paul Bakker5690efc2011-05-26 13:16:06 +0000775#endif
Paul Bakker1496d382011-05-23 12:07:29 +0000776
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200777 mbedtls_printf( " > Write MAIL FROM to server:" );
Paul Bakker1496d382011-05-23 12:07:29 +0000778 fflush( stdout );
779
Paul Bakkerd75ba402014-01-24 16:11:17 +0100780 len = sprintf( (char *) buf, "MAIL FROM:<%s>\r\n", opt.mail_from );
Paul Bakker1496d382011-05-23 12:07:29 +0000781 ret = write_ssl_and_get_response( &ssl, buf, len );
782 if( ret < 200 || ret > 299 )
783 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200784 mbedtls_printf( " failed\n ! server responded with %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000785 goto exit;
786 }
787
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200788 mbedtls_printf(" ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000789
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200790 mbedtls_printf( " > Write RCPT TO to server:" );
Paul Bakker1496d382011-05-23 12:07:29 +0000791 fflush( stdout );
792
Paul Bakkerd75ba402014-01-24 16:11:17 +0100793 len = sprintf( (char *) buf, "RCPT TO:<%s>\r\n", opt.mail_to );
Paul Bakker1496d382011-05-23 12:07:29 +0000794 ret = write_ssl_and_get_response( &ssl, buf, len );
795 if( ret < 200 || ret > 299 )
796 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200797 mbedtls_printf( " failed\n ! server responded with %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000798 goto exit;
799 }
800
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200801 mbedtls_printf(" ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000802
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200803 mbedtls_printf( " > Write DATA to server:" );
Paul Bakker1496d382011-05-23 12:07:29 +0000804 fflush( stdout );
805
Paul Bakkerd75ba402014-01-24 16:11:17 +0100806 len = sprintf( (char *) buf, "DATA\r\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000807 ret = write_ssl_and_get_response( &ssl, buf, len );
808 if( ret < 300 || ret > 399 )
809 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200810 mbedtls_printf( " failed\n ! server responded with %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000811 goto exit;
812 }
813
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200814 mbedtls_printf(" ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000815
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200816 mbedtls_printf( " > Write content to server:" );
Paul Bakker1496d382011-05-23 12:07:29 +0000817 fflush( stdout );
818
Manuel Pégourié-Gonnard91699212015-01-22 16:26:39 +0000819 len = sprintf( (char *) buf, "From: %s\r\nSubject: mbed TLS Test mail\r\n\r\n"
Paul Bakker1496d382011-05-23 12:07:29 +0000820 "This is a simple test mail from the "
Manuel Pégourié-Gonnard91699212015-01-22 16:26:39 +0000821 "mbed TLS mail client example.\r\n"
Paul Bakkerd75ba402014-01-24 16:11:17 +0100822 "\r\n"
Paul Bakker1496d382011-05-23 12:07:29 +0000823 "Enjoy!", opt.mail_from );
824 ret = write_ssl_data( &ssl, buf, len );
825
826 len = sprintf( (char *) buf, "\r\n.\r\n");
827 ret = write_ssl_and_get_response( &ssl, buf, len );
828 if( ret < 200 || ret > 299 )
829 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200830 mbedtls_printf( " failed\n ! server responded with %d\n\n", ret );
Paul Bakker1496d382011-05-23 12:07:29 +0000831 goto exit;
832 }
833
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200834 mbedtls_printf(" ok\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000835
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200836 mbedtls_ssl_close_notify( &ssl );
Paul Bakker1496d382011-05-23 12:07:29 +0000837
Andres Amaya Garcia67a42ac2018-04-29 21:04:29 +0100838 exit_code = MBEDTLS_EXIT_SUCCESS;
839
Paul Bakker1496d382011-05-23 12:07:29 +0000840exit:
841
Manuel Pégourié-Gonnard3d7d00a2015-06-30 15:55:03 +0200842 mbedtls_net_free( &server_fd );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200843 mbedtls_x509_crt_free( &clicert );
844 mbedtls_x509_crt_free( &cacert );
845 mbedtls_pk_free( &pkey );
846 mbedtls_ssl_free( &ssl );
Manuel Pégourié-Gonnarddef0bbe2015-05-04 14:56:36 +0200847 mbedtls_ssl_config_free( &conf );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200848 mbedtls_ctr_drbg_free( &ctr_drbg );
849 mbedtls_entropy_free( &entropy );
Paul Bakker1496d382011-05-23 12:07:29 +0000850
Paul Bakkercce9d772011-11-18 14:26:47 +0000851#if defined(_WIN32)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200852 mbedtls_printf( " + Press Enter to exit this program.\n" );
Paul Bakker1496d382011-05-23 12:07:29 +0000853 fflush( stdout ); getchar();
854#endif
855
Krzysztof Stachowiak5e1b1952019-04-24 14:24:46 +0200856 mbedtls_exit( exit_code );
Paul Bakker1496d382011-05-23 12:07:29 +0000857}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200858#endif /* MBEDTLS_BIGNUM_C && MBEDTLS_ENTROPY_C && MBEDTLS_SSL_TLS_C &&
859 MBEDTLS_SSL_CLI_C && MBEDTLS_NET_C && MBEDTLS_RSA_C **
860 MBEDTLS_CTR_DRBG_C */