qowevisa/tricrypt
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

test

Browse Source
This commit is contained in:
qowevisa 2024-02-23 19:23:31 +02:00
parent 6571dc20c0
commit 1592590883
3 changed files with 57 additions and 77 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
Makefile
View File

@ -13,6 +13,10 @@ server: server.crt server.key
client: ca.crt client: ca.crt
go build -o ./bin/$@ ./cmd/$@ go build -o ./bin/$@ ./cmd/$@
gen_test_certs:
openssl ecparam -genkey -name prime256v1 -out server.key
openssl req -new -x509 -key server.key -out server.pem -days 3650
gen_certs: gen_certs:
openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout tls.key -out tls.crt -config san.cnf openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout tls.key -out tls.crt -config san.cnf
#openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem -days 365 #openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem -days 365

50
cmd/client/main.go
View File

@ -6,43 +6,41 @@ import (
"fmt" "fmt"
"io" "io"
"log" "log"
"net/http" "net"
"os" "os"
"git.qowevisa.me/Qowevisa/gotell/env" "git.qowevisa.me/Qowevisa/gotell/env"
) )
func main() { func main() {
caCert, err := os.ReadFile("ca.crt") host, err := env.GetHost()
if err != nil { if err != nil {
log.Fatalf("Reading CA cert file: %s", err) panic(err)
} }
port, err := env.GetPort()
caCertPool := x509.NewCertPool()
caCertPool.AppendCertsFromPEM(caCert)
tlsConfig := &tls.Config{
RootCAs: caCertPool,
}
client := &http.Client{
Transport: &http.Transport{
TLSClientConfig: tlsConfig,
},
}
url := fmt.Sprintf("https://chat.qowevisa.me:%d", env.ConnectPort)
response, err := client.Get(url)
if err != nil { if err != nil {
log.Fatalf("Failed to request: %s", err) panic(err)
} }
defer response.Body.Close() //
rootCert, err := os.ReadFile("./server.pem")
body, err := io.ReadAll(response.Body)
if err != nil { if err != nil {
log.Fatalf("Failed to read response: %s", err) panic(err)
}
//
roots := x509.NewCertPool()
ok := roots.AppendCertsFromPEM(rootCert)
if !ok {
log.Fatal("failed to parse root certificate")
}
config := &tls.Config{RootCAs: roots, ServerName: "localhost"}
connp, err := net.Dial("tcp", fmt.Sprintf("%s:%d", host, port))
if err != nil {
log.Fatal(err)
} }
log.Printf("Server response: %s", body) conn := tls.Client(connp, config)
io.WriteString(conn, "Hello secure Server")
conn.Close()
} }

80
cmd/server/main.go
View File

@ -1,78 +1,56 @@
package main package main
import ( import (
"bufio"
"crypto/tls" "crypto/tls"
"fmt" "fmt"
"io"
"log" "log"
"net" "net"
"net/http"
"os" "os"
"time"
"git.qowevisa.me/Qowevisa/gotell/env" "git.qowevisa.me/Qowevisa/gotell/env"
) )
func handle(w http.ResponseWriter, r *http.Request) {
fmt.Fprintf(w, "Hello, you've connected to the server!")
log.Printf("w: %#v", w)
log.Printf("r: %#v", r)
}
func main() { func main() {
// Listen on TCP port 8080 on all available unicast and anycast IP addresses of the local system.
cert, err := tls.LoadX509KeyPair("tls.crt", "tls.key")
if err != nil {
log.Fatalf("server: loadkeys: %s", err)
}
config := tls.Config{Certificates: []tls.Certificate{cert}}
host, err := env.GetHost() host, err := env.GetHost()
if err != nil { if err != nil {
panic(err) log.Fatal(err)
} }
port, err := env.GetPort() port, err := env.GetPort()
if err != nil { if err != nil {
panic(err) log.Fatal(err)
} }
srv := http.Server{ //
Addr: fmt.Sprintf("%s:%d", host, port), serverCert, err := os.ReadFile("./server.pem")
TLSConfig: &config,
ReadTimeout: time.Minute,
WriteTimeout: time.Minute,
Handler: http.HandlerFunc(handle),
}
log.Printf("Start http server on %s:%d\n", host, port)
err = srv.ListenAndServe()
if err != nil { if err != nil {
log.Fatalf("Failed to start server: %v", err) log.Fatal(err)
os.Exit(1)
} }
defer srv.Close() serverKey, err := os.ReadFile("./server.key")
} if err != nil {
log.Fatal(err)
}
cer, err := tls.X509KeyPair(serverCert, serverKey)
if err != nil {
log.Fatal(err)
}
config := &tls.Config{Certificates: []tls.Certificate{cer}}
//
func handleConnection(conn net.Conn) { l, err := tls.Listen("tcp", fmt.Sprintf("%s:%d", host, port), config)
defer conn.Close() if err != nil {
log.Fatal(err)
}
defer l.Close()
fmt.Printf("Client connected: %v\n", conn.RemoteAddr()) for {
conn, err := l.Accept()
// Create a new reader for each client.
scanner := bufio.NewScanner(conn)
for scanner.Scan() {
// Read the incoming connection into the buffer.
text := scanner.Text()
fmt.Printf("Received: %s\n", text)
// Send a response back to client.
_, err := conn.Write([]byte("Message received: " + text + "\n"))
if err != nil { if err != nil {
log.Printf("Failed to write to connection: %v", err) log.Fatal(err)
break
} }
go func(c net.Conn) {
io.Copy(os.Stdout, c)
fmt.Println()
c.Close()
}(conn)
} }
if err := scanner.Err(); err != nil {
fmt.Fprintf(os.Stderr, "Error reading from connection: %s\n", err)
}
fmt.Printf("Client disconnected: %v\n", conn.RemoteAddr())
} }