acl/lib_acl_cpp/samples/ssl/ssl_server/ssl_server.cpp

// main.cpp : <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>̨Ӧ<CCA8>ó<EFBFBD><C3B3><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ڵ㡣
//
#include "stdafx.h"
#include <assert.h>
#include "lib_acl.h"
#include "acl_cpp/lib_acl.hpp"

#define USE_MBEDTLS

//////////////////////////////////////////////////////////////////////////

class http_servlet : public acl::HttpServlet
{
public:
	http_servlet()
	{
		param1_ = NULL;
		param2_ = NULL;
		param3_ = NULL;
		file1_ = NULL;
		file2_ = NULL;
		file3_ = NULL;
		first_ = true;
	}

	~http_servlet(void)
	{
	}

	// @override
	bool doError(acl::HttpServletRequest&, acl::HttpServletResponse&)
	{
		if (first_) {
			logger_error("first request error");
		}
		return false;
	}

	// GET <20><><EFBFBD><EFBFBD>
	// @override
	bool doGet(acl::HttpServletRequest& req, acl::HttpServletResponse& res)
	{
		bool ret = doPost(req, res);
		if (ret == false) {
			logger_error("doPost error!");
		} else {
			logger("doPost OK!");
		}
		return ret;
	}

	// POST <20><><EFBFBD><EFBFBD>
	// @override
	bool doPost(acl::HttpServletRequest& req, acl::HttpServletResponse& res)
	{
		first_ = false;

		logger("request one now");

		// <20><><EFBFBD><EFBFBD> HTTP <20><>Ӧͷ
		res.addCookie("name1", "value1");
		res.addCookie("name2", "value2", ".test.com", "/", 3600 * 24);
		res.setChunkedTransferEncoding(true);
		res.setKeepAlive(true);
		//		res.setStatus(400);  // <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>÷<EFBFBD><C3B7>ص<EFBFBD>״̬<D7B4><CCAC>

		// <20><><EFBFBD>ַ<EFBFBD>ʽ<EFBFBD><CABD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ַ<EFBFBD><D6B7><EFBFBD>
		if (0) {
			res.setContentType("text/xml; charset=gb2312");
		} else {
			res.setContentType("text/xml");
			res.setCharacterEncoding("gb2312");
		}

		// <20><><EFBFBD><EFBFBD> HTTP <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ͣ<EFBFBD><CDA3><EFBFBD><EFBFBD><EFBFBD><EFBFBD>IJ<EFBFBD><C4B2><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ͣ<EFBFBD><CDA3><EFBFBD> name&value <20><>ʽ
		// <20><><EFBFBD><EFBFBD> MIME <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ͣ<EFBFBD><CDA3><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
		acl::http_request_t request_type = req.getRequestType();
		if (request_type == acl::HTTP_REQUEST_NORMAL) {
			return doParams(req, res);
		} else if (request_type == acl::HTTP_REQUEST_MULTIPART_FORM) {
			return doUpload(req, res);
		}
		assert(request_type == acl::HTTP_REQUEST_OCTET_STREAM);
		return doOctetStream(req, res);
	}

	bool doResponse(acl::HttpServletRequest& req, acl::HttpServletResponse& res)
	{
		// <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> cookie ֵ
		const char* cookie1 = req.getCookieValue("name1");
		const char* cookie2 = req.getCookieValue("name2");

		// <20><><EFBFBD><EFBFBD> xml <20><>ʽ<EFBFBD><CABD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
		acl::xml1 body;
		body.get_root().add_child("root", true)
			.add_child("content_type", true)
				.add_attr("type", (int) req.getRequestType())
				.get_parent()
			.add_child("cookies", true)
				.add_child("cookie", true)
					.add_attr("name1", cookie1 ? cookie1 : "null")
					.get_parent()
				.add_child("cookie", true)
					.add_attr("name2", cookie2 ? cookie2 : "null")
					.get_parent()
				.get_parent()
			.add_child("params", true)
				.add_child("param", true)
					.add_attr("name1", param1_ ? param1_ : "null")
					.get_parent()
				.add_child("param", true)
					.add_attr("name2", param2_ ? param2_ : "null")
					.get_parent()
				.add_child("param", true)
					.add_attr("name3", param3_ ? param3_ : "null")
					.get_parent()
				.get_parent()
			.add_child("files", true)
				.add_child("file", true)
					.add_attr("filename", file1_ ? file1_ : "null")
					.get_parent()
				.add_child("file", true)
					.add_attr("filename", file2_ ? file2_ : "null")
					.get_parent()
				.add_child("file", true)
					.add_attr("filename", file3_ ? file3_ : "null");
		acl::string buf("<?xml version=\"1.0\"?>");
		body.build_xml(buf);

		//printf(">>>response: %s\r\n", buf.c_str());
		//res.setContentLength(buf.length());

		// <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʾ<EFBFBD><CABE><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> http <20><>Ӧͷ
		//if (res.sendHeader() == false)
		//	return false;
		// <20><><EFBFBD><EFBFBD> http <20><>Ӧ<EFBFBD>壬<EFBFBD><E5A3AC>ʹ<EFBFBD><CAB9> chunk <20><><EFBFBD><EFBFBD>ʱ<EFBFBD><CAB1><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>һ<EFBFBD>η<EFBFBD><CEB7>Ϳ<EFBFBD><CDBF><EFBFBD><EFBFBD><EFBFBD>
		if (res.write(buf) == false || res.write(NULL, 0) == false) {
			return false;
		}
		return true;
	}

	// GET <20><>ʽ<EFBFBD><CABD> POST <20><>ʽ<EFBFBD><CABD><EFBFBD><EFBFBD><EFBFBD>㣺
	// Content-Type: application/x-www-form-urlencoded
	bool doParams(acl::HttpServletRequest& req, acl::HttpServletResponse& res)
	{
		param1_ = req.getParameter("name1");
		param2_ = req.getParameter("name2");
		param3_ = req.getParameter("name3");
		return doResponse(req, res);
	}

	// POST <20><>ʽ<EFBFBD><CABD><EFBFBD><EFBFBD><EFBFBD>㣺
	// Content-Type: multipart/form-data; boundary=xxx
	bool doUpload(acl::HttpServletRequest& req, acl::HttpServletResponse& res)
	{
		// <20>Ȼ<EFBFBD><C8BB><EFBFBD> Content-Type <20><>Ӧ<EFBFBD><D3A6> http_ctype <20><><EFBFBD><EFBFBD>
		acl::http_mime* mime = req.getHttpMime();
		if (mime == NULL) {
			logger_error("http_mime null");
			return false;
		}

		// <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ij<EFBFBD><C4B3><EFBFBD>
		long long int len = req.getContentLength();
		if (len <= 0) {
			logger_error("body empty");
			return false;
		}

		// <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
		acl::istream& in = req.getInputStream();
		char  buf[8192];
		int   ret;
		bool  finish = false;

		const char* filepath = "./var/mime_file";
		acl::ofstream out;
		out.open_write(filepath);

		// <20><><EFBFBD><EFBFBD>ԭʼ<D4AD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>·<EFBFBD><C2B7>
		mime->set_saved_path(filepath);

		size_t k;

		// <20><>ȡ HTTP <20>ͻ<EFBFBD><CDBB><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
		while (len > 0) {
			k = (size_t) len > sizeof(buf) ? sizeof(buf) : (size_t) len;
			ret = in.read(buf, k, false);
			if (ret == -1) {
				logger_error("read POST data error");
				return false;
			}
			out.write(buf, ret);

			len -= ret;

			// <20><><EFBFBD><EFBFBD><EFBFBD>õ<EFBFBD><C3B5><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>н<EFBFBD><D0BD><EFBFBD>
			if (!finish && mime->update(buf, ret) == true) {
				finish = true;
			}
		}
		out.close();

		if (len != 0 || finish == false) {
			logger_warn("not read all data from client");
		}

		param1_ = req.getParameter("name1");
		param2_ = req.getParameter("name2");
		param3_ = req.getParameter("name3");

		acl::string path;

		// <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>е<EFBFBD> MIME <20><><EFBFBD>㣬<EFBFBD>ҳ<EFBFBD><D2B3><EFBFBD><EFBFBD><EFBFBD>Ϊ<EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD>IJ<EFBFBD><C4B2>ֽ<EFBFBD><D6BD><EFBFBD>ת<EFBFBD><D7AA>
		const std::list<acl::http_mime_node*>& nodes = mime->get_nodes();
		std::list<acl::http_mime_node*>::const_iterator cit = nodes.begin();
		for (; cit != nodes.end(); ++cit) {
			const char* name = (*cit)->get_name();
			if (name == NULL) {
				continue;
			}

			acl::http_mime_t mime_type = (*cit)->get_mime_type();
			if (mime_type == acl::HTTP_MIME_FILE) {
				const char* filename = (*cit)->get_filename();
				if (filename == NULL) {
					logger("filename null");
					continue;
				}

				if (strcmp(name, "file1") == 0) {
					file1_ = filename;
				} else if (strcmp(name, "file2") == 0) {
					file2_ = filename;
				} else if (strcmp(name, "file3") == 0) {
					file3_ = filename;
				}

				// <20>е<EFBFBD><D0B5><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>IE<49><45><EFBFBD>ϴ<EFBFBD><CFB4>ļ<EFBFBD>ʱ<EFBFBD><CAB1><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD>·<EFBFBD><C2B7><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
				// <20><>Ҫ<EFBFBD>Ƚ<EFBFBD>·<EFBFBD><C2B7>ȥ<EFBFBD><C8A5>
				filename = acl_safe_basename(filename);
#ifdef WIN32
				path.format("var\\%s", filename);
#else
				path.format("./var/%s", filename);
#endif
				(void) (*cit)->save(path.c_str());
			}
		}

		// <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ص<EFBFBD>ij<EFBFBD><C4B3><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD>ת<EFBFBD><D7AA>
		const acl::http_mime_node* node = mime->get_node("file1");
		if (node && node->get_mime_type() == acl::HTTP_MIME_FILE) {
			const char* ptr = node->get_filename();
			if (ptr) {
				// <20>е<EFBFBD><D0B5><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>IE<49><45><EFBFBD>ϴ<EFBFBD><CFB4>ļ<EFBFBD>ʱ<EFBFBD><CAB1><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD>·<EFBFBD><C2B7><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
				// <20><>Ҫ<EFBFBD>Ƚ<EFBFBD>·<EFBFBD><C2B7>ȥ<EFBFBD><C8A5>
				ptr = acl_safe_basename(ptr);
#ifdef WIN32
				path.format(".\\var\\1_%s", ptr);
#else
				path.format("./var/1_%s", ptr);
#endif
				(void) node->save(path.c_str());
			}
		}
		return doResponse(req, res);
	}

	// POST <20><>ʽ<EFBFBD><CABD><EFBFBD><EFBFBD><EFBFBD>㣺
	// Content-Type: application/octet-stream
	bool doOctetStream(acl::HttpServletRequest&, acl::HttpServletResponse&)
	{
		logger_error("not support now!");
		return false;
	}

protected:
private:
	const char* param1_;
	const char* param2_;
	const char* param3_;
	const char* file1_;
	const char* file2_;
	const char* file3_;
	bool first_;
};

//////////////////////////////////////////////////////////////////////////

static void do_run(acl::socket_stream* stream)
{
	acl::memcache_session session("127.0.0.1:11211");
	http_servlet servlet;
	servlet.setLocalCharset("gb2312");
	servlet.doRun(session, stream);
}

// <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʽ<EFBFBD><CABD><EFBFBD><EFBFBD>ʱ<EFBFBD>ķ<EFBFBD><C4B7><EFBFBD><EFBFBD><EFBFBD>
class master_service : public acl::master_proc
{
public:
	master_service(const char* crt_file, const char* key_file,
#ifdef USE_MBEDTLS
		acl::mbedtls_verify_t verify_mode)
#else
		acl::polarssl_verify_t verify_mode)
#endif
	{
		if (crt_file && *crt_file && key_file && *key_file) {
			crt_file_ = crt_file;
			key_file_ = key_file;
#ifdef USE_MBEDTLS
			conf_ = new acl::mbedtls_conf(true);
#else
			conf_ = new acl::polarssl_conf(true);
#endif
		} else {
			conf_ = NULL;
		}
		verify_mode_ = verify_mode;
	}

	~master_service()
	{
		delete conf_;
	}

protected:
	// @override
	void on_accept(acl::socket_stream* stream)
	{
		stream->set_rw_timeout(60);
		printf("accept one fd=%d\r\n", stream->sock_handle());

		if (conf_) {
			// <20><><EFBFBD><EFBFBD>ʹ<EFBFBD><CAB9> SSL <20><>ʽ<EFBFBD><CABD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ҫ<EFBFBD><D2AA> SSL IO <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ע<EFBFBD><D7A2>
			// <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>У<EFBFBD><D0A3><EFBFBD><EFBFBD><EFBFBD> ssl io <20>滻 stream <20><>Ĭ<EFBFBD><C4AC>
			// <20>ĵײ<C4B5> IO <20><><EFBFBD><EFBFBD>

			logger("begin setup ssl hook...");

			acl::sslbase_io* ssl = conf_->create(false);
			if (stream->setup_hook(ssl) == ssl) {
				logger_error("setup_hook error!");
				ssl->destroy();
			} else {
				logger("setup ssl hook ok");
			}
		}

		do_run(stream);
	}

	// @override
	void proc_on_init()
	{
		if (conf_ == NULL) {
			return;
		}

		// <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>˵<EFBFBD> SSL <20>Ự<EFBFBD><E1BBB0><EFBFBD>湦<EFBFBD><E6B9A6>
		conf_->enable_cache(true);

		// <20><><EFBFBD>ӱ<EFBFBD><D3B1>ط<EFBFBD><D8B7><EFBFBD><EFBFBD><EFBFBD>֤<EFBFBD><D6A4>
		if (conf_->add_cert(crt_file_.c_str()) == false) {
			logger_error("add cert failed, crt: %s, key: %s",
				crt_file_.c_str(), key_file_.c_str());
			delete conf_;
			conf_ = NULL;
			return;
		}
		logger("load cert ok, crt: %s", crt_file_.c_str());

		// <20><><EFBFBD>ӱ<EFBFBD><D3B1>ط<EFBFBD><D8B7><EFBFBD><EFBFBD><EFBFBD>Կ
		if (conf_->set_key(key_file_.c_str()) == false) {
			logger_error("set private key error");
			delete conf_;
			conf_ = NULL;
			return;
		}
		logger("set key ok, key: %s", key_file_.c_str());

#ifndef USE_MBEDTLS
		conf_->set_authmode(verify_mode_);
#endif
	}

private:
#ifdef USE_MBEDTLS
	acl::mbedtls_conf*     conf_;
	acl::mbedtls_verify_t  verify_mode_;
#else
	acl::polarssl_conf*    conf_;
	acl::polarssl_verify_t verify_mode_;
#endif
	acl::string crt_file_;
	acl::string key_file_;
};

// WEB <20><><EFBFBD><EFBFBD>ģʽ
static void do_alone(const char* crt_file, const char* key_file,
#ifdef USE_MBEDTLS
	acl::mbedtls_verify_t verify_mode)
#else
	acl::polarssl_verify_t verify_mode)
#endif
{
	master_service service(crt_file, key_file, verify_mode);
	acl::log::stdout_open(true);
	const char* addr = "0.0.0.0:2443";
	printf("listen: %s ...\r\n", addr);
	service.run_alone(addr, NULL, 0);  // <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>з<EFBFBD>ʽ
}

// WEB CGI ģʽ
static void do_cgi(void)
{
	do_run(NULL);
}

//////////////////////////////////////////////////////////////////////////

int main(int argc, char* argv[])
{
#ifdef WIN32
	acl::acl_cpp_init();
#endif
	acl::log::stdout_open(true);

#ifdef USE_MBEDTLS
# ifdef __APPLE__
#  define USE_ONE
#  ifdef USE_ONE
	const char* libssl_path    = "../libmbedtls_all.dylib";
	acl::mbedtls_conf::set_libpath(libssl_path);
#  else
	const char* libcrypto_path = "../libmbedcrypto.dylib";
	const char* libx509_path   = "../libmbedx509.dylib";
	const char* libssl_path    = "../libmbedtls.dylib";
	acl::mbedtls_conf::set_libpath(libcrypto_path, libx509_path, libssl_path);
#  endif
# elif defined(_WIN32) || defined(_WIN64)
	const char* libssl_path    = "../mbedtls.dll";
	acl::mbedtls_conf::set_libpath(libssl_path);  // һ<><D2BB><EFBFBD>ܵĶ<DCB5>̬<EFBFBD><CCAC>
# elif defined(__linux__)
#  define USE_ONE
#  ifdef USE_ONE
	const char* libssl_path    = "../libmbedtls_all.so";
	acl::mbedtls_conf::set_libpath(libssl_path);
#  else
	const char* libcrypto_path = "../libmbedcrypto.so";
	const char* libx509_path   = "../libmbedx509.so";
	const char* libssl_path    = "../libmbedtls.so";
	acl::mbedtls_conf::set_libpath(libcrypto_path, libx509_path, libssl_path);
#  endif
# endif
	if (!acl::mbedtls_conf::load()) {
		printf("load %s error\r\n", libssl_path);
		return 1;
	}
#else
# ifdef __APPLE__
	const char* libssl_path = "../libpolarssl.dylib";
	acl::polarssl_conf::set_libpath(libssl_path);
# else
	const char* libssl_path = "../libpolarssl.so";
	acl::polarssl_conf::set_libpath(libssl_path);
# endif
	if (!acl::polarssl_conf::load()) {
		printf("load %s error\r\n", libssl_path);
		return 1;
	}
#endif

	// <20><>ʼ<EFBFBD><CABC><EFBFBD><EFBFBD>
	if (argc >= 2 && strcmp(argv[1], "alone") == 0) {
#ifdef USE_MBEDTLS
		acl::mbedtls_verify_t verify_mode;
#else
		acl::polarssl_verify_t verify_mode;
#endif
		const char* crt_file, *key_file;

		if (argc >= 3) {
			crt_file = argv[2];
		} else {
			crt_file = NULL;
		}
		if (argc >= 4) {
			key_file = argv[3];
		} else {
			key_file = NULL;
		}
#ifdef USE_MBEDTLS
		if (argc >= 5) {
			if (strcasecmp(argv[4], "req") == 0) {
				verify_mode = acl::MBEDTLS_VERIFY_REQ;
			} else if (strcasecmp(argv[4], "opt") == 0) {
				verify_mode = acl::MBEDTLS_VERIFY_OPT;
			} else {
				verify_mode = acl::MBEDTLS_VERIFY_NONE;
			}
		} else {
			verify_mode = acl::MBEDTLS_VERIFY_NONE;
		}
#else
		if (argc >= 5) {
			if (strcasecmp(argv[4], "req") == 0) {
				verify_mode = acl::POLARSSL_VERIFY_REQ;
			} else if (strcasecmp(argv[4], "opt") == 0) {
				verify_mode = acl::POLARSSL_VERIFY_OPT;
			} else {
				verify_mode = acl::POLARSSL_VERIFY_NONE;
			}
		} else {
			verify_mode = acl::POLARSSL_VERIFY_NONE;
		}
#endif

		do_alone(crt_file, key_file, verify_mode);
	} else if (argc >= 2) {
		printf("usage: %s alone cert_file key_file verify[none|req|opt]\r\n", argv[0]);
	} else {
		do_cgi();
	}

	return 0;
}