Jean-Paul Calderone | 3de9f62 | 2008-03-12 14:12:19 -0400 | [diff] [blame] | 1 | # -*- coding: latin-1 -*- |
Jean-Paul Calderone | 897bc25 | 2008-02-18 20:50:23 -0500 | [diff] [blame] | 2 | # |
| 3 | # Copyright (C) 2001 Martin Sjögren and AB Strakt, All rights reserved |
Jean-Paul Calderone | 8b63d45 | 2008-03-21 18:31:12 -0400 | [diff] [blame^] | 4 | # Copyright (C) Jean-Paul Calderone 2008, All rights reserved |
| 5 | |
Jean-Paul Calderone | 897bc25 | 2008-02-18 20:50:23 -0500 | [diff] [blame] | 6 | """ |
| 7 | Simple echo server, using nonblocking I/O |
| 8 | """ |
| 9 | |
| 10 | from OpenSSL import SSL |
| 11 | import sys, os, select, socket |
| 12 | |
| 13 | |
| 14 | def verify_cb(conn, cert, errnum, depth, ok): |
| 15 | # This obviously has to be updated |
| 16 | print 'Got certificate: %s' % cert.get_subject() |
| 17 | return ok |
| 18 | |
| 19 | if len(sys.argv) < 2: |
| 20 | print 'Usage: python[2] server.py PORT' |
| 21 | sys.exit(1) |
| 22 | |
| 23 | dir = os.path.dirname(sys.argv[0]) |
| 24 | if dir == '': |
| 25 | dir = os.curdir |
| 26 | |
| 27 | # Initialize context |
| 28 | ctx = SSL.Context(SSL.SSLv23_METHOD) |
| 29 | ctx.set_options(SSL.OP_NO_SSLv2) |
| 30 | ctx.set_verify(SSL.VERIFY_PEER|SSL.VERIFY_FAIL_IF_NO_PEER_CERT, verify_cb) # Demand a certificate |
| 31 | ctx.use_privatekey_file (os.path.join(dir, 'server.pkey')) |
| 32 | ctx.use_certificate_file(os.path.join(dir, 'server.cert')) |
| 33 | ctx.load_verify_locations(os.path.join(dir, 'CA.cert')) |
| 34 | |
| 35 | # Set up server |
| 36 | server = SSL.Connection(ctx, socket.socket(socket.AF_INET, socket.SOCK_STREAM)) |
| 37 | server.bind(('', int(sys.argv[1]))) |
| 38 | server.listen(3) |
| 39 | server.setblocking(0) |
| 40 | |
| 41 | clients = {} |
| 42 | writers = {} |
| 43 | |
| 44 | def dropClient(cli, errors=None): |
| 45 | if errors: |
| 46 | print 'Client %s left unexpectedly:' % (clients[cli],) |
| 47 | print ' ', errors |
| 48 | else: |
| 49 | print 'Client %s left politely' % (clients[cli],) |
| 50 | del clients[cli] |
| 51 | if writers.has_key(cli): |
| 52 | del writers[cli] |
| 53 | if not errors: |
| 54 | cli.shutdown() |
| 55 | cli.close() |
| 56 | |
| 57 | while 1: |
| 58 | try: |
| 59 | r,w,_ = select.select([server]+clients.keys(), writers.keys(), []) |
| 60 | except: |
| 61 | break |
| 62 | |
| 63 | for cli in r: |
| 64 | if cli == server: |
| 65 | cli,addr = server.accept() |
| 66 | print 'Connection from %s' % (addr,) |
| 67 | clients[cli] = addr |
| 68 | |
| 69 | else: |
| 70 | try: |
| 71 | ret = cli.recv(1024) |
| 72 | except (SSL.WantReadError, SSL.WantWriteError, SSL.WantX509LookupError): |
| 73 | pass |
| 74 | except SSL.ZeroReturnError: |
| 75 | dropClient(cli) |
| 76 | except SSL.Error, errors: |
| 77 | dropClient(cli, errors) |
| 78 | else: |
| 79 | if not writers.has_key(cli): |
| 80 | writers[cli] = '' |
| 81 | writers[cli] = writers[cli] + ret |
| 82 | |
| 83 | for cli in w: |
| 84 | try: |
| 85 | ret = cli.send(writers[cli]) |
| 86 | except (SSL.WantReadError, SSL.WantWriteError, SSL.WantX509LookupError): |
| 87 | pass |
| 88 | except SSL.ZeroReturnError: |
| 89 | dropClient(cli) |
| 90 | except SSL.Error, errors: |
| 91 | dropClient(cli, errors) |
| 92 | else: |
| 93 | writers[cli] = writers[cli][ret:] |
| 94 | if writers[cli] == '': |
| 95 | del writers[cli] |
| 96 | |
| 97 | for cli in clients.keys(): |
| 98 | cli.close() |
| 99 | server.close() |