1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
|
package org.bouncycastle.crypto.tls.test;
import java.io.BufferedReader;
import java.io.IOException;
import java.io.InputStream;
import java.io.InputStreamReader;
import java.io.OutputStream;
import java.net.InetAddress;
import java.net.Socket;
import java.security.SecureRandom;
import org.bouncycastle.crypto.tls.BasicTlsPSKIdentity;
import org.bouncycastle.crypto.tls.TlsClient;
import org.bouncycastle.crypto.tls.TlsClientProtocol;
/**
* A simple test designed to conduct a TLS handshake with an external TLS server.
* <p>
* Please refer to GnuTLSSetup.html or OpenSSLSetup.html (under 'docs'), and x509-*.pem files in
* this package (under 'src/test/resources') for help configuring an external TLS server.
* </p><p>
* In both cases, extra options are required to enable PSK ciphersuites and configure identities/keys.
* </p>
*/
public class PSKTlsClientTest
{
private static final SecureRandom secureRandom = new SecureRandom();
public static void main(String[] args) throws Exception
{
InetAddress address = InetAddress.getLocalHost();
int port = 5556;
long time1 = System.currentTimeMillis();
/*
* Note: This is the default PSK identity for 'openssl s_server' testing, the server must be
* started with "-psk 6161616161" to make the keys match, and possibly the "-psk_hint"
* option should be present.
*/
String psk_identity = "Client_identity";
byte[] psk = new byte[]{ 0x61, 0x61, 0x61, 0x61, 0x61 };
BasicTlsPSKIdentity pskIdentity = new BasicTlsPSKIdentity(psk_identity, psk);
MockPSKTlsClient client = new MockPSKTlsClient(null, pskIdentity);
TlsClientProtocol protocol = openTlsConnection(address, port, client);
protocol.close();
long time2 = System.currentTimeMillis();
System.out.println("Elapsed 1: " + (time2 - time1) + "ms");
client = new MockPSKTlsClient(client.getSessionToResume(), pskIdentity);
protocol = openTlsConnection(address, port, client);
long time3 = System.currentTimeMillis();
System.out.println("Elapsed 2: " + (time3 - time2) + "ms");
OutputStream output = protocol.getOutputStream();
output.write("GET / HTTP/1.1\r\n\r\n".getBytes("UTF-8"));
output.flush();
InputStream input = protocol.getInputStream();
BufferedReader reader = new BufferedReader(new InputStreamReader(input));
String line;
while ((line = reader.readLine()) != null)
{
System.out.println(">>> " + line);
}
protocol.close();
}
static TlsClientProtocol openTlsConnection(InetAddress address, int port, TlsClient client) throws IOException
{
Socket s = new Socket(address, port);
TlsClientProtocol protocol = new TlsClientProtocol(s.getInputStream(), s.getOutputStream(), secureRandom);
protocol.connect(client);
return protocol;
}
}
|
