extern crate clap;
extern crate env_logger;
#[cfg(feature = "ssl")]
extern crate openssl;
extern crate solana_ws as ws;
#[cfg(feature = "ssl")]
use std::fs::File;
#[cfg(feature = "ssl")]
use std::io::Read;
#[cfg(feature = "ssl")]
use std::rc::Rc;
#[cfg(feature = "ssl")]
use openssl::pkey::PKey;
#[cfg(feature = "ssl")]
use openssl::ssl::{SslAcceptor, SslMethod, SslStream};
#[cfg(feature = "ssl")]
use openssl::x509::X509;
#[cfg(feature = "ssl")]
use ws::util::TcpStream;
#[cfg(feature = "ssl")]
struct Server {
out: ws::Sender,
ssl: Rc<SslAcceptor>,
}
#[cfg(feature = "ssl")]
impl ws::Handler for Server {
fn on_message(&mut self, msg: ws::Message) -> ws::Result<()> {
self.out.send(msg) }
fn upgrade_ssl_server(&mut self, sock: TcpStream) -> ws::Result<SslStream<TcpStream>> {
self.ssl.accept(sock).map_err(From::from)
}
}
#[cfg(feature = "ssl")]
fn main() {
env_logger::init();
let matches = clap::App::new("WS-RS SSL Server Configuration")
.version("1.0")
.author("Jason Housley <housleyjk@gmail.com>")
.about("Establish a WebSocket server that encrypts and decrypts messages.")
.arg(
clap::Arg::with_name("ADDR")
.help("Address on which to bind the server.")
.required(true)
.index(1),
)
.arg(
clap::Arg::with_name("CERT")
.help("Path to the SSL certificate.")
.required(true)
.index(2),
)
.arg(
clap::Arg::with_name("KEY")
.help("Path to the SSL certificate key.")
.required(true)
.index(3),
)
.get_matches();
let cert = {
let data = read_file(matches.value_of("CERT").unwrap()).unwrap();
X509::from_pem(data.as_ref()).unwrap()
};
let pkey = {
let data = read_file(matches.value_of("KEY").unwrap()).unwrap();
PKey::private_key_from_pem(data.as_ref()).unwrap()
};
let acceptor = Rc::new({
let mut builder = SslAcceptor::mozilla_intermediate(SslMethod::tls()).unwrap();
builder.set_private_key(&pkey).unwrap();
builder.set_certificate(&cert).unwrap();
builder.build()
});
ws::Builder::new()
.with_settings(ws::Settings {
encrypt_server: true,
..ws::Settings::default()
})
.build(|out: ws::Sender| Server {
out: out,
ssl: acceptor.clone(),
})
.unwrap()
.listen(matches.value_of("ADDR").unwrap())
.unwrap();
}
#[cfg(feature = "ssl")]
fn read_file(name: &str) -> std::io::Result<Vec<u8>> {
let mut file = File::open(name)?;
let mut buf = Vec::new();
file.read_to_end(&mut buf)?;
Ok(buf)
}
#[cfg(not(feature = "ssl"))]
fn main() {
println!("SSL feature is not enabled.")
}