TLS client WS

pfeatherstone · pfeatherstone · commit 4d28ca43295c · 2025-05-28T18:16:40.000+01:00
diff --git a/examples/client_ws_awaitable.cpp b/examples/client_ws_awaitable.cpp
@@ -4,8 +4,10 @@
 #include <boost/asio/connect.hpp>
 #include <boost/asio/detached.hpp>
 #include <boost/asio/io_context.hpp>
-#include <boost/asio/strand.hpp>
 #include <boost/asio/ip/tcp.hpp>
+#include <boost/asio/ssl/context.hpp>
+#include <boost/asio/ssl/stream.hpp>
+#include <boost/asio/strand.hpp>
 #include <boost/asio/version.hpp>
 #include <http_async.h>
 #include "extra/CLI11.hpp"
@@ -20,6 +22,7 @@ using boost::asio::detached;
 using boost::asio::ip::tcp;
 using boost::asio::make_strand;
 using tcp_socket        = boost::asio::basic_stream_socket<tcp, boost::asio::strand<boost::asio::io_context::executor_type>>;
+using tls_socket        = boost::asio::ssl::stream<tcp_socket>;
 using awaitable_strand  = boost::asio::awaitable<void, boost::asio::strand<boost::asio::io_context::executor_type>>;
 using namespace std::chrono_literals;
 
@@ -56,24 +59,63 @@ awaitable_strand ws_session(std::string host, uint16_t port, std::string msg)
     }
 }
 
+awaitable_strand ws_ssl_session(std::string host, uint16_t port, std::string msg)
+{
+    try
+    {
+        // SSL
+        boost::asio::ssl::context ssl(boost::asio::ssl::context::tlsv12_client);
+        ssl.set_verify_callback([](bool preverified, boost::asio::ssl::verify_context& ctx) {return true;});
+        ssl.set_verify_mode(boost::asio::ssl::verify_peer);
+
+        // Connect
+        tls_socket          sock(tcp_socket(co_await boost::asio::this_coro::executor), ssl);
+        tcp::resolver       resolver(sock.get_executor());
+        std::vector<char>   buf(begin(msg), end(msg));
+        size_t              ret{};
+
+        // Async IO
+        co_await boost::asio::async_connect(sock.next_layer(), co_await resolver.async_resolve(host, std::to_string(port)), boost::asio::cancel_after(5s));
+        co_await sock.async_handshake(boost::asio::ssl::stream_base::client);
+        co_await http::async_ws_handshake(sock, host, "/ws");
+        ret = co_await http::async_ws_write(sock, buf, true, false);
+        ret = co_await http::async_ws_read(sock, buf, false);
+        co_await http::async_ws_close(sock, http::ws_going_away, false);
+        co_await sock.async_shutdown();
+
+        // Print echo
+        printf("Server echoed back\n\"%.*s\"\n", (int)buf.size(), buf.data());
+    }
+    catch(const boost::system::system_error& e)
+    {
+        if (e.code() != boost::asio::error::eof)
+            fprintf(stderr, "[HTTP session] %s\n", e.what());
+    }
+}
+
 int main(int argc, char* argv[])
 {
     std::string host;
     uint16_t    port;
     std::string msg;
+    bool        use_tls;
     CLI::App app{"WebSocket echo client"};
     try{
         app.add_option("--host", host, "Host or IP address of WebSocket server")->required();
         app.add_option("--port", port, "Port of WebSocket server")->required();
         app.add_option("--msg",  msg,  "Message to be echoed back by server")->required();
+        app.add_flag("--tls", use_tls, "Use transport over TLS");
         app.parse(argc, argv);
     } catch (const CLI::ParseError& e) {return app.exit(e);}
     
     boost::asio::io_context ioc{1};
 
     try
     {
-        co_spawn(make_strand(ioc), ws_session(host, port, msg), detached);
+        if (use_tls)
+            co_spawn(make_strand(ioc), ws_ssl_session(host, port, msg), detached);
+        else
+            co_spawn(make_strand(ioc), ws_session(host, port, msg), detached);
         ioc.run();
     }
     catch (const std::exception& e)
diff --git a/examples/client_ws_coro.cpp b/examples/client_ws_coro.cpp
@@ -5,6 +5,8 @@
 #include <boost/asio/detached.hpp>
 #include <boost/asio/io_context.hpp>
 #include <boost/asio/spawn.hpp>
+#include <boost/asio/ssl/context.hpp>
+#include <boost/asio/ssl/stream.hpp>
 #include <boost/asio/strand.hpp>
 #include <boost/asio/ip/tcp.hpp>
 #include <boost/asio/version.hpp>
@@ -22,6 +24,7 @@ using boost::asio::detached;
 using boost::asio::ip::tcp;
 using boost::asio::make_strand;
 using tcp_socket            = boost::asio::basic_stream_socket<tcp, boost::asio::strand<boost::asio::io_context::executor_type>>;
+using tls_socket            = boost::asio::ssl::stream<tcp_socket>;
 using yield_context_strand  = boost::asio::basic_yield_context<boost::asio::strand<boost::asio::io_context::executor_type>>;
 using namespace std::chrono_literals;
 
@@ -58,24 +61,63 @@ void ws_session(std::string host, uint16_t port, std::string msg, yield_context_
     }
 }
 
+void ws_ssl_session(std::string host, uint16_t port, std::string msg, yield_context_strand yield)
+{
+    try
+    {
+        // SSL
+        boost::asio::ssl::context ssl(boost::asio::ssl::context::tlsv12_client);
+        ssl.set_verify_callback([](bool preverified, boost::asio::ssl::verify_context& ctx) {return true;});
+        ssl.set_verify_mode(boost::asio::ssl::verify_peer);
+
+        // Connect
+        tls_socket          sock(tcp_socket(yield.get_executor()), ssl);
+        tcp::resolver       resolver(sock.get_executor());
+        std::vector<char>   buf(begin(msg), end(msg));
+        size_t              ret{};
+
+        // Async IO
+        boost::asio::async_connect(sock.next_layer(), resolver.async_resolve(host, std::to_string(port), yield), boost::asio::cancel_after(5s, yield));
+        sock.async_handshake(boost::asio::ssl::stream_base::client, yield);
+        http::async_ws_handshake(sock, host, "/ws", yield);
+        ret = http::async_ws_write(sock, buf, true, false, yield);
+        ret = http::async_ws_read(sock, buf, false, yield);
+        http::async_ws_close(sock, http::ws_going_away, false, yield);
+        sock.async_shutdown(yield);
+
+        // Print echo
+        printf("Server echoed back\n\"%.*s\"\n", (int)buf.size(), buf.data());
+    }
+    catch(const boost::system::system_error& e)
+    {
+        if (e.code() != boost::asio::error::eof)
+            fprintf(stderr, "[HTTP session] %s\n", e.what());
+    }
+}
+
 int main(int argc, char* argv[])
 {
     std::string host;
     uint16_t    port;
     std::string msg;
+    bool        use_tls;
     CLI::App app{"WebSocket echo client"};
     try{
         app.add_option("--host", host, "Host or IP address of WebSocket server")->required();
         app.add_option("--port", port, "Port of WebSocket server")->required();
         app.add_option("--msg",  msg,  "Message to be echoed back by server")->required();
+        app.add_flag("--tls", use_tls, "Use transport over TLS");
         app.parse(argc, argv);
     } catch (const CLI::ParseError& e) {return app.exit(e);}
     
     boost::asio::io_context ioc{1};
 
     try
     {
-        boost::asio::spawn(make_strand(ioc), bind_front(ws_session, host, port, msg), detached);
+        if (use_tls)
+            boost::asio::spawn(make_strand(ioc), bind_front(ws_ssl_session, host, port, msg), detached);
+        else
+            boost::asio::spawn(make_strand(ioc), bind_front(ws_session, host, port, msg), detached);
         ioc.run();
     }
     catch (const std::exception& e)
diff --git a/examples/server.cpp b/examples/server.cpp
@@ -402,7 +402,7 @@ awaitable listen (
         ssl = std::make_shared<boost::asio::ssl::context>(boost::asio::ssl::context::tlsv13_server);
         ssl->set_options(
             boost::asio::ssl::context::default_workarounds | 
-            boost::asio::ssl::context::no_sslv2 | 
+            boost::asio::ssl::context::no_sslv2 |
             boost::asio::ssl::context::single_dh_use |
             boost::asio::ssl::context::verify_peer
         );
diff --git a/src/http_async.h b/src/http_async.h
@@ -80,14 +80,14 @@ namespace http
 //----------------------------------------------------------------------------------------------------------------
 
     template <
-      class AsyncReadWriteStream, 
-      BOOST_ASIO_COMPLETION_TOKEN_FOR(void(boost::system::error_code)) CompletionToken = boost::asio::default_completion_token_t<typename AsyncReadWriteStream::executor_type>
+      class AsyncStream, 
+      BOOST_ASIO_COMPLETION_TOKEN_FOR(void(boost::system::error_code)) CompletionToken = boost::asio::default_completion_token_t<typename AsyncStream::executor_type>
     >
     auto async_ws_handshake (
-        AsyncReadWriteStream&   sock,
-        std::string             host,
-        std::string             uri,
-        CompletionToken&&       token = boost::asio::default_completion_token_t<typename AsyncReadWriteStream::executor_type>()
+        AsyncStream&        sock,
+        std::string         host,
+        std::string         uri,
+        CompletionToken&&   token = boost::asio::default_completion_token_t<typename AsyncStream::executor_type>()
     );
 
 //----------------------------------------------------------------------------------------------------------------
@@ -559,14 +559,14 @@ namespace http
     }
 
     template <
-      class AsyncReadWriteStream, 
+      class AsyncStream, 
       BOOST_ASIO_COMPLETION_TOKEN_FOR(void(boost::system::error_code)) CompletionToken
     >
     inline auto async_ws_handshake (
-        AsyncReadWriteStream&   sock,
-        std::string             host,
-        std::string             uri,
-        CompletionToken&&       token
+        AsyncStream&        sock,
+        std::string         host,
+        std::string         uri,
+        CompletionToken&&   token
     )
     {
         return boost::asio::async_compose<CompletionToken, void(boost::system::error_code)> (
