1 /* Copyright (c) 2008 The Board of Trustees of The Leland Stanford
4 * We are making the OpenFlow specification and associated documentation
5 * (Software) available for public use and benefit with the expectation
6 * that others will use, modify and enhance the Software and contribute
7 * those enhancements back to the community. However, since we would
8 * like to make the Software available for broadest use, with as few
9 * restrictions as possible permission is hereby granted, free of
10 * charge, to any person obtaining a copy of this Software to deal in
11 * the Software under the copyrights without restriction, including
12 * without limitation the rights to use, copy, modify, merge, publish,
13 * distribute, sublicense, and/or sell copies of the Software, and to
14 * permit persons to whom the Software is furnished to do so, subject to
15 * the following conditions:
17 * The above copyright notice and this permission notice shall be
18 * included in all copies or substantial portions of the Software.
20 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
21 * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
22 * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
23 * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
24 * BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
25 * ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
26 * CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
29 * The name and trademarks of copyright holder(s) may NOT be used in
30 * advertising or publicity pertaining to the Software or any
31 * derivatives without specific, written prior permission.
43 #include "command-line.h"
48 #include "vconn-ssl.h"
49 #include "vlog-socket.h"
51 #include "poll-loop.h"
54 #define THIS_MODULE VLM_secchan
56 static void parse_options(int argc, char *argv[]);
57 static void usage(void) NO_RETURN;
59 static bool reliable = true;
62 main(int argc, char *argv[])
69 struct half halves[2];
73 set_program_name(argv[0]);
74 register_fault_handlers();
76 parse_options(argc, argv);
78 if (argc - optind != 2) {
79 fatal(0, "exactly two peer arguments required; use --help for usage");
82 retval = vlog_server_listen(NULL, NULL);
84 fatal(retval, "Could not listen for vlog connections");
87 for (i = 0; i < 2; i++) {
88 halves[i].rconn = rconn_new(argv[optind + i], 1);
89 halves[i].rxbuf = NULL;
92 /* Do some work. Limit the number of iterations so that callbacks
93 * registered with the poll loop don't starve. */
96 for (i = 0; i < 2; i++) {
97 rconn_run(halves[i].rconn);
100 for (iteration = 0; iteration < 50; iteration++) {
101 bool progress = false;
102 for (i = 0; i < 2; i++) {
103 struct half *this = &halves[i];
104 struct half *peer = &halves[!i];
107 this->rxbuf = rconn_recv(this->rconn);
111 retval = rconn_send(peer->rconn, this->rxbuf);
112 if (retval != EAGAIN) {
125 /* Wait for something to happen. */
126 for (i = 0; i < 2; i++) {
127 struct half *this = &halves[i];
129 rconn_run_wait(this->rconn);
131 rconn_recv_wait(this->rconn);
141 parse_options(int argc, char *argv[])
143 static struct option long_options[] = {
144 {"verbose", optional_argument, 0, 'v'},
145 {"help", no_argument, 0, 'h'},
146 {"version", no_argument, 0, 'V'},
148 {"private-key", required_argument, 0, 'p'},
149 {"certificate", required_argument, 0, 'c'},
150 {"ca-cert", required_argument, 0, 'C'},
154 char *short_options = long_options_to_short_options(long_options);
160 c = getopt_long(argc, argv, short_options, long_options, &indexptr);
170 printf("%s "VERSION" compiled "__DATE__" "__TIME__"\n", argv[0]);
174 vlog_set_verbosity(optarg);
179 vconn_ssl_set_private_key_file(optarg);
183 vconn_ssl_set_certificate_file(optarg);
187 vconn_ssl_set_ca_cert_file(optarg);
204 printf("%s: Secure Channel\n"
205 "usage: %s [OPTIONS] LOCAL REMOTE\n"
206 "\nRelays OpenFlow message between LOCAL and REMOTE datapaths.\n"
207 "LOCAL and REMOTE must each be one of the following:\n"
208 " tcp:HOST[:PORT] PORT (default: %d) on remote TCP HOST\n",
209 program_name, program_name, OFP_TCP_PORT);
211 printf(" nl:DP_IDX local datapath DP_IDX\n");
214 printf(" ssl:HOST[:PORT] SSL PORT (default: %d) on remote HOST\n"
215 "\nPKI configuration (required to use SSL):\n"
216 " -p, --private-key=FILE file with private key\n"
217 " -c, --certificate=FILE file with certificate for private key\n"
218 " -C, --ca-cert=FILE file with peer CA certificate\n",
221 printf("\nOther options:\n"
222 " -v, --verbose set maximum verbosity level\n"
223 " -h, --help display this help message\n"
224 " -V, --version display version information\n");