]> git.ipfire.org Git - thirdparty/openssl.git/blame - demos/bio/saccept.c
projects / thirdparty / openssl.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
threads_pthread.c: change inline to ossl_inline
[thirdparty/openssl.git] / demos / bio / saccept.c
CommitLineData
9e200689 1/*
084f9a70 2 * Copyright 1998-2017 The OpenSSL Project Authors. All Rights Reserved.
9e200689 3 *
5e73e6ba 4 * Licensed under the Apache License 2.0 (the "License"). You may not use
9e200689
RS		 5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
8 */
9
23a22b4c
MC		 10/*-
11 * A minimal program to serve an SSL connection.
d02b48c6
RE		 12 * It uses blocking.
13 * saccept host:port
14 * host is the interface IP to use. If any interface, use *:port
15 * The default it *:4433
16 *
f3efeaad 17 * cc -I../../include saccept.c -L../.. -lssl -lcrypto -ldl
d02b48c6
RE		 18 */
19
20#include <stdio.h>
21#include <signal.h>
084f9a70 22#include <stdlib.h>
ec577822
BM		 23#include <openssl/err.h>
24#include <openssl/ssl.h>
d02b48c6 25
0f113f3e 26#define CERT_FILE "server.pem"
d02b48c6 27
084f9a70 28static volatile int done = 0;
d02b48c6 29
7a7fbeb9 30static void interrupt(int sig)
0f113f3e 31{
919ba009
VD		 32 done = 1;
33}
34
7a7fbeb9 35static void sigsetup(void)
919ba009 36{
7acdd776
NH		 37#if defined(OPENSSL_SYS_WINDOWS)
38 signal(SIGINT, interrupt);
39#else
919ba009
VD		 40 struct sigaction sa;
41
42 /*
43 * Catch at most once, and don't restart the accept system call.
44 */
45 sa.sa_flags = SA_RESETHAND;
46 sa.sa_handler = interrupt;
47 sigemptyset(&sa.sa_mask);
48 sigaction(SIGINT, &sa, NULL);
7acdd776 49#endif
0f113f3e 50}
d02b48c6 51
24f77b34 52int main(int argc, char *argv[])
0f113f3e
MC		 53{
54 char *port = NULL;
919ba009 55 BIO *in = NULL;
0f113f3e
MC		 56 BIO *ssl_bio, *tmp;
57 SSL_CTX *ctx;
58 char buf[512];
084f9a70 59 int ret = EXIT_FAILURE, i;
0f113f3e
MC		 60
61 if (argc <= 1)
62 port = "*:4433";
63 else
64 port = argv[1];
65
32ec4153 66 ctx = SSL_CTX_new(TLS_server_method());
919ba009 67 if (!SSL_CTX_use_certificate_chain_file(ctx, CERT_FILE))
0f113f3e
MC		 68 goto err;
69 if (!SSL_CTX_use_PrivateKey_file(ctx, CERT_FILE, SSL_FILETYPE_PEM))
70 goto err;
71 if (!SSL_CTX_check_private_key(ctx))
72 goto err;
73
74 /* Setup server side SSL bio */
75 ssl_bio = BIO_new_ssl(ctx, 0);
76
77 if ((in = BIO_new_accept(port)) == NULL)
78 goto err;
79
80 /*
81 * This means that when a new connection is accepted on 'in', The ssl_bio
82 * will be 'duplicated' and have the new socket BIO push into it.
83 * Basically it means the SSL BIO will be automatically setup
84 */
85 BIO_set_accept_bios(in, ssl_bio);
86
919ba009
VD		 87 /* Arrange to leave server loop on interrupt */
88 sigsetup();
89
0f113f3e
MC		 90 again:
91 /*
92 * The first call will setup the accept socket, and the second will get a
93 * socket. In this loop, the first actual accept will occur in the
94 * BIO_read() function.
95 */
96
97 if (BIO_do_accept(in) <= 0)
98 goto err;
99
919ba009 100 while (!done) {
0f113f3e
MC		 101 i = BIO_read(in, buf, 512);
102 if (i == 0) {
103 /*
104 * If we have finished, remove the underlying BIO stack so the
105 * next time we call any function for this BIO, it will attempt
106 * to do an accept
107 */
108 printf("Done\n");
109 tmp = BIO_pop(in);
110 BIO_free_all(tmp);
111 goto again;
112 }
113 if (i < 0)
114 goto err;
115 fwrite(buf, 1, i, stdout);
116 fflush(stdout);
117 }
118
084f9a70 119 ret = EXIT_SUCCESS;
0f113f3e 120 err:
084f9a70 121 if (ret != EXIT_SUCCESS)
0f113f3e 122 ERR_print_errors_fp(stderr);
ca3a82c3 123 BIO_free(in);
084f9a70 124 return ret;
0f113f3e 125}
A mirror of the official openssl repository