Book a Demo!
CoCalc Logo Icon
StoreFeaturesDocsShareSupportNewsAboutPoliciesSign UpSign In
freebsd
GitHub Repository: freebsd/freebsd-src
 Path: blob/main/crypto/openssl/demos/bio/saccept.c
34869 views
1
/*

2
 * Copyright 1998-2024 The OpenSSL Project Authors. All Rights Reserved.

3
 *

4
 * Licensed under the Apache License 2.0 (the "License").  You may not use

5
 * this file except in compliance with the License.  You can obtain a copy

6
 * in the file LICENSE in the source distribution or at

7
 * https://www.openssl.org/source/license.html

8
 */

9


10
/*-

11
 * A minimal program to serve an SSL connection.

12
 * It uses blocking.

13
 * saccept host:port

14
 * host is the interface IP to use.  If any interface, use *:port

15
 * The default it *:4433

16
 *

17
 * cc -I../../include saccept.c -L../.. -lssl -lcrypto -ldl

18
 */

19


20
#include <stdio.h>

21
#include <signal.h>

22
#include <stdlib.h>

23
#include <openssl/err.h>

24
#include <openssl/ssl.h>

25


26
#define CERT_FILE       "server.pem"

27


28
static volatile int done = 0;

29


30
static void interrupt(int sig)

31
{

32
    done = 1;

33
}

34


35
static void sigsetup(void)

36
{

37
#if defined(OPENSSL_SYS_WINDOWS)

38
    signal(SIGINT, interrupt);

39
#else

40
    struct sigaction sa;

41


42
    /*

43
     * Catch at most once, and don't restart the accept system call.

44
     */

45
    sa.sa_flags = SA_RESETHAND;

46
    sa.sa_handler = interrupt;

47
    sigemptyset(&sa.sa_mask);

48
    sigaction(SIGINT, &sa, NULL);

49
#endif

50
}

51


52
int main(int argc, char *argv[])

53
{

54
    char *port = NULL;

55
    BIO *in = NULL;

56
    BIO *ssl_bio, *tmp;

57
    SSL_CTX *ctx;

58
    char buf[512];

59
    int ret = EXIT_FAILURE, i;

60


61
    if (argc <= 1)

62
        port = "*:4433";

63
    else

64
        port = argv[1];

65


66
    ctx = SSL_CTX_new(TLS_server_method());

67
    if (!SSL_CTX_use_certificate_chain_file(ctx, CERT_FILE))

68
        goto err;

69
    if (!SSL_CTX_use_PrivateKey_file(ctx, CERT_FILE, SSL_FILETYPE_PEM))

70
        goto err;

71
    if (!SSL_CTX_check_private_key(ctx))

72
        goto err;

73


74
    /* Setup server side SSL bio */

75
    ssl_bio = BIO_new_ssl(ctx, 0);

76


77
    if ((in = BIO_new_accept(port)) == NULL)

78
        goto err;

79


80
    /*

81
     * This means that when a new connection is accepted on 'in', The ssl_bio

82
     * will be 'duplicated' and have the new socket BIO push into it.

83
     * Basically it means the SSL BIO will be automatically setup

84
     */

85
    BIO_set_accept_bios(in, ssl_bio);

86


87
    /* Arrange to leave server loop on interrupt */

88
    sigsetup();

89


90
 again:

91
    /*

92
     * The first call will setup the accept socket, and the second will get a

93
     * socket.  In this loop, the first actual accept will occur in the

94
     * BIO_read() function.

95
     */

96


97
    if (BIO_do_accept(in) <= 0)

98
        goto err;

99


100
    while (!done) {

101
        i = BIO_read(in, buf, 512);

102
        if (i == 0) {

103
            /*

104
             * If we have finished, remove the underlying BIO stack so the

105
             * next time we call any function for this BIO, it will attempt

106
             * to do an accept

107
             */

108
            printf("Done\n");

109
            tmp = BIO_pop(in);

110
            BIO_free_all(tmp);

111
            goto again;

112
        }

113
        if (i < 0)

114
            goto err;

115
        fwrite(buf, 1, i, stdout);

116
        fflush(stdout);

117
    }

118


119
    ret = EXIT_SUCCESS;

120
 err:

121
    if (ret != EXIT_SUCCESS)

122
        ERR_print_errors_fp(stderr);

123
    BIO_free(in);

124
    return ret;

125
}

126


127