PureBasic
PureBasic
SSL Server Example
See more Socket/SSL/TLS Examples
Demonstrates how to create an SSL socket for accepting connections. This example is *very* simple in that it will create an SSL socket for accepting a single connection. It will read a message from the client, send a reply, and exit.Chilkat PureBasic Downloads
IncludeFile "CkCertStore.pb"
IncludeFile "CkCert.pb"
IncludeFile "CkSocket.pb"
IncludeFile "CkJsonObject.pb"
Procedure ChilkatExample()
success.i = 0
; This example requires the Chilkat API to have been previously unlocked.
; See Global Unlock Sample for sample code.
listenSslSocket.i = CkSocket::ckCreate()
If listenSslSocket.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
; An SSL server needs a digital certificate. This example loads it from a PFX file.
; Create an instance of a certificate store object, load a PFX file,
; locate the certificate we need, and use it.
; (a PFX file may contain more than one certificate.)
certStore.i = CkCertStore::ckCreate()
If certStore.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
; The 1st argument is the filename, the 2nd arg is the
; PFX file's password:
success = CkCertStore::ckLoadPfxFile(certStore,"chilkat.pfx","test")
If success = 0
Debug CkCertStore::ckLastErrorText(certStore)
CkSocket::ckDispose(listenSslSocket)
CkCertStore::ckDispose(certStore)
ProcedureReturn
EndIf
; Find the certificate to be used for SSL:
jsonCN.i = CkJsonObject::ckCreate()
If jsonCN.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
CkJsonObject::ckUpdateString(jsonCN,"CN","example.com")
cert.i = CkCert::ckCreate()
If cert.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
success = CkCertStore::ckFindCert(certStore,jsonCN,cert)
If success = 0
Debug CkCertStore::ckLastErrorText(certStore)
CkSocket::ckDispose(listenSslSocket)
CkCertStore::ckDispose(certStore)
CkJsonObject::ckDispose(jsonCN)
CkCert::ckDispose(cert)
ProcedureReturn
EndIf
; Use the certificate:
success = CkSocket::ckInitSslServer(listenSslSocket,cert)
If success = 0
Debug CkSocket::ckLastErrorText(listenSslSocket)
CkSocket::ckDispose(listenSslSocket)
CkCertStore::ckDispose(certStore)
CkJsonObject::ckDispose(jsonCN)
CkCert::ckDispose(cert)
ProcedureReturn
EndIf
; Bind and listen on a port:
myPort.i = 8123
; Allow for a max of 5 queued connect requests.
backLog.i = 5
success = CkSocket::ckBindAndListen(listenSslSocket,myPort,backLog)
If success = 0
Debug CkSocket::ckLastErrorText(listenSslSocket)
CkSocket::ckDispose(listenSslSocket)
CkCertStore::ckDispose(certStore)
CkJsonObject::ckDispose(jsonCN)
CkCert::ckDispose(cert)
ProcedureReturn
EndIf
; If accepting an SSL/TLS connection, the SSL handshake is part of the connection
; establishment process. This involves a few back-and-forth messages between the
; client and server to establish algorithms and a shared key to create the secure
; channel. The sending and receiving of these messages are governed by the
; MaxReadIdleMs and MaxSendIdleMs properties. If these properties are set to 0
; (and this is the default unless changed by your application), then the
; AcceptNext can hang indefinitely during the SSL handshake process.
; Make sure these properties are set to appropriate values before calling AcceptNext.
; Set a 10 second max for waiting to read/write. This is for the SSL/TLS handshake establishment.
CkSocket::setCkMaxReadIdleMs(listenSslSocket, 10000)
CkSocket::setCkMaxSendIdleMs(listenSslSocket, 10000)
; Accept a single client connection and establish the secure SSL/TLS channel:
maxWaitMillisec.i = 20000
clientSock.i = CkSocket::ckCreate()
If clientSock.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
success = CkSocket::ckAcceptNext(listenSslSocket,maxWaitMillisec,clientSock)
If success = 0
Debug CkSocket::ckLastErrorText(listenSslSocket)
CkSocket::ckDispose(listenSslSocket)
CkCertStore::ckDispose(certStore)
CkJsonObject::ckDispose(jsonCN)
CkCert::ckDispose(cert)
CkSocket::ckDispose(clientSock)
ProcedureReturn
EndIf
; The client (in this example) is going to send a "Hello Server! -EOM-"
; message. Read it:
receivedMsg.s = CkSocket::ckReceiveUntilMatch(clientSock,"-EOM-")
If CkSocket::ckLastMethodSuccess(clientSock) = 0
Debug CkSocket::ckLastErrorText(clientSock)
CkSocket::ckDispose(listenSslSocket)
CkCertStore::ckDispose(certStore)
CkJsonObject::ckDispose(jsonCN)
CkCert::ckDispose(cert)
CkSocket::ckDispose(clientSock)
ProcedureReturn
EndIf
Debug receivedMsg
; Send a "Hello Client! -EOM-" message:
success = CkSocket::ckSendString(clientSock,"Hello Client! -EOM-")
If success = 0
Debug CkSocket::ckLastErrorText(clientSock)
CkSocket::ckDispose(listenSslSocket)
CkCertStore::ckDispose(certStore)
CkJsonObject::ckDispose(jsonCN)
CkCert::ckDispose(cert)
CkSocket::ckDispose(clientSock)
ProcedureReturn
EndIf
; Close the connection with the client
; Wait a max of 20 seconds (20000 millsec)
success = CkSocket::ckClose(clientSock,20000)
CkSocket::ckDispose(listenSslSocket)
CkCertStore::ckDispose(certStore)
CkJsonObject::ckDispose(jsonCN)
CkCert::ckDispose(cert)
CkSocket::ckDispose(clientSock)
ProcedureReturn
EndProcedure