(PureBasic) SSL Server Example

Demonstrates how to create an SSL socket for accepting connections. This example is *very* simple in that it will create an SSL socket for accepting a single connection. It will read a message from the client, send a reply, and exit.

Chilkat PureBasic Module Download Chilkat PureBasic Module

IncludeFile "CkCertStore.pb"
IncludeFile "CkCert.pb"
IncludeFile "CkSocket.pb"

Procedure ChilkatExample()

    ; This example requires the Chilkat API to have been previously unlocked.
    ; See Global Unlock Sample for sample code.

    listenSslSocket.i = CkSocket::ckCreate()
    If listenSslSocket.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    ; An SSL server needs a digital certificate.  This example loads it from a PFX file.

    ; Create an instance of a certificate store object, load a PFX file,
    ; locate the certificate we need, and use it.
    ; (a PFX file may contain more than one certificate.)
    certStore.i = CkCertStore::ckCreate()
    If certStore.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    ; The 1st argument is the filename, the 2nd arg is the 
    ; PFX file's password:
    success.i = CkCertStore::ckLoadPfxFile(certStore,"chilkat.pfx","test")
    If success <> 1
        Debug CkCertStore::ckLastErrorText(certStore)
        CkSocket::ckDispose(listenSslSocket)
        CkCertStore::ckDispose(certStore)
        ProcedureReturn
    EndIf

    ; Find the certificate to be used for SSL:
    cert.i
    cert = CkCertStore::ckFindCertBySubject(certStore,"Chilkat Software, Inc.")
    If CkCertStore::ckLastMethodSuccess(certStore) = 0
        Debug CkCertStore::ckLastErrorText(certStore)
        CkSocket::ckDispose(listenSslSocket)
        CkCertStore::ckDispose(certStore)
        ProcedureReturn
    EndIf

    ; Use the certificate:
    success = CkSocket::ckInitSslServer(listenSslSocket,cert)
    If success <> 1
        CkCert::ckDispose(cert)

        Debug CkSocket::ckLastErrorText(listenSslSocket)
        CkSocket::ckDispose(listenSslSocket)
        CkCertStore::ckDispose(certStore)
        ProcedureReturn
    EndIf

    CkCert::ckDispose(cert)

    ; Bind and listen on a port:
    myPort.i = 8123
    ; Allow for a max of 5 queued connect requests.
    backLog.i = 5
    success = CkSocket::ckBindAndListen(listenSslSocket,myPort,backLog)
    If success <> 1
        Debug CkSocket::ckLastErrorText(listenSslSocket)
        CkSocket::ckDispose(listenSslSocket)
        CkCertStore::ckDispose(certStore)
        ProcedureReturn
    EndIf

    ; If accepting an SSL/TLS connection, the SSL handshake is part of the connection
    ; establishment process. This involves a few back-and-forth messages between the 
    ; client and server to establish algorithms and a shared key to create the secure 
    ; channel. The sending and receiving of these messages are governed by the 
    ; MaxReadIdleMs and MaxSendIdleMs properties. If these properties are set to 0 
    ; (and this is the default unless changed by your application), then the 
    ; AcceptNextConnection can hang indefinitely during the SSL handshake process. 
    ; Make sure these properties are set to appropriate values before calling AcceptNextConnection.

    ; Set a 10 second max for waiting to read/write.  This is for the SSL/TLS handshake establishment.
    CkSocket::setCkMaxReadIdleMs(listenSslSocket, 10000)
    CkSocket::setCkMaxSendIdleMs(listenSslSocket, 10000)

    ; Accept a single client connection and establish the secure SSL/TLS channel:
    clientSock.i
    maxWaitMillisec.i = 20000
    clientSock = CkSocket::ckAcceptNextConnection(listenSslSocket,maxWaitMillisec)
    If CkSocket::ckLastMethodSuccess(listenSslSocket) = 0
        Debug CkSocket::ckLastErrorText(listenSslSocket)
        CkSocket::ckDispose(listenSslSocket)
        CkCertStore::ckDispose(certStore)
        ProcedureReturn
    EndIf

    ; The client (in this example) is going to send a "Hello Server! -EOM-" 
    ; message.  Read it:
    receivedMsg.s = CkSocket::ckReceiveUntilMatch(clientSock,"-EOM-")
    If CkSocket::ckLastMethodSuccess(clientSock) <> 1
        Debug CkSocket::ckLastErrorText(clientSock)
        CkSocket::ckDispose(listenSslSocket)
        CkCertStore::ckDispose(certStore)
        ProcedureReturn
    EndIf

    Debug receivedMsg

    ; Send a "Hello Client! -EOM-" message:
    success = CkSocket::ckSendString(clientSock,"Hello Client! -EOM-")
    If success <> 1
        Debug CkSocket::ckLastErrorText(clientSock)
        CkSocket::ckDispose(listenSslSocket)
        CkCertStore::ckDispose(certStore)
        ProcedureReturn
    EndIf

    ; Close the connection with the client
    ; Wait a max of 20 seconds (20000 millsec)
    success = CkSocket::ckClose(clientSock,20000)

    CkSocket::ckDispose(clientSock)



    CkSocket::ckDispose(listenSslSocket)
    CkCertStore::ckDispose(certStore)


    ProcedureReturn
EndProcedure