Added TLS support

2025-01-14 09:48:01 +08:00 · 2022-08-08 15:41:30 -03:00 · 2022-08-08 15:41:30 -03:00 · 0ca752662d
commit 0ca752662d
parent 4246f5d206
3 changed files with 15 additions and 1 deletions
--- a/examples/tcp/main.c
+++ b/examples/tcp/main.c
@ -19,6 +19,10 @@ static void cfn(struct mg_connection *c, int ev, void *ev_data, void *fn_data) {
    MG_INFO(("CLIENT has been initialized"));
  } else if (ev == MG_EV_CONNECT) {
    MG_INFO(("CLIENT connected"));
+#if (MG_ENABLE_MBEDTLS == 1) || (MG_ENABLE_OPENSSL == 1)
+    struct mg_tls_opts opts = {.ca = "ss_ca.pem"};
+    mg_tls_init(c, &opts);
+#endif
    *i = 1;  // do something
  } else if (ev == MG_EV_READ) {
    struct mg_iobuf *r = &c->recv;
@ -49,6 +53,14 @@ static void sfn(struct mg_connection *c, int ev, void *ev_data, void *fn_data) {
    MG_INFO(("SERVER is listening"));
  } else if (ev == MG_EV_ACCEPT) {
    MG_INFO(("SERVER accepted a connection"));
+#if (MG_ENABLE_MBEDTLS == 1) || (MG_ENABLE_OPENSSL == 1)
+    struct mg_tls_opts opts = {
+        //.ca = "ss_ca.pem",         // Uncomment to enable two-way SSL
+        .cert = "ss_server.pem",     // Certificate PEM file
+        .certkey = "ss_server.pem",  // This pem contains both cert and key
+    };
+    mg_tls_init(c, &opts);
+#endif
  } else if (ev == MG_EV_READ) {
    struct mg_iobuf *r = &c->recv;
    MG_INFO(("SERVER got data: %.*s", r->len, r->buf));
@ -79,7 +91,7 @@ int main(void) {
  struct mg_mgr mgr;  // Event manager
  struct mg_connection *c;

-  mg_log_set(MG_LL_DEBUG);  // Set log level
+  mg_log_set(MG_LL_INFO);  // Set log level
  mg_mgr_init(&mgr);        // Initialize event manager
  mg_timer_add(&mgr, 15000, MG_TIMER_REPEAT | MG_TIMER_RUN_NOW, timer_fn,
               &mgr);                     // Init timer for demo purposes, 15s
--- a/examples/tcp/ss_ca.pem
+++ b/examples/tcp/ss_ca.pem
@ -0,0 +1 @@
+../../test/data/ss_ca.pem
--- a/examples/tcp/ss_server.pem
+++ b/examples/tcp/ss_server.pem
@ -0,0 +1 @@
+../../test/data/ss_server.pem