mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2024-11-27 05:21:51 +08:00
Code Issues Packages Projects Releases Wiki Activity
a2b824730e
openssl/demos/guide
History
Matt Caswell a2b824730e Extend the README to describe how to run the TLS demos 
We also supply some test certificates for use with the demos.

Reviewed-by: Paul Dale <pauli@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Hugo Landau <hlandau@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/22552)
2023-11-02 08:14:46 +00:00
..
Makefile Add a QUIC non-blocking demo 2023-09-08 15:44:37 +01:00
quic-client-block.c quic: documentation and demo nits 2023-10-25 09:44:32 +01:00
quic-client-non-block.c Return NULL if we fail to create a BIO in the demos/quicserver 2023-09-08 15:44:37 +01:00
quic-multi-stream.c quic: documentation and demo nits 2023-10-25 09:44:32 +01:00
README.md Extend the README to describe how to run the TLS demos 2023-11-02 08:14:46 +00:00
rootcert.pem Extend the README to describe how to run the TLS demos 2023-11-02 08:14:46 +00:00
rootkey.pem Extend the README to describe how to run the TLS demos 2023-11-02 08:14:46 +00:00
servercert.pem Extend the README to describe how to run the TLS demos 2023-11-02 08:14:46 +00:00
serverkey.pem Extend the README to describe how to run the TLS demos 2023-11-02 08:14:46 +00:00
tls-client-block.c Amend the TLS demos to accept hostname/port as an argument 2023-11-02 08:14:38 +00:00
tls-client-non-block.c Amend the TLS demos to accept hostname/port as an argument 2023-11-02 08:14:38 +00:00

README.md

The OpenSSL Guide Demos

The demos in this directory are the complete source code for the applications developed in the OpenSSL Guide tutorials. Refer to the various tutorial pages in the guide for an extensive discussion on the demos available here.

Running the TLS Demos

To run the demos when linked with a shared library (default) ensure that libcrypto and libssl are on the library path. For example, assuming you have already built OpenSSL from this source and in the default location then to run the tls-client-block demo do this:

LD_LIBRARY_PATH=../.. ./tls-client-block hostname port

In the above replace "hostname" and "port" with the hostname and the port number of the server you are connecting to.

The above assumes that your default trusted certificate store containing trusted CA certificates has been properly setup and configured as described on the TLS Introduction page.

You can run a test server to try out these demos using the "openssl s_server" command line utility and using the test server certificate and key provided in this directory. For example:

LD_LIBRARY_PATH=../.. ../../apps/openssl s_server -www -accept localhost:4443 -cert servercert.pem -key serverkey.pem

The test server certificate in this directory will use a CA that will not be in your default trusted certificate store. The CA certificate to use is also available in this directory. To use it you can override the default trusted certificate store like this:

SSL_CERT_FILE=rootcert.pem LD_LIBRARY_PATH=../.. ./tls-client-block localhost 4443

If the above command is successful it will connect to the test "s_server" and send a simple HTTP request to it. The server will respond with a page of information giving details about the TLS connection that was used.

Note that the test server certificate used here is only suitable for use on "localhost".

The tls-client-non-block demo can be run in exactly the same way. Just replace "tls-client-block" in the above example commands with "tls-client-non-block".