如何使用ssl加密构建非阻塞TCP服务器

时间:2009-09-21 11:10:17

标签: erlang otp

Non-blocking TCP server on trapexit.org解释了如何基于tcp_gen构建服务器,但我想修改此示例并使其与ssl一起使用。现在我完全不知道如何更换

{ok, Ref} = prim_inet:async_accept(Listen_socket, -1)

2 个答案:

答案 0 :(得分:6)

带有多线程的简单echo_ssl 

-module(echo_ssl).
-compile([export_all]).

main() ->
    application:start(crypto),
    application:start(ssl),
    ssl:seed("TODO random here"),
    {ok, ListenSocket} = ssl:listen(2840, [
        {ssl_imp, new},
        {active, false},
        {verify, 0},
        {mode,binary},
        {cacertfile, "certs/etc/server/cacerts.pem"},
        {certfile, "certs/etc/server/cert.pem"},
        {keyfile, "certs/etc/server/key.pem"}
    ]),
    io:format("ready to accept connections at port 2840 ~p\n", [ListenSocket]),
    server_loop(ListenSocket).

server_loop(ListenSocket) ->
    {ok, Socket} = ssl:transport_accept(ListenSocket),
    io:format("accepted connection from ~p\n", [ssl:peername(Socket)]),
    ssl:ssl_accept(Socket),
    spawn(fun() -> loop(Socket) end),
    server_loop(ListenSocket).

loop(Socket) ->
    io:format("waiting for packet~n"),
    case ssl:recv(Socket, 1000, 2000) of
        {ok, Data} ->
            io:format("received data: ~s~n", [binary_to_list(Data)]),
            Return = ssl:send(Socket, Data),
            io:format("sending ~p~n", [Return]),
            loop(Socket);
        {error, timeout} ->
           loop(Socket);
        Else ->
            io:format("crap ~p~n",[Else])
    end.

答案 1 :(得分:2)

不要用任何东西替换它。而是将输入和输出连接到SSL处理程序。

spender是对的,SSL使用TCP进行传输。

此处有人似乎已实施SSL over async TCP

相关问题
最新问题