Hi experts, I am completely new to encrytion / ssl. I am trying to compile the demos from /openssl-0.9.8j/demos/ssl on CentOS 4.5
My objective is to setup a client and server using ssl to ensure secure communication :). Needless to say I am getting a lot of errors: [swu...@mpvmpc19 ssl]$ g++ -lssl -lcrypto cli.cpp (got this command from perusing archives from the list, don't know if right oe not) cli.cpp:29: error: `main' must return `int' cli.cpp: In function `int main(...)': cli.cpp:106: error: `close' was not declared in this scope In cli.cpp, main has return type int, with a return 0 down below. Here is cli.cpp: [swu...@mpvmpc19 ssl]$ cat cli.cpp > /* cli.cpp - Minimal ssleay client for Unix > 30.9.1996, Sampo Kellomaki <sa...@iki.fi> */ > > /* mangled to work with SSLeay-0.9.0b and OpenSSL 0.9.2b > Simplified to be even more minimal > 12/98 - 4/99 Wade Scholine <wa...@mail.cybg.com> */ > > #include <stdio.h> > #include <memory.h> > #include <errno.h> > #include <sys/types.h> > #include <sys/socket.h> > #include <netinet/in.h> > #include <arpa/inet.h> > #include <netdb.h> > > #include <openssl/crypto.h> > #include <openssl/x509.h> > #include <openssl/pem.h> > #include <openssl/ssl.h> > #include <openssl/err.h> > > > #define CHK_NULL(x) if ((x)==NULL) exit (1) > #define CHK_ERR(err,s) if ((err)==-1) { perror(s); exit(1); } > #define CHK_SSL(err) if ((err)==-1) { ERR_print_errors_fp(stderr); exit(2); > } > > int main () > { > int err; > int sd; > struct sockaddr_in sa; > SSL_CTX* ctx; > SSL* ssl; > X509* server_cert; > char* str; > char buf [4096]; > SSL_METHOD *meth; > > SSLeay_add_ssl_algorithms(); > meth = SSLv2_client_method(); > SSL_load_error_strings(); > ctx = SSL_CTX_new (meth); CHK_NULL(ctx); > > CHK_SSL(err); > > /* ----------------------------------------------- */ > /* Create a socket and connect to server using normal socket calls. */ > > sd = socket (AF_INET, SOCK_STREAM, 0); CHK_ERR(sd, "socket"); > > memset (&sa, '\0', sizeof(sa)); > sa.sin_family = AF_INET; > sa.sin_addr.s_addr = inet_addr ("127.0.0.1"); /* Server IP */ > sa.sin_port = htons (1111); /* Server Port number */ > > err = connect(sd, (struct sockaddr*) &sa, > sizeof(sa)); CHK_ERR(err, "connect"); > > /* ----------------------------------------------- */ > /* Now we have TCP conncetion. Start SSL negotiation. */ > > ssl = SSL_new (ctx); CHK_NULL(ssl); > SSL_set_fd (ssl, sd); > err = SSL_connect (ssl); CHK_SSL(err); > > /* Following two steps are optional and not required for > data exchange to be successful. */ > > /* Get the cipher - opt */ > > printf ("SSL connection using %s\n", SSL_get_cipher (ssl)); > > /* Get server's certificate (note: beware of dynamic allocation) - opt */ > > server_cert = SSL_get_peer_certificate (ssl); > CHK_NULL(server_cert); > printf ("Server certificate:\n"); > > str = X509_NAME_oneline (X509_get_subject_name (server_cert),0,0); > CHK_NULL(str); > printf ("\t subject: %s\n", str); > OPENSSL_free (str); > > str = X509_NAME_oneline (X509_get_issuer_name (server_cert),0,0); > CHK_NULL(str); > printf ("\t issuer: %s\n", str); > OPENSSL_free (str); > > /* We could do all sorts of certificate verification stuff here before > deallocating the certificate. */ > > X509_free (server_cert); > > /* --------------------------------------------------- */ > /* DATA EXCHANGE - Send a message and receive a reply. */ > > err = SSL_write (ssl, "Hello World!", strlen("Hello World!")); > CHK_SSL(err); > > err = SSL_read (ssl, buf, sizeof(buf) - 1); > CHK_SSL(err); > buf[err] = '\0'; > printf ("Got %d chars:'%s'\n", err, buf); > SSL_shutdown (ssl); /* send SSL/TLS close_notify */ > > /* Clean up. */ > > close (sd); > SSL_free (ssl); > SSL_CTX_free (ctx); > return 0; > } > /* EOF - cli.cpp */ > > Please tell me what the problem could be. Many thanks, mailman