From 45fd36db3d76d880f5a7c192ed28a6817999cd85 Mon Sep 17 00:00:00 2001
From: Pete Mertz <peter.s.mertz@gmail.com>
Date: Thu, 17 Oct 2019 07:20:01 -0400
Subject: [PATCH] feat(server): Add an ssl example

Adds an example using hyper + ssl for a server.

Should resolve the closed issue #1942
---
 Cargo.toml                    |   7 ++++
 examples/README.md            |   0
 examples/client.rs            |   0
 examples/client_json.rs       |   0
 examples/echo.rs              |   0
 examples/hello.rs             |   0
 examples/multi_server.rs      |   0
 examples/params.rs            |   0
 examples/proxy.rs             |   0
 examples/send_file.rs         |   0
 examples/send_file_index.html |   0
 examples/single_threaded.rs   |   0
 examples/ssl_server.p12       | Bin 0 -> 3957 bytes
 examples/ssl_server.rs        |  69 ++++++++++++++++++++++++++++++++++
 examples/state.rs             |   0
 examples/tower_client.rs      |   0
 examples/tower_server.rs      |   0
 examples/upgrades.rs          |   0
 examples/web_api.rs           |   0
 19 files changed, 76 insertions(+)
 mode change 100644 => 100755 examples/README.md
 mode change 100644 => 100755 examples/client.rs
 mode change 100644 => 100755 examples/client_json.rs
 mode change 100644 => 100755 examples/echo.rs
 mode change 100644 => 100755 examples/hello.rs
 mode change 100644 => 100755 examples/multi_server.rs
 mode change 100644 => 100755 examples/params.rs
 mode change 100644 => 100755 examples/proxy.rs
 mode change 100644 => 100755 examples/send_file.rs
 mode change 100644 => 100755 examples/send_file_index.html
 mode change 100644 => 100755 examples/single_threaded.rs
 create mode 100644 examples/ssl_server.p12
 create mode 100644 examples/ssl_server.rs
 mode change 100644 => 100755 examples/state.rs
 mode change 100644 => 100755 examples/tower_client.rs
 mode change 100644 => 100755 examples/tower_server.rs
 mode change 100644 => 100755 examples/upgrades.rs
 mode change 100644 => 100755 examples/web_api.rs

diff --git a/Cargo.toml b/Cargo.toml
index 8ea63cfaf5..d3a6cef7c3 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -58,6 +58,8 @@ serde_json = "1.0"
 tokio = "=0.2.0-alpha.6" # using #[tokio::test] attributes
 tokio-fs = "=0.2.0-alpha.6"
 tokio-test = "=0.2.0-alpha.6"
+tokio-tls = "=0.3.0-alpha.6"
+native-tls = "0.2"
 url = "1.0"
 
 [features]
@@ -148,6 +150,11 @@ name = "state"
 path = "examples/state.rs"
 required-features = ["runtime"]
 
+[[example]]
+name = "ssl_server"
+path = "examples/ssl_server.rs"
+required-features = ["runtime", "unstable-stream"]
+
 [[example]]
 name = "tower_client"
 path = "examples/tower_client.rs"
diff --git a/examples/README.md b/examples/README.md
old mode 100644
new mode 100755
diff --git a/examples/client.rs b/examples/client.rs
old mode 100644
new mode 100755
diff --git a/examples/client_json.rs b/examples/client_json.rs
old mode 100644
new mode 100755
diff --git a/examples/echo.rs b/examples/echo.rs
old mode 100644
new mode 100755
diff --git a/examples/hello.rs b/examples/hello.rs
old mode 100644
new mode 100755
diff --git a/examples/multi_server.rs b/examples/multi_server.rs
old mode 100644
new mode 100755
diff --git a/examples/params.rs b/examples/params.rs
old mode 100644
new mode 100755
diff --git a/examples/proxy.rs b/examples/proxy.rs
old mode 100644
new mode 100755
diff --git a/examples/send_file.rs b/examples/send_file.rs
old mode 100644
new mode 100755
diff --git a/examples/send_file_index.html b/examples/send_file_index.html
old mode 100644
new mode 100755
diff --git a/examples/single_threaded.rs b/examples/single_threaded.rs
old mode 100644
new mode 100755
diff --git a/examples/ssl_server.p12 b/examples/ssl_server.p12
new file mode 100644
index 0000000000000000000000000000000000000000..f6644d634614b088ae89749470563ed4097bd0e1
GIT binary patch
literal 3957
zcmY+GWl$6h*M`ZZI|YFS0b!{nmhJ{=1ZhO+Zs}M`lx~rwS(g&2r4d+CSyE6Wr5mIc
zq+Xwy_xqmj`*G&XT=$&w^O_qBrSQSQ#sxzuBmhL9c+GeW88!iSF_eM_4@$xL7X!gi
z{Ad40fMO`V=3k_WgN^lf$^DyPgC7Ej|NDUy8vrK9Bb1ZLI3^3*z{SBK#EOFAQ?j<e
zIEbDL!FXF_nqp_J{nmHr*@&ELP>TIe70liqM_ZQBpTv?I9QFbmH?#D#B2yQPBx+{g
z&oikR^3b?-Cp`(tBtMH>{zhPD;H+AsW*gx^MW-KKF(wfbN=}*BaMv&FNvh57#`AKS
zu&=zTr{#!E?h}cf9QopjV*y!7fxBKM@dcg<XrdgRwC4ER$C}^tBO|lI2lkwopj{~j
ztLl3F(E%}OPg4{JCN30BN*@CxEY26%8h5Z<t5C4rJKa}|c?y*!ta8&}#gmXJJdZ&R
z7jlUl)xTUylM-OR=hz!9-+(1xOJl|WiV-IwCug3HiK7@C8Fj-tc)n!cl+}$LDZ~yg
zPihPAeoye01H=B&C||@PY&lOAP8a1?&L!TWC2|L;hE3e^bf|ZR#E<jVD{Cnvly%_<
z57E?F&_fto=+Bn0&_YM!hD(%5SCR9Oh_zZN3i+D=%Rii?b2@q#hE9_fmE7&l88X4%
zD7pAE5+><;_k(nnU0$b0LK;g1^5uCgNoI#Ti4j9KaOna7!-=&q-NMBxV#c=D_(wYW
zGQc%S*Swa}Ey@&BZsj4_0i_$B7pT3Cl1k0(F;b_IH%ifowNf?oPfZg#t>+97JpBYP
zX<QJ4R7K!O8B%o)W_;zqGplJa&Gd*q<o+gG9RyAD(x9!rN%B;dmr})XnG}%su+BJS
zq+-Fxv^%LAib&^12%iP8=)mhmIc+lCxNtP<UE*4Q#+Q(5V!?F)v{kB?9Su>v4Ahan
zExqWmvIA{!7L((r@Q&2@3X8t<rzT`-LY)_ymbzq~QNsRUjw*RqtBL_o;VU0e20bpT
zXK^?N;>TE4IzCR?oU-0oBHN_5_H3X-8=;Xe=qt|qHtUozcY;_dg8N|Q^s0)ZN52oa
zKEE(zFqT?%c}9;v)+a1l<Iyx>%)xKi#kr!^z)#jN`)ARCk<B(v7dNvQHbfn<_i;%a
zZkF6Wp>guAdrfAW;+lp5WCyRNLnyehE>E7Hua0s$VKkdPA6HS|>_o2{aeil?W$dO<
z8LX#@_OHXWIoBp_UCoL33H3=&%jaa8&;9<LFp1}^Z?cv5{wP-fug8w%n=MW@6_Zr0
z6XT_d-x?@za)Gv(ySeuU<D9+aAK1X9!r3uVUk27G9Q__Kp_25Yf=YSulgJR^6Se8z
zZPlb&`e7+5J($Q@PP&*mjvVrHhXEA?A4SlL0rGg6vvl}V-_hE;njYXD_Rl3Tvm9(A
z^u}d%KRiXWIv^&nJXT><AXn*y)AoSGx>qBI*pnGv8iVUEbMoaHb_3rDUsF`!jG5!D
zeiM90iuIzxh*x_WYq6I9u73E#kfw=#b+CrKX_PtE`g6FJ8cyUvU^4!S%QTXeFI|3a
z8uLIX#<j8&SiJR6=|c6-TzqLdoi5Oju@j4))A*|Rm5L3p_5@KU{-yv_C~ud4h~l5Z
zH5uZHtR*6SS-5)32Blc4kFykGjxtB=Zy$r6U}mb)rv;u=<kglw3_!CuM}G5R&i83d
zwSK=TrdcpL@@4;sDtNmjQ*CRv^xKYM1>vX*F5wfcK=@;(OpZj#l}2<`$P0OTG~2o#
zYrBmer%w>V;#9@%W-}c<B7T-hj;bYk4hfSdVZq>wM@cT`RB9bv$D1K<)Rlc-ZnWe&
zuxq?p)=1W?Og3BucT+AI(~9aeANcVfzO`IjmDAAUBxFpOW^@|K<><fa21AK@|Bpb6
zp+pUMP@<22an;{}14#Zyr^MJee?!l|(DnaW7WW^^+B~SdbDI4z|Bq$=o@-JwV8a&#
zyxm@xzh7aK!muQEOaqH=?!PSBO_9wp4(=#!C)&n%raj6@Ak(LF6|YSr@6QBg_}1=>
zS4C;+&5vcCQ+E(>54Pg1LLLtkHy$q3?7HWCcc)A*!yeY{W=w-UnL{#f1Eq%)LwWf^
zR3gQ3#ib}TjJ$s;3#KV$T_#jzN8gB`jI$zbGtAD`gtO;d^4guw@2x1=_Ii0FpHNs|
z`8K3DS#?KExw?7wiAR_B9Pdd1x0bwG8p4tv!V>gDp+~L`3+g0F^Dj!n3y}NXS(3O{
zE^<A#3Wu<m8fUfHTeypkZ$j*Q^a!v4$eK?G2%0|>VrkDM8z=$e`A3x1)(M83pwt~%
za=W$Bh!ku%x8xo0fdlNS6&b$U!F0_*(8E&XJ?rH=)UOOg*QxaFGzP8Y#~Um7k@i0)
z5s2x(Wa<gb%05J_p7qbk%UDx?P?&i{#+lo<SyM7FGs}QEQ6qrBb=q!7F=<@074C{W
zX7(a?04MHp1X<R-?YfIqWvbTYzL>?4FHb)C81X6NeOSPha4?<UZkyxi3N~ASE_K^{
zSK+{*S|>8l500~1u!5@==oy8=!)o&3i!lGn{wbW_VV{krMSD@Q6Zw>sgrRr=l2^Gg
z*<bbpcpVB73bX6;w1p3Z*HJncg@xK6KaueS4i@<u?9nWGkASw?9Em(pGqxOZV~8)y
zK8=kAfgtAylx|R~{|)*Mqx}_?TtM!1bpEDyJi2A0sx@x0Zk%i^0<KH`PMTdcxO!hc
z;j_S(;<>Zoy|$OY^N-Ey#w0<@C39@w#ZSusuq^81NbCl#YMy*-Yr|6t6K_a}=}dyC
z|8va)eKW|lFDsYnb1ND^rh0~O%3MheL1oLS8}s!!>T?g5U~k*yYD#rSW!&!BGtl~C
zj@H$E7Vp%B?P+vx?0QB>?QHM%=O+I&8$TYr3e*0Y;1(3q=Bo+z_}#(uS+(T4Ie6g5
zrJ{4VXe+{t?Dx}`*4J<qH<I3)+}NT)nY}q&EchotX54mxN?9g)k)1h6O)Bi731hvW
zwq8iEfmbQ=Q=zq5;1}Vz)o8;beaI``$3<S0*=RoUbIHk)Hp?0EhG%|zm~ht7Db?*B
z1PVWi(!_K#4W^w9rnWPquAR*fG+CJRf~s`s2J>ROzWETI!75y^y=VWErdQq3!4YEi
z>p1DLY?hzt)n=n3J|>a+a`9OJS+gKg@stwxqI1@s%PG0NVzNOlI%mfo?p@va6*hKD
zlFp|&U=CiP^;2wV)Skhv+}#<K)yt5$j8_toVe&XVfQ@P#Fz$pB2#V5eK4vK~-i8n+
z7%Wv_{YtY!3o}WsbD02+sy3&f9KSWMmLG18@zH`X!llLU_sF+`OD^z7=ugM%?;lx$
zT#S>jd{nrmXN2;Ok!r`eo$Oj`ez5k>T&BNH$_O&9HV9rYudAN`<p3I%x6(92O-!3x
zeIlUx(UB=@{NBmT2<&FDD|#)e)~<e(eR~z)Xs;ms`%eWOSFRL;;;B|+{q*72#t3*(
z5i~cs`t?FPAr5hiof?QLx5*7c0mMO_WP1?6P4svmR0Dbg_RoG>xUkGm=D+(k;JW8h
znqd6#{i!hZj<Ofuo^77jN@<=Ub`E=@V#y<M-u~Zh8h3@;FRxs%1&B%75dpLCv$v%M
z_Qn;q0nUrrubS;@o|CucBc$v)oDXx;PLNk`*dQ4*23LE2qe>O_rn4nAob}4Xts6Kd
z=C4inVVUeU$+5WFo}l)w`9FpoOGBN{H{~p}tlusdAZ3FK=~>NTZ-{DzLqYS&StzPU
zxz?5Q+}&E%kQSdWn!6ijxfiAp2U-xlqs>2;UfeGC@s8B}fYimHp)#e3?3ma^Da*e4
z`6|YkU))yfY*l@hG%UxF&j!H<Xg>)S=c^5#&<B2LarM<CQaMF+mGN)2ESBYc?hXdG
zU*8gH;VmggI@7x9Q@m?#u|~WyjjR`9cOyvHm??OgiFoFf8Z<0A;4{X6YfHL8<-T9^
z=b_=7AjPU{)jrJ}(*(Q4L@LUe3yTJK2<U?AcaxKON;MW^-o)XrNPMH)HzTfL2}}?1
zB@bSMG{2uaGi~&I{XNlDy*myZSJvjUiueJt0XleTOZT`0xb-j-cQIVXFgCq%hf!2D
zr=(7?fF-hME5G$9C*DR+SZwV$#V4<X`^{3vl7*(zrQUu{@Tdu%*(Rn*8BadB@t{q@
zNEko3;81$ZCkdykufWR^H~+=-{Fv+M&|OlND$%^TyIkp<?~J*_#Yvg<J`;EUsc6QX
zhy3|d`{`spq%x07o{Y6~qHK6Av1*}zqqZ&Cf=meUPOFJ2KvHZiW@um{W<*dai7NK(
zO<oIM{+H&X_p%-YR=qFIKbGO{>&PyV_JH@z-+|LXi*C}6Un4>suBMQ1Huv~TN90J8
zf|6>DMf!+fGe(Pp%LAE@>w2H<psbUlo9Sq}I7a9F`eB~3&d^oCWyZ;H6BQ4rqwl!Z
zf5nh(T5_$Ua@=(IvA7rcXYiV$ED9uckfD9w13^DTlRX$>KGrv;=>zqVlYll84<!!o
zoe-y=A#tUWvIiki^nEh0ZmKh$eVWbL_pjo-qGXDx+WC3Xhx|J3*M1it3WDnBfTR8>
zF0ow!`JBSR_MsK>Ehz1gmz<i{7K{j??E3P9B=f<OVx@Pc6hF10lSzaQ(o{*qBwxHo
zC!mZy0wTPT1}Ta~X1@I;Z<M(6n!<g%WS`DYspo8+D$3~Og@&6r%Q?s*rhzz<2`@)!
zLv(fyWP<rce5+so@%4FtLP>96Eq~}aKu-*pb9;F>zHZr%=q%{bX(~Whe-6P<N2&<X
z$-ZzPeOuz1NbDkN$6?9b>NS#4yF#5$RL<JAu4{#%{iVeN|5oioD9%|G@K!V=(wS!m
z304@Shw0oK#L(wX5WCfg&?g_`Gxv6SPNZ@JhfMlf)#y&eZ-Gj2Sov2Ttf^%uPx0>Q
zcn$e)8V8l1*$Za0nE#T4)D*FgM<i)QhH}Sfx(FGzqa3I|4w^8rAafWj(@R-NQ9haG
z6$i^IiXR%qS<(DOOZ5|uwqY>h^I4@!)W`Q<2a#s;Oz~v#OCIa1>;n6gB`*#Z0MY|k
z4rl9407bGue2V2<Tsv-M0f~TuU5^ezFC$f9F7TuOZD&Mu!t{8wVPKEXhWFd{!NnvL
zd>N8ahml=0U|}#jm<WK+M~;ibgpY+si)fm6c-z%J`@;}#C$=(5>4u@N43BW`1xbhc
LJ2Lx!TH1dA2b^*@

literal 0
HcmV?d00001

diff --git a/examples/ssl_server.rs b/examples/ssl_server.rs
new file mode 100644
index 0000000000..441f562632
--- /dev/null
+++ b/examples/ssl_server.rs
@@ -0,0 +1,69 @@
+use std::net::SocketAddr;
+use futures_util::stream::StreamExt;
+
+use hyper::{Body, Response, Request};
+use hyper::service::{make_service_fn, service_fn};
+use hyper::server::conn::Http;
+use hyper::server::Builder;
+use std::sync::Arc;
+use tokio::net::TcpListener;
+
+use native_tls;
+use native_tls::Identity;
+use tokio_tls;
+use std::convert::Infallible;
+
+async fn hello(_: Request<Body>) -> Result<Response<Body>, Infallible> {
+    Ok(Response::new(Body::from("Hello World!")))
+}
+
+#[tokio::main]
+async fn main() -> Result<(), Box<dyn std::error::Error + Send + Sync>> {
+    let addr: SocketAddr = ([127, 0, 0, 1], 8443).into();
+
+    let cert = include_bytes!("./ssl_server.p12").to_vec();
+    let cert_pass = "password";
+    let cert = Identity::from_pkcs12(&cert, cert_pass)
+      .expect("Could not decrypt p12 file");
+    let tls_acceptor =
+        tokio_tls::TlsAcceptor::from(
+            native_tls::TlsAcceptor::builder(cert)
+                .build()
+                .expect("Could not create TLS acceptor.")
+            );
+    let _arc_acceptor = Arc::new(tls_acceptor);
+
+    let service = make_service_fn(|_| {
+        async {
+            Ok::<_, Infallible>(service_fn(hello))
+        }
+    });
+
+    let listener = TcpListener::bind(&addr).await.unwrap();
+    let incoming = listener.incoming();
+    let server = Builder
+        ::new(hyper::server::accept::from_stream(incoming.filter_map(|socket| {
+            async {
+                match socket {
+                    Ok(stream) => {
+                        match _arc_acceptor.clone().accept(stream).await {
+                            Ok(val) => Some(Ok::<_, hyper::Error>(val)),
+                            Err(e) => {
+                                println!("TLS error: {}", e);
+                                None
+                            }
+                        }
+                    },
+                    Err(e) => {
+                        println!("TCP socket error: {}", e);
+                        None
+                    }
+                }
+            }
+        })), Http::new())
+        .serve(service);
+
+    server.await?;
+
+    Ok(())
+}
diff --git a/examples/state.rs b/examples/state.rs
old mode 100644
new mode 100755
diff --git a/examples/tower_client.rs b/examples/tower_client.rs
old mode 100644
new mode 100755
diff --git a/examples/tower_server.rs b/examples/tower_server.rs
old mode 100644
new mode 100755
diff --git a/examples/upgrades.rs b/examples/upgrades.rs
old mode 100644
new mode 100755
diff --git a/examples/web_api.rs b/examples/web_api.rs
old mode 100644
new mode 100755