#!/usr/bin/perl
#server.pl

use strict;
use warnings;
use Net::SSLeay::OO::SSL;
use Net::SSLeay::OO::Context;
use Net::SSLeay::OO::X509;
use Net::SSLeay::OO::Constants qw(VERIFY_PEER);
use Socket qw(:DEFAULT :crlf);

print "This is Net::SSLeay $Net::SSLeay::VERSION\n";
$Net::SSLeay::trace = 3; 

my $port = shift || 8080;
my $proto = getprotobyname 'tcp';
socket(SERVER, PF_INET, SOCK_STREAM, $proto) 
or die "socket: $!";
setsockopt(SERVER, SOL_SOCKET, SO_REUSEADDR, 1)
or die "setsock: $!";

my $paddr = sockaddr_in($port, INADDR_ANY);
bind(SERVER, $paddr) or die "bind: $!";
listen(SERVER, SOMAXCONN) or die "listen: $!";
print "Server started on port $port", "\n";

my $client_addr;
my $client_ip = 'localhost';
while ($client_addr = accept(CLIENT, SERVER))
{
my ($client_port, $client_ip) = sockaddr_in($client_addr);
my $client_ipnum = inet_ntoa($client_ip);
my $client_host  = gethostbyname($client_ip);
print "Hello, CLIENT";
close CLIENT;
}

my $ctx = Net::SSLeay::OO::Context->new;
$ctx->set_cipher_list('ALL'),
$ctx->set_verify(1);

my $ssl = Net::SSLeay::OO::SSL->new( ctx => $ctx );
my $cert = $ssl->get_peer_certificate; 
verify($ssl);

sub verify {
    use Net::SSLeay::OO::X509::Name;
    my ( $ok, $x509_cert ) = @_;
    my $name = $x509_cert->get_subject_name;
    print "$$: **** Verify called ($ok)\n";
    if ($x509_cert) {
        print "$$: Certificate:\n";
        print " Common name is: " . $name->cn . "\n";
        print " Subject Name: " . $x509_cert->get_subject_name->oneline . "\n";
        print " Issuer Name: " . $x509_cert->get_issuer_name->oneline . "\n";
        print " AltNames: " . $x509_cert->get_subjectAltNames->oneline . "\n";
        print " notBefore: " . $x509_cert->get_notBefore($x509_cert)->oneline . "\n";
        print " notAfter: " . $x509_cert->get_notAfter($x509_cert)->oneline . "\n";
    }
    return 1;
}