<div dir="ltr"><div dir="ltr">On Wed, Jan 29, 2020 at 3:14 PM Tiwari, Hari Sahaya <<a href="mailto:hari-sahaya.tiwari@hpe.com">hari-sahaya.tiwari@hpe.com</a>> wrote:<br></div><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<div lang="EN-GB">
<div class="gmail-m_455358271377917558WordSection1">
<p class="MsoNormal"><span style="font-size:11pt;font-family:Arial,sans-serif;color:rgb(31,73,125)">Thanks for the response.<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt;font-family:Arial,sans-serif;color:rgb(31,73,125)"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt;font-family:Arial,sans-serif;color:rgb(31,73,125)">Yes the server program need not bind and listen because systemd socket will do that.<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt;font-family:Arial,sans-serif;color:rgb(31,73,125)"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt;font-family:Arial,sans-serif;color:rgb(31,73,125)">On “Accept=True” parameter, here the requirement is that systemd should accept the connection and handover it to server.
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt;font-family:Arial,sans-serif;color:rgb(31,73,125)"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt;font-family:Arial,sans-serif;color:rgb(31,73,125)">My query was on post the connection accept by systemd.
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt;font-family:Arial,sans-serif;color:rgb(31,73,125)">Once the regular connection is accepted, client does SSL_connect over same fd to establish SSL connection.<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt;font-family:Arial,sans-serif;color:rgb(31,73,125)">Will this SSL connect request also be handled by systemd ?</span></p></div></div></blockquote><div><br></div><div>No. Systemd will never read nor write the socket – your service needs to handle SSL handshake the same way as it normally would (mostly).</div><div><br></div><div>(I haven't really worked with OpenSSL, but I'm guessing you would use `SSL_set_fd()` in this case?)</div></div><div><br></div>-- <br><div dir="ltr" class="gmail_signature"><div dir="ltr">Mantas Mikulėnas</div></div></div>