zhaobu
/
zhujimajiang_redis
1
0
Fork 0
Koodi Ongelmat 0 Pull-pyynnöt 0 Julkaisut 0 Wiki Toiminta
诸暨麻将添加redis
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
21 Commitit
2 Branchit
57 MiB
 
 
 
 
 
 
Puu: cc12efa2f4
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from 'cc12efa2f4'
${ noResults }
zhujimajiang_redis/俱乐部/Source/ServerControl/curl-7.32.0/docs/examples/usercertinmem.c

212 rivejä
8.7 KiB
Raaka Blame Historia 

  1. /***************************************************************************

  2.  *                                  _   _ ____  _

  3.  *  Project                     ___| | | |  _ \| |

  4.  *                             / __| | | | |_) | |

  5.  *                            | (__| |_| |  _ <| |___

  6.  *                             \___|\___/|_| \_\_____|

  7.  *

  8.  * Copyright (C) 2013, Daniel Stenberg, <daniel@haxx.se>, et al.

  9.  *

  10.  * This software is licensed as described in the file COPYING, which

  11.  * you should have received as part of this distribution. The terms

  12.  * are also available at http://curl.haxx.se/docs/copyright.html.

  13.  *

  14.  * You may opt to use, copy, modify, merge, publish, distribute and/or sell

  15.  * copies of the Software, and permit persons to whom the Software is

  16.  * furnished to do so, under the terms of the COPYING file.

  17.  *

  18.  * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY

  19.  * KIND, either express or implied.

  20.  *

  21.  ***************************************************************************/

  22. /* Example using an in memory PEM user certificate and RSA key to retrieve an

  23.  * https page.

  24.  * Written by Ishan SinghLevett, based on Theo Borm's cacertinmem.c.

  25.  * Note this example does not use a CA certificate, however one should be used

  26.  * if you want a properly secure connection

  27.  */

  28. 

  29. #include <openssl/ssl.h>

  30. #include <openssl/x509.h>

  31. #include <openssl/pem.h>

  32. #include <curl/curl.h>

  33. #include <stdio.h>

  34. 

  35. static size_t writefunction(void *ptr, size_t size, size_t nmemb, void *stream)

  36. {

  37.   fwrite(ptr,size,nmemb,stream);

  38.   return(nmemb*size);

  39. }

  40. 

  41. static CURLcode sslctx_function(CURL *curl, void *sslctx, void *parm)

  42. {

  43.   X509 *cert = NULL;

  44.   BIO *bio = NULL;

  45.   BIO *kbio = NULL;

  46.   RSA *rsa = NULL;

  47.   int ret;

  48. 

  49.   const char *mypem = /* www.cacert.org */

  50.     "-----BEGIN CERTIFICATE-----\n"\

  51.     "MIIHPTCCBSWgAwIBAgIBADANBgkqhkiG9w0BAQQFADB5MRAwDgYDVQQKEwdSb290\n"\

  52.     "IENBMR4wHAYDVQQLExVodHRwOi8vd3d3LmNhY2VydC5vcmcxIjAgBgNVBAMTGUNB\n"\

  53.     "IENlcnQgU2lnbmluZyBBdXRob3JpdHkxITAfBgkqhkiG9w0BCQEWEnN1cHBvcnRA\n"\

  54.     "Y2FjZXJ0Lm9yZzAeFw0wMzAzMzAxMjI5NDlaFw0zMzAzMjkxMjI5NDlaMHkxEDAO\n"\

  55.     "BgNVBAoTB1Jvb3QgQ0ExHjAcBgNVBAsTFWh0dHA6Ly93d3cuY2FjZXJ0Lm9yZzEi\n"\

  56.     "MCAGA1UEAxMZQ0EgQ2VydCBTaWduaW5nIEF1dGhvcml0eTEhMB8GCSqGSIb3DQEJ\n"\

  57.     "ARYSc3VwcG9ydEBjYWNlcnQub3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC\n"\

  58.     "CgKCAgEAziLA4kZ97DYoB1CW8qAzQIxL8TtmPzHlawI229Z89vGIj053NgVBlfkJ\n"\

  59.     "8BLPRoZzYLdufujAWGSuzbCtRRcMY/pnCujW0r8+55jE8Ez64AO7NV1sId6eINm6\n"\

  60.     "zWYyN3L69wj1x81YyY7nDl7qPv4coRQKFWyGhFtkZip6qUtTefWIonvuLwphK42y\n"\

  61.     "fk1WpRPs6tqSnqxEQR5YYGUFZvjARL3LlPdCfgv3ZWiYUQXw8wWRBB0bF4LsyFe7\n"\

  62.     "w2t6iPGwcswlWyCR7BYCEo8y6RcYSNDHBS4CMEK4JZwFaz+qOqfrU0j36NK2B5jc\n"\

  63.     "G8Y0f3/JHIJ6BVgrCFvzOKKrF11myZjXnhCLotLddJr3cQxyYN/Nb5gznZY0dj4k\n"\

  64.     "epKwDpUeb+agRThHqtdB7Uq3EvbXG4OKDy7YCbZZ16oE/9KTfWgu3YtLq1i6L43q\n"\

  65.     "laegw1SJpfvbi1EinbLDvhG+LJGGi5Z4rSDTii8aP8bQUWWHIbEZAWV/RRyH9XzQ\n"\

  66.     "QUxPKZgh/TMfdQwEUfoZd9vUFBzugcMd9Zi3aQaRIt0AUMyBMawSB3s42mhb5ivU\n"\

  67.     "fslfrejrckzzAeVLIL+aplfKkQABi6F1ITe1Yw1nPkZPcCBnzsXWWdsC4PDSy826\n"\

  68.     "YreQQejdIOQpvGQpQsgi3Hia/0PsmBsJUUtaWsJx8cTLc6nloQsCAwEAAaOCAc4w\n"\

  69.     "ggHKMB0GA1UdDgQWBBQWtTIb1Mfz4OaO873SsDrusjkY0TCBowYDVR0jBIGbMIGY\n"\

  70.     "gBQWtTIb1Mfz4OaO873SsDrusjkY0aF9pHsweTEQMA4GA1UEChMHUm9vdCBDQTEe\n"\

  71.     "MBwGA1UECxMVaHR0cDovL3d3dy5jYWNlcnQub3JnMSIwIAYDVQQDExlDQSBDZXJ0\n"\

  72.     "IFNpZ25pbmcgQXV0aG9yaXR5MSEwHwYJKoZIhvcNAQkBFhJzdXBwb3J0QGNhY2Vy\n"\

  73.     "dC5vcmeCAQAwDwYDVR0TAQH/BAUwAwEB/zAyBgNVHR8EKzApMCegJaAjhiFodHRw\n"\

  74.     "czovL3d3dy5jYWNlcnQub3JnL3Jldm9rZS5jcmwwMAYJYIZIAYb4QgEEBCMWIWh0\n"\

  75.     "dHBzOi8vd3d3LmNhY2VydC5vcmcvcmV2b2tlLmNybDA0BglghkgBhvhCAQgEJxYl\n"\

  76.     "aHR0cDovL3d3dy5jYWNlcnQub3JnL2luZGV4LnBocD9pZD0xMDBWBglghkgBhvhC\n"\

  77.     "AQ0ESRZHVG8gZ2V0IHlvdXIgb3duIGNlcnRpZmljYXRlIGZvciBGUkVFIGhlYWQg\n"\

  78.     "b3ZlciB0byBodHRwOi8vd3d3LmNhY2VydC5vcmcwDQYJKoZIhvcNAQEEBQADggIB\n"\

  79.     "ACjH7pyCArpcgBLKNQodgW+JapnM8mgPf6fhjViVPr3yBsOQWqy1YPaZQwGjiHCc\n"\

  80.     "nWKdpIevZ1gNMDY75q1I08t0AoZxPuIrA2jxNGJARjtT6ij0rPtmlVOKTV39O9lg\n"\

  81.     "18p5aTuxZZKmxoGCXJzN600BiqXfEVWqFcofN8CCmHBh22p8lqOOLlQ+TyGpkO/c\n"\

  82.     "gr/c6EWtTZBzCDyUZbAEmXZ/4rzCahWqlwQ3JNgelE5tDlG+1sSPypZt90Pf6DBl\n"\

  83.     "Jzt7u0NDY8RD97LsaMzhGY4i+5jhe1o+ATc7iwiwovOVThrLm82asduycPAtStvY\n"\

  84.     "sONvRUgzEv/+PDIqVPfE94rwiCPCR/5kenHA0R6mY7AHfqQv0wGP3J8rtsYIqQ+T\n"\

  85.     "SCX8Ev2fQtzzxD72V7DX3WnRBnc0CkvSyqD/HMaMyRa+xMwyN2hzXwj7UfdJUzYF\n"\

  86.     "CpUCTPJ5GhD22Dp1nPMd8aINcGeGG7MW9S/lpOt5hvk9C8JzC6WZrG/8Z7jlLwum\n"\

  87.     "GCSNe9FINSkYQKyTYOGWhlC0elnYjyELn8+CkcY7v2vcB5G5l1YjqrZslMZIBjzk\n"\

  88.     "zk6q5PYvCdxTby78dOs6Y5nCpqyJvKeyRKANihDjbPIky/qbn3BHLt4Ui9SyIAmW\n"\

  89.     "omTxJBzcoTWcFbLUvFUufQb1nA5V9FrWk9p2rSVzTMVD\n"\

  90.     "-----END CERTIFICATE-----\n";

  91. 

  92. /*replace the XXX with the actual RSA key*/

  93.   const char *mykey =

  94.     "-----BEGIN RSA PRIVATE KEY-----\n"\

  95.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  96.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  97.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  98.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  99.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  100.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  101.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  102.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  103.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  104.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  105.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  106.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  107.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  108.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  109.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  110.     "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n"\

  111.     "-----END RSA PRIVATE KEY-----\n";

  112. 

  113.   (void)curl; /* avoid warnings */

  114.   (void)parm; /* avoid warnings */

  115. 

  116.   /* get a BIO */

  117.   bio = BIO_new_mem_buf((char *)mypem, -1);

  118. 

  119.   if (bio == NULL) {

  120.     printf("BIO_new_mem_buf failed\n");

  121.   }

  122. 

  123.   /* use it to read the PEM formatted certificate from memory into an X509

  124.    * structure that SSL can use

  125.    */

  126.   cert = PEM_read_bio_X509(bio, NULL, 0, NULL);

  127.   if (cert == NULL) {

  128.     printf("PEM_read_bio_X509 failed...\n");

  129.   }

  130. 

  131.   /*tell SSL to use the X509 certificate*/

  132.   ret = SSL_CTX_use_certificate((SSL_CTX*)sslctx, cert);

  133.   if (ret != 1) {

  134.     printf("Use certificate failed\n");

  135.   }

  136. 

  137.   /*create a bio for the RSA key*/

  138.   kbio = BIO_new_mem_buf((char *)mykey, -1);

  139.   if (kbio == NULL) {

  140.     printf("BIO_new_mem_buf failed\n");

  141.   }

  142. 

  143.   /*read the key bio into an RSA object*/

  144.   rsa = PEM_read_bio_RSAPrivateKey(kbio, NULL, 0, NULL);

  145.   if (rsa == NULL) {

  146.     printf("Failed to create key bio\n");

  147.   }

  148. 

  149.   /*tell SSL to use the RSA key from memory*/

  150.   ret = SSL_CTX_use_RSAPrivateKey((SSL_CTX*)sslctx, rsa);

  151.   if (ret != 1) {

  152.     printf("Use Key failed\n");

  153.   }

  154. 

  155. 

  156.   /* all set to go */

  157.   return CURLE_OK ;

  158. }

  159. 

  160. int main(void)

  161. {

  162.   CURL *ch;

  163.   CURLcode rv;

  164. 

  165.   rv = curl_global_init(CURL_GLOBAL_ALL);

  166.   ch = curl_easy_init();

  167.   rv = curl_easy_setopt(ch,CURLOPT_VERBOSE, 0L);

  168.   rv = curl_easy_setopt(ch,CURLOPT_HEADER, 0L);

  169.   rv = curl_easy_setopt(ch,CURLOPT_NOPROGRESS, 1L);

  170.   rv = curl_easy_setopt(ch,CURLOPT_NOSIGNAL, 1L);

  171.   rv = curl_easy_setopt(ch,CURLOPT_WRITEFUNCTION, *writefunction);

  172.   rv = curl_easy_setopt(ch,CURLOPT_WRITEDATA, stdout);

  173.   rv = curl_easy_setopt(ch,CURLOPT_HEADERFUNCTION, *writefunction);

  174.   rv = curl_easy_setopt(ch,CURLOPT_WRITEHEADER, stderr);

  175.   rv = curl_easy_setopt(ch,CURLOPT_SSLCERTTYPE,"PEM");

  176. 

  177.   /* both VERIFYPEER and VERIFYHOST are set to 0 in this case because there is

  178.      no CA certificate*/

  179. 

  180.   rv = curl_easy_setopt(ch,CURLOPT_SSL_VERIFYPEER, 0L);

  181.   rv = curl_easy_setopt(ch,CURLOPT_SSL_VERIFYHOST, 0L);

  182.   rv = curl_easy_setopt(ch, CURLOPT_URL, "https://www.example.com/");

  183.   rv = curl_easy_setopt(ch, CURLOPT_SSLKEYTYPE, "PEM");

  184. 

  185.   /* first try: retrieve page without user certificate and key -> will fail

  186.    */

  187.   rv = curl_easy_perform(ch);

  188.   if (rv==CURLE_OK) {

  189.     printf("*** transfer succeeded ***\n");

  190.   }

  191.   else {

  192.     printf("*** transfer failed ***\n");

  193.   }

  194. 

  195.   /* second try: retrieve page using user certificate and key -> will succeed

  196.    * load the certificate and key by installing a function doing the necessary

  197.    * "modifications" to the SSL CONTEXT just before link init

  198.    */

  199.   rv = curl_easy_setopt(ch,CURLOPT_SSL_CTX_FUNCTION, *sslctx_function);

  200.   rv = curl_easy_perform(ch);

  201.   if (rv==CURLE_OK) {

  202.     printf("*** transfer succeeded ***\n");

  203.   }

  204.   else {

  205.     printf("*** transfer failed ***\n");

  206.   }

  207. 

  208.   curl_easy_cleanup(ch);

  209.   curl_global_cleanup();

  210.   return rv;

  211. }