sessioninfo.c 3.1 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110
  1. /***************************************************************************
  2. * _ _ ____ _
  3. * Project ___| | | | _ \| |
  4. * / __| | | | |_) | |
  5. * | (__| |_| | _ <| |___
  6. * \___|\___/|_| \_\_____|
  7. *
  8. * Copyright (C) 1998 - 2020, Daniel Stenberg, <daniel@haxx.se>, et al.
  9. *
  10. * This software is licensed as described in the file COPYING, which
  11. * you should have received as part of this distribution. The terms
  12. * are also available at https://curl.haxx.se/docs/copyright.html.
  13. *
  14. * You may opt to use, copy, modify, merge, publish, distribute and/or sell
  15. * copies of the Software, and permit persons to whom the Software is
  16. * furnished to do so, under the terms of the COPYING file.
  17. *
  18. * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
  19. * KIND, either express or implied.
  20. *
  21. ***************************************************************************/
  22. /* <DESC>
  23. * Uses the CURLINFO_TLS_SESSION data.
  24. * </DESC>
  25. */
  26. /* Note that this example currently requires curl to be linked against
  27. GnuTLS (and this program must also be linked against -lgnutls). */
  28. #include <stdio.h>
  29. #include <curl/curl.h>
  30. #include <gnutls/gnutls.h>
  31. #include <gnutls/x509.h>
  32. static CURL *curl;
  33. static size_t wrfu(void *ptr, size_t size, size_t nmemb, void *stream)
  34. {
  35. const struct curl_tlssessioninfo *info;
  36. unsigned int cert_list_size;
  37. const gnutls_datum_t *chainp;
  38. CURLcode res;
  39. (void)stream;
  40. (void)ptr;
  41. res = curl_easy_getinfo(curl, CURLINFO_TLS_SESSION, &info);
  42. if(!res) {
  43. switch(info->backend) {
  44. case CURLSSLBACKEND_GNUTLS:
  45. /* info->internals is now the gnutls_session_t */
  46. chainp = gnutls_certificate_get_peers(info->internals, &cert_list_size);
  47. if((chainp) && (cert_list_size)) {
  48. unsigned int i;
  49. for(i = 0; i < cert_list_size; i++) {
  50. gnutls_x509_crt_t cert;
  51. gnutls_datum_t dn;
  52. if(GNUTLS_E_SUCCESS == gnutls_x509_crt_init(&cert)) {
  53. if(GNUTLS_E_SUCCESS ==
  54. gnutls_x509_crt_import(cert, &chainp[i], GNUTLS_X509_FMT_DER)) {
  55. if(GNUTLS_E_SUCCESS ==
  56. gnutls_x509_crt_print(cert, GNUTLS_CRT_PRINT_FULL, &dn)) {
  57. fprintf(stderr, "Certificate #%u: %.*s", i, dn.size, dn.data);
  58. gnutls_free(dn.data);
  59. }
  60. }
  61. gnutls_x509_crt_deinit(cert);
  62. }
  63. }
  64. }
  65. break;
  66. case CURLSSLBACKEND_NONE:
  67. default:
  68. break;
  69. }
  70. }
  71. return size * nmemb;
  72. }
  73. int main(void)
  74. {
  75. curl_global_init(CURL_GLOBAL_DEFAULT);
  76. curl = curl_easy_init();
  77. if(curl) {
  78. curl_easy_setopt(curl, CURLOPT_URL, "https://www.example.com/");
  79. curl_easy_setopt(curl, CURLOPT_WRITEFUNCTION, wrfu);
  80. curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, 0L);
  81. curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, 0L);
  82. curl_easy_setopt(curl, CURLOPT_VERBOSE, 0L);
  83. (void) curl_easy_perform(curl);
  84. curl_easy_cleanup(curl);
  85. }
  86. curl_global_cleanup();
  87. return 0;
  88. }