Página Principal Explorar Ajuda
Iniciar Sessão
OWEALs
/
openssl
mirror de git://git.openssl.org/openssl.git
2
0
Fork 0
Ficheiros Problemas 1 Wiki
Árvore: 816c2b5a79
Ramos Etiquetas
openssl
/
demos
/
ssl
/
cli.cpp

cli.cpp 3.1 KB
Histórico Em bruto

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110 
  1. /* cli.cpp  -  Minimal ssleay client for Unix
    2. 

  2.    30.9.1996, Sampo Kellomaki <sampo@iki.fi> */
    3. 

  3. 

  4. /* mangled to work with SSLeay-0.9.0b and OpenSSL 0.9.2b
    5. 

  5.    Simplified to be even more minimal
    6. 

  6.    12/98 - 4/99 Wade Scholine <wades@mail.cybg.com> */
    7. 

  7. 

  8. #include <stdio.h>
    9. 

  9. #include <memory.h>
    10. 

  10. #include <errno.h>
    11. 

  11. #include <sys/types.h>
    12. 

  12. #include <sys/socket.h>
    13. 

  13. #include <netinet/in.h>
    14. 

  14. #include <arpa/inet.h>
    15. 

  15. #include <netdb.h>
    16. 

  16. 

  17. #include <openssl/crypto.h>
    18. 

  18. #include <openssl/x509.h>
    19. 

  19. #include <openssl/pem.h>
    20. 

  20. #include <openssl/ssl.h>
    21. 

  21. #include <openssl/err.h>
    22. 

  22. 

  23. 

  24. #define CHK_NULL(x) if ((x)==NULL) exit (1)
    25. 

  25. #define CHK_ERR(err,s) if ((err)==-1) { perror(s); exit(1); }
    26. 

  26. #define CHK_SSL(err) if ((err)==-1) { ERR_print_errors_fp(stderr); exit(2); }
    27. 

  27. 

  28. void main ()
    29. 

  29. {
    30. 

  30.   int err;
    31. 

  31.   int sd;
    32. 

  32.   struct sockaddr_in sa;
    33. 

  33.   SSL_CTX* ctx;
    34. 

  34.   SSL*     ssl;
    35. 

  35.   X509*    server_cert;
    36. 

  36.   char*    str;
    37. 

  37.   char     buf [4096];
    38. 

  38.   SSL_METHOD *meth;
    39. 

  39. 

  40.   SSLeay_add_ssl_algorithms();
    41. 

  41.   meth = SSLv2_client_method();
    42. 

  42.   SSL_load_error_strings();
    43. 

  43.   ctx = SSL_CTX_new (meth);                        CHK_NULL(ctx);
    44. 

  44. 

  45.   CHK_SSL(err);
    46. 

  46.   
    47. 

  47.   /* ----------------------------------------------- */
    48. 

  48.   /* Create a socket and connect to server using normal socket calls. */
    49. 

  49.   
    50. 

  50.   sd = socket (AF_INET, SOCK_STREAM, 0);       CHK_ERR(sd, "socket");
    51. 

  51.  
    52. 

  52.   memset (&sa, '\0', sizeof(sa));
    53. 

  53.   sa.sin_family      = AF_INET;
    54. 

  54.   sa.sin_addr.s_addr = inet_addr ("127.0.0.1");   /* Server IP */
    55. 

  55.   sa.sin_port        = htons     (1111);          /* Server Port number */
    56. 

  56.   
    57. 

  57.   err = connect(sd, (struct sockaddr*) &sa,
    58. 

  58. 		sizeof(sa));                   CHK_ERR(err, "connect");
    59. 

  59. 

  60.   /* ----------------------------------------------- */
    61. 

  61.   /* Now we have TCP conncetion. Start SSL negotiation. */
    62. 

  62.   
    63. 

  63.   ssl = SSL_new (ctx);                         CHK_NULL(ssl);    
    64. 

  64.   SSL_set_fd (ssl, sd);
    65. 

  65.   err = SSL_connect (ssl);                     CHK_SSL(err);
    66. 

  66.     
    67. 

  67.   /* Following two steps are optional and not required for
    68. 

  68.      data exchange to be successful. */
    69. 

  69.   
    70. 

  70.   /* Get the cipher - opt */
    71. 

  71. 

  72.   printf ("SSL connection using %s\n", SSL_get_cipher (ssl));
    73. 

  73.   
    74. 

  74.   /* Get server's certificate (note: beware of dynamic allocation) - opt */
    75. 

  75. 

  76.   server_cert = SSL_get_peer_certificate (ssl);       CHK_NULL(server_cert);
    77. 

  77.   printf ("Server certificate:\n");
    78. 

  78.   
    79. 

  79.   str = X509_NAME_oneline (X509_get_subject_name (server_cert),0,0);
    80. 

  80.   CHK_NULL(str);
    81. 

  81.   printf ("\t subject: %s\n", str);
    82. 

  82.   OPENSSL_free (str);
    83. 

  83. 

  84.   str = X509_NAME_oneline (X509_get_issuer_name  (server_cert),0,0);
    85. 

  85.   CHK_NULL(str);
    86. 

  86.   printf ("\t issuer: %s\n", str);
    87. 

  87.   OPENSSL_free (str);
    88. 

  88. 

  89.   /* We could do all sorts of certificate verification stuff here before
    90. 

  90.      deallocating the certificate. */
    91. 

  91. 

  92.   X509_free (server_cert);
    93. 

  93.   
    94. 

  94.   /* --------------------------------------------------- */
    95. 

  95.   /* DATA EXCHANGE - Send a message and receive a reply. */
    96. 

  96. 

  97.   err = SSL_write (ssl, "Hello World!", strlen("Hello World!"));  CHK_SSL(err);
    98. 

  98.   
    99. 

  99.   err = SSL_read (ssl, buf, sizeof(buf) - 1);                     CHK_SSL(err);
    100. 

  100.   buf[err] = '\0';
    101. 

  101.   printf ("Got %d chars:'%s'\n", err, buf);
    102. 

  102.   SSL_shutdown (ssl);  /* send SSL/TLS close_notify */
    103. 

  103. 

  104.   /* Clean up. */
    105. 

  105. 

  106.   close (sd);
    107. 

  107.   SSL_free (ssl);
    108. 

  108.   SSL_CTX_free (ctx);
    109. 

  109. }
    110. 

  110. /* EOF - cli.cpp */
    111.