本文整理汇总了C++中SSLSocket类的典型用法代码示例。如果您正苦于以下问题:C++ SSLSocket类的具体用法?C++ SSLSocket怎么用?C++ SSLSocket使用的例子?那么, 这里精选的类代码示例或许可以为您提供帮助。
在下文中一共展示了SSLSocket类的11个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于系统推荐出更棒的C++代码示例。
示例1: TEST_F
// Connect EINVAL
TEST_F(SSLClientServerConnectionTest, ConnectEinval) {
MockHandler ch;
SSLContext context(SSLContext::TLSv1_1);
context.SetCertificate(std::string(CLIENT_CERT));
context.SetPrivateKey(std::string(CLIENT_PKEY));
context.SetCAFile(std::string(CA_CERT));
context.SetCiphers(std::string(CIPHER_LIST));
context.SetVerifyMode(SSLContext::VERIFY_PEER);
SSLClient cl(ch, context);
MockHandler sh;
SSLContext server_context(SSLContext::TLSv1_1);
server_context.SetCertificate(std::string(SERVER_CERT));
server_context.SetPrivateKey(std::string(SERVER_PKEY));
server_context.SetCAFile(std::string(CA_CERT));
server_context.SetCiphers(std::string(CIPHER_LIST));
server_context.SetVerifyMode(SSLContext::VERIFY_PEER);
SSLServer sv(sh, server_context);
Error e = sv.Start(TEST_ADDR, TEST_PORT);
ASSERT_EQ(LNR_OK, e.Code());
SSLSocket cs = cl.CreateSocket(TEST_ADDR, TEST_PORT);
EXPECT_CALL(sh, OnConnectMock(_)).WillOnce(Assign(&srv_finished, true));
EXPECT_CALL(ch, OnConnectMock(cs)).WillOnce(Assign(&cli_finished, true));
e = cs.Connect();
ASSERT_EQ(LNR_OK, e.Code());
WAIT_TO_FINISH_CALLBACK();
e = sh.s_.Connect();
ASSERT_EQ(LNR_EINVAL, e.Code());
}示例2: verify_callback
static int verify_callback(int preverify_ok, X509_STORE_CTX *ctx) {
int ret = preverify_ok;
/* determine the status for the current cert */
X509_STORE_CTX_get_current_cert(ctx);
int err = X509_STORE_CTX_get_error(ctx);
int depth = X509_STORE_CTX_get_error_depth(ctx);
/* conjure the stream & context to use */
SSL *ssl = (SSL*)X509_STORE_CTX_get_ex_data
(ctx, SSL_get_ex_data_X509_STORE_CTX_idx());
SSLSocket *stream =
(SSLSocket*)SSL_get_ex_data(ssl, SSLSocket::GetSSLExDataIndex());
/* if allow_self_signed is set, make sure that verification succeeds */
if (err == X509_V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT &&
stream->getContext()["allow_self_signed"].toBoolean()) {
ret = 1;
}
/* check the depth */
Variant vdepth = stream->getContext()["verify_depth"];
if (vdepth.toBoolean() && depth > vdepth.toInt64()) {
ret = 0;
X509_STORE_CTX_set_error(ctx, X509_V_ERR_CERT_CHAIN_TOO_LONG);
}
return ret;
}示例3: rec
void
rec( SSLSocket *server )
{
server->open();
server->bind( 5000 );
server->listen();
int count = 3;
SSLSocket client;
// Socket client;
// we block here
if ( server->accept(client) )
{
while (count--)
{
std::string msgIn;
if ( client.receive(msgIn) )
{
std::cout << "Server recieved message: " << msgIn << std::endl;
std::cout << "Server sending ACK" << std::endl;
std::string rep("ACK");
client.send(rep);
}
sleep(1);
}
}
server->close();
std::cout << "Server closed" << std::endl;
}示例4: main
int
main(int argc, char *argv[])
{
std::cout << "SSLDemo Copyright (C) 2015, W. B. Yates" << std::endl;
std::cout << "This program comes with ABSOLUTELY NO WARRANTY; for details see http://www.gnu.org/licenses/." << std::endl;
std::cout << "This is free software, and you are welcome to redistribute it" << std::endl;
std::cout << "under certain conditions; see http://www.gnu.org/licenses/" << std::endl;
SSLContext ctx1("client", "client.pem", "password");
SSLContext ctx2("server", "server.pem", "password", true);
SSLSocket::registerContext( &ctx1 );
SSLSocket::registerContext( &ctx2 );
SSLSocket client;
client.setContext("client");
SSLSocket server("server");
//Socket client;
//Socket server;
for (int i = 0; i < 5; ++i)
{
std::cout << "\nBegin socket test " << i + 1 << std::endl;
std::thread thread1 = std::thread(rec,&server);
std::thread thread2;
if (i == 0)
thread2 = std::thread(sender1,&client);
else thread2 = std::thread(sender2,&client);
thread1.join();
thread2.join();
}
SSLSocket::clearRegister();
std::cout << "End socket test" << std::endl;
return 0;
}示例5: passwd_callback
static int passwd_callback(char *buf, int num, int verify, void *data) {
/* TODO: could expand this to make a callback into PHP user-space */
SSLSocket *stream = (SSLSocket *)data;
String passphrase = stream->getContext()["passphrase"];
if (!passphrase.empty() && passphrase.size() < num - 1) {
memcpy(buf, passphrase.data(), passphrase.size() + 1);
return passphrase.size();
}
return 0;
}示例6: d2s
ContextId ServiceManager::registerContext(SSLContextShrPtr _context, uint32 _sktClrNum, uint32 _perClrNum)
{
if (!m_usingSSL)
return 0;
if (!_context)
{
sLogger->out(OL_DEBUG, "[Error]", __FILE__, " - [", d2s(__LINE__).c_str(), "]: ", "!_context", 0);
return 0;
}
_sktClrNum = _sktClrNum == 0 ? 1 : _sktClrNum;
_perClrNum = _perClrNum == 0 ? 1 : _perClrNum;
DynShrLock lock(m_contexts.mutex((ContextId)_context.get(), (ContextId)_context.get()));
if (m_contexts.add((ContextId)_context.get(), _context, (ContextId)_context.get(), false) != 0)
{
sLogger->out(OL_DEBUG, "[Error]", __FILE__, " - [", d2s(__LINE__).c_str(), "]: ", "m_contexts.add != 0", 0);
return 0;
}
else
{
// create sslSocket freelist
IFreeListShrPtr sslSktFl(new FreeList<SSLSocket>(_sktClrNum, _perClrNum));
sSSLSktFList.init(_sktClrNum);
uint32 maxSSLNum = _sktClrNum*_perClrNum;
for (uint32 ix=0, i=0; i<maxSSLNum; ++i)
{
ix = (m_currMaxSnIndex+i) % m_sslSvcs.size();
SSLSocket* sslSkt = (SSLSocket*)sslSktFl->get(i);
if (sslSkt)
sslSkt->init(ISessionShrPtr(new Session(m_currMaxSnIndex+i, &m_netInfoMgr, m_currMaxSnIndex+i+(uint32)_context.get(),
m_pktParser->create())), m_sslSvcs[ix], _context->getContext(), (ContextId)_context.get(), this);
}
m_currMaxSnIndex += maxSSLNum;
if (sSSLSktFList.add((ContextId)_context.get(), sslSktFl) != 0)
{
sLogger->out(OL_DEBUG, "[Error]", __FILE__, " - [", d2s(__LINE__).c_str(), "]: ", "sSSLSktFList.add != 0", 0);
return 0;
}
else
return (ContextId)_context.get();
}
}示例7: HashMapShrPtr
ServiceManager::~ServiceManager()
{
uint32 maxTcpNum = m_tcpSktClrNum*m_perClrTcpSktNum;
for (uint32 i=0; (i<maxTcpNum && m_usingTcp); ++i)
{
TcpSocket* tcpSkt = (TcpSocket*)sTcpSktFList.get()->get(i);
if (tcpSkt)
{
tcpSkt->close();
tcpSkt->clean();
}
}
HashMapShrPtr hm = sSSLSktFList.getFls();
if (hm)
{
uint32 size = hm->arraySize();
for (uint32 i=0; i<size; ++i)
{
hm->lockWrite((ContextId)i, (ContextId)i);
std::map<ContextId, IFreeListShrPtr>& hmMap = hm->map(i);
for (std::map<ContextId, IFreeListShrPtr>::iterator itr=hmMap.begin(); itr!=hmMap.end(); ++itr)
{
uint32 maxSSLSktNum = itr->second->getClr() * itr->second->getPer();
for (uint32 j=0; (j<maxSSLSktNum && m_usingSSL); ++j)
{
SSLSocket* sslSkt = (SSLSocket*)itr->second->get(j);
if (sslSkt)
{
sslSkt->socket()->lowest_layer().close();
sslSkt->clean();
}
}
}
hm->unlockWrite((ContextId)i, (ContextId)i);
}
}
hm = HashMapShrPtr();
uint32 maxUdpSubNum = m_udpSubSktClrNum*m_perClrUdpSubSktNum;
for (uint32 i=0; (i<maxUdpSubNum && m_usingUdp); ++i)
{
UdpSubSocket* udpSubSkt = (UdpSubSocket*)sUdpSubSktFList.get()->get(i);
if (udpSubSkt)
{
udpSubSkt->close();
udpSubSkt->clean();
}
}
uint32 maxUdpNum = m_udpSktClrNum*m_perClrUdpSktNum;
for (uint32 i=0; (i<maxUdpNum && m_usingUdp); ++i)
{
UdpSocket* udpSkt = (UdpSocket*)sUdpSktFList.get()->get(i);
if (udpSkt)
{
udpSkt->socket()->close();
udpSkt->clean();
}
}
m_contexts.clear();
for (uint32 i=0; i<m_tcpAcptrSvcs.size(); ++i)
{
if (m_tcpAcptrSvcs[i])
delete m_tcpAcptrSvcs[i];
}
for (uint32 i=0; i<m_sslAcptrSvcs.size(); ++i)
{
if (m_sslAcptrSvcs[i])
delete m_sslAcptrSvcs[i];
}
for (uint32 i=0; i<m_udpAcptrSvcs.size(); ++i)
{
if (m_udpAcptrSvcs[i])
delete m_udpAcptrSvcs[i];
}
for (uint32 i=0; i<m_tcpSvcs.size(); ++i)
{
if (m_tcpSvcs[i])
delete m_tcpSvcs[i];
}
for (uint32 i=0; i<m_sslSvcs.size(); ++i)
{
if (m_sslSvcs[i])
delete m_sslSvcs[i];
}
for (uint32 i=0; i<m_udpSvcs.size(); ++i)
{
if (m_udpSvcs[i])
delete m_udpSvcs[i];
}
}示例8: sockopen_impl
static Variant sockopen_impl(CStrRef hostname, int port, Variant &errnum,
Variant &errstr, double timeout,
bool persistent) {
string key;
if (persistent) {
key = hostname.data();
key += ":";
key += boost::lexical_cast<string>(port);
Socket *sock =
dynamic_cast<Socket*>(g_persistentObjects->get("socket", key.c_str()));
if (sock) {
if (sock->getError() == 0 && sock->checkLiveness()) {
return Object(sock);
}
// socket had an error earlier, we need to remove it from persistent
// storage, and create a new one
g_persistentObjects->remove("socket", key.c_str());
}
}
Object ret;
const char *name = hostname.data();
Socket *sock = NULL;
if (timeout <= 0) timeout = RuntimeOption::SocketDefaultTimeout;
// test if protocol is SSL
SSLSocket *sslsock = SSLSocket::Create(name, port, timeout);
if (sslsock) {
sock = sslsock;
ret = sock;
} else if (!create_new_socket(name, port, errnum, errstr,
ret, sock, timeout)) {
return false;
}
assert(ret.get() && sock);
sockaddr_storage sa_storage;
struct sockaddr *sa_ptr;
size_t sa_size;
if (!set_sockaddr(sa_storage, sock, name, port, sa_ptr, sa_size)) {
return false;
}
int retval;
int fd = sock->fd();
IOStatusHelper io("socket::connect", name, port);
if (timeout <= 0) {
retval = connect(fd, sa_ptr, sa_size);
} else {
// set non-blocking so we can do timeouts
long arg = fcntl(fd, F_GETFL, NULL);
fcntl(fd, F_SETFL, arg | O_NONBLOCK);
retval = connect(fd, sa_ptr, sa_size);
if (retval < 0) {
if (errno == EINPROGRESS) {
struct pollfd fds[1];
fds[0].fd = fd;
fds[0].events = POLLOUT;
if (poll(fds, 1, (int)(timeout * 1000))) {
socklen_t lon = sizeof(int);
int valopt;
getsockopt(fd, SOL_SOCKET, SO_ERROR, (void*)(&valopt), &lon);
if (valopt) {
std::string msg = "failed to connect to ";
msg += name;
msg += ":";
msg += boost::lexical_cast<std::string>(port);
SOCKET_ERROR(sock, msg.c_str(), valopt);
errnum = sock->getError();
errstr = String(Util::safe_strerror(sock->getError()));
return false;
} else {
retval = 0; // success
}
} else {
std::string msg = "timed out after ";
msg += boost::lexical_cast<std::string>(timeout);
msg += " seconds when connecting to ";
msg += name;
msg += ":";
msg += boost::lexical_cast<std::string>(port);
SOCKET_ERROR(sock, msg.c_str(), ETIMEDOUT);
errnum = sock->getError();
errstr = String(Util::safe_strerror(sock->getError()));
return false;
}
}
}
// set to blocking mode
arg = fcntl(fd, F_GETFL, NULL);
fcntl(fd, F_SETFL, arg & ~O_NONBLOCK);
}
if (retval != 0) {
errnum = sock->getError();
errstr = String(Util::safe_strerror(sock->getError()));
return false;
//.........这里部分代码省略.........
示例9: new_socket_connect
static Variant new_socket_connect(const HostURL &hosturl, int timeout,
Variant &errnum, Variant &errstr) {
int domain = AF_UNSPEC;
int type = SOCK_STREAM;
auto const& scheme = hosturl.getScheme();
Socket* sock = nullptr;
SSLSocket *sslsock = nullptr;
std::string sockerr;
int error;
if (scheme == "udp" || scheme == "udg") {
type = SOCK_DGRAM;
} else if (scheme == "unix") {
domain = AF_UNIX;
}
int fd = -1;
if (domain == AF_UNIX) {
sockaddr_storage sa_storage;
struct sockaddr *sa_ptr;
size_t sa_size;
fd = socket(domain, type, 0);
sock = new Socket(fd, domain, hosturl.getHost().c_str(), hosturl.getPort());
if (!set_sockaddr(sa_storage, sock, hosturl.getHost().c_str(),
hosturl.getPort(), sa_ptr, sa_size)) {
return false;
}
if (connect_with_timeout(fd, sa_ptr, sa_size, timeout,
hosturl, sockerr, error) != 0) {
SOCKET_ERROR(sock, sockerr.c_str(), error);
errnum = sock->getLastError();
errstr = HHVM_FN(socket_strerror)(sock->getLastError());
delete sock;
return false;
}
} else {
struct addrinfo hints;
memset(&hints, 0, sizeof(hints));
hints.ai_family = domain;
hints.ai_socktype = type;
auto port = folly::to<std::string>(hosturl.getPort());
auto host = hosturl.getHost();
struct addrinfo *aiHead;
int errcode = getaddrinfo(host.c_str(), port.c_str(), &hints, &aiHead);
if (errcode != 0) {
errstr = String(gai_strerror(errcode), CopyString);
return false;
}
SCOPE_EXIT { freeaddrinfo(aiHead); };
for (struct addrinfo *ai = aiHead; ai != nullptr; ai = ai->ai_next) {
domain = ai->ai_family;
fd = socket(domain, ai->ai_socktype, ai->ai_protocol);
if (fd == -1) {
continue;
}
if (connect_with_timeout(fd, ai->ai_addr, ai->ai_addrlen, timeout,
hosturl, sockerr, error) == 0) {
break;
}
fd = -1;
}
sslsock = SSLSocket::Create(fd, domain, hosturl, timeout);
if (sslsock) {
sock = sslsock;
} else {
sock = new Socket(fd, domain,
hosturl.getHost().c_str(), hosturl.getPort());
}
}
if (!sock->valid()) {
SOCKET_ERROR(sock,
sockerr.empty() ? "unable to create socket" : sockerr.c_str(), error);
errnum = sock->getLastError();
errstr = HHVM_FN(socket_strerror)(sock->getLastError());
delete sock;
return false;
}
if (sslsock && !sslsock->onConnect()) {
raise_warning("Failed to enable crypto");
delete sslsock;
return false;
}
return Resource(sock);
}示例10: main
//.........这里部分代码省略.........
}
#endif
httpspost.Close();
#endif
////////////////////////////////////////////////////////////////////////////////////////
#if 0
{
/*
* 例子1
* sslSocket类测试
*/
SSLSocket ssocket;
string ip1 = "127.0.0.1";
string buf1 = "hello, I am sslSocket";
ssocket.Connect(ip1, 7838, IP_TYPE);
ssocket.Send(buf1);
ssocket.Recv(buf1);
ssocket.Close();
}
#endif
#if 0
{
/*
* 例子2
* HttpsPost类测试,HTTPS, 需要开server
*/
string ip = "127.0.0.1";
string buf;
HttpsPost httpspost;
if( HTTPS_CONNECTED == httpspost.Connect(ip, 7838, IP_TYPE) )
{
string url = "127.0.0.1";
string param = "hehe";
if( HTTPS_SENTED == httpspost.Send(url, param) )
{
if( HTTPS_RECVED == httpspost.Recv(buf))
{
cout<< "response: " << buf << endl;
}
}示例11: stricmp
void* SSLServerThread::run()
{
int port = pcfg->getIntParam(SSL_PORT_PARAM,9001);
std::string cert = pcfg->getParam(SSL_CERT_PARAM);
std::string key = pcfg->getParam(SSL_KEY_PARAM);
std::string caFile = pcfg->getParam(SSL_CA_PARAM);
std::string caDir = pcfg->getParam(SSL_CA_DIR_PARAM);
bool require_cert = stricmp(pcfg->getParam(SSL_REQUIRE_CLIENT_CERT, "no").c_str(), "yes") == 0;
std::string address_list = pcfg->getParam(SSL_BIND_ADDRESS, "");
AddressParser ap(address_list);
SSLSocket client;
X509Certificate* pcert;
X509Certificate serverCert;
PrivateKey serverPkey;
CertificateAuthority ca(caFile, caDir);
SSLContext ctx;
bool trusted = false;
std::string user;
if (serverCert.loadPEMFile(cert) != X509Certificate::noError) {
Log::getLog()->Info("Unable to load the SSL server certificate, disabling SSL");
return NULL;
}
if (serverPkey.loadPEMFile(key) != PrivateKey::noError) {
Log::getLog()->Info("Unable to load the SSL server private key, disabling SSL");
return NULL;
}
Log::getLog()->Info("Reporting SSL Identity as: %s", serverCert.getSubjectName().c_str());
ctx.setPrivateKey(&serverPkey);
ctx.setX509Certificate(&serverCert);
ctx.setCertificateAuthority(&ca);
ctx.enableVerification(require_cert); // TODO: Get a parameter to determine if client certificates are required
ctx.setSessionID(SAFMQ_SESSION_ID, sizeof(SAFMQ_SESSION_ID)-1);
if (port < 1)
port = 9001;
if (ap.addresses.size() == 0) {
try {
SSLServerSocket* svr = new SSLServerSocket(port,&ctx);
servers.push_back(svr);
Log::getLog()->Info("Starting SAFMQ Server at address safmqs://*:%ld", port);
} catch (tcpsocket::SocketException e) {
Log::getLog()->Info("Error:Binding Address: safmqs://*:%ld -- %s", port, e.what());
}
} else {
for(AddressParser::AddressList::size_type x=0;x<ap.addresses.size();x++) {
unsigned short tmpport;
try {
tmpport = (ap.addresses[x].port == 0xFFFF ) ? port : ap.addresses[x].port;
SSLServerSocket* svr = new SSLServerSocket(tmpport, &ctx, ap.addresses[x].address);
servers.push_back(svr);
Log::getLog()->Info("Starting SAFMQ Server at address safmqs://%s:%ld", ap.addresses[x].name.c_str(),tmpport);
} catch (tcpsocket::SocketException e) {
Log::getLog()->Info("Error:Binding Address: safmqs://%s:%ld -- %s", ap.addresses[x].name.c_str(),tmpport, e.what());
}
}
}
try {
std::list<SSLServerSocket*> avail;
tcpsocket::Selector<tcpsocket::SSLServerSocket> selector;
std::list<tcpsocket::SSLServerSocket*>::iterator i;
while (!m_bStop) {
trusted = false;
user = "";
avail.clear();
avail.assign(servers.begin(), servers.end());
selector.selectReaders(avail);
for(i = avail.begin(); !m_bStop && i != avail.end(); ++i) {
client = (*i)->acceptConnection();
Log::getLog()->Info("New conneciton accepted");
// Force the connection negotiation, this will call verify()
pcert = client.getPeerCertificate();
Log::getLog()->Info("Peer certificate obtained 0x%lx", pcert);
int res = client.getVerifyResult();
Log::getLog()->Info("Peer Verify Result: %ld", res);
if (pcert) {
Log::getLog()->Info("Client Cert Issuer: %s", pcert->getIssuerName().c_str());
Log::getLog()->Info("Client Cert Subject: %s", pcert->getSubjectName().c_str());
} else {
Log::getLog()->Info("SSLServerThread::run()-pcert: %p", pcert);
}
// determine if a trusted user certificate has been presented
if (res == X509_V_OK && pcert) {
trusted = (SecurityControl::getSecurityControl()->identifyUser(pcert->getSubjectName(), pcert->getIssuerName(), user) == SecurityControl::GRANTED);
}
//.........这里部分代码省略.........