linux C libcurl https 使用

本文探讨了使用libcurl进行HTTPS服务器单向认证时遇到的常见错误:SSL23_GET_SERVER_HELLO:tlsv1alertinternalerror。通过调整设置和配置SSL版本及密钥,解决了连接失败的问题。

摘要生成于 C知道 ,由 DeepSeek-R1 满血版支持, 前往体验 >

最近一直在测试libcurl使用https服务器单向认证的情况,一直在查找原因和调试。主要出现在下面的问题上:

routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error

这个问题的解决思路可以在下面链接中找到:


在server.xml中增加下面的内容:

ciphers="SSL_RSA_WITH_RC4_128_SHA"

If you're running curl 7.35.0 and run into this error in php when trying to connect to a remote host:

35 - error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure

it means you need to tell curl to use sslv3 and also use the sslv3 ciphers, ensure you have these curl_setopt settings, eg:

curl_setopt($ch, CURLOPT_SSLVERSION, 3);
curl_setopt($ch, CURLOPT_SSL_CIPHER_LIST, 'SSLv3');

下面是libcurl 的测试代码:

#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <curl/curl.h>

static size_t save_response_callback(void *buffer,size_t size,size_t count,void **response)
{
	char * ptr = NULL;
	printf("buffer is %s\n",(char *)buffer);
	ptr =(char *) malloc(count*size + 4);
	memcpy(ptr,buffer,count*size);
	*response = ptr;

	return count;
}

int main(int argc,char *argv[])
{
	CURL * curl;
	CURLcode res;
	char * response = NULL;

	if(argc !=2){
        printf("Usage:file<url>;\n");
		return;
	}
	
	//curl_global_init(CURL_GLOBAL_DEFAULT);

	curl = curl_easy_init();
   
	if(curl!=NULL){
        printf("Usage:file<%s>;\n",argv[1]);
		curl_easy_setopt(curl,CURLOPT_URL,argv[1]);
		curl_easy_setopt(curl,CURLOPT_WRITEFUNCTION,&save_response_callback);
		curl_easy_setopt(curl,CURLOPT_WRITEDATA,&response);
        curl_easy_setopt(curl,CURLOPT_COOKIESESSION,1L);
		curl_easy_setopt(curl,CURLOPT_COOKIEFILE,"/dev/null");
		curl_easy_setopt(curl,CURLOPT_SSL_VERIFYPEER,1);
		//curl_easy_setopt(curl,CURLOPT_CAPATH,"/etc/ssl/cert/");
		curl_easy_setopt(curl,CURLOPT_CAINFO,"ca-cert.pem");

		curl_easy_setopt(curl,CURLOPT_SSL_VERIFYHOST,1);
		curl_easy_setopt(curl,CURLOPT_VERBOSE,1L);
		curl_easy_setopt(curl,CURLOPT_TIMEOUT,30);
#if 0
		/* 双向验证下面是客户端的CA*/
	//	curl_easy_setopt(curl,CURLOPT_CAPATH,"./");
		curl_easy_setopt(curl,CURLOPT_SSLCERT,"client-cert.pem");
		curl_easy_setopt(curl,CURLOPT_SSLCERTPASSWD,"password");
		curl_easy_setopt(curl,CURLOPT_SSLCERTTYPE,"PEM");
		curl_easy_setopt(curl,CURLOPT_SSLKEY,"client-key.pem");
		curl_easy_setopt(curl,CURLOPT_SSLKEYPASSWD,"password");
		curl_easy_setopt(curl,CURLOPT_SSLKEYTYPE,"PEM");
#endif

		res = curl_easy_perform(curl);
		if(res != CURLE_OK){

             printf("curl_wasy_perform error = %s",curl_easy_strerror(res));
		}
        printf("response<%s>\n",response);

		curl_easy_cleanup(curl);
	}


}
参考资料:
SSL证书制作:http://blog.chinaunix.net/uid-7591044-id-1742977.html 


### Linux使用 libcurl 的示例代码与教程 #### 静态编译 libcurl 并链接到项目 在 Linux 中,可以通过 `curl-config --libs` 查看链接 libcurl 所需的参数[^1]。这些参数通常包括 `-lcurl` 和其他依赖项(如 OpenSSL 或 zlib)。如果已经成功生成了静态库文件 `libcurl.a`,可以将其放置于 `/usr/local/lib` 路径下以便后续使用[^2]。 #### HTTP GET 请求示例 以下是一个简单的 C 程序,演示如何通过 libcurl 发起 HTTP GET 请求并打印返回的内容: ```c #include <stdio.h> #include <stdlib.h> #include <curl/curl.h> size_t WriteCallback(void* contents, size_t size, size_t nmemb, void* userp) { ((char*)userp)[0] = '\0'; strcat((char*)userp, (char*)contents); return size * nmemb; } int main(void) { CURL* curl; CURLcode res; struct MemoryStruct { char memory[1024]; } chunk; curl_global_init(CURL_GLOBAL_DEFAULT); curl = curl_easy_init(); if(curl) { curl_easy_setopt(curl, CURLOPT_URL, "https://example.com"); curl_easy_setopt(curl, CURLOPT_WRITEFUNCTION, WriteCallback); curl_easy_setopt(curl, CURLOPT_WRITEDATA, &chunk.memory); res = curl_easy_perform(curl); if(res != CURLE_OK) { fprintf(stderr, "curl_easy_perform() failed: %s\n", curl_easy_strerror(res)); } printf("%s\n", chunk.memory); curl_easy_cleanup(curl); } curl_global_cleanup(); return 0; } ``` 此程序定义了一个回调函数用于处理接收到的数据,并设置 URL 地址为 `"https://example.com"` 来发起请求[^3]。 #### HTTP POST 请求示例 下面展示的是发送带有表单数据的 HTTP POST 请求的例子: ```c #include <stdio.h> #include <curl/curl.h> int main(void) { CURL* curl; CURLcode res; curl_global_init(CURL_GLOBAL_DEFAULT); curl = curl_easy_init(); if(curl) { curl_easy_setopt(curl, CURLOPT_URL, "https://httpbin.org/post"); const char* data = "name=John&age=30"; curl_easy_setopt(curl, CURLOPT_POSTFIELDS, data); res = curl_easy_perform(curl); if(res != CURLE_OK) { fprintf(stderr, "curl_easy_perform() failed: %s\n", curl_easy_strerror(res)); } curl_easy_cleanup(curl); } curl_global_cleanup(); return 0; } ``` 上述代码设置了要提交给服务器的字段字符串作为 POST 数据的一部分。 #### 文件下载保存实例 为了实现将远程资源保存至本地磁盘的功能,可采用如下方法: ```c #include <stdio.h> #include <curl/curl.h> size_t WriteDataToFile(void* ptr, size_t size, size_t nmemb, FILE* stream) { return fwrite(ptr, size, nmemb, stream); } int main(int argc, char* argv[]) { CURL* curl; FILE* fp; CURLcode res; if(argc < 2) { printf("Usage: %s <URL>\n", argv[0]); return 1; } curl_global_init(CURL_GLOBAL_DEFAULT); curl = curl_easy_init(); if(curl) { fp = fopen("output.html", "wb+"); curl_easy_setopt(curl, CURLOPT_URL, argv[1]); curl_easy_setopt(curl, CURLOPT_WRITEFUNCTION, WriteDataToFile); curl_easy_setopt(curl, CURLOPT_WRITEDATA, fp); res = curl_easy_perform(curl); fclose(fp); if(res != CURLE_OK) { fprintf(stderr, "curl_easy_perform() failed: %s\n", curl_easy_strerror(res)); } curl_easy_cleanup(curl); } curl_global_cleanup(); return 0; } ``` 这段脚本允许指定目标网址并将响应存储在一个名为 `output.html` 的新文档中。 ---
评论 2
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值