gsoap ssl代码分析 .

最新推荐文章于 2021-05-28 16:34:04 发布
最新推荐文章于 2021-05-28 16:34:04 发布
阅读量1.6k 收藏
点赞数
分类专栏: OpenSSL gSOAP 文章标签: openssl gsoap webservice ssl c++

参考gsoap代码中sslclient.c:

01.int main()  
02.{ struct soap soap;  
03.  double a, b, result;  
04.  /* Init SSL */  
05.  soap_ssl_init(); <SPAN style="COLOR: #ff6600">--------里面调用SSL_library_init,OpenSSL_add_all_algorithms,SSL_load_error_strings,RAND_load_file</SPAN>  
06.  if (CRYPTO_thread_setup()) <SPAN style="COLOR: #ff6600">------ 用于多线程</SPAN>  
07.  { fprintf(stderr, "Cannot setup thread mutex for OpenSSL\n");  
08.    exit(1);  
09.  }  
10.  a = 10.0;  
11.  b = 20.0;  
12.  /* Init gSOAP context */  
13.  soap_init(&soap); <SPAN style="COLOR: #ff6600">-------- 调用soap_versioning(soap_init)(struct soap *soap, soap_mode imode, soap_mode omode)。调用soap_init_mht,soap_init_logs等<SPAN style="FONT-FAMILY: Arial, Helvetica, sans-serif">。会调用SSL_CTX_new。如果没有调用过</SPAN></SPAN><SPAN style="FONT-FAMILY: Arial, Helvetica, sans-serif; COLOR: rgb(255,102,0)">soap_ssl_init,里面会调用。</SPAN><SPAN style="COLOR: #ff6600">  
14.</SPAN>  
15.  /* The supplied server certificate "server.pem" assumes that the server is 
16.    running on 'localhost', so clients can only connect from the same host when 
17.    verifying the server's certificate. Use SOAP_SSL_NO_AUTHENTICATION to omit 
18.    the authentication of the server and use encryption directly from any site. 
19.    To verify the certificates of third-party services, they must provide a 
20.    certificate issued by Verisign or another trusted CA. At the client-side, 
21.    the capath parameter should point to a directory that contains these 
22.    trusted (root) certificates or the cafile parameter should refer to one 
23.    file will all certificates. To help you out, the supplied "cacerts.pem" 
24.    file contains the certificates issued by various CAs. You should use this 
25.    file for the cafile parameter instead of "cacert.pem" to connect to trusted 
26.    servers.  Note that the client may fail to connect if the server's 
27.    credentials have problems (e.g. expired). Use SOAP_SSL_NO_AUTHENTICATION 
28.    and set cacert to NULL to encrypt messages if you don't care about the 
29.    trustworthyness of the server. 
30.    Note 1: the password and capath are not used with GNUTLS 
31.    Note 2: setting capath may not work on Windows. 
32.  */  
33.  if (soap_ssl_client_context(&soap, <SPAN style="COLOR: #ff6600">------------ 设置上下文。</SPAN>  
34.    /* SOAP_SSL_NO_AUTHENTICATION, */ /* for encryption w/o authentication */  
35.    /* SOAP_SSL_DEFAULT | SOAP_SSL_SKIP_HOST_CHECK, */  /* if we don't want the host name checks since these will change from machine to machine */  
36.    SOAP_SSL_DEFAULT,   /* use SOAP_SSL_DEFAULT in production code */  
37.    NULL,       /* keyfile (cert+key): required only when client must authenticate to server (see SSL docs to create this file) */  
38.    NULL,       /* password to read the keyfile */  
39.    "cacert.pem",   /* optional cacert file to store trusted certificates, use cacerts.pem for all public certificates issued by common CAs */  
40.    NULL,       /* optional capath to directory with trusted certificates */  
41.    NULL        /* if randfile!=NULL: use a file with random data to seed randomness */   
42.  ))  
43.  { soap_print_fault(&soap, stderr);  
44.    exit(1);  
45.  }  
46.  soap.connect_timeout = 60;    /* try to connect for 1 minute */  
47.  soap.send_timeout = soap.recv_timeout = 30;   /* if I/O stalls, then timeout after 30 seconds */  
48.  if (<SPAN style="COLOR: #ff6600">soap_call_ns__add</SPAN>(&soap, server, "", a, b, &result) == SOAP_OK)<SPAN style="COLOR: #ff6600">--------------编译出的soap桩接口</SPAN>  
49.    fprintf(stdout, "Result: %f + %f = %f\n", a, b, result);  
50.  else  
51.    soap_print_fault(&soap, stderr);  
52.  soap_destroy(&soap); /* C++ */  
53.  soap_end(&soap);  
54.  soap_done(&soap);  
55.  CRYPTO_thread_cleanup();  
56.  return 0;  
57.}

sslserver.c:


01.int main()  
02.{ SOAP_SOCKET m;  
03.#if defined(_POSIX_THREADS) || defined(_SC_THREADS)   
04.  pthread_t tid;  
05.#endif   
06.  struct soap soap, *tsoap;  
07.  /* Need SIGPIPE handler on Unix/Linux systems to catch broken pipes: */  
08.  signal(SIGPIPE, sigpipe_handle); <SPAN style="COLOR: #ff6600">-------------- 只有这样,pipe对端断开连接,本端才能接收到EPIPE信号。</SPAN>  
09.  if (CRYPTO_thread_setup())  -<SPAN style="COLOR: #ff6600">-- 多线程</SPAN>  
10.  { fprintf(stderr, "Cannot setup thread mutex for OpenSSL\n");  
11.    exit(1);  
12.  }  
13.  /* init gsoap context and SSL */  
14.  <STRONG><SPAN style="COLOR: #ff0000">soap_init</SPAN></STRONG>(&soap);  <SPAN style="COLOR: #ff6600">--- 初始化context。里面会调用</SPAN><SPAN style="FONT-FAMILY: Arial, Helvetica, sans-serif; COLOR: rgb(255,102,0)">soap_ssl_init等</SPAN><SPAN style="COLOR: #ff6600">  
15.</SPAN>  
16.  /* The supplied server certificate "server.pem" assumes that the server is 
17.    running on 'localhost', so clients can only connect from the same host when 
18.    verifying the server's certificate. 
19.    To verify the certificates of third-party services, they must provide a 
20.    certificate issued by Verisign or another trusted CA. At the client-side, 
21.    the capath parameter should point to a directory that contains these 
22.    trusted (root) certificates or the cafile parameter should refer to one 
23.    file will all certificates. To help you out, the supplied "cacerts.pem" 
24.    file contains the certificates issued by various CAs. You should use this 
25.    file for the cafile parameter instead of "cacert.pem" to connect to trusted 
26.    servers. Note that the client may fail to connect if the server's 
27.    credentials have problems (e.g. expired). 
28.    Note 1: the password and capath are not used with GNUTLS 
29.    Note 2: setting capath may not work on Windows. 
30.  */  
31.  if (soap_ssl_server_context(&soap,  ------------ server context  
32.    SOAP_SSL_DEFAULT,   /* use SOAP_SSL_REQUIRE_CLIENT_AUTHENTICATION to verify clients: client must provide a key file e.g. "client.pem" and "password" */  
33.    "server.pem",   /* keyfile (cert+key): see SSL docs to create this file */  
34.    "password",     /* password to read the private key in the key file */  
35.    "cacert.pem",   /* cacert file to store trusted certificates (to authenticate clients) */  
36.    NULL,       /* capath */  
37.    "dh512.pem",    /* DH file name or DH param key len bits (e.g. "1024"), if NULL use RSA 2048 bits (SOAP_SSL_RSA_BITS) */  
38.    NULL,       /* if randfile!=NULL: use a file with random data to seed randomness */   
39.    "sslserver"     /* server identification for SSL session cache (unique server name, e.g. use argv[0]) */  
40.  ))  
41.  { soap_print_fault(&soap, stderr);  
42.    exit(1);  
43.  }  
44.  soap.accept_timeout = 60; /* server times out after 1 minute inactivity */  
45.  soap.send_timeout = soap.recv_timeout = 30;   /* if I/O stalls, then timeout after 30 seconds */  
46.  m =<SPAN style="COLOR: #ff6600"> soap_bind</SPAN>(&soap, NULL, 18081, 100);  
47.  if (!soap_valid_socket(m))  
48.  { soap_print_fault(&soap, stderr);  
49.    exit(1);  
50.  }  
51.  fprintf(stderr, "Bind successful: socket = %d\n", m);  
52.  for (;;)  
53.  { SOAP_SOCKET s = soap_accept(&soap);  
54.    if (!soap_valid_socket(s))  
55.    { if (soap.errnum)  
56.        soap_print_fault(&soap, stderr);  
57.      else  
58.        fprintf(stderr, "Server timed out (timeout set to %d seconds)\n", soap.accept_timeout);  
59.      break;  
60.    }  
61.    fprintf(stderr, "Socket %d connection from IP %d.%d.%d.%d\n", s, (int)(soap.ip>>24)&0xFF, (int)(soap.ip>>16)&0xFF, (int)(soap.ip>>8)&0xFF, (int)soap.ip&0xFF);  
62.    <SPAN style="COLOR: #ff6600">tsoap = soap_copy(&soap);</SPAN>  
63.    if (!tsoap)  
64.    { soap_closesock(&soap);  
65.      continue;  
66.    }  
67.#if defined(_POSIX_THREADS) || defined(_SC_THREADS)   
68.    pthread_create(&tid, NULL, (void*(*)(void*))&process_request, <SPAN style="COLOR: #ff6600">tsoap</SPAN>);  
69.#else   
70.    process_request(tsoap);  
71.#endif   
72.  }  
73.  soap_destroy(&soap);  
74.  soap_end(&soap);  
75.  soap_done(&soap); /* MUST call before CRYPTO_thread_cleanup */  
76.  CRYPTO_thread_cleanup();  
77.  return 0;  
78.}   



01.void *process_request(struct soap *soap)  
02.{  
03.#if defined(_POSIX_THREADS) || defined(_SC_THREADS)   
04.  pthread_detach(pthread_self());  
05.#endif   
06.  if (<SPAN style="COLOR: #ff6600">soap_ssl_accept</SPAN>(soap) != SOAP_OK) <SPAN style="COLOR: #ff6600">---------- 会调用SSL_new,SSL_accept</SPAN>  
07.  { /* when soap_ssl_accept() fails, socket is closed and SSL data reset */  
08.    soap_print_fault(soap, stderr);  
09.    fprintf(stderr, "SSL request failed, continue with next call...\n");  
10.  }  
11.  else  
12.    <SPAN style="COLOR: #ff6600">soap_serve</SPAN>(soap);  
13.  soap_destroy(soap); /* for C++ */  
14.  soap_end(soap);  
15.  soap_free(soap);  
16.  return NULL;  
17.}



Mr_John_Liang
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
gsoap 通过SSL双向认证调用service
limiko space
12-25 5781
通过>一文,最终得到以下文件 ca.crt ca.key server.crt server.key client.crt client.key 生成IIS需要的文件 [root]# openssl pkcs12 -export -in client.crt -inkey client.key -out client.pfx 将client.pfx ca.crt 传到IIS机器上,在证书的1.4.7项上导入ca.crt ,在第一项上导入client.pfx IIS 使用
gsoap+ssl 服务端-JAVA,客户端C++
无与伦比BLOG
04-19 1745
使用gsoap进行JAVA与C++的通信,并结合SSL,zheng
gsoap wsdl SSL WSDL支持HTTPS SSL协议
07-04
gsoap wsdl SSL WSDL支持HTTPS SSL协议,已经编译好的wsdl,通过wsdl获取https的wsdl协议没有问题 如果遇到问题,可以用QQ问我,每天在线。 另外本人对gsoad熟悉,欢迎咨询
gsoap ssl代码分析
安子自语
07-11 4907
参考gsoap代码sslclient.c: int main() { struct soap soap; double a, b, result; /* Init SSL */ soap_ssl_init(); --------里面调用SSL_library_init,OpenSSL_add_all_algorithms,SSL_load_error_strings,RAND_lo
使用 gSOAP 通过 HTTP 和 HTTPS 调用由 WSAD 创建的 J2EE Web 服务
风信子的专栏
07-03 1173
引言很多公司都提供基于 Java™ 的 Web 服务栈,包括 Apache 的 Axis、IBM 的 WebSphere® Studio Application Developer (WSAD) 和 BEA 的 WebLogic Web 服务。Microsoft® .NET 技术提供一些用于 Web 服务的工具,如 Web Services Enhancements (WSE) 3.0 等。但
gsoap_2.8.102.zip
05-20
gSOAP不仅是一个SOAP解析器和生成器,它还包含一套完整的工具,用于自动生成服务客户端和服务器的代码。这些工具能够解析WSDL(Web Services Description Language)文档,自动生成与之对应的C或C++接口,极大地简化...
ssl支持的gsoap/wsdl2h.exe&同时加入我弄好的onvif框架
01-14
标题中的“有ssl支持的gsoap/wsdl2h.exe”是指使用了SSL(Secure Sockets Layer)加密技术的gsoap工具集,其中包含了wsdl2h这个子工具。SSL是网络安全传输层的一个标准,用于在互联网上提供安全通信,确保数据在传输...
gsoap_2.8.103工具包.7z
07-02
gSOAP 2.8.103工具包:HTTPS支持与WSDL2H解析强化》 gSOAP,全称为Generic SOAP,是一个开源的C/C++软件开发工具包,用于构建网络服务,尤其是基于SOAP(Simple Object Access Protocol)的Web服务。在本文中,...
gsoap_2.8.36.zip
10-16
gSOAP通过解析WSDL文件来生成服务器端和客户端的代码。在服务器端,gSOAP处理来自客户端的SOAP请求,将其转化为C/C++调用,执行相应的业务逻辑,然后将结果转换回SOAP响应。在客户端,gSOAP将本地调用转换为SOAP消息...
gsoap_2.8.116.zip
08-26
1. **源代码**:gSOAP的核心源代码,包括解析和生成SOAP消息的库函数,以及与特定协议(如HTTP)交互的代码。 2. **工具**:一组命令行工具,如` soapcpp2 `,用于从WSDL(Web服务描述语言)文件生成C或C++代码,...
gsoap-2.8.80,支持HTTPS,VS2017编译,openssl-1.1.1b
03-21
官方开源的gSOAP不支持SSL/TLS,生成onvif框架时会报【Cannot connect to https site: SSL/TLS support not enabled in this version. Visit https://www.genivia.com/downloads.html to download the secure version of wsdl2h.exe that supports SSL/TLS to connect to https sites.】 本资源包含soapcpp2.exe、wsdl2h.exe两个文件,编译环境为Win10+VS2017+openssl1.1.1b,分享于此
C++用gsoap做客户端和服务器端
01-05
C++用gsoap做客户端和服务器端,VS2010测试通过,内含两个程序
支持https的gSOAP toolkit
03-20
使用gSOAP 2.8.82重新编译,支持https;ssl库使用Win32 OpenSSL 1.1.1。 包含ssl所需的dll文件。
gsoap,openssl,onvif makefile编译,undefined reference to `soap_ssl_init',errno错误号500,401等
miaoweijun的专栏
11-15 4975
SOAP_NMAC struct Namespace namespaces[] = {         {"SOAP-ENV", "http://www.w3.org/2003/05/soap-envelope", "http://schemas.xmlsoap.org/soap/envelope/", NULL},         {"SOAP-ENC", "http://www.w3.or
Gsoap 下使用HTTPS协议的Web Service
kungercn的专栏
11-26 6316
Gsoap 下如何使用HTTPS协议 这两天在网上找了许多,零零散散的比较坑。最后,尽然在gsoap的安装目录下找到了一个例子,完整过程都有。(还是要看官方自带的文档和例子啊) 如在电脑目录下C:\gsoap-2.8\gsoap\samples\ssl 其中如何生存openssl密钥在README.txt中有说明,而具体的服务端、客户端例子在sslserver.c、sslcl
Onvif协议之gSOAP工具
king_weng的博客
02-09 807
1、简介 gSOAP的编译器能够自动的将用户定义的本地化的C或C++数据类型转变为符合XML语法的数据结构,反之亦然。这样,只用一组简单的API就将用户从SOAP细节实现工作中解脱了出来,可以专注与应用程序逻辑的实现工作了。gSOAP编译器可以集成C/C++和Fortran代码(通过一个Fortran到C的接口),嵌入式系统,其他SOAP程序提供的实时软件的资源和信息;可以跨越多个操作系统,语言环境以及在防火墙后的不同组织。 gSOAP一种跨平台的C和 C++软件开发工具包。生成C/C++...
在 Linux/Unix 上安装 gSoap
程序猿视角
05-28 480
Make sure that you have Flex and Bison installed to build the soapccp2 tool: sudo apt-get install flex bison If you run into trouble installing Flex or Bison, then see the next section. You may want to install OpenSSL to enable HTTPS for gSOAP clients and
使用gSOAP开发实例(7) 基于HTTPS的基本认证(Basic Authentication)
热门推荐
The power of C, the secret of MD
08-17 1万+
<br /><br />经过前几节的讲解,相信大家都能够熟练地开发gSOAP应用程序,甚至跨平台也不是问题。但是,诸如stock、weather、exchange这些应用都是面向大众提供的免费资源,不是企业级的应用,绝大多数都不需要用户认证。而那些商业化的应用却恰恰相反,大部分都要求客户端提供这样那样的验证。<br /> <br />由于有认证的免费资源实在难找,我只好把公司正在使用的一个服务的wsdl裁剪一下,拿到这里作为实例,裁剪后的wsdl只保留一个echo接口,顾名思义,就是客户端送什么字符串上来,
gsoap 2.8.74下载
最新发布
12-28
gsoap 2.8.74是一个开源的C/C++开发工具包,用于开发基于SOAP和REST的网络服务。你可以在官方网站上下载gsoap 2.8.74的安装包,或者通过在搜索引擎中输入“gsoap 2.8.74下载”来找到可靠的下载源。 在下载gsoap 2.8.74之前,你需要确认你的操作系统和开发环境是否与其兼容。一般来说,gsoap 2.8.74支持多种操作系统和开发环境,包括Windows、Linux、Unix和Mac OS等,并且可以与主流的开发工具如Visual Studio和Eclipse等配合使用。 下载gsoap 2.8.74的安装包后,你可以按照官方提供的安装指南进行安装。安装完成后,你就可以开始使用gsoap 2.8.74来开发基于SOAP和REST的网络服务了。同时,gsoap 2.8.74也提供了丰富的文档和示例代码,帮助你更快地上手并运用于实际项目中。 总的来说,gsoap 2.8.74是一个功能强大且灵活的开发工具包,能够帮助开发者更高效地构建和部署网络服务。通过下载并使用gsoap 2.8.74,你可以更好地理解和应用SOAP和REST等网络服务技术,为自己的项目带来更多的可能性。

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值