参考代码仓:
在github上找到一个参考代码仓,对照自己的代码做移植。
主要的修改:
1.新增SSLCocket.c和SSLCocket.h,这里增加的是,mbedtls加密的连接、握手以及数据收发的加解密等功能。
2.编译脚本增加宏MBEDTLS的支持,删除openssl。
3.修改源文件,主要是以下这些:Socket.c、SocketBuffer.c、WebSocket.c、MQTTProtocolOut.c、MQTTProtocolClient、MQTTPacket.c、MQTTClient.c、Clients.h、MQTTAsync.c。
修改的内容主要是原本openssl的宏,新增mbedtls,部分对应openssl的接口有稍微的改动。
4.编写一个简单的测试程序,测试功能。
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <unistd.h>
#include "MQTTClient.h"
#define ADDRESS "ssl://xxxxxxxxxxxxxxx:12345"
#define CLIENTID "test"
#define TOPIC "test/topic"
#define PAYLOAD "Hello World!"
#define QOS 1
#define TIMEOUT 10000L
#define CA_PATH "/cert/ca.crt"
#define CERT_PATH "/cert/client.crt"
#define KEY_PATH "/cert/client.key"
volatile MQTTClient_deliveryToken deliveredtoken;
static void delivered(void* context, MQTTClient_deliveryToken dt)
{
printf("Message with token value %d delivery confirmed\n", dt);
deliveredtoken = dt;
}
static int msgarrvd(void* context, char* topicName, int topicLen, MQTTClient_message* message)
{
// int i;
// char* payloadptr;
printf("Message arrived\n");
printf(" topic: %s\n", topicName);
char* msg = (char*)malloc(message->payloadlen + 1);
memcpy(msg, message->payload, message->payloadlen);
msg[message->payloadlen] = 0;
printf(" message: %s", msg);
free(msg);
// payloadptr = message->payload;
// for (i = 0; i < message->payloadlen; i++) {
// putchar(*payloadptr++);
// }
// putchar('\n');
MQTTClient_freeMessage(&message);
MQTTClient_free(topicName);
return 1;
}
static void connlost(void* context, char* cause)
{
printf("\nConnection lost\n");
printf(" cause: %s\n", cause);
}
int mqtt_ssl_example(int argc, char* argv[])
{
MQTTClient client;
MQTTClient_connectOptions conn_opts = MQTTClient_connectOptions_initializer;
MQTTClient_SSLOptions ssl_opts = MQTTClient_SSLOptions_initializer;
MQTTClient_message pubmsg = MQTTClient_message_initializer;
MQTTClient_deliveryToken token;
int rc;
// 初始化客户端
MQTTClient_init();
MQTTClient_create(&client, ADDRESS, CLIENTID, MQTTCLIENT_PERSISTENCE_NONE, NULL);
MQTTClient_setCallbacks(client, NULL, connlost, msgarrvd, delivered);
// 配置SSL选项
ssl_opts.trustStore = CA_PATH;
ssl_opts.keyStore = CERT_PATH;
ssl_opts.privateKey = KEY_PATH;
ssl_opts.enableServerCertAuth = 0;
conn_opts.ssl = &ssl_opts;
conn_opts.keepAliveInterval = 60;
conn_opts.cleansession = 1;
// 连接到MQTT服务器
if ((rc = MQTTClient_connect(client, &conn_opts)) != MQTTCLIENT_SUCCESS) {
printf("Failed to connect, return code %d\n", rc);
return -1;
// exit(EXIT_FAILURE);
}
printf("Connected to MQTT broker at %s\n", ADDRESS);
// 订阅主题
if ((rc = MQTTClient_subscribe(client, TOPIC, QOS)) != MQTTCLIENT_SUCCESS) {
printf("Failed to subscribe, return code %d\n", rc);
return -1;
// exit(EXIT_FAILURE);
}
printf("Subscribed to topic %s\n", TOPIC);
// 发布消息
pubmsg.payload = PAYLOAD;
pubmsg.payloadlen = strlen(PAYLOAD);
pubmsg.qos = QOS;
pubmsg.retained = 0;
// 循环以处理消息
while (1) {
usleep(10000000L); // 等待消息到达
if ((rc = MQTTClient_publishMessage(client, TOPIC, &pubmsg, &token)) != MQTTCLIENT_SUCCESS) {
printf("Failed to publish message, return code %d\n", rc);
// exit(EXIT_FAILURE);
continue;
}
printf("Waiting for up to %d seconds for publication of %s\n"
"on topic %s for client with ClientID: %s\n",
(int)(TIMEOUT / 1000), PAYLOAD, TOPIC, CLIENTID);
rc = MQTTClient_waitForCompletion(client, token, TIMEOUT);
printf("Message with delivery token %d delivered\n", token);
}
// 断开连接并清理
MQTTClient_disconnect(client, 10000);
MQTTClient_destroy(&client);
return rc;
}
遇到的问题及处理:
1.SSLSocket_putdatas()中的mutex崩溃,这里删除这个mutex。
2.ssl_opts.enableServerCertAuth = 0;我测试的地址,必须设置为0,否则连接不上。