- 1、本文档共6页,可阅读全部内容。
- 2、原创力文档(book118)网站文档一经付费(服务费),不意味着购买了该文档的版权,仅供个人/单位学习、研究之用,不得用于商业用途,未经授权,严禁复制、发行、汇编、翻译或者网络传播等,侵权必究。
- 3、本站所有内容均由合作方或网友上传,本站不对文档的完整性、权威性及其观点立场正确性做任何保证或承诺!文档内容仅供研究参考,付费前请自行鉴别。如您付费,意味着您自己接受本站规则且自行承担风险,本站不退款、不进行额外附加服务;查看《如何避免下载的几个坑》。如果您已付费下载过本站文档,您可以点击 这里二次下载。
- 4、如文档侵犯商业秘密、侵犯著作权、侵犯人身权等,请点击“版权申诉”(推荐),也可以打举报电话:400-050-0827(电话支持时间:9:00-18:30)。
查看更多
用openssl进行ssl编程(Programming with SSL using OpenSSL)
用openssl进行ssl编程(Programming with SSL using OpenSSL)
The main introduction of OpenSSL SSL communication functions and procedures, mainly the initialization process, as for data reception and subsequent processing, specific problems can be analyzed.
Load all the SSL algorithms
Openssl_add_ssl_algorithms ();
Build method for SSL
Ssl_method, *meth=sslv23_method ();
Initializing context scenarios
Ssl_ctx *ctx=ssl_ctx_new (meth);
Ret-quiet_shutdown=1; the default is ret-quiet_shutdown=0; he is equivalent to the ssl_set_shutdown function and sets the parameter to ssl_sent_shutdown|ssl_received_shutdown
When set to 1, if you do not notify each other after closing, this is not suitable for TLS standards
Ssl_ctx_set_quiet_shutdown (CTX, 1);
Ctx-options|=ssl_op_all, ssl/tls has several recognized bug, so that the setting makes the possibility of error smaller
Ssl_ctx_set_options (CTX, ssl_op_all);
Set the size of the cache, the default is 1024*20=20000, which is how many session_id can be stored, and generally do not need to change. If it was 0, it would be infinite
Ssl_ctx_sess_set_cache_size (CTX, 128);
Ssl_ctx_load_verify_locations is used to load a trusted CA certificate, and if cafile is not null, then the file he points to contains one or more certificates in the PEM encoding format, and e.g. can be used to brief the certificate contents
If capath is not null, it points to a directory containing the PEM Certificate in the CA format. Each file in the directory contains a CA certificate. The file name is the hash value of the CA name in the certificate
You can build this directory with c-rehash, such as CD /some/where/certs (including a lot of trusted CA certificates), c_rehash. Returns a success, and 0 fails. Ssl_ctx_set_default_verify_paths looks for the default validation path, which is definitely not found here.
The main set cert_store here
Char, *cafile=null, *capath=null;
Ssl_ctx_load_verify_locations (CTX, cafile, capath);
When client authentication is required, the
您可能关注的文档
- 玻璃纤维桩修复残根残冠的临床观察(Clinical observation of glass fiber post for restoration of residual roots and crowns).doc
- 玻璃清洗(Glass cleaning).doc
- 珍珠奶茶制作方法(Method for making pearl milk tea).doc
- 玻璃检测(Glass inspection).doc
- 玻璃纤维增强型复合树脂桩核修复基牙折断烤瓷牙效果观察(Effect of glass fiber reinforced composite resin post core for restoration of abutment fracture of porcelain fused to tooth).doc
- 珐琅铸铁锅(Enameled iron pot).doc
- 珠光粉详细说明(Pearl powder detail).doc
- 珠宝摄影攻略(Jewelry photography).doc
- 珠心算的坏处珠心算的好处!(Mental harm The benefits of abacus!).doc
- 珠峰测量(Mount Everest survey).doc
- 《JJF 2132-2024荧光紫外灯人工气候老化试验装置校准规范:辐射照度参数》.pdf
- JJF 2120-2024轮速传感器校准规范.pdf
- 计量规程规范 JJF 2120-2024轮速传感器校准规范.pdf
- 《JJF 2129-2024钙钛矿太阳电池校准规范:光电性能参数》.pdf
- JJF 2129-2024钙钛矿太阳电池校准规范:光电性能参数.pdf
- 《JJF 2120-2024轮速传感器校准规范》.pdf
- JJF 2117-2024沥青混合料理论最大相对密度仪校准规范.pdf
- JJF 2116-2024特定蛋白分析仪校准规范.pdf
- 《JJF 2116-2024特定蛋白分析仪校准规范》.pdf
- 计量规程规范 JJF 2117-2024沥青混合料理论最大相对密度仪校准规范.pdf
文档评论(0)