文档建议反馈控制台
首页
学习
活动
专区
圈层
工具
MCP广场
文章/答案/技术大牛
发布
首页
学习
活动
专区
圈层
工具
MCP广场
返回腾讯云官网
社区首页 >问答首页 >带有TLS支持的C语言的Solace客户端

带有TLS支持的C语言的Solace客户端
EN

Stack Overflow用户
提问于 2021-02-05 20:09:45
回答 1查看 75关注 0票数 0

我正在尝试实现C客户端来连接和发布消息到特定的主题。我在实现ssl时遇到下面的错误。

代码语言:javascript
运行
复制
ERROR:
SDK WARNING Fri Feb 05 13:59:36.412 2021 solClientSession.c:3609              (7fb51ccfe740) Session '(c0,s1)_vpn-poc-d1': Client Certificate Authentication is not supported on unsecured sessions
ERROR:: Error in craeting session sol client.

下面是实现POC代码。

代码语言:javascript
运行
复制
#include "os.h"
#include "../inc/solclient/solClient.h"
#include "../inc/solclient/solClientMsg.h"


  /*****************************************************************************
   * sessionMessageReceiveCallback
   *
   * The message receive callback function is mandatory for session creation.
   *****************************************************************************/
solClient_rxMsgCallback_returnCode_t
sessionMessageReceiveCallback(solClient_opaqueSession_pt opaqueSession_p, solClient_opaqueMsg_pt msg_p, void* user_p)
{
    return SOLCLIENT_CALLBACK_OK;
}

/*****************************************************************************
 * sessionEventCallback
 *
 * The event callback function is mandatory for session creation.
 *****************************************************************************/
void
sessionEventCallback(solClient_opaqueSession_pt opaqueSession_p,
    solClient_session_eventCallbackInfo_pt eventInfo_p, void* user_p)
{
}

/*****************************************************************************
 * main
 *
 * The entry point to the application.
 *****************************************************************************/
int main(int argc, char* argv[])
{

    /*if (argc > 1) {
        printf("Usage: TopicPublisher\n");
        return -1;
    }
*/

    /* Context */
    solClient_opaqueContext_pt context_p;
    solClient_context_createFuncInfo_t contextFuncInfo = SOLCLIENT_CONTEXT_CREATEFUNC_INITIALIZER;

    /* Session */
    solClient_opaqueSession_pt session_p;
    solClient_session_createFuncInfo_t sessionFuncInfo = SOLCLIENT_SESSION_CREATEFUNC_INITIALIZER;

    /* Session Properties */
    const char* sessionProps[40] = { 0, };
    int             propIndex = 0;

    /* Message */
    solClient_opaqueMsg_pt msg_p = NULL;
    solClient_destination_t destination;

    solClient_returnCode_t solReturnStatus = SOLCLIENT_OK;

    const char* text_p = "Hello World!!";

    /*************************************************************************
     * Initialize the API (and setup logging level)
     *************************************************************************/

     /* solClient needs to be initialized before any other API calls. */
    solReturnStatus = solClient_initialize(SOLCLIENT_LOG_DEFAULT_FILTER, NULL);
    if (solReturnStatus != SOLCLIENT_OK)
    {
        printf("ERROR:: Error in initiailizing sol client.\n");
        return -1;
    }
    printf("TopicPublisher initializing...\n");

    /*************************************************************************
     * Create a Context
     *************************************************************************/

     /*
      * Create a Context, and specify that the Context thread be created
      * automatically instead of having the application create its own
      * Context thread.
      */
    solReturnStatus = solClient_context_create(SOLCLIENT_CONTEXT_PROPS_DEFAULT_WITH_CREATE_THREAD,
        &context_p, &contextFuncInfo, sizeof(contextFuncInfo));
    if (solReturnStatus != SOLCLIENT_OK)
    {
        printf("ERROR:: Error in creating context sol client.\n");
        return -1;
    }

    /*************************************************************************
     * Create and connect a Session
     *************************************************************************/

     /*
      * Message receive callback function and the Session event function
      * are both mandatory. In this sample, default functions are used.
      */
    sessionFuncInfo.rxMsgInfo.callback_p = sessionMessageReceiveCallback;
    sessionFuncInfo.rxMsgInfo.user_p = NULL;
    sessionFuncInfo.eventInfo.callback_p = sessionEventCallback;
    sessionFuncInfo.eventInfo.user_p = NULL;

    /* Configure the Session properties. */
    propIndex = 0;

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_HOST;
    sessionProps[propIndex++] = argv[1];

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_VPN_NAME;
    sessionProps[propIndex++] = argv[2];

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_USERNAME;
    sessionProps[propIndex++] = argv[3];

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_PASSWORD;
    sessionProps[propIndex++] = argv[4];

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_SSL_VALIDATE_CERTIFICATE;
    sessionProps[propIndex++] = SOLCLIENT_PROP_ENABLE_VAL;

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_AUTHENTICATION_SCHEME;
    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_AUTHENTICATION_SCHEME_CLIENT_CERTIFICATE;

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_SSL_CLIENT_CERTIFICATE_FILE;
    sessionProps[propIndex++] = argv[5];

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_SSL_CLIENT_PRIVATE_KEY_FILE;
    sessionProps[propIndex++] = argv[6];

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_SSL_CLIENT_PRIVATE_KEY_FILE_PASSWORD;
    sessionProps[propIndex++] = argv[7];

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_REAPPLY_SUBSCRIPTIONS;
    sessionProps[propIndex++] = SOLCLIENT_PROP_ENABLE_VAL;

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_SSL_VALIDATE_CERTIFICATE;
    sessionProps[propIndex++] = SOLCLIENT_PROP_DISABLE_VAL;

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_SSL_EXCLUDED_PROTOCOLS;
    sessionProps[propIndex++] = "TLSv1.1";

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_RECONNECT_RETRIES;
    sessionProps[propIndex++] = "3";

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_CONNECT_RETRIES_PER_HOST;
    sessionProps[propIndex++] = "3";

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_SSL_VALIDATE_CERTIFICATE_DATE;
    sessionProps[propIndex++] = SOLCLIENT_PROP_DISABLE_VAL;

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_SSL_TRUST_STORE_DIR;
    sessionProps[propIndex++] = argv[8];

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_SSL_CIPHER_SUITES;
    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_SSL_CIPHER_TLS_RSA_WITH_AES_128_CBC_SHA;

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_SSL_TRUSTED_COMMON_NAME_LIST;
    sessionProps[propIndex++] = "TEST";

    sessionProps[propIndex++] = SOLCLIENT_SESSION_PROP_SSL_CONNECTION_DOWNGRADE_TO;
    sessionProps[propIndex++] = "PLAIN_TEXT";

    sessionProps[propIndex] = NULL;
    printf("Total Properties set = %d\n",propIndex);

    /* Create the Session. */
    solReturnStatus = solClient_session_create((char**)sessionProps,
        context_p,
        &session_p, &sessionFuncInfo, sizeof(sessionFuncInfo));
    if (solReturnStatus != SOLCLIENT_OK)
    {
        printf("ERROR:: Error in craeting session sol client.\n");
        return -1;
    }

    /* Connect the Session. */
    solReturnStatus = solClient_session_connect(session_p);

    if (solReturnStatus != SOLCLIENT_OK)
    {
        printf("ERROR:: Error in connecting to session sol client.\n");
        return -1;
    }
    printf("Connected.\n");

    /*************************************************************************
     * Publish
     *************************************************************************/

     /* Allocate memory for the message that is to be sent. */
    solClient_msg_alloc(&msg_p);

    /* Set the message delivery mode. */
    solClient_msg_setDeliveryMode(msg_p, SOLCLIENT_DELIVERY_MODE_DIRECT);

    /* Set the destination. */
    destination.destType = SOLCLIENT_TOPIC_DESTINATION;
    destination.dest = argv[9];
    solClient_msg_setDestination(msg_p, &destination, sizeof(destination));

    /* Add some content to the message. */
    solClient_msg_setBinaryAttachment(msg_p, text_p, (solClient_uint32_t)strlen((char*)text_p));

    /* Send the message. */
    printf("About to send message '%s' to topic '%s'...\n", (char*)text_p, argv[9]);
    solReturnStatus = solClient_session_sendMsg(session_p, msg_p);
    if (solReturnStatus != SOLCLIENT_OK)
    {
        printf("ERROR:: Error in sending data to topic.\n");
    }

    /* Free the message. */
    printf("Message sent. Exiting.\n");
    solReturnStatus = solClient_msg_free(&msg_p);
    if (solReturnStatus != SOLCLIENT_OK)
    {
        printf("ERROR:: Error in msg free sol client.\n");
    }

    /*************************************************************************
     * Cleanup
     *************************************************************************/

     /* Cleanup solClient. */
    solReturnStatus = solClient_cleanup();

    if (solReturnStatus != SOLCLIENT_OK)
    {
        printf("ERROR:: Error in cleanup sol client.\n");
    }

    return 0;
}

我可能使用了无效的证书,有没有办法从pubsub+ solace服务器获取正确的证书?

solace
EN

回答 1

Stack Overflow用户

发布于 2021-04-29 00:01:54

错误“客户端证书身份验证在不安全的会话上不受支持”意味着您正在使用纯文本连接,但尝试使用客户端证书进行身份验证,这是不受支持的。

这可能是因为您正在尝试连接到默认端口55555,这是一个明文端口。要解决此问题,请改用SSL端口。默认情况下,SMF SSL端口为55443。您还必须确保启用了此端口,并在代理端配置了服务器证书。代码片段中的所有其他配置看起来都是正确的。

票数 0
EN
页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:

https://stackoverflow.com/questions/66063045

复制
相关文章

相似问题

领券

腾讯云开发者

扫码关注腾讯云开发者

扫码关注腾讯云开发者

领取腾讯云代金券

热门产品

热门推荐

更多推荐

Copyright © 2013 - 2025 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有 

深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 深公网安备号 44030502008569

腾讯云计算(北京)有限责任公司 京ICP证150476号 |  京ICP备11018762号 | 京公网安备号11010802020287

问题归档专栏文章快讯文章归档关键词归档开发者手册归档开发者手册 Section 归档