gSOAP - 如何使用SSL和自签名证书

时间:2013-10-07 09:23:45

标签: c++ soap openssl ssl-certificate gsoap

我需要将我的跨平台程序连接到SOAP Web服务。我已经编译了gSOAP工具wsdl2h和soapcpp2,并且使用这些工具我从.wsdl文件生成了源代码文件。我已经在stdsoap2.h中定义了#34; #define WITH_OPENSSL"并以这种方式使用SSL。问题是,当我呼叫服务时,呼叫返回ERROR 30,这意味着SSL错误,但我不知道究竟是什么问题。我知道服务器发送自签名证书,因为这是一个测试环境。实际上打印出与此相关的错误消息。输出是:

Creating SOAP objects ...
Calling SOAP httpAccessService:
SSL verify error or warning with certificate at depth 0: self signed certificate
certificate issuer /C=IT/ST=Milan/L=Milan/O=Company/OU=Company/CN=company.it
certificate subject /C=IT/ST=Milan/L=Milan/O=Company/OU=Company/CN=company.it
SOAP ERROR 30

我用来调用服务的功能是:

void gSOAPTesting :: runTest() {     int result = 0;     size_t requestSize;     size_t responseSize; 

char endpoint[1024];
char buffer[8192];

string SoapAction;
struct soap *soap_container; 

ApplicationConfigurationServiceSoapBindingProxy Proxy1;

_ns1__httpAccessService *httpAccessService;
_ns1__httpAccessServiceResponse *httpAccessServiceResponse;

printf("Creating SOAP objects ...\n");
soap_container = soap_new();
//soap_container->mode   
httpAccessService = (_ns1__httpAccessService *) soap_instantiate(soap_container , SOAP_TYPE___ns1__httpAccessService , "" , "" , &requestSize);
httpAccessServiceResponse = (_ns1__httpAccessServiceResponse *) soap_instantiate(soap_container , SOAP_TYPE___ns1__httpAccessService , "" , "" , &responseSize);

soap_ssl_init(); /* init OpenSSL (just once) */

if(soap_ssl_client_context(soap_container ,
SOAP_SSL_DEFAULT ,
NULL,
NULL,
NULL,
NULL,
NULL     
) != SOAP_OK)
{
   printf("SOAP SSL Initialization Failure\n");  
   soap_print_fault(soap_container , stderr);
   return ;
}  

printf("Calling SOAP httpAccessService:\n");

SoapAction.clear();
SoapAction.append(SOAP_NAMESPACE_OF_ns1);
SoapAction.append("/");
SoapAction.append("httpAccessService");    

result = Proxy1.httpAccessService("https://XXX.XXX.XXX.XXX:XXXX" , NULL , httpAccessService , httpAccessServiceResponse);

if(result == SOAP_OK)
{
    printf("SOAP OK\n");                         
}
else
{
    printf("SOAP ERROR %d\n" , result);

    if(soap_check_state(soap_container) ) printf("Error: request soap struct not initialized\n");

    if(httpAccessService->soap == NULL)
    {
        printf("Error: NULL request SOAP struct\n");   
        return;                          
    }

    if(httpAccessService->soap->endpoint == NULL) printf("Error: Empty request endpoint\n");

    soap_stream_fault(soap_container , std::cout);        
}

}

感谢任何帮助。

2 个答案:

答案 0 :(得分:1)

问题与不受信任的证书有关,因为它是自签名的。如果我在 stdsoap2.cpp ...

中评论这些行 
if (!ok)
{ soap_set_sender_error(soap, "SSL/TLS error", "SSL/TLS certificate host name mismatch in tcp_connect()", SOAP_SSL_ERROR);
  soap->fclosesocket(soap, sk);
  return SOAP_INVALID_SOCKET;
}

......证书即使是由未知机构签发也会被接受。

答案 1 :(得分:1)

if(soap_ssl_client_context(& soap,                 SOAP_SSL_NO_AUTHENTICATION,                 NULL,NULL,                 NULL,/ * ```````````````````````````````` * /                 NULL,NULL)!= SOAP_OK)     {

如果您可以忽略主机,您可以执行上述操作,而不是在生成的文件中添加内容

相关问题
最新问题