cURL / Mailing Lists / curl-library / Single Mail

curl-library

step 0 of simplessl.c

From: Dennis Clarke <dclarke_at_blastwave.org>
Date: Sat, 23 Feb 2013 15:48:10 -0500

Good day to libcurl.

One of my plans this year is to get up to speed on the usage of libcurl for all things that
require a network connection to a remote site. Problem is, I have to start from step zero
and am fine with looking like a n00b, uneducated and often wrong. No pride here.

Therefore I started with the example at http://curl.haxx.se/libcurl/c/simplessl.html which
states :

/* some requirements for this to work:
   1. set pCertFile to the file with the client certificate
   2. if the key is passphrase protected, set pPassphrase to the
        passphrase you use
   3. if you are using a crypto engine:
   3.1. set a #define USE_ENGINE
   3.2. set pEngine to the name of the crypto engine you use
   3.3. set pKeyName to the key identifier you want to use
   4. if you don't use a crypto engine:
   4.1. set pKeyName to the file name of your client key
   4.2. if the format of the key file is DER, set pKeyType to "DER"

   !! verify of the server certificate is not implemented here !!

   **** This example only works with libcurl 7.9.3 and later! ****

*/

OKay, I currently have :

$ which curl
/usr/local/bin/curl
$
$ curl --version
curl 7.28.1 (sparc-sun-solaris2.10) libcurl/7.28.1 OpenSSL/0.9.7d zlib/1.2.7 libidn/1.26
Protocols: dict file ftp ftps gopher http https imap imaps ldap ldaps pop3 pop3s rtsp smtp smtps telnet tftp
Features: IDN IPv6 Largefile NTLM NTLM_WB SSL libz
$

However, right away this sample code says I need a client certificate?

Do I need to go to verisign and get one of theirs or can I use openssl to gen my own and
that will be fine?

Does this client cert file , a pem file format I am guessing but please correct me if I am wrong,
have to be created based on some server cert that I made for my own local Apache server?

Can I gen a client cert from my existing Verisign/Norton Apache server SSL cert ?

Am I totally lost already ?

Thank you in advance for any hints, suggestions or bricks to the head.

Dennis

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2013-02-23

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: step 0 of simplessl.c"
Previous message: Guenter: "Re: Static linking with mingw without msys (7.29)"
Next in thread: Daniel Stenberg: "Re: step 0 of simplessl.c"
Reply: Daniel Stenberg: "Re: step 0 of simplessl.c"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]