cURL无法在本地服务器中使用客户端证书 [英] cURL is unable to use client certificate , in local server

问题描述

我使用XAMPP设置了本地服务器。我有两个php脚本，发送者和接收者。我尝试使用HTTP over SSL（HTTPS）从发件人发送XML文件到接收者。

I set up a local server using XAMPP. I have two php scripts , a sender and a receiver. I am trying to send an XML file from the sender to the receiver using HTTP over SSL (HTTPS).

我创建了一个自签名证书，我配置XAMPP和我使用发件人上的此代码：

I created a self signed certificate , i configured XAMPP and i use this code on my sender :

<?php
  /*
   * XML Sender/Client.
   */
  // Get our XML. You can declare it here or even load a file.


  $xml = file_get_contents("data.xml");

  // We send XML via CURL using POST with a http header of text/xml.
  $ch = curl_init();

  //curl_setopt($ch, CURLOPT_SSLVERSION,3);

  curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, true);
  curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2);

  curl_setopt($ch, CURLOPT_CAINFO,  getcwd().'ipm.crt');
  curl_setopt($ch, CURLOPT_SSLCERT, getcwd().'ipm.pem');

  curl_setopt($ch, CURLOPT_SSLCERTPASSWD,'pass');

  //i use this line only for debugging through fiddler. Must delete after done with debugging.
  curl_setopt($ch, CURLOPT_PROXY, '127.0.0.1:8888');

  // set URL and other appropriate options
  curl_setopt($ch, CURLOPT_URL, "https://ipv4.fiddler/iPM/receiver.php");
  curl_setopt($ch, CURLOPT_HTTPHEADER, array('Content-Type: text/xml'));
  curl_setopt($ch, CURLOPT_HEADER, 0);
  curl_setopt($ch, CURLOPT_POST, 1);
  curl_setopt($ch, CURLOPT_POSTFIELDS, $xml);
  curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 0);
  curl_setopt($ch, CURLOPT_REFERER, 'https://ipv4.fiddler/iPM/receiver.php');
  curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  $ch_result = curl_exec($ch);
  echo "Result = ".$ch_result;

  echo 'Curl error: ' . curl_error($ch);

  curl_close($ch);
  // Print CURL result.
?>

但是我总是得到这个错误： Curl错误：无法使用客户端证书（没有找到密钥或错误的密码短语？）

However i always get this error : Curl error: unable to use client certificate (no key found or wrong pass phrase?)

我可能做错什么？密码短语是 pass 。

What can i possibly do wrong? The passphrase IS the word pass .

我通过执行以下操作创建了.crt：

I created my .crt by doing :

openssl req -config openssl.cnf -new -out ipm.csr -keyout ipm.pem

openssl rsa -in ipm.pem -out ipm.key

openssl x509 -in ipm.csr -out ipm.crt -req -signkey ipm.key -days 365

我不想将SSL_VERIFYPEER和SSL_VERIFYHOST设置为false。

I dont want to put the SSL_VERIFYPEER and SSL_VERIFYHOST to false.

推荐答案

p>尝试交换文件：

curl_setopt($ch, CURLOPT_CAINFO, getcwd().'ipm.pem');
curl_setopt($ch, CURLOPT_SSLCERT, getcwd().'ipm.crt');

我怀疑你错了。

这篇关于cURL无法在本地服务器中使用客户端证书的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！