Enable SSL in goAhead web server

最新推荐文章于 2022-05-29 12:38:23 发布
最新推荐文章于 2022-05-29 12:38:23 发布
阅读量901 收藏
点赞数
CC 4.0 BY-SA版权
分类专栏: ssl goahead 文章标签: ssl server web exception library encryption
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.youkuaiyun.com/rx_wen/article/details/5702729

goAhead web server comes with internal ssl support. It's disabled by default, and I haven't seen a tutorial around this topic on the web. So here is the my adventure of enabling it.

Difficulties with goAhead
According to the goAhead's feature page, ssl is fully supported. But it's not so convienent to enable it. The downloaded source package doesn't include the source code of the ssl library that it depends it. Even the distribution package (header file and library file) isn't there.
If we trun the macro WEBS_SSL_SUPPORT definition on, what we get eventually is compilcation error. You may see the error of type SSL isn't defined.
Then we can see there is a mocana project file, so we guess go ahead is using mocana library. And now problem comes, mocana is a comerical product and it's not freely available.

Use openssl instead
Luckily, we found there was a macro named OPENSSL. It's a symbol of openssl can be an alternative option here.
Looking deeply inside the code, we can see that goAhead provides a abstract layer above the underlying ssl library. So that we can change the implementaion easily. See? It's a typical usage of adapter design pattern.
We downloaded the openssl source, compile a linux version binary set. The openssl is a powerful ssl tool set. In addition to the ssl library itself, it also contains several utility tools. Within those tools, openssl is a useful terminal tool. It can act as a ssl server, ssl client, and certificate file generator.
What's specifically useful is we can generate and sign certificate file with it and use them to test our server. This page tells how to generate and sign certificates.
In goAhead's code, it uses three certificate files.
privkey.pem : the private key
cacert.pem : the certificate
server.pem : A combination of private key and cacert. The first part of its content is privkey.pem and the second part is cacert.pem.

Having got those files, we changed the makefile to define WEBS_SSL_SUPPORT and OPENSSL macro to enable ssl. Compiled again and run.

How to visit
The goAhead web server listens on a differnt port for incoming secure connection. The port is defined as SSL_PORT macro n in websSSL.c with default value 433. To test, open the browser and visit https://address:SSL_PORT .
Since we used a self signed certificates, the firefox won't allow access to it. We have to add our site to firefox exception list from "tools - advanced - encryption - view certificates - add exception" .
22、Appendix B: Acronyms - A Comprehensive Guide for IT Professionals
qsc9012345的博客
06-07 23
This comprehensive guide explores the most common IT acronyms relevant to CompTIA A+ certification and beyond. It covers hardware, networking, operating systems, security, troubleshooting tools, and advanced technologies such as cloud computing and softwar
使用libwebsocket搭建websocket服务器实例
xiyuan255的博客
07-07 4038
#include <libwebsockets.h> #include <pthread.h> #include <string.h> #define MAX_PAYLOAD_SIZE (4096) /** 开启确认才有重发的机制 */ typedef struct comm_packet { void *content; /* is m...
GoAhead移植且启用SSL.zip
10-08
这是GoAhead移植且启用SSL的文档,自己可以动手实践,里面已经包含需要的用到的其它资源,比如源码等。
解决问题中 keyword: goahead ssl arm
huanghuibo的专栏
11-26 5332
<br />我已将openssl移植到arm板中,webserver使用的是GoAhead webserver, <br />webserver运行成功加载证书及key文件,IE可以下载证书,但是打不开web页面。 <br />用openssl测试打印信息如下: <br />F:/Software/OpenSSL>openssl s_client -connect 138.1.60.1:443 -state <br />Loading 'screen' into random state - done <b
goahead使用matrix支持ssl错误解决 goahead2.5,matrix-3.1.3下载
jk110333的专栏
05-29 3662
今天尝试编译了goahead,看到goahead文档里面有关于用matrix支持ssl,文档中要求的matrix版本为3.1.2,但是官网上愣是没找到这个版本的下载的 所以下载了最新的3.4.2,修改了makefile,编译结果使用的时候出现下面的错误! root@jack-desktop:~/software/webs-2-5/LINUX# make cc -c -o ../matrix
Goahead下支持https
Jywlinux的专栏
08-22 2976
环境: 在IP 话机中配置文件从网页下载,使其支持ju
转载goahead webserver源码分析
weixin_30364325的博客
02-02 257
1.一个txt文本架构图 main() | |--websOpenServer() | |-- websOpenListen() | |--socketOpenConnection() |...
嵌入式web服务器之mongoose和goahead
qq_34934140的博客
11-12 2580
mongoose官网:https://cesanta.com/docs/overview/intro.html 一、mongoose简介 Mongoose是一个web服务器,通过提供一个web接口给它,它可以嵌入到现有的应用程序中去。Mongooseweb服务器的执行是自满足的,它不依赖于任何其他服务。 如果你将它复制到任何目录并执行,它将将启动web服务并将当前目录作为主目录、端口号是8080。...
goahead-3.6.3
10-03
GoAhead Web服务器详解与应用》 GoAhead是一款轻量级、嵌入式的Web服务器,由Esmertec公司开发,适用于各种嵌入式设备和系统。本文将深入探讨GoAhead 3.6.3版本的特性、安装过程以及在Windows 7上的运行和配置...
zabbix3.4 server、proxy安装配置优化、数据库分区
田小胖爸爸
09-11 6350
1.安装zabbix3.4所需要的依赖包 yum -y install gcc gcc-c++ autoconf httpd php mysql php-mysql httpd-manual mod_ssl mod_perl mod_auth_mysql php-gd php-xml php-mbstring php-ldap php-pear php-xmlrpc php-bcmath my
nginx https protocol requires SSL support in 解决SSL不支持
热门推荐
zx1323的博客
12-29 2万+
在配置反向代理到  https的网站时,编辑配置文件报错,无法启动nginx,一番google之后,才知道是当初编译的时候没有启用SSL支持 解决方案: 在编译的时候 需要配置 ssl支持 ./configure --prefix=/usr/local/nginx --with-http_ssl_module 个人的安装nginx记录:http://blog.csdn.ne
websocket 和SSL浅析
chituhuan的专栏
04-27 2万+
1 WebSocket 原理1.1 背景WebSocket 是基于Http 协议的改进,Http 为无状态协议,基于短连接,需要频繁的发起请求,第二 Http 只能客户端发起请求,服务端无法主动请求。1.2 相同点都是基于TCP的应用层协议。 都使用Request/Response模型进行连接的建立。 在连接的建立过程中对错误的处理方式相同,在这个阶段WS可能返回和HTTP相同的返回码。 都可
使用goahead搭建https服务器的实例
xiyuan255的博客
07-07 2417
webcomm与前端的通讯-goahead服务器流程图 #ifndef __CET_WEBCOMM_H__ #define __CET_WEBCOMM_H__ // 0x0000FFFF typedef enum eWebSubOptionType { WSOT_DASHBOARD = 0X00000001, WSOT_INTERFACE = 0X00000002, WSOT...
goahead-4.0.2
QCZL_CC的博客
07-20 1996
源码下载 goahead源码 git clone http://github.com/embedthis/goahead https://www.embedthis.com/goahead/ Makeme源码 git clone https://github.com/embedthis/makeme.g...
嵌入式web server——Goahead启用SSL
derr96677169的博客
12-31 923
前言 之前已经介绍过如何把goahead移植到linux平台,现在再介绍goahead应用SSL的一些关键要点。因为此博文是继承于上一篇关于移植的博文,有不明白的请先回看。移植篇点这里。 移植环境 goahead-3.4.9 arm + linux 2.6,交叉编译器arm-uclibc-gcc 移植要点 1、把me.h中和SSL相关的两个宏置为1。 #de...
goahead 认证方式
l821829886的专栏
02-20 4454
最近在修改goahead的认证方式,有点感悟。 根据最新官方文档的介绍,goahead有三种认证方式:分别为basic认证、摘要认证以及表单认证; basic认证以及摘要认证方式的验证入口为IE弹出的401验证框,与一般的web登入界面相比不美观,很难满足客户要求;其中表单认证应该可以做到传统的web界面登入,但是只有3.x版本之上才能使用,官方文档只介绍了一些配置信息、代码提示也不多,未仔细
GoAhead学习笔记
m0_43392334的博客
11-05 1万+
一、系统环境 GoAhead: 官网下载源码:https://www.embedthis.com/goahead/download.html 官方文档:https://www.embedthis.com/goahead/doc/ 系统平台:Ubuntu 18.04 :https://www.ubuntu.com/download/desktop/thank-you?country=CN&a...
GoAhead_UserGuide_2
wjjontheway的专栏
05-29 827
文章目录1.CGI Programs2.User Authentication2.1 Authentication Schemes2.2 Configuration2.2.1 Authorization Configuration2.2.2 Routing3 Form Authentication3.1Secure Form-based Authentication3.2 Redirect over SSL3.3 Unauthenticated Accdess to the Login Page3.4 Th
"Oracle WebServer教程:详细讲解与实时更新
The various components of Oracle WebServer work together to enable the delivery of both static and dynamic information. The components of Oracle WebServer include the Oracle Web Listener, which ...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值