1. 首页
  2. 问答
  3. 未来的InitializeSecurityContext失败 - 使用pycurl

未来的InitializeSecurityContext失败 - 使用pycurl

2014-12-29 16 views
0

我挣扎使用pycurl下面未来的InitializeSecurityContext失败 - 使用pycurl

curl "https://my.website.address.com" --key path\to\client_key.pem --cert path\to\client.crt --pass P4$$w0rD

到Python脚本这样的翻译命令SSL连接:

import pycurl 
     URL = "https://my.website.address.com" 
     KEY_PATH = "path\to\client_key.pem" 
     CERT_PATH = "path\to\client.crt" 
     CA_PATH = "path\to\curl-ca-bundle.crt" 
     USERNAME = "my_username" 
     PASSWORD = "P4$$w0rD" 

     c = pycurl.Curl() 
     c.setopt(pycurl.URL, URL) 
     c.setopt(pycurl.SSLKEY, KEY_PATH) 
     c.setopt(pycurl.PASSWORD, PASSWORD) 
     c.setopt(pycurl.SSLCERT, CERT_PATH) 
     c.setopt(pycurl.USERNAME, USERNAME) 
     c.setopt(pycurl.SSL_VERIFYHOST, 2) 
     c.setopt(pycurl.SSL_VERIFYPEER, True) 
     c.setopt(pycurl.CAINFO, CA_PATH) 
     c.setopt(pycurl.VERBOSE, True) 
     c.perform() 
     c.close()

因此,让我们同意,IP www.my.webiste.address.com的地址为667.667.667.667;)

我在运行脚本时总是得到这个错误:

* Hostname was NOT found in DNS cache 
* Trying 667.667.667.667... 
* Connected to my.webiste.address.com (667.667.667.667) port 443 (#0) 
* schannel: SSL/TLS connection with my.webiste.address.com port 443 (step 1/3) 
* schannel: checking server certificate revocation 
* schannel: sending initial handshake data: sending 204 bytes... 
* schannel: sent initial handshake data: sent 204 bytes 
* schannel: SSL/TLS connection with my.webiste.address.com port 443 (step 2/3) 
* schannel: failed to receive handshake, need more data 
* schannel: SSL/TLS connection with my.webiste.address.com port 443 (step 2/3) 
* schannel: encrypted data buffer: offset 1260 length 4096 
* schannel: encrypted data length: 1162 
* schannel: encrypted data buffer: offset 1162 length 4096 
* schannel: received incomplete message, need more data 
* schannel: SSL/TLS connection with my.webiste.address.com port 443 (step 2/3) 
* schannel: encrypted data buffer: offset 3157 length 4096 
* schannel: next InitializeSecurityContext failed: SEC_I_INCOMPLETE_CREDENTIALS (0x00090320) - The credentials supplied were not complete, and could not be verified. Additional information can be returned from the context. 
* Closing connection 0 
* schannel: shutting down SSL/TLS connection with my.webiste.address.com port 443 

Traceback (most recent call last): 
    File "C:/path/to/project/main.py", line 59, in <module> 
    main() 
    File "C:/path/to/project/main.py, line 51, in main 
    c.perform() 

pycurl.error: (35, 'schannel: next InitializeSecurityContext failed: SEC_I_INCOMPLETE_CREDENTIALS (0x00090320) - The credentials supplied were not complete, and could not be verified. Additional information can be returned from the context.') 

* schannel: clear security context handle 
* schannel: clear credential handle

你知道它应该如何正确看起来吗?

来源

2014-12-29 k667

+0

你有没有找到一个答案?我遇到类似的问题libcurl w/schannel通过C++ –

+0

我也有与C++使用libcurl相同的问题 ========= * schannel:加密的数据缓冲区:偏移2761长度16384 * schannel:next InitializeSecurityContext失败:SEC_I_INCOMPLETE_CREDENTIALS (0x00090320) - 所提供的凭据不完整,无法验证是否已验证 。其他信息可以从上下文返回。 * schannel:解密数据缓冲区:偏移量0长度16384 – sharrajesh

回答

0

问题,我发现在我自己的代码 -

相反client_key.c_str的()我是路过的client_key一个的std :: string;由于curl_easy_setopt是一个宏,所以编译得很好。不过,我应该已经传递了const char *。

=========================

if (RestClientClass::client_key.size()) { 
    curl_easy_setopt(curl, CURLOPT_SSLKEY, RestClientClass::client_key.c_str()); 
    curl_easy_setopt(curl, CURLOPT_SSLKEYTYPE, "PEM"); 
} 

if (RestClientClass::client_certificate.size()) { 
    curl_easy_setopt(curl, CURLOPT_SSLCERT, RestClientClass::client_certificate.c_str()); 
    curl_easy_setopt(curl, CURLOPT_SSLCERTTYPE, "PEM"); 
    curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, 0); 
    curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, 0); 
}

来源

2015-06-26 22:00:21 sharrajesh

相关问题

 相关问题