Fatal编程技术网
  • iphone/
  • iphone中的ssl套接字是否可能?

iphone中的ssl套接字是否可能?

iphone objective-c sockets ssl

iphone中的ssl套接字是否可能?,iphone,objective-c,sockets,ssl,Iphone,Objective C,Sockets,Ssl,在我的iPhone应用程序中,我想连接我的SSL服务器套接字(Java)。我有自己的证书。我正在尝试将它添加到我的应用程序中,但我不知道如何操作 如果没有SSL,通信将正常工作: @interface ViewController () @end @implementation ViewController @synthesize openResponse; @synthesize general; @synthesize response = _response; - (void)vi

在我的iPhone应用程序中,我想连接我的SSL服务器套接字(Java)。我有自己的证书。我正在尝试将它添加到我的应用程序中,但我不知道如何操作

如果没有SSL,通信将正常工作:

@interface ViewController ()

@end

@implementation ViewController
@synthesize openResponse;
@synthesize general; 
@synthesize response = _response;

- (void)viewDidLoad
{
 [super viewDidLoad];
// Do any additional setup after loading the view, typically from a nib.
}

- (void)viewDidUnload
{ 
[self setOpenResponse:nil];
[self setGeneral:nil];
[super viewDidUnload];
// Release any retained subviews of the main view.
}

 - (BOOL)shouldAutorotateToInterfaceOrientation:(UIInterfaceOrientation)interfaceOrientation
{
return (interfaceOrientation != UIInterfaceOrientationPortraitUpsideDown);
}

- (IBAction)open:(id)sender {
    [self initNetworkCommunication];


Byte sendBuffer[4];
sendBuffer[0]=0x6b;
sendBuffer[1]=0x6f;
sendBuffer[2]=0x6c;
sendBuffer[3]=0x61;

[outputStream write:sendBuffer maxLength:4];
 }


- (void)initNetworkCommunication{

CFReadStreamRef readStream;
CFWriteStreamRef writeStream;
CFStreamCreatePairWithSocketToHost(NULL, (CFStringRef)@"mypage.com", 4444, &readStream, &writeStream);
inputStream = (__bridge NSInputStream *)readStream;
outputStream = (__bridge NSOutputStream *) writeStream;
[inputStream setDelegate:self];
[outputStream setDelegate:self];
[inputStream scheduleInRunLoop:[NSRunLoop currentRunLoop] forMode:NSDefaultRunLoopMode];
[outputStream scheduleInRunLoop:[NSRunLoop currentRunLoop] forMode:NSDefaultRunLoopMode];
[inputStream open];
[outputStream open];

}

- (void)stream:(NSStream *)theStream handleEvent:(NSStreamEvent)streamEvent
{
 switch (streamEvent) {

    case NSStreamEventOpenCompleted: {
        NSLog(@"Stream opened");

        break;
    }

    case NSStreamEventHasBytesAvailable: {
        NSLog(@"Data!");

        if (theStream == inputStream) {

            uint8_t buffer[1024];
            int len;

            while ([inputStream hasBytesAvailable]) {
                len = [inputStream read:buffer maxLength:sizeof(buffer)];
                if (len > 0) {

                    NSString *output = [[NSString alloc] initWithBytes:buffer length:len encoding:NSASCIIStringEncoding];

                    if (nil != output) {
                        NSLog(@"server said: %@", output);
                        self.response = output;
                        NSString *responseData =[[NSString alloc] initWithFormat:@"El servidor dice: %@",self.response];
                        self.openResponse.text = responseData;
                    }
                }
            }
        }
        break;

        break;
    }


    case NSStreamEventErrorOccurred: {
        NSLog(@"Can not connect to the host!");

        break;
    }
    case NSStreamEventEndEncountered: {
        NSLog(@"End encountered");

        break;
    }
    default:
        NSLog(@"Unknown event");
        break;
}
}

@end
如何将我的证书添加到此代码中?

是的,如果您使用的是HTTP(如您的主机名“my page.com”所示),请查看此帖子:
使用NSURLClass将大大简化您的总体设计。

我也在解决与此问题相同的问题。 也许,这个URL和我的代码可以帮助你。 但我的代码不确定

  • 网址:

  • 代码

    • 我想看看这个。不,它不是HTTP,它只是一个TCP套接字,正如您所看到的,端口是4444而不是8044。端口独立于协议。我真的是在推断,除非您的特定需求另有规定,否则您可能可以使用HTTP。使用自己的协议可能很棘手。 
    NSData *pkcs12data = [[NSData alloc] initWithContentsOfFile:[[NSBundle mainBundle] pathForResource:@"EGNF9784" ofType:@"pfx"]];
CFDataRef inPKCS12Data = (CFDataRef)pkcs12data;

CFStringRef password = CFSTR("enblinkPass");
const void *keys[] = { kSecImportExportPassphrase };
const void *values[] = { password };        
CFDictionaryRef options = CFDictionaryCreate(NULL, keys, values, 1, NULL, NULL);

CFArrayRef items = CFArrayCreate(NULL, 0, 0, NULL);

OSStatus securityError = SecPKCS12Import(inPKCS12Data, options, &items);        
CFRelease(options);     
CFRelease(password);        
[pkcs12data release];

if(securityError == errSecSuccess) 
    NSLog(@"Success opening p12 certificate.");

CFDictionaryRef identityDict = CFArrayGetValueAtIndex(items, 0);
SecIdentityRef myIdent = (SecIdentityRef)CFDictionaryGetValue(identityDict,
                                                              kSecImportItemIdentity);


SecIdentityRef  certArray[1] = { myIdent };
CFArrayRef myCerts = CFArrayCreate(NULL, (void *)certArray, 1, NULL);

NSMutableDictionary *settings = [NSMutableDictionary dictionaryWithCapacity:3];

[settings setObject:[NSNumber numberWithBool:YES] forKey:(NSString *)kCFStreamSSLAllowsExpiredRoots];

[settings setObject:[NSNumber numberWithBool:YES] forKey:(NSString *)kCFStreamSSLAllowsExpiredCertificates];

[settings setObject:[NSNumber numberWithBool:YES] forKey:(NSString *)kCFStreamSSLAllowsAnyRoot];

[settings setObject:[NSNumber numberWithBool:NO] forKey:(NSString *)kCFStreamSSLValidatesCertificateChain];

[settings setObject:[NSString stringWithFormat:@"%@:%hu",host,port] forKey:(NSString *)kCFStreamSSLPeerName];

[settings setObject:(NSString *)kCFStreamSocketSecurityLevelNegotiatedSSL forKey:(NSString*)kCFStreamSSLLevel];

[settings setObject:(NSString *)kCFStreamSocketSecurityLevelNegotiatedSSL forKey:(NSString*)kCFStreamPropertySocketSecurityLevel];

[settings setObject:(id)myCerts forKey:(NSString *)kCFStreamSSLCertificates];

[settings setObject:[NSNumber numberWithBool:YES] forKey:(NSString *)kCFStreamSSLIsServer];