通过https下载文件时出现SSL错误
我需要从下载quicklisp.lisp的最新版本 首先,我在代码中使用常见的lisp库usocket和cl+ssl尝试下载html页面,它可以正常工作通过https下载文件时出现SSL错误,ssl,https,common-lisp,Ssl,Https,Common Lisp,我需要从下载quicklisp.lisp的最新版本 首先,我在代码中使用常见的lisp库usocket和cl+ssl尝试下载html页面,它可以正常工作 (usocket:with-client-socket (sock stream "quicklisp.org" 443) (let ((https (cl+ssl:make-ssl-client-stream stream :unwrap-stream-p t :extern
(usocket:with-client-socket (sock stream "quicklisp.org" 443)
(let ((https (cl+ssl:make-ssl-client-stream
stream :unwrap-stream-p t
:external-format '(:iso-8859-1 :eol-style :lf))))
(unwind-protect
(progn
(format https "GET /beta/ HTTP/1.0~%Host:www.quicklisp.org~%Connection:keep-alive~2%")
(force-output https)
(loop for line = (read-line https nil)
while line do (format t "HTTPS> ~a~%" line)))
(close https))))
(usocket:with-client-socket (sock stream "beta.quicklisp.org" 443)
(let ((https (cl+ssl:make-ssl-client-stream
stream :unwrap-stream-p t
:external-format '(:iso-8859-1 :eol-style :lf))))
(unwind-protect
(progn
(format https "GET /quicklisp.lisp HTTP/1.1~%Host:beta.quicklisp.org~%Connection:keep-alive~%Accept: */*~2%")
(force-output https)
(loop for line = (read-line https nil)
while line do (format t "HTTPS> ~a~%" line)))
(close https))))
A failure in the SSL library occurred on handle #.(SB-SYS:INT-SAP #X7FFFDC019A80) (return code: 1).
SSL error queue:
error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure
[Condition of type CL+SSL::SSL-ERROR-SSL]
Restarts:
0: [RETRY] Retry SLIME interactive evaluation request.
1: [*ABORT] Return to SLIME's top level.
2: [ABORT] abort thread (#<THREAD "worker" RUNNING {10088E6223}>)
Backtrace:
0: (CL+SSL::SSL-SIGNAL-ERROR #.(SB-SYS:INT-SAP #X7FFFDC019A80) #<FUNCTION CL+SSL::SSL-CONNECT> 1 -1)
Locals:
ERROR-CODE = 1
HANDLE = #.(SB-SYS:INT-SAP #X7FFFDC019A80)
ORIGINAL-ERROR = -1
SYSCALL = #<FUNCTION CL+SSL::SSL-CONNECT>
1: (CL+SSL:MAKE-SSL-CLIENT-STREAM #<unavailable lambda list>)
[No Locals]
2: ((LAMBDA ()))
3: (SB-INT:SIMPLE-EVAL-IN-LEXENV (USOCKET:WITH-CLIENT-SOCKET (SOCK STREAM "beta.quicklisp.org" 443) (LET (#) (UNWIND-PROTECT # #))) #<NULL-LEXENV>)
4: (EVAL (USOCKET:WITH-CLIENT-SOCKET (SOCK STREAM "beta.quicklisp.org" 443) (LET (#) (UNWIND-PROTECT # #))))
5: ((LAMBDA NIL :IN SWANK:INTERACTIVE-EVAL))
句柄#(SB-SYS:INT-SAP#X7FFFDC019A80)(返回代码:1)上的SSL库发生故障。
SSL错误队列:
错误:14077410:SSL例程:SSL23\u GET\u SERVER\u HELLO:sslv3警报握手失败
[CL+SSL类型的条件::SSL-ERROR-SSL]
重新启动:
0:[重试]重试SLIME交互式评估请求。
1:[*中止]返回SLIME的顶层。
2:[中止]中止线程(#)
回溯:
0:(CL+SSL::SSL-SIGNAL-ERROR#(SB-SYS:INT-SAP#X7FFFDC019A80)#1-1)
当地人:
错误代码=1
句柄=#(SB-SYS:INT-SAP#X7FFFDC019A80)
原始错误=-1
系统调用=#
1:(CL+SSL:MAKE-SSL-CLIENT-STREAM#)
[没有本地人]
2:((LAMBDA()))
3:(SB-INT:SIMPLE-EVAL-IN-lexev(USOCKET:WITH-CLIENT-SOCKET(SOCK STREAM“beta.quicklisp.org”443)(LET(#)(UNWIND-PROTECT#)#)
4:(EVAL(USOCKET:WITH-CLIENT-SOCKET(SOCK STREAM“beta.quicklisp.org”443)(LET(#)(UNWIND-PROTECT#))
5:((LAMBDA NIL:IN-SWANK:INTERACTIVE-EVAL))
我知道还有另一个常见的lisp库,drakma可以在这里做我需要的事情。但我只是好奇为什么我的方法会失败?我不熟悉common lisp中的SSL是如何工作的,但从中可以看出,
beta.quicklistp.orgquicklistp.orgFunction CL+SSL:MAKE-SSL-CLIENT-STREAM
(fd-or-stream &key
external-format certificate key password close-callback
(unwrap-streams-p t)
hostname
)
...
hostname if specified, will be sent by client during TLS negotiation,
according to the Server Name Indication (SNI) extension to the TLS.
除此之外:
您正在执行
HTTP/1.1HTTP/1.1HTTP/1.0Connection:keep aliveConnection:keep aliveHTTP/1.1(usocket:with-client-socket (sock stream "beta.quicklisp.org" 443)
(let ((https (cl+ssl:make-ssl-client-stream
stream :unwrap-stream-p t
:external-format '(:iso-8859-1 :eol-style :lf)
:hostname "beta.quicklisp.org")))
(unwind-protect
(progn
(format https "GET /quicklisp.lisp HTTP/1.0~%Host:beta.quicklisp.org~%Accept: */*~2%")
(force-output https)
(loop for line = (read-line https nil)
while line do (format t "HTTPS> ~a~%" line)))
(close https))))
谢谢,Steffen。你能用
curlHTTP/1.0HTTP/1.1