luasec/samples/verify/client.lua

--
-- Public domain
--
local socket = require("socket")
local ssl    = require("ssl")

local params = {
   mode = "client",
   protocol = "tlsv1_2",
   key = "../certs/serverBkey.pem",
   certificate = "../certs/serverB.pem",
   cafile = "../certs/rootB.pem",
   verify = {"peer", "fail_if_no_peer_cert"},
   verifyext = {"lsec_continue", "lsec_ignore_purpose"},
   options = "all",
}

local ctx = assert(ssl.newcontext(params))

local peer = socket.tcp()
peer:connect("127.0.0.1", 8888)

peer = assert( ssl.wrap(peer, ctx) )
assert(peer:dohandshake())

local succ, errs = peer:getpeerverification()
print(succ, errs)
for i, err in pairs(errs) do
  for j, msg in ipairs(err) do
    print("depth = " .. i, "error = " .. msg)
  end
end

print(peer:receive("*l"))
peer:close()
LuaSec 20120616 (unofficial) + patches 2013-03-30 13:21:40 +01:00			`--`
			`-- Public domain`
			`--`
			`local socket = require("socket")`
			`local ssl = require("ssl")`

			`local params = {`
			`mode = "client",`
Update samples. 2015-11-20 22:12:19 +01:00			`protocol = "tlsv1_2",`
LuaSec 20120616 (unofficial) + patches 2013-03-30 13:21:40 +01:00			`key = "../certs/serverBkey.pem",`
			`certificate = "../certs/serverB.pem",`
			`cafile = "../certs/rootB.pem",`
			`verify = {"peer", "fail_if_no_peer_cert"},`
Examples update. 2014-01-29 20:47:27 +01:00			`verifyext = {"lsec_continue", "lsec_ignore_purpose"},`
Update samples. 2015-11-20 22:12:19 +01:00			`options = "all",`
LuaSec 20120616 (unofficial) + patches 2013-03-30 13:21:40 +01:00			`}`

			`local ctx = assert(ssl.newcontext(params))`

			`local peer = socket.tcp()`
			`peer:connect("127.0.0.1", 8888)`

			`peer = assert( ssl.wrap(peer, ctx) )`
			`assert(peer:dohandshake())`

			`local succ, errs = peer:getpeerverification()`
			`print(succ, errs)`
			`for i, err in pairs(errs) do`
			`for j, msg in ipairs(err) do`
			`print("depth = " .. i, "error = " .. msg)`
			`end`
			`end`

			`print(peer:receive("*l"))`
			`peer:close()`