[asterisk-dev] SIP/TLS intermediate certificates

Stefan Tichy asterisk2 at pi4tel.de
Tue Oct 19 07:59:16 CDT 2010


Several CA's use intermediate certificates and currently this is not
supported by Asterisk.

Asterisk (1.6.2.13, 1.8.0-rc5) uses SSL_CTX_use_certificate_file
(./main/tcptls.c) to read the file specified by tlscertfile in sip.conf.
Manual page SSL_CTX_use_certificate(3SSL) includes the information
that SSL_CTX_use_certificate_chain_file should be preferred.

To me it looks like ist would be sufficient to replace this function
call in ./main/tcptls.c . Is this correct?


Thanks in advance

-- 
Stefan Tichy  ( asterisk2 at pi4tel dot de )



More information about the asterisk-dev mailing list