[asterisk-dev] SIP/TLS intermediate certificates

Klaus Darilion klaus.mailinglists at pernau.at
Tue Oct 19 09:11:59 CDT 2010

Usually it also works to put intermadiate files (the whole chain) into 
the client certificate file (just append all the certificates)


Am 19.10.2010 14:59, schrieb Stefan Tichy:
> Several CA's use intermediate certificates and currently this is not
> supported by Asterisk.
> Asterisk (, 1.8.0-rc5) uses SSL_CTX_use_certificate_file
> (./main/tcptls.c) to read the file specified by tlscertfile in sip.conf.
> Manual page SSL_CTX_use_certificate(3SSL) includes the information
> that SSL_CTX_use_certificate_chain_file should be preferred.
> To me it looks like ist would be sufficient to replace this function
> call in ./main/tcptls.c . Is this correct?
> Thanks in advance

More information about the asterisk-dev mailing list