Make TLS client cert/key file optional #601

smititelu · 2022-12-06T08:56:46Z

Allow start of sipp TLS client, without a mandatory cert/key.

related to #569

wdoekes · 2022-12-06T09:09:26Z

src/sslsocket.cpp

+
+    if (SSL_CTX_use_PrivateKey_file(sip_trp_ssl_ctx,
+                                     tls_key_name,
+                                     SSL_FILETYPE_PEM) != 1) {


For indentation all the way to the right, please indent exactly to after the (, like above.

wdoekes · 2022-12-06T09:10:13Z

src/sslsocket.cpp

-        ERR_error_string_n(ERR_get_error(), errbuf, sizeof(errbuf));
-        ERROR("TLS_init_context: SSL_CTX_use_certificate_file (client) failed: %s", errbuf);
-        return TLS_INIT_ERROR;
-    }


Is a client cert now optional? Or is it not possible anymore?

smititelu · 2022-12-06T09:21:13Z

Updated PR to use client cert only if key/cert files exist at that path.

wdoekes reviewed Dec 6, 2022

View reviewed changes

smititelu force-pushed the tls_client_cert_key branch from 47142cb to 0523920 Compare December 6, 2022 09:17

Make TLS client cert/key file optional

4a7bccb

smititelu force-pushed the tls_client_cert_key branch from 0523920 to 4a7bccb Compare December 6, 2022 09:19

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Make TLS client cert/key file optional #601

Make TLS client cert/key file optional #601

smititelu commented Dec 6, 2022

wdoekes Dec 6, 2022

wdoekes Dec 6, 2022

smititelu commented Dec 6, 2022

Make TLS client cert/key file optional #601

Are you sure you want to change the base?

Make TLS client cert/key file optional #601

Conversation

smititelu commented Dec 6, 2022

wdoekes Dec 6, 2022

Choose a reason for hiding this comment

wdoekes Dec 6, 2022

Choose a reason for hiding this comment

smititelu commented Dec 6, 2022