Benny Prijono wrote:
> Thanks for the info, Klaus. Right now we're working on the 0.9
> release, so I'll see if I can do it afterwards.
That's a pitty. I need a client for testing the server ;-)
regards
Klaus
PS: Just setting the servername shouldn't be that hard. This is what I
did for openser:
if (c->state == S_CONN_ACCEPT) {
LM_DBG("Setting in ACCEPT mode (server)\n");
SSL_set_accept_state((SSL *) c->extra_data);
} else if (c->state == S_CONN_CONNECT) {
LM_DBG("Setting in CONNECT mode (client)\n");
SSL_set_connect_state((SSL *) c->extra_data);
+#ifndef OPENSSL_NO_TLSEXT
+ if (!SSL_set_tlsext_host_name(ssl, server_name)) {
+ LM_ERR("Unable to set TLS servername extension.\n");
+ return -1;
+ }
+#endif
}
