Feature Request: TLS server name indication

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Tue, Jun 24, 2008 at 5:39 PM, Klaus Darilion
<klaus.mailinglists at pernau.at> wrote:
> Benny Prijono wrote:
>> Thanks for the info, Klaus. Right now we're working on the 0.9
>> release, so I'll see if I can do it afterwards.
>
> That's a pitty. I need a client for testing the server ;-)
>

I know. But we've reached feature-freeze phase for the 0.9 release. :)

Cheers
 Benny

> regards
> Klaus
>
> PS: Just setting the servername shouldn't be that hard. This is what I
> did for openser:
>
>     if (c->state == S_CONN_ACCEPT) {
>         LM_DBG("Setting in ACCEPT mode (server)\n");
>         SSL_set_accept_state((SSL *) c->extra_data);
>     } else if (c->state == S_CONN_CONNECT) {
>         LM_DBG("Setting in CONNECT mode (client)\n");
>         SSL_set_connect_state((SSL *) c->extra_data);
> +#ifndef OPENSSL_NO_TLSEXT
> +        if (!SSL_set_tlsext_host_name(ssl, server_name)) {
> +            LM_ERR("Unable to set TLS servername extension.\n");
> +            return -1;
> +        }
> +#endif
>     }
>
>
> _______________________________________________
> Visit our blog: http://blog.pjsip.org
>
> pjsip mailing list
> pjsip at lists.pjsip.org
> http://lists.pjsip.org/mailman/listinfo/pjsip_lists.pjsip.org
>
[Index of Archives]     [Asterisk Users]     [Asterisk App Development]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [Linux API]
  Powered by Linux