[Serusers] Free TLS Implementation
Atle Samuelsen
clona at camaro.no
Tue Mar 8 12:11:36 CET 2005
Hi Peter!
gr8 that you are willing to share your TLS part with uss!
:-)
I tried to compile it in on 0.9.0 but had some problems with this, Could
you give me a "hint" on what I've done wrong or if there's something
"silly" that I forgot :S
I built it with :
make TLS=on
tls/tls_init.c: In function `passwd_cb':
tls/tls_init.c:51: `UI' undeclared (first use in this function)
tls/tls_init.c:51: (Each undeclared identifier is reported only once
tls/tls_init.c:51: for each function it appears in.)
tls/tls_init.c:51: `ui' undeclared (first use in this function)
tls/tls_init.c:55: warning: implicit declaration of function `UI_new'
tls/tls_init.c:59: warning: implicit declaration of function
`UI_construct_prompt'
tls/tls_init.c:59: warning: assignment makes pointer from integer
without a cast
tls/tls_init.c:60: warning: implicit declaration of function
`UI_add_input_string'
tls/tls_init.c:61: warning: implicit declaration of function
`UI_process'
tls/tls_init.c:62: warning: implicit declaration of function `UI_free'
gmake: *** [tls/tls_init.o] Error 1
- Atle
* Peter Griffiths <peter_grf at yahoo.com> [050307 19:23]:
> hello --
>
> some time ago i extended ser to support tls, basically
> i implemented functions needed by the existing tls
> api. i polished the code a bit and i am giving it away
> freely. there are still some things to fix, but it
> mostly works.
>
> to use the code, copy tls directory into your ser tree
> and optionally patch cfg.lex and cfg.y, then recompile
> ser with TLS=on.
>
> if you also patch cfg.lex and cfg.y then you can use
> extended cfg syntax and specify different keys and
> certificates for different listen sockets. this is
> similar to apache virtual servers with ssl. without
> the patches you can only use the default configuration
> directives.
>
> to iptel: would be great to have it in cvs, what do
> you think ?
>
> -- peter
>
> -----------
> example ser.cfg:
>
> listen=tls:127.0.0.1:5061
> listen=tls:127.0.0.1:5062
>
> # defaults for outgoing tls connections
> tls_certificate="default.crt"
> tls_private_key = "default.key"
>
> # domain1.com
> tls_domain[127.0.0.1:5061] {
> tls_certificate="domain1.crt"
> tls_private_key = "domain1.key"
> tls_method = sslv2
> }
>
> # domain2.com
> tls_domain[127.0.0.1:5062] {
> tls_certificate="domain2.crt"
> tls_private_key="domain2.key"
> }
>
>
>
>
> __________________________________
> Celebrate Yahoo!'s 10th Birthday!
> Yahoo! Netrospective: 100 Moments of the Web
> http://birthday.yahoo.com/netrospective/
> _______________________________________________
> Serusers mailing list
> serusers at lists.iptel.org
> http://lists.iptel.org/mailman/listinfo/serusers
More information about the sr-users
mailing list