[Opalvoip-devel] TLS with self-signed certificate and Opal 3.12
Brought to you by:
csoutheren,
rjongbloed
From: Diego B. <dbu...@te...> - 2012-11-15 12:20:12
|
Hello, I'm developing a SIP softphone with the TLS feature. The SIP server I'm using is and Asterisk 1.8 with self signed certificate. Using Opal 3.12 the TLS handshake fails with "pssl.cxx(1101) SSL Verify callback: depth=1, err=19 - self signed certificate in certificate chain" AFAIK this is due to the method "OpalManager::GetSSLCredentials" that set the certificate verification as required: "context.SetVerifyMode(PSSLContext::VerifyPeerMandatory);" I've created a small patch that allow to specify the SSLVerifyMode (ad set it to PSSLContext::VerifyNone in my case). Regards, Diego Busacca |