<div dir="ltr"><div>Hi Sebastian, this is off topic for the Kamailio mailing list.<br><br>You can use Voip_patrol :<br><a href="https://github.com/jchavanton/voip_patrol">https://github.com/jchavanton/voip_patrol</a><br></div><div><br></div><div>Once you have your certificate, key and ca_list in default location<br><span style="font-family:monospace">./voip_patrol -c ./xml/tls.xml</span><br><span style="font-family:monospace"><br>[18:24:51.800][INFO] main: TLS tcfg.tlsConfig.ca_list :tls/ca_list.pem<br>[18:24:51.800][INFO] main: TLS tcfg.tlsConfig.certFile :tls/certificate.pem<br>[18:24:51.800][INFO] main: TLS tcfg.tlsConfig.privKeyFile :tls/key.pem</span><br><br></div><div><span style="font-family:monospace">tls.xml</span><br><br></div><div><span style="font-family:monospace"><?xml version="1.0"?> <br><config><br> <actions><br> <action type="register" transport="tls" expected_cause_code="200" username="VP_ENV_USERNAME" password="VP_ENV_PASSWORD" realm="<a href="http://domain.com">domain.com</a>" registrar="<a href="http://ep.domain.com">ep.domain.com</a>"/><br> <action type="wait" complete/><br> <action type="accept" account="VP_ENV_USERNAME" max_duration="20" hangup="5"/><br> <action type="call" transport="tls"<br> wait_until="3" expected_cause_code="200"<br> caller="<a href="mailto:12062349971@1.1.1.1">12062349971@1.1.1.1</a>" callee="<a href="mailto:12012343238@ep.domain.com">12012343238@ep.domain.com</a>" max_duration="15" hangup="5"<br> username="VP_ENV_USERNAME" password="VP_ENV_PASSWORD" realm="<a href="http://domain.com">domain.com</a>"<br> /><br> <action type="wait" complete/><br> </actions><br></config></span><br></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Wed, Dec 18, 2019 at 8:34 AM Sebastian Damm <<a href="mailto:damm@sipgate.de">damm@sipgate.de</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Hi,<br>
<br>
I'm trying to construct an end-to-end encrypted signalling test<br>
through our setup. I thought I could use sipp for that, as it supports<br>
TLS according to the man page. However, when I try to run it, I get<br>
this error:<br>
<br>
FI_init_ssl_context: SSL_CTX_use_certificate_file failed.<br>
<br>
I searched the web; however, all similar questions end up without<br>
answers. I tried specifying a local key and cert without success. I'd<br>
think I should not need a cert for my client, though.<br>
<br>
Has anyone ever successfully conducted an automated TLS test? I'm open<br>
to using a different tool if necessary.<br>
<br>
Thanks for all hints or examples.<br>
<br>
Regards,<br>
Sebastian<br>
<br>
-- <br>
Sebastian Damm<br>
Voice Engineer<br>
__________________________________________<br>
sipgate GmbH<br>
Gladbacher Straße 74 | 40219 Düsseldorf<br>
<br>
_______________________________________________<br>
Kamailio (SER) - Users Mailing List<br>
<a href="mailto:sr-users@lists.kamailio.org" target="_blank">sr-users@lists.kamailio.org</a><br>
<a href="https://lists.kamailio.org/cgi-bin/mailman/listinfo/sr-users" rel="noreferrer" target="_blank">https://lists.kamailio.org/cgi-bin/mailman/listinfo/sr-users</a><br>
</blockquote></div>