I have some Zoiper/Android clients which use TLS, but don't (yet) have the ability to specify the certificate that is used and don't seem to send a certificate when receiving a call. When Kamailio routes a call to one of these devices that register with dynamic addresses, Kamailio (acting as a client) won't be able verify the the device's (acting a a server) certificate. I'd like to set my default client settings to verify the certificate IF it is provided. Something like what is available for [server:default]
.
[client:default]
verify_certificate = yes
require_certificate = no
When testing to see what (if any) certificate Zoiper sends when Zoiper receives a TLS connection, I only get the following.
$ openssl s_client -connect 10.1.1.201:43965 -tls1 -showcerts
socket: Bad file descriptor
connect:errno=9
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub