[Chilli] REDIRSSL

Alberto Bellettato albesvs at yahoo.it
Mon Dec 21 10:24:18 UTC 2009 

I tried both.

A) Building with --with-matrixssl (using library v. 1.2.4) chilli
freezes displaying only 2 debug messages (*)

B) Building with --with-openssl (using library v.0.9.8i) chilli starts
and runs, but redirssl and uamuissl are not working as described.

(*) 
syslog: main-opt.c: 304: DHCP Listen: 192.168.182.1
syslog: main-opt.c: 305: UAM Listen: 192.168.182.1
>--------------------------------------------------<


Il giorno lun, 21/12/2009 alle 08.50 +0100, David Bird ha scritto:
> Did you build with either using --with-openssl or --with-matrixssl ? 
> 
> 
> On Sun, 2009-12-20 at 23:30 +0100, Alberto Bellettato wrote:
> > I tried with the pem key and cert but it seems that chilli ignores the
> > sslkeyfile and sslcertfile parameters.
> > Infact feeding an incorrect file name has no effect, while an error
> > message should be raised (looking at the code I can see, for example,
> > log_err(errno, "could not load certificate file %s\n",file);).
> > I tried both with and without the --enable-chilliredir.
> > 
> > 
> > Il giorno dom, 20/12/2009 alle 13.44 +0100, David Bird ha scritto:
> > > # chilli --help|grep ssl
> > >  --sslkeyfile=STRING       SSL private key file in PEM format
> > >  --sslcertfile=STRING      SSL certificate file in PEM format
> > >  --redirssl                Enable redirection of SSL/HTTP port
> > > (requires 
> > >  --uamuissl                Enable SSL/HTTPS support on the uamuiport  
> > > 
> > > When using either of redirssl or uamuissl, you have to define sslkeyfile
> > > and sslcertfile (which must contain valid PEM key/cert; key w/no
> > > password). 
> > > 
> > > David
> > > 
> > > On Sun, 2009-12-20 at 13:41 +0100, Alberto Bellettato wrote:
> > > > Hi David, 
> > > > I have seen you have fixed the binconfig handling in rev. 266, so I
> > > > tested it and I can confirm it works fine.
> > > > 
> > > > Currently I am testing some new features, like redirssl and uamuissl, so
> > > > I compiled with --with-openssl (and --enable-chilliredir) and I switched
> > > > on redirssl.
> > > > 
> > > > However, when trying to connect to a ssl site (before auth), I always
> > > > receive the "ssl_error_rx_record_too_long" error from firefox.
> > > > I am receving the same error when trying to connect to the chilli
> > > > https://chilli_uam_ip:uam_port/prelogin after enabling the uamuissl.
> > > > 
> > > > _______________________________________________
> > > > Chilli mailing list
> > > > Chilli at coova.org
> > > > http://lists.coova.org/cgi-bin/mailman/listinfo/chilli
> > > 
> > > 
> > 
> > 
> 
>

More information about the Chilli mailing list