[Chilli] REDIRSSL

Alberto Bellettato albesvs at yahoo.it
Sun Dec 20 22:30:37 UTC 2009


I tried with the pem key and cert but it seems that chilli ignores the
sslkeyfile and sslcertfile parameters.
Infact feeding an incorrect file name has no effect, while an error
message should be raised (looking at the code I can see, for example,
log_err(errno, "could not load certificate file %s\n",file);).
I tried both with and without the --enable-chilliredir.


Il giorno dom, 20/12/2009 alle 13.44 +0100, David Bird ha scritto:
> # chilli --help|grep ssl
>  --sslkeyfile=STRING       SSL private key file in PEM format
>  --sslcertfile=STRING      SSL certificate file in PEM format
>  --redirssl                Enable redirection of SSL/HTTP port
> (requires 
>  --uamuissl                Enable SSL/HTTPS support on the uamuiport  
> 
> When using either of redirssl or uamuissl, you have to define sslkeyfile
> and sslcertfile (which must contain valid PEM key/cert; key w/no
> password). 
> 
> David
> 
> On Sun, 2009-12-20 at 13:41 +0100, Alberto Bellettato wrote:
> > Hi David, 
> > I have seen you have fixed the binconfig handling in rev. 266, so I
> > tested it and I can confirm it works fine.
> > 
> > Currently I am testing some new features, like redirssl and uamuissl, so
> > I compiled with --with-openssl (and --enable-chilliredir) and I switched
> > on redirssl.
> > 
> > However, when trying to connect to a ssl site (before auth), I always
> > receive the "ssl_error_rx_record_too_long" error from firefox.
> > I am receving the same error when trying to connect to the chilli
> > https://chilli_uam_ip:uam_port/prelogin after enabling the uamuissl.
> > 
> > _______________________________________________
> > Chilli mailing list
> > Chilli at coova.org
> > http://lists.coova.org/cgi-bin/mailman/listinfo/chilli
> 
> 




More information about the Chilli mailing list