< Previous by Date Date Index Next by Date >
  Thread Index Next in Thread >

[reSIProcate] TLS certificate question


Hi,

I have a question on resiprocate TLS certificate stuff. When resiprocate
acts as a TLS client and connects to another domain, which presents a
TLS certificate with a subject name of "other.domain.com", resiprocate
seems to be looking for a cert file called
domain_cert_other.domain.com.pem  in its store. If it does not find the
cert, it seems to try to create a new file with that name, and that
fails.

If I create a file with that name and the cert in it, before attempting
to connect, then resiprocate finds it in the store and connection goes
through smoothly.

My question is: is this expected behavior? I was under the impression
that the TLS client only needs to know about the root cert or certs in
the chain of the server cert.

I am using a month old version of resiprocate.

Any information is greatly appreciated.

Thanks
-- 
Sandeep Sharma <ssharma@xxxxxxxxxx>