[Libwebsockets] Verifying client certificate

Alexander Bruines alexander.bruines at gmail.com
Wed Aug 5 18:33:56 CEST 2015


On 08/05/2015 04:27 PM, techi eth wrote:
> Thanks for answer.
> 
> For quick testing if I have server running on some other machine (.Net Client on Windows) & server is expecting client certificate for verification.
> 
> Is that part is already implemented ?
> 
> On Wed, Aug 5, 2015 at 7:10 PM, Alexander Bruines <andy.green at linaro.org <mailto:andy.green at linaro.org>> wrote:
> 
>     On 08/05/2015 02:25 PM, techi eth wrote:
>     > Hi,
>     >
>     > Please let me know how to enable libwebsockets-test-client & libwebsockets-test-server for verifying client certificate by server during connection.
>     >
>     > Thanks
>     >
>     >
>     > _______________________________________________
>     > Libwebsockets mailing list
>     > Libwebsockets at ml.libwebsockets.org <mailto:Libwebsockets at ml.libwebsockets.org>
>     > http://ml.libwebsockets.org/mailman/listinfo/libwebsockets
>     >
> 
>     Hi,
> 
>     This has not been implemented in the test client/server.
>     I'd write a patch to support it but someone seems to be ignoring anything I send his way...
> 
>     If you need an example, you could take a look at my project that uses libwebsockets and CyaSSL.
>      http://sourceforge.net/projects/galaxy4linux/
> 
>     Btw, it only works when using CyaSSL/wolfSSL.
>     With openSSL libwebsockets crashes immediately when I turn on LWS_SERVER_OPTION_REQUIRE_VALID_OPENSSL_CLIENT_CERT....
> 
>     Regards, Alex
>     _______________________________________________
>     Libwebsockets mailing list
>     Libwebsockets at ml.libwebsockets.org <mailto:Libwebsockets at ml.libwebsockets.org>
>     http://ml.libwebsockets.org/mailman/listinfo/libwebsockets
> 
> 
> 
> 
> _______________________________________________
> Libwebsockets mailing list
> Libwebsockets at ml.libwebsockets.org
> http://ml.libwebsockets.org/mailman/listinfo/libwebsockets
> 

I have no idea about that and I don't know any .net.
After turning on LWS_SERVER_OPTION_REQUIRE_VALID_OPENSSL_CLIENT_CERT in your server, your client application should send a client cert when connecting.
Read the API documentation for libwebsockets...




More information about the Libwebsockets mailing list