[Libwebsockets] Two way TLS authentication with mbedTLS
ivaldesi97 at gmail.com
Fri Jul 23 11:38:57 CEST 2021
I'm using the version v3.1 of libwebsockets compiled with mbedTLS.
Currently I have a websocket client that connects to a http/ws server using
TLS with server certificate validation. I need to enable the client to send
its certificate to the server and also enable the server to verify this
certificate with a CA certificate.
I saw at the examples that, to make a server verify the client certificate,
the LWS_SERVER_OPTION_REQUIRE_VALID_OPENSSL_CLIENT_CERT option must be set
on the vhost info and then a call
to LWS_CALLBACK_OPENSSL_PERFORM_CLIENT_CERT_VERIFICATION wil be performed.
I assume that the verification is not done by the LWS implicitly . I am
wrong? With mbedtls I didn't manage to make this work. The callback is
never called. Is there any example of how to make this work?
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Libwebsockets