Can someone specify the version of openssl that works for TLS on Debian 8?
Debian 8 standard packaging comes with openssl 1.0.1t. I have also tried the
Debian 8 backport of openssl 1.0.2k. In both cases, opensips fails to start
with the following error:
May 4 14:30:31 dev-sipproxy02 /usr/sbin/opensips[9637]: NOTICE:core:main:
version: opensips 2.2.3 (x86_64/linux)
...
May 4 14:30:31 dev-sipproxy02 /usr/sbin/opensips[9637]: INFO:tls_mgm:mod_init:
initializing TLS protocol
May 4 14:30:31 dev-sipproxy02 /usr/sbin/opensips[9637]:
ERROR:tls_mgm:mod_init: unable to set the memory allocation functions
May 4 14:30:31 dev-sipproxy02 /usr/sbin/opensips[9637]:
ERROR:tls_mgm:mod_init: NOTE: check if you have openssl 1.0.1e-fips, as this
version is know to be broken; if so, you need to upgrade or downgrade to a
differen openssl version !!
May 4 14:30:31 dev-sipproxy02 /usr/sbin/opensips[9637]: ERROR:core:init_mod:
failed to initialize module tls_mgm
May 4 14:30:31 dev-sipproxy02 /usr/sbin/opensips[9637]: ERROR:core:main: error
while initializing modules
$ openssl version
OpenSSL 1.0.2k 26 Jan 2017
Config is simply this to start with:
### TLS
loadmodule "proto_tls.so"
loadmodule "tls_mgm.so"
modparam("tls_mgm", "certificate", "/etc/opensips/tls/my.crt")
modparam("tls_mgm", "private_key", "/etc/opensips/tls/my.key")
“The information transmitted is intended only for the person or entity to which
it is addressed and may contain proprietary, business-confidential and/or
privileged material. If you are not the intended recipient of this message you
are hereby notified that any use, review, retransmission, dissemination,
distribution, reproduction or any action taken in reliance upon this message is
prohibited. If you received this in error, please contact the sender and delete
the material from any computer.”
_______________________________________________
Users mailing list
[email protected]
http://lists.opensips.org/cgi-bin/mailman/listinfo/users
