Am 24.10.2013 um 12:44 schrieb Tobias Oberstein <tobias.oberst...@tavendo.de>:
>> Your server definitely sends three certificates - that's >> surprising/confusing. >> >> Could you double-check how you've achieved that? If you google for chain >> certs & Twisted you'll find all kinds of monkey patches to achieve that; and >> when I run twistd -n web with a pem that has multiple certificates I still >> get >> sent only one from the server. I feel like I'm missing something. > > Ok, sorry, I forgot totally about it .. but this is what we do: > > https://github.com/crossbario/crossbar/blob/master/crossbar/crossbar/tlsctx.py#L73 > > It indeed relies on "use_certificate_chain_file". > > Sorry. My fault: it needs patching. Phew, you really got me sweating there. :) Since you’re not using string representations there, you can move to CertificateOptions which has chain files sind 13.1 already (the string support slipped into 13.2 because I don’t know how to Python and it got reverted a few days before the release of 13.1 because of a Python 3 regression).
signature.asc
Description: Message signed with OpenPGP using GPGMail
_______________________________________________ Twisted-Python mailing list Twisted-Python@twistedmatrix.com http://twistedmatrix.com/cgi-bin/mailman/listinfo/twisted-python
