<html>
<head>
<style><!--
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 10pt;
font-family:Tahoma
}
--></style></head>
<body class='hmmessage'><div dir='ltr'>
Hi All,<div><br></div><div>I cannot seem to get TLS running on the sofia "internal" profile. Any assistance would be appreciated.</div><div><br></div><div>I'm running FreeSWITCH Version 1.2.0-rc2+git~20120808T025758Z~9ac586adc8 (1.2.0-rc2; git at commit 9ac586adc8 on Wed, 08 Aug 2012 02:57:58 Z) on Ubuntu 12.04 LTS.</div><div><br></div><div>When I set i<span style="font-size: 10pt; ">nternal_ssl_enable=true, and reload the sofia internal profile, I get the "usual" error:</span></div><div><span style="font-size: 10pt; "><br></span></div><div><span style="font-size: 10pt; ">2012-08-09 00:34:14.174431 [ERR] sofia.c:2289 Error Creating SIP UA for profile: internal</span></div><div><span style="font-size: 10pt; "><br></span></div><div><div><!-- SIP Profile: Internal --></div><div><X-PRE-PROCESS cmd="set" data="internal_auth_calls=true"/></div><div><X-PRE-PROCESS cmd="set" data="internal_sip_port=5060"/></div><div><X-PRE-PROCESS cmd="set" data="internal_tls_port=5061"/></div><div><X-PRE-PROCESS cmd="set" data="internal_ssl_enable=true"/></div><div><X-PRE-PROCESS cmd="set" data="internal_ssl_dir=$${base_dir}/conf/ssl"/></div></div><div><br></div><div>I verified that the OpenSSL development libraries were installed (Ubuntu package libssl-dev) and looked for references to ssl in the output from the compilation process and saw this:</div><div><br></div><div>
<p class="p1">"checking for openssl... yes</p>
<p class="p1">checking openssl_CFLAGS... </p>
<p class="p1">checking openssl_LIBS... -lssl -lcrypto </p>
<p class="p1"> adding "-DHAVE_OPENSSL" to SWITCH_AM_CFLAGS"</p><p class="p1"><br></p><p class="p1">...</p><p class="p1"><br></p><p class="p1">"<span style="font-size: 10pt; ">checking OpenSSL options with pkg-config... found</span></p>
<p class="p1">checking for gdi32... no</p>
<p class="p1">checking for CRYPTO_lock in -lcrypto... yes</p>
<p class="p1">checking for SSL_connect in -lssl... yes</p>
<p class="p1">checking openssl/x509.h usability... yes</p>
<p class="p1">checking openssl/x509.h presence... yes</p>
<p class="p1">checking for openssl/x509.h... yes</p>
<p class="p1">checking openssl/rsa.h usability... yes</p>
<p class="p1">checking openssl/rsa.h presence... yes</p>
<p class="p1">checking for openssl/rsa.h... yes</p>
<p class="p1">checking openssl/crypto.h usability... yes</p>
<p class="p1">checking openssl/crypto.h presence... yes</p>
<p class="p1">checking for openssl/crypto.h... yes</p>
<p class="p1">checking openssl/pem.h usability... yes</p>
<p class="p1">checking openssl/pem.h presence... yes</p>
<p class="p1">checking for openssl/pem.h... yes</p>
<p class="p1">checking openssl/ssl.h usability... yes</p>
<p class="p1">checking openssl/ssl.h presence... yes</p>
<p class="p1">checking for openssl/ssl.h... yes</p>
<p class="p1">checking openssl/err.h usability... yes</p>
<p class="p1">checking openssl/err.h presence... yes</p>
<p class="p1">checking for openssl/err.h... yes</p>
<p class="p1">checking openssl/pkcs12.h usability... yes</p>
<p class="p1">checking openssl/pkcs12.h presence... yes</p>
<p class="p1">checking for openssl/pkcs12.h... yes</p>
<p class="p1">checking for ENGINE_init... yes</p>
<p class="p1">checking openssl/engine.h usability... yes</p>
<p class="p1">checking openssl/engine.h presence... yes</p>
<p class="p1">checking for openssl/engine.h... yes</p>
<p class="p1">checking for ENGINE_load_builtin_engines... yes</p>
<p class="p1">checking for RAND_status... yes</p>
<p class="p1">checking for RAND_screen... no</p>
<p class="p1">checking for RAND_egd... yes</p>
<p class="p1">checking for CRYPTO_cleanup_all_ex_data... yes</p>
<p class="p1">checking for "/dev/urandom"... yes</p>
<p class="p1">checking CA cert bundle install path... ${prefix}/share/curl/curl-ca-bundle.crt</p>
<p class="p1"><span style="font-size: 10pt; ">checking for inflateEnd in -lz... yes</span>"</p><p class="p1"><br></p><p class="p1">Is there anything else I should be checking. Does freeswitch send logs anywhere other than ../freeswitch/log/ ?</p><p class="p1"><br></p><p class="p1"><br></p></div><div><br></div> </div></body>
</html>