[stunnel-users] PKCS12 support patch

Dmitry Bakshaev dab1818 at gmail.com
Wed May 18 18:26:35 CEST 2016


googling internet about using certificate and keys from PKCS12 file lead to
convert it to PEM.
it requires some additional utilities (openssl not default windows
application) and manual steps to convert.

this patch allow using PKCS12 directly from stunnel.
example configuration:
cert = /home/dab/.certs/my.p12

PKCS12-files detected by file extension (.p12 or .pfx, no case sensetive)
and load specially.
password prompted if needed, empty password also supported.

code based on examples from:
https://groups.google.com/forum/#!topic/mailing.openssl.users/iuBmSqwsIG4
http://openssl-users.openssl.narkive.com/J0bR3cMA/ssl-ctx-use-privatekey-file

patch tested on stunnel working on linux (gentoo: from our overlay
http://bbgentoo.ilb.ru/repos/bbgentoo/bbgentoo_overlay/branches/drafts/net-misc/stunnel/
)
and windows.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20160518/3d738bb4/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: stunnel-5.32-load_pkcs12_file.patch
Type: text/x-patch
Size: 3467 bytes
Desc: not available
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20160518/3d738bb4/attachment.bin>


More information about the stunnel-users mailing list