[stunnel-users] Fwd: PKCS12 support patch

Dmitry Bakshaev dab1818 at gmail.com
Thu May 19 17:31:30 CEST 2016


I hereby release my patches to stunnel for support of PKCS12 files into the
public domain.

---------- Forwarded message ----------
From: Dmitry Bakshaev <dab1818 at gmail.com>
Date: 2016-05-18 20:26 GMT+04:00
Subject: PKCS12 support patch
To: stunnel-users at stunnel.org


googling internet about using certificate and keys from PKCS12 file lead to
convert it to PEM.
it requires some additional utilities (openssl not default windows
application) and manual steps to convert.

this patch allow using PKCS12 directly from stunnel.
example configuration:
cert = /home/dab/.certs/my.p12

PKCS12-files detected by file extension (.p12 or .pfx, no case sensetive)
and load specially.
password prompted if needed, empty password also supported.

code based on examples from:
https://groups.google.com/forum/#!topic/mailing.openssl.users/iuBmSqwsIG4
http://openssl-users.openssl.narkive.com/J0bR3cMA/ssl-ctx-use-privatekey-file

patch tested on stunnel working on linux (gentoo: from our overlay
http://bbgentoo.ilb.ru/repos/bbgentoo/bbgentoo_overlay/branches/drafts/net-misc/stunnel/
)
and windows.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20160519/cd905769/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: stunnel-5.32-load_pkcs12_file.patch
Type: text/x-patch
Size: 3467 bytes
Desc: not available
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20160519/cd905769/attachment.bin>


More information about the stunnel-users mailing list