I am using Asterisk 13.10.0 as a PBX and have an encrypted link to a SIP gateway server.
The TLS is setup when asterisk is not checking the server certs but this is not secure.
When I set tlsdontverifyserver=yes the link is setup.
If i set this to No then tls is not setup.
When i look at the full log I can see that it lloks like it is not happy with the calist.pem with the server cert authority trust chain.
[Apr 15 11:36:58] ERROR tcptls.c: TLS/SSL CA file(/etc/asterisk/keys/calist.pem)/path() error
The file path os correct in the sip.conf and teh file is owned by asterisk:asterisk
So what does the /path() refer to ?
I have been pulling my hair out on this for weeks now.
The CA cert is used on different applications, so i believe this to be a correctly formatted certificate