Comments (5)
vi
commented on May 19, 2024
6
Yes, socat and openssl s_client are valid workarounds for websocat.
Anyway I'll count this issue as a vote to implement this feature natively.
from websocat.
thediveo
commented on May 19, 2024
So I found that myself, may it be helpful to others (I have to disable server certificate verification at the moment, as I get an "E certificate is valid but its commonName does not match hostname"):
$ websocat --binary \
--ws-c-uri=wss://192.168.99.100:8443/api/v1/namespaces/default/pods/mypod:8000/proxy/ \
- \
ws-c:cmd:'socat - ssl:192.168.99.100:8443,verify=0,\
cafile=/home/foo/.minikube/ca.crt,\
cert=/home/foo/.minikube/client.crt,key=/home/foo/.minikube/client.key'
from websocat.
thediveo
commented on May 19, 2024
When you might be getting at this in the future, please give some love also to the commonname option: I've found now out that I need to explicitly set this with newer socat versions which otherwise get tripped up by some servers...
from websocat.
vi
commented on May 19, 2024
Do you mean the name for SNI or the name in the server certificate to check?
from websocat.
thediveo
commented on May 19, 2024
As far as I understand the situation with respect to the Kubernetes remote API, this is about the server certificate returned during SSL handshake and checking it against the server's CA certificate the client has.
from websocat.
Related Issues (20)
- Broken when running against solana-test-validator HOT 2
- Line feed (\n) sent instead of carriage return (\r) HOT 2
- Error when running example, artifact not found on Clojars HOT 1
- Is there a way to keep websocat receiving content from named pipe? HOT 4
- panic when trying to run the wss broadcast example HOT 1
- WebsocketError: Received unexpected status code (200 OK) when proxying with nginx HOT 4
- mixed text/binary client hex representation HOT 5
- Does not detect connection close in double-listen configuration HOT 3
- send body? HOT 4
- No http proxy support HOT 3
- Infinite loop with autoreconnect:reuse HOT 3
- How to fetch a stream and send API Key? HOT 1
- Verbose line HOT 1
- Undefined reference to SSL_get_peer_certificate at compile? HOT 1
- WebSocket SSL error self-signed certificate HOT 4
- auth in websocat ws-l HOT 2
- How to respond automatically as a server. HOT 4
- doesn't work with localhost, but ok with 127.0.0.1 (guessing related to IPv6) HOT 2
- how to make it accessible publicly HOT 1
- how to terminate exec process? HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from websocat.