7235c9765e
Instead of single certificate in one file it is sometimes customary to chain multiple certificates into the same file. This is common practice for CAs like letsencrypt that are providing intermediate certificates. This patch switches loading of only one certificate to loading whole chain of certificates. The effects can be seen with e.g. the following command: openssl s_client -showcerts -connect websockify-hostname:8080 Before the change the verify fails: Certificate chain 0 s:/CN=websockify-hostname i:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3 After the change the verify passes: Certificate chain 0 s:/CN=websockify-hostname i:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3 1 s:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3 i:/O=Digital Signature Trust Co./CN=DST Root CA X3 |
||
---|---|---|
.. | ||
js | ||
Makefile | ||
README.md | ||
launch.sh | ||
project.clj | ||
websocket.c | ||
websocket.h | ||
websocket.rb | ||
websockify.c | ||
websockify.clj | ||
websockify.rb | ||
wswrap |
README.md
This directory contain alternate implementations of WebSockets-to-TCP-Socket proxies (for noVNC).
websockify.c (C)
Description
This is a C version of the original websockify. It is more limited in functionality than the original.
websockify.js
Description
This is a Node.JS (server-side event driven Javascript) implementation of websockify.
kumina.c (C)
Description
The upstream source of the kumina proxy is here.
This article describes the kumina proxy.
kumina is an application that is run from inetd, which allows noVNC to connect to an unmodified VNC server. Furthermore, it makes use of the recently added support in noVNC for file names. The file name is used to denote the port number. Say, you connect to:
ws://host:41337/25900
The kumina proxy opens a connection to:
vnc://host:25900/
The address to which kumina connects, is the same as the address to which the client connected (using getsockname()).
Configuration
kumina can be enabled by adding the following line to inetd.conf:
41337 stream tcp nowait nobody /usr/sbin/kumina kumina 25900 25909
The two parameters of kumina denote the minimum and the maximum allowed port numbers. This allows a single kumina instance to multiplex connections to multiple VNC servers.