tools: add certification check
If the server disable the anonymous connection option, it accept a client only if the CA of the client matches the CA of the server.
Else (anonymous connection option enabled), the server accept any request.
Change-Id: I6ff6ec72d6f6452ce50fd8aa35896ff7117be6c0
diff --git a/tools/dvpn/dvpn.h b/tools/dvpn/dvpn.h
index 42382aa..6331907 100644
--- a/tools/dvpn/dvpn.h
+++ b/tools/dvpn/dvpn.h
@@ -66,7 +66,7 @@
std::shared_ptr<asio::io_context> ioContext;
std::thread ioContextRunner;
enum class CommunicationState { METADATA, DATA };
-
+ std::shared_ptr<tls::TrustStore> trustStore;
};
class DvpnServer : public Dvpn
@@ -80,7 +80,8 @@
const std::string& turn_user,
const std::string& turn_pass,
const std::string& turn_realm,
- const std::string& configuration_file);
+ const std::string& configuration_file,
+ bool anonymous);
};
class DvpnClient : public Dvpn
@@ -103,7 +104,6 @@
int tun_fd;
char tun_device[IFNAMSIZ] = {0}; // IFNAMSIZ is typically the maximum size for interface names
std::shared_ptr<asio::posix::stream_descriptor> tun_stream;
-
};
} // namespace dhtnet
\ No newline at end of file