From 61d4a6ceac05e03a301e17deb591f5aab927bbe8 Mon Sep 17 00:00:00 2001
From: Ferdinand Schober <ferdinand.schober@fau.de>
Date: Fri, 27 Sep 2024 17:14:13 +0200
Subject: [PATCH] enable client cert auth

---
 src/listen.rs | 4 +++-
 src/server.rs | 1 -
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/listen.rs b/src/listen.rs
index 80a0760..e8b18b8 100644
--- a/src/listen.rs
+++ b/src/listen.rs
@@ -15,7 +15,7 @@ use tokio::{
     task::{spawn_local, JoinHandle},
 };
 use webrtc_dtls::{
-    config::{Config, ExtendedMasterSecretType},
+    config::{ClientAuthType::RequireAnyClientCert, Config, ExtendedMasterSecretType},
     crypto::Certificate,
     listener::listen,
 };
@@ -55,6 +55,7 @@ impl LanMouseListener {
         let certificate = Certificate::generate_self_signed(["localhost".to_owned()])?;
         let verify_peer_certificate: Option<VerifyPeerCertificateFn> = Some(Arc::new(
             move |certs: &[Vec<u8>], _chains: &[CertificateDer<'static>]| {
+                log::error!("verifying device fingerprint!");
                 assert!(certs.len() == 1);
                 let fingerprints = certs
                     .into_iter()
@@ -75,6 +76,7 @@ impl LanMouseListener {
         let cfg = Config {
             certificates: vec![certificate],
             extended_master_secret: ExtendedMasterSecretType::Require,
+            client_auth: RequireAnyClientCert,
             verify_peer_certificate,
             ..Default::default()
         };
diff --git a/src/server.rs b/src/server.rs
index 9d7f12a..7bb02e8 100644
--- a/src/server.rs
+++ b/src/server.rs
@@ -3,7 +3,6 @@ use crate::{
     client::ClientManager,
     config::Config,
     connect::LanMouseConnection,
-    crypto,
     dns::DnsResolver,
     emulation::Emulation,
     listen::{LanMouseListener, ListenerCreationError},