TheLanc3/lan-mouse
1
0
Fork 0
mirror of https://github.com/feschber/lan-mouse.git synced 2026-04-17 09:11:28 +03:00
Code Issues Packages Projects Releases Wiki Activity

enable client cert auth

Browse Source
This commit is contained in:
Ferdinand Schober
2024-09-27 17:14:13 +02:00
parent dedf59d1c7
commit 61d4a6ceac
2 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/listen.rs
View File

@@ -15,7 +15,7 @@ use tokio::{
task::{spawn_local, JoinHandle}, task::{spawn_local, JoinHandle},
}; };
use webrtc_dtls::{ use webrtc_dtls::{
config::{Config, ExtendedMasterSecretType}, config::{ClientAuthType::RequireAnyClientCert, Config, ExtendedMasterSecretType},
crypto::Certificate, crypto::Certificate,
listener::listen, listener::listen,
}; };
@@ -55,6 +55,7 @@ impl LanMouseListener {
let certificate = Certificate::generate_self_signed(["localhost".to_owned()])?; let certificate = Certificate::generate_self_signed(["localhost".to_owned()])?;
let verify_peer_certificate: Option<VerifyPeerCertificateFn> = Some(Arc::new( let verify_peer_certificate: Option<VerifyPeerCertificateFn> = Some(Arc::new(
move |certs: &[Vec<u8>], _chains: &[CertificateDer<'static>]| { move |certs: &[Vec<u8>], _chains: &[CertificateDer<'static>]| {
log::error!("verifying device fingerprint!");
assert!(certs.len() == 1); assert!(certs.len() == 1);
let fingerprints = certs let fingerprints = certs
.into_iter() .into_iter()
@@ -75,6 +76,7 @@ impl LanMouseListener {
let cfg = Config { let cfg = Config {
certificates: vec![certificate], certificates: vec![certificate],
extended_master_secret: ExtendedMasterSecretType::Require, extended_master_secret: ExtendedMasterSecretType::Require,
client_auth: RequireAnyClientCert,
verify_peer_certificate, verify_peer_certificate,
..Default::default() ..Default::default()
}; };

1
src/server.rs
View File

@@ -3,7 +3,6 @@ use crate::{
client::ClientManager, client::ClientManager,
config::Config, config::Config,
connect::LanMouseConnection, connect::LanMouseConnection,
crypto,
dns::DnsResolver, dns::DnsResolver,
emulation::Emulation, emulation::Emulation,
listen::{LanMouseListener, ListenerCreationError}, listen::{LanMouseListener, ListenerCreationError},