git.ipfire.org Git - thirdparty/openvpn.git/commit

author	Steffan Karger <steffan@karger.me>
	Thu, 15 Oct 2015 22:43:15 +0000 (00:43 +0200)
committer	Gert Doering <gert@greenie.muc.de>
	Mon, 9 Nov 2015 16:24:58 +0000 (17:24 +0100)
commit	f107c62051ebbf4a2b661fcba8703fe26485c7af
tree	7b45291dbe3519be2f6fb9ae39afe0212e55a3e7	tree
parent	b8cdb213d4fa5a56074115faceb2e0da373bab8f	commit \| diff

polarssl: add --verify-client-cert optional support

This adds support for the --verify-client-cert optional option in PolarSSL
builds, as was earlier added for OpenSSL builds by Jan-Just Keijser.

This patch also adds an additional sanity check that this option may only
be used in combination with some other authentication method, and changes
the warning message about this option to be displayed only once on startup,
instead of for each connecting client.

Signed-off-by: Steffan Karger <steffan@karger.me>
Acked-by: Jan Just Keijser <janjust@nikhef.nl>
Message-Id: <1444948995-18720-3-git-send-email-steffan@karger.me>
URL: http://article.gmane.org/gmane.network.openvpn.devel/10288
Signed-off-by: Gert Doering <gert@greenie.muc.de>

src/openvpn/options.c		diff \| blob \| blame \| history
src/openvpn/ssl_openssl.c		diff \| blob \| blame \| history
src/openvpn/ssl_polarssl.c		diff \| blob \| blame \| history