sstp: implement Crypto Binding's Certificate hash & proto checking per 3.3.5.2.3 - accel-ppp.git - High performance PPTP/L2TP/SSTP/PPPoE/IPoE server for Linux (mirror of https://github.com/accel-ppp/accel-ppp.git)

diff options

author	Vladislav Grishenko <themiron@mail.ru>	2017-11-28 06:14:39 +0500
committer	Vladislav Grishenko <themiron@mail.ru>	2017-12-30 22:48:43 +0500
commit	0ac7701588db59aeb443f0b26bee0a3cb9ebb7b4 (patch)
tree	9a24f5c220df57ac3118a07bbc2d39dd3f50b495 /crypto
parent	ebc291f26c82248b5a1250c751d6d8f9623b09ae (diff)
download	accel-ppp-0ac7701588db59aeb443f0b26bee0a3cb9ebb7b4.tar.gz accel-ppp-0ac7701588db59aeb443f0b26bee0a3cb9ebb7b4.zip

sstp: implement Crypto Binding's Certificate hash & proto checking per 3.3.5.2.3

Warning: config options are changed aligned with general accel-ppp style. Following cases, including no-openssl build are supported: ssl | ssl-pemfile | behavior 1 set get both sha1 & sha256 from the certificate 0 set get both sha1 & sha256 from the certificate 0 unset use cert-hash-sha1 and/or cert-hash-sha256 hex options no-openssl use cert-hash-sha1 and/or cert-hash-sha256 hex options cert-hash-sha1 and/or cert-hash-sha256 hex options override certificate's, so it's possible to turn certficate hash verification off with just empty values (default).

Diffstat (limited to 'crypto')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: