Added a TLS purpose for EAP-TTLS with client authentication
This commit is contained in:
parent
5ff8c62707
commit
c310881a11
|
@ -96,6 +96,8 @@ enum tls_purpose_t {
|
|||
TLS_PURPOSE_EAP_TLS,
|
||||
/** outer authentication and protection in EAP-TTLS */
|
||||
TLS_PURPOSE_EAP_TTLS,
|
||||
/** EAP-TTLS with client authentication */
|
||||
TLS_PURPOSE_EAP_TTLS_CLIENT_AUTH,
|
||||
};
|
||||
|
||||
/**
|
||||
|
|
|
@ -926,6 +926,7 @@ tls_crypto_t *tls_crypto_create(tls_t *tls)
|
|||
build_cipher_suite_list(this, FALSE);
|
||||
break;
|
||||
case TLS_PURPOSE_EAP_TTLS:
|
||||
case TLS_PURPOSE_EAP_TTLS_CLIENT_AUTH:
|
||||
/* MSK PRF ASCII constant label according to EAP-TTLS RFC 5281 */
|
||||
this->msk_label = "ttls keying material";
|
||||
build_cipher_suite_list(this, TRUE);
|
||||
|
|
|
@ -682,6 +682,7 @@ tls_server_t *tls_server_create(tls_t *tls,
|
|||
switch (tls->get_purpose(tls))
|
||||
{
|
||||
case TLS_PURPOSE_EAP_TLS:
|
||||
case TLS_PURPOSE_EAP_TTLS_CLIENT_AUTH:
|
||||
this->request_peer_auth = TRUE;
|
||||
break;
|
||||
case TLS_PURPOSE_EAP_TTLS:
|
||||
|
|
Loading…
Reference in New Issue