Add support to eap_peer for client cert and CA cert on smartcard and in

phase2 auth.
This commit is contained in:
David Smith 2008-05-23 10:52:49 +03:00 committed by Jouni Malinen
parent e59c91af82
commit d1f73353bc
2 changed files with 45 additions and 0 deletions

View file

@ -416,6 +416,44 @@ struct eap_peer_config {
*/ */
char *key_id; char *key_id;
/**
* cert_id - Cert ID for OpenSSL engine
*
* This is used if the certificate operations for EAP-TLS are performed
* using a smartcard.
*/
char *cert_id;
/**
* ca_cert_id - CA Cert ID for OpenSSL engine
*
* This is used if the CA certificate for EAP-TLS is on a smartcard.
*/
char *ca_cert_id;
/**
* key2_id - Key ID for OpenSSL engine (phase2)
*
* This is used if private key operations for EAP-TLS are performed
* using a smartcard.
*/
char *key2_id;
/**
* cert2_id - Cert ID for OpenSSL engine (phase2)
*
* This is used if the certificate operations for EAP-TLS are performed
* using a smartcard.
*/
char *cert2_id;
/**
* ca_cert2_id - CA Cert ID for OpenSSL engine (phase2)
*
* This is used if the CA certificate for EAP-TLS is on a smartcard.
*/
char *ca_cert2_id;
/** /**
* otp - One-time-password * otp - One-time-password
* *

View file

@ -59,6 +59,8 @@ static void eap_tls_params_from_conf1(struct tls_connection_params *params,
params->engine_id = config->engine_id; params->engine_id = config->engine_id;
params->pin = config->pin; params->pin = config->pin;
params->key_id = config->key_id; params->key_id = config->key_id;
params->cert_id = config->cert_id;
params->ca_cert_id = config->ca_cert_id;
} }
@ -73,6 +75,11 @@ static void eap_tls_params_from_conf2(struct tls_connection_params *params,
params->dh_file = (char *) config->dh_file2; params->dh_file = (char *) config->dh_file2;
params->subject_match = (char *) config->subject_match2; params->subject_match = (char *) config->subject_match2;
params->altsubject_match = (char *) config->altsubject_match2; params->altsubject_match = (char *) config->altsubject_match2;
params->engine_id = config->engine_id;
params->pin = config->pin;
params->key_id = config->key2_id;
params->cert_id = config->cert2_id;
params->ca_cert_id = config->ca_cert2_id;
} }