diff options
author | Tor Brede Vekterli <vekterli@oath.com> | 2018-10-31 16:04:24 +0000 |
---|---|---|
committer | Tor Brede Vekterli <vekterli@oath.com> | 2018-11-08 16:32:00 +0000 |
commit | 8444c245b06837d0b5dd3a1fa2d7b724d283a282 (patch) | |
tree | aa6d243d900e76869c74329201bfd43826f76385 /vespalib/CMakeLists.txt | |
parent | b4cc9edbc9c4d157eef620d54c7cdc50c92255a5 (diff) |
Add support for basic certificate verification policies in C++
Extends TLS config JSON file with an `allowed-peers` object, which
if non-empty specifies a set of policies that a peer may match. If
at least one policy exists a peer must match all requirements in
any single policy to be allowed to connect. I.e. it's sufficient
to match 1 policy out of many.
Diffstat (limited to 'vespalib/CMakeLists.txt')
-rw-r--r-- | vespalib/CMakeLists.txt | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/vespalib/CMakeLists.txt b/vespalib/CMakeLists.txt index 08df6bb2c15..6491bdfb036 100644 --- a/vespalib/CMakeLists.txt +++ b/vespalib/CMakeLists.txt @@ -62,6 +62,7 @@ vespa_define_module( src/tests/net/sync_crypto_socket src/tests/net/tls/direct_buffer_bio src/tests/net/tls/openssl_impl + src/tests/net/tls/policy_checking_certificate_verifier src/tests/net/tls/protocol_snooping src/tests/net/tls/transport_options src/tests/objects/nbostream |