diff options
author | Andreas Steffen <andreas.steffen@strongswan.org> | 2010-08-15 13:02:57 +0200 |
---|---|---|
committer | Andreas Steffen <andreas.steffen@strongswan.org> | 2010-08-15 13:02:57 +0200 |
commit | b51ac45c484b4fb08153fe2075b8899d48d36862 (patch) | |
tree | b01e63e2fda0a75203112d47d2c10451e8d66101 /src/libtls/tls.h | |
parent | 758d7283fbb626f5e90595ce180396e372bd4d8f (diff) | |
download | strongswan-b51ac45c484b4fb08153fe2075b8899d48d36862.tar.bz2 strongswan-b51ac45c484b4fb08153fe2075b8899d48d36862.tar.xz |
optional certificate-based peer authentication on TLS server side
Diffstat (limited to 'src/libtls/tls.h')
-rw-r--r-- | src/libtls/tls.h | 17 |
1 files changed, 9 insertions, 8 deletions
diff --git a/src/libtls/tls.h b/src/libtls/tls.h index ea66b7661..95ec6011c 100644 --- a/src/libtls/tls.h +++ b/src/libtls/tls.h @@ -161,15 +161,16 @@ struct tls_t { /** * Create a tls instance. * - * @param is_server TRUE to act as server, FALSE for client - * @param server server identity - * @param peer peer identity - * @param msk_label ASCII string constant used as seed for MSK PRF - * @param application higher layer application or NULL if none - * @return TLS stack + * @param is_server TRUE to act as server, FALSE for client + * @param server server identity + * @param peer peer identity + * @param request_peer_auth TRUE to request certificate-based peer authentication + * @param msk_label ASCII string constant used as seed for MSK PRF + * @param application higher layer application or NULL if none + * @return TLS stack */ tls_t *tls_create(bool is_server, identification_t *server, - identification_t *peer, char *msk_label, - tls_application_t *application); + identification_t *peer, bool request_peer_auth, + char *msk_label, tls_application_t *application); #endif /** TLS_H_ @}*/ |