implement certificate validation (including CN verification)

[project/ustream-ssl.git] / ustream-polarssl.h

diff --git a/ustream-polarssl.h b/ustream-polarssl.h
index 1da2ff6cb2426fef79a0d5aff3213dbcfe21dc41..527c14a759a41651743343eb9ed12d41202e7156 100644 (file)
--- a/ustream-polarssl.h
+++ b/ustream-polarssl.h
@@ -39,8 +39,8 @@ struct ustream_ssl_ctx {
 #else
        rsa_context key;
 #endif
+       x509_crt ca_cert;
        x509_crt cert;
-       int auth;
        bool server;
 };
 
@@ -50,6 +50,7 @@ static inline char *__ustream_ssl_strerror(int error, char *buffer, int len)
        return buffer;
 }
 
+void __ustream_ssl_update_peer_cn(struct ustream_ssl *us);
 void __ustream_ssl_session_free(void *ssl);
 void *__ustream_ssl_session_new(struct ustream_ssl_ctx *ctx);