search

ooni / minivpn

A minimalistic OpenVPN implementation in Go
GNU General Public License v3.0
38 stars 6 forks source link

Feat/custom mtls auth #10

Closed ainghazal closed 2 years ago

ainghazal commented 2 years ago

pass a VerifyPeerCertificate callback that does not check certificate Common Name.

(this should be reviewed after #9, it is built on top of those commits - I will rebase the branch after that one is merged)

ainghazal commented 2 years ago

I have rebased after merging #9 - in this PR I also disable the tests for min/max, and add a more sensible clienthello spec as we discussed in there.

ready for review! (I now realize I should have marked this one as draft, sorry about that)

ainghazal commented 2 years ago

addressed comments and added a new test

ainghazal commented 2 years ago

@bassosimone this is ready for review one more time!