zara
/
zephyr
mirror of https://github.com/zephyrproject-rtos/zephyr
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

updatehub: Require peer verification with DTLS 

DTLS without peer verification offers no security whatsoever (and is
arguably worse than not using DTLS in the first place).

Change the verification option to require this peer verification.  To
use this, it may be necessary to install and use a root certificate.

Signed-off-by: David Brown <david.brown@linaro.org>
v2.1-branch
David Brown 5 years ago committed by David Leach
parent
839bee1eb0
commit
4635cd23bb
1 changed files with 1 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 2
      lib/updatehub/updatehub.c

2
lib/updatehub/updatehub.c
Unescape View File

@ -162,7 +162,7 @@ static bool start_coap_client(void) @@ -162,7 +162,7 @@ static bool start_coap_client(void)
}
#if defined(CONFIG_UPDATEHUB_DTLS)
int verify = 0;
int verify = 1;
sec_tag_t sec_list[] = { CA_CERTIFICATE_TAG };
int protocol = IPPROTO_DTLS_1_2;
char port[] = "5684";

Write Preview
Loading…
Cancel
Save