Add support for SSL/TLS client authentication #169
Commits on Jan 31, 2024
-
Add support for SSL/TLS client authentication
Add support for mutual TLS authentication. This is the preferred method of authentication for bosch-iot-suite and the only one that allows you to keep the authenticator in a (f)TPM. Optionally, an Openssl engine can be configured if required for access to the ssl private key. Signed-off-by: Robin van der Gracht <[email protected]>
Commits on Mar 13, 2024
-
Support SSL/TLS client authentication for http streaming installations
Signed-off-by: Robin van der Gracht <[email protected]>
-
README.md: Add missing test suite dependency libcairo2-dev
libcairo2-dev is required for building the pycairo wheel which is a dependency for pygobject. Signed-off-by: Robin van der Gracht <[email protected]>
-
test: conftest: Allow removing multiple options from a config section
Dictionaries can't contain multiple items with the same key. This prevents removal of multiple options from the same config section. Signed-off-by: Florian Bezannier <[email protected]> Signed-off-by: Robin van der Gracht <[email protected]>
-
test: Run Hawkbit with native forward-headers-strategy
This option makes Hawkbit take the x-forward headers into account. Signed-off-by: Florian Bezannier <[email protected]> Signed-off-by: Robin van der Gracht <[email protected]>
-
test: conftest.py: Add option for a https nginx proxy
Signed-off-by: Florian Bezannier <[email protected]> Signed-off-by: Robin van der Gracht <[email protected]>
-
test: Add test fixture for pki files generation
Signed-off-by: Florian Bezannier <[email protected]> Signed-off-by: Robin van der Gracht <[email protected]>
-
test: Add mtls test for download and streaming installation
Based on the work of Florain Bezannier. Changes are that the client key and certificate are now provided to the rauc_dbus_dummy by rauc-hawkbit-updater through arguments of the InstallBundle method call (for streaming installations). This also removes the need for a separate mtls rauc_dbus_dummy fixture. Signed-off-by: Robin van der Gracht <[email protected]>
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.