Merge pull request #5561

9bfa4c20 Fix allow any cert mode in wallet rpc when configured over rpc (Lee Clagett) 3544596f Add ssl_options support to monerod's rpc mode. (Lee Clagett) c9aaccf3 Fix configuration bug; wallet2 --daemon-ssl-allow-any-cert now works. (Lee Clagett)
author: Riccardo Spagni <ric@spagni.net> 2019-06-01 20:21:45 +0200
committer: Riccardo Spagni <ric@spagni.net> 2019-06-01 20:21:45 +0200
commit: 14d329564960a858d2e459cb3f067f0cf360f500 (patch)
tree: f80da399fb3d687864cf8a053dbcc459703a1c66 /src/rpc/rpc_args.h
parent: Merge pull request #5558 (diff)
parent: Fix allow any cert mode in wallet rpc when configured over rpc (diff)
download: monero-14d329564960a858d2e459cb3f067f0cf360f500.tar.xz
1 files changed, 16 insertions, 2 deletions
diff --git a/src/rpc/rpc_args.h b/src/rpc/rpc_args.h
index 216ba3712..619f02b42 100644
--- a/src/rpc/rpc_args.h
+++ b/src/rpc/rpc_args.h
@@ -35,6 +35,7 @@
 
 #include "common/command_line.h"
 #include "common/password.h"
+#include "net/net_ssl.h"
 
 namespace cryptonote
 {
@@ -54,16 +55,29 @@ namespace cryptonote
       const command_line::arg_descriptor<std::string> rpc_login;
       const command_line::arg_descriptor<bool> confirm_external_bind;
       const command_line::arg_descriptor<std::string> rpc_access_control_origins;
+      const command_line::arg_descriptor<std::string> rpc_ssl;
+      const command_line::arg_descriptor<std::string> rpc_ssl_private_key;
+      const command_line::arg_descriptor<std::string> rpc_ssl_certificate;
+      const command_line::arg_descriptor<std::string> rpc_ssl_ca_certificates;
+      const command_line::arg_descriptor<std::vector<std::string>> rpc_ssl_allowed_fingerprints;
+      const command_line::arg_descriptor<bool> rpc_ssl_allow_chained;
+      const command_line::arg_descriptor<bool> rpc_ssl_allow_any_cert;
     };
 
+    // `allow_any_cert` bool toggles `--rpc-ssl-allow-any-cert` configuration
+
     static const char* tr(const char* str);
-    static void init_options(boost::program_options::options_description& desc);
+    static void init_options(boost::program_options::options_description& desc, const bool any_cert_option = false);
 
     //! \return Arguments specified by user, or `boost::none` if error
-    static boost::optional<rpc_args> process(const boost::program_options::variables_map& vm);
+    static boost::optional<rpc_args> process(const boost::program_options::variables_map& vm, const bool any_cert_option = false);
+
+    //! \return SSL arguments specified by user, or `boost::none` if error
+    static boost::optional<epee::net_utils::ssl_options_t> process_ssl(const boost::program_options::variables_map& vm, const bool any_cert_option = false);
 
     std::string bind_ip;
     std::vector<std::string> access_control_origins;
     boost::optional<tools::login> login; // currently `boost::none` if unspecified by user
+    epee::net_utils::ssl_options_t ssl_options = epee::net_utils::ssl_support_t::e_ssl_support_enabled;
   };
 }
author	Riccardo Spagni <ric@spagni.net>	2019-06-01 20:21:45 +0200
committer	Riccardo Spagni <ric@spagni.net>	2019-06-01 20:21:45 +0200
commit	14d329564960a858d2e459cb3f067f0cf360f500 (patch)
tree	f80da399fb3d687864cf8a053dbcc459703a1c66 /src/rpc/rpc_args.h
parent	Merge pull request #5558 (diff)
parent	Fix allow any cert mode in wallet rpc when configured over rpc (diff)
download	monero-14d329564960a858d2e459cb3f067f0cf360f500.tar.xz