Cloud: Verify Cloud ID in Certificate Common Name during TLS Handshake

#### Current behavior:
Currently, the cloud client establishes a connection to the cloud server without verifying if the cloud contains the ID in the certificate's common name.

#### Expected behavior:
During the TLS handshake, the `tls_verify_callback` should check if the common name of the certificate contains the [cloud ID](https://github.com/iotivity/iotivity-lite/blob/a1e4aba4b1cda36bdb8fddfe4ede477416681076/api/cloud/oc_cloud_store_internal.h#L45). The [code](https://github.com/iotivity/iotivity-lite/blob/a1e4aba4b1cda36bdb8fddfe4ede477416681076/api/cloud/oc_cloud_access.c#L84) needs to be modified accordingly.

**Note**: The cloud will set its own verify [callback](https://github.com/iotivity/iotivity-lite/blob/a1e4aba4b1cda36bdb8fddfe4ede477416681076/security/oc_tls_internal.h#L144) to verify the cloud ID. All other setup will remain the same as before.

For inspiration, refer to this [example](https://github.com/iotivity/iotivity-lite/blob/a1e4aba4b1cda36bdb8fddfe4ede477416681076/api/plgd/plgd_time.c#L792).

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Cloud: Verify Cloud ID in Certificate Common Name during TLS Handshake #633

Current behavior:

Expected behavior:

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Cloud: Verify Cloud ID in Certificate Common Name during TLS Handshake #633

Description

Current behavior:

Expected behavior:

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions