From 1bfa09d1b26c8fc088d26df8bb89f11b059c0ea0 Mon Sep 17 00:00:00 2001
From: "7u83@mail.ru" <7u83@mail.ru@noemail.net>
Date: Sun, 1 Apr 2018 08:04:09 +0000
Subject: [PATCH] new function

FossilOrigin-Name: 1a427341fb5ac85b982d22703f9e104f9a086db6980fd31752802f54798bae61
---
 src/cw/cw_setup_dtls.c | 36 ++++++++++++++++++++++++++++++++++++
 1 file changed, 36 insertions(+)
 create mode 100644 src/cw/cw_setup_dtls.c

diff --git a/src/cw/cw_setup_dtls.c b/src/cw/cw_setup_dtls.c
new file mode 100644
index 00000000..3ac9c3b0
--- /dev/null
+++ b/src/cw/cw_setup_dtls.c
@@ -0,0 +1,36 @@
+#include "cw.h"
+
+int cw_setup_dtls(struct conn * conn, mavl_t cfg, const char *prefix, char  * default_cipher)
+{
+	char key[CW_KTV_MAX_KEY_LEN];
+	char *ssl_psk,*ssl_cert,*ssl_key;
+	uint8_t security;
+	
+	security = 0;
+	
+	sprintf(key,"%s/%s",prefix,"ssl-cipher");
+	conn->dtls_cipher = cw_ktv_get_str(cfg,key, default_cipher);
+	
+	sprintf(key,"%s/%s",prefix,"ssl-psk");
+	ssl_psk = cw_ktv_get_str(cfg,key,NULL);
+	if (ssl_psk != NULL){
+		conn->dtls_psk=ssl_psk;
+		conn->dtls_psk_len=strlen(ssl_psk);
+		security |= CAPWAP_FLAG_AC_SECURITY_S;
+	}
+
+	sprintf(key,"%s/%s",prefix,"ssl-certfile");
+	ssl_cert = cw_ktv_get_str(conn->local_cfg,key,NULL);
+	sprintf(key,"%s/%s",prefix,"ssl-keyfile");
+	ssl_key = cw_ktv_get_str(conn->local_cfg,key,NULL);
+	
+	if (ssl_cert != NULL && ssl_key != NULL){
+		conn->dtls_cert_file = ssl_cert;
+		conn->dtls_key_file = ssl_key;
+		sprintf(key,"%s/%s",prefix,"ssl-keypass");
+		conn->dtls_key_pass = cw_ktv_get_str(cfg,key,NULL);
+		security |= CAPWAP_FLAG_AC_SECURITY_X;
+	}
+
+	return security;
+}
\ No newline at end of file