X-Git-Url: https://ruderich.org/simon/gitweb/?a=blobdiff_plain;f=src%2Ftlsproxy.h;h=5c0940c932f66365af0e12cd657e8e9d22e03e6e;hb=3eebfbd0b124c034d57e9ddba051e82fe99ba05f;hp=f23167e6e2e143f3c7298d4cd4741826a48d9f48;hpb=d778944d0403b093d43d9cbd94bd298bfc3a8d42;p=tlsproxy%2Ftlsproxy.git

diff --git a/src/tlsproxy.h b/src/tlsproxy.h
index f23167e..5c0940c 100644
--- a/src/tlsproxy.h
+++ b/src/tlsproxy.h
@@ -22,11 +22,10 @@
 
 #include <config.h>
 
-#include <stdlib.h>
 #include <stdio.h>
+#include <stdlib.h>
 #include <string.h>
 
-/* GnuTLS */
 #include <gnutls/gnutls.h>
 
 #include "log.h"
@@ -34,12 +33,13 @@
 /* Length for path arrays. */
 #define TLSPROXY_MAX_PATH_LENGTH 1024
 
-/* Paths to necessary TLS files: the CA and the server key. */
-#define PROXY_CA_FILE  "proxy-ca.pem"
-#define PROXY_KEY_FILE "proxy-key.pem"
+/* Paths to necessary TLS files: the CA, the server key and DH parameters. */
+#define PROXY_CA_PATH  "proxy-ca.pem"
+#define PROXY_KEY_PATH "proxy-key.pem"
+#define PROXY_DH_PATH  "proxy-dh.pem"
 /* Path to special "invalid" certificate send to the client when an error
  * occurs. */
-#define PROXY_INVALID_CERT_FILE "proxy-invalid.pem"
+#define PROXY_INVALID_CERT_PATH "proxy-invalid.pem"
 /* The server certificate for the given hostname is stored in
  * "./certificate-hostname-proxy.pem" - we use this for the connection to the
  * client. */
@@ -54,6 +54,9 @@
 char *global_proxy_host;
 char *global_proxy_port;
 
+/* Passphrase for authentication of this proxy. Used with the -a option. */
+char *global_http_digest_authorization;
+
 /* Log level, command line option. */
 int global_log_level;
 
@@ -65,4 +68,10 @@ int global_passthrough_unknown;
 gnutls_priority_t global_tls_priority_cache;
 gnutls_dh_params_t global_tls_dh_params;
 
+/* Very simple compile time asserts. No good error message though. */
+#define ct_assert(x) { \
+    int unused[(x) ? 1 : -1]; \
+    (void)unused; \
+}
+
 #endif