Set GnuTLS priority string with new constant PROXY_TLS_PRIORITIES.

author Simon Ruderich <simon@ruderich.org>

Mon, 12 Aug 2013 13:17:02 +0000 (15:17 +0200)

committer Simon Ruderich <simon@ruderich.org>

Mon, 12 Aug 2013 13:17:02 +0000 (15:17 +0200)
author Simon Ruderich <simon@ruderich.org>
Mon, 12 Aug 2013 13:17:02 +0000 (15:17 +0200)
committer Simon Ruderich <simon@ruderich.org>
Mon, 12 Aug 2013 13:17:02 +0000 (15:17 +0200)
diff --git a/src/tlsproxy.c b/src/tlsproxy.c

index 77459304da23cd61867410d82e6a0a26e02636d0..751c8604c83e7ae22fb4106eb0a34c27d35a027d 100644 (file)
--- a/src/tlsproxy.c
+++ b/src/tlsproxy.c
@@ -413,7 +413,8 @@ static void initialize_gnutls(void) {
  #endif
  
      /* Setup GnuTLS cipher suites. */
-    result = gnutls_priority_init(&global_tls_priority_cache, "NORMAL", NULL);
+    result = gnutls_priority_init(&global_tls_priority_cache,
+                                  PROXY_TLS_PRIORITIES, NULL);
      GNUTLS_ERROR_EXIT(result, "gnutls_priority_init()");
  
      /* Read Diffie-Hellman parameters. */
diff --git a/src/tlsproxy.h b/src/tlsproxy.h

index f93be4609f9573fe49b578c3227a99222eae46d9..fae7d60dec4dbfd0647b2ad5017abbf17a1ee8ad 100644 (file)
--- a/src/tlsproxy.h
+++ b/src/tlsproxy.h
@@ -30,6 +30,7 @@
  
  #include "log.h"
  
+
  /* Length for path arrays. */
  #define TLSPROXY_MAX_PATH_LENGTH 1024
  
@@ -49,6 +50,9 @@
   * certificate. */
  #define STORED_SERVER_CERT_FILE_FORMAT "./certificate-%s-server.pem"
  
+/* GnuTLS priority string used for both server and client connections. */
+#define PROXY_TLS_PRIORITIES "NORMAL"
+
  
  /* Proxy hostname and port if specified on the command line. */
  char *global_proxy_host;
author	Simon Ruderich <simon@ruderich.org>
	Mon, 12 Aug 2013 13:17:02 +0000 (15:17 +0200)
committer	Simon Ruderich <simon@ruderich.org>
	Mon, 12 Aug 2013 13:17:02 +0000 (15:17 +0200)
src/tlsproxy.c		patch \| blob \| history
src/tlsproxy.h		patch \| blob \| history