From: Simon Ruderich <simon@ruderich.org>
Date: Mon, 12 Aug 2013 13:17:02 +0000 (+0200)
Subject: Set GnuTLS priority string with new constant PROXY_TLS_PRIORITIES.
X-Git-Url: https://ruderich.org/simon/gitweb/?p=tlsproxy%2Ftlsproxy.git;a=commitdiff_plain;h=9f7ef8fa5c5216ac2510d2b4acb3b1b5c26886d1

Set GnuTLS priority string with new constant PROXY_TLS_PRIORITIES.

Same behaviour, "NORMAL" is still used.
---

diff --git a/src/tlsproxy.c b/src/tlsproxy.c
index 7745930..751c860 100644
--- a/src/tlsproxy.c
+++ b/src/tlsproxy.c
@@ -413,7 +413,8 @@ static void initialize_gnutls(void) {
 #endif
 
     /* Setup GnuTLS cipher suites. */
-    result = gnutls_priority_init(&global_tls_priority_cache, "NORMAL", NULL);
+    result = gnutls_priority_init(&global_tls_priority_cache,
+                                  PROXY_TLS_PRIORITIES, NULL);
     GNUTLS_ERROR_EXIT(result, "gnutls_priority_init()");
 
     /* Read Diffie-Hellman parameters. */
diff --git a/src/tlsproxy.h b/src/tlsproxy.h
index f93be46..fae7d60 100644
--- a/src/tlsproxy.h
+++ b/src/tlsproxy.h
@@ -30,6 +30,7 @@
 
 #include "log.h"
 
+
 /* Length for path arrays. */
 #define TLSPROXY_MAX_PATH_LENGTH 1024
 
@@ -49,6 +50,9 @@
  * certificate. */
 #define STORED_SERVER_CERT_FILE_FORMAT "./certificate-%s-server.pem"
 
+/* GnuTLS priority string used for both server and client connections. */
+#define PROXY_TLS_PRIORITIES "NORMAL"
+
 
 /* Proxy hostname and port if specified on the command line. */
 char *global_proxy_host;