X-Git-Url: https://ruderich.org/simon/gitweb/?a=blobdiff_plain;f=src%2Ftlsproxy.h;h=bcb9c2d34255245e2918c5d492396b51ccd9e870;hb=451082eb1b2f8fc5cbacbb65cd4e48348192b477;hp=b2d690e92c5a8206bdb9e82fd666833584802761;hpb=14106ea40a55acbba0d14a6f66350221ade044ab;p=tlsproxy%2Ftlsproxy.git

diff --git a/src/tlsproxy.h b/src/tlsproxy.h
index b2d690e..bcb9c2d 100644
--- a/src/tlsproxy.h
+++ b/src/tlsproxy.h
@@ -29,19 +29,23 @@
 /* GnuTLS */
 #include <gnutls/gnutls.h>
 
-
-/* Log level constants. */
-#define LOG_ERROR   0
-#define LOG_WARNING 1
-#define LOG_DEBUG   2
-
-
-/* Macros for shorter error handling. */
-#define GNUTLS_ERROR_EXIT(error, message) \
-    if (GNUTLS_E_SUCCESS != error) { \
-        fprintf(stderr, "%s: %s\n", message, gnutls_strerror(error)); \
-        exit(EXIT_FAILURE); \
-    }
+#include "log.h"
+
+
+/* Paths to necessary TLS files: the CA and the server key. */
+#define PROXY_CA_FILE  "proxy-ca.pem"
+#define PROXY_KEY_FILE "proxy-key.pem"
+/* Path to special "invalid" certificate send to the client when an error
+ * occurs. */
+#define PROXY_INVALID_CERT_FILE "proxy-invalid.pem"
+/* The server certificate for the given hostname is stored in
+ * "./certificate-hostname-proxy.pem" - we use this for the connection to the
+ * client. */
+#define PROXY_SERVER_CERT_FORMAT "./certificate-%s-proxy.pem"
+/* The remote server certificate for the given hostname is stored in
+ * "./certificate-hostname-proxy.pem" - we make sure the server sends this
+ * certificate. */
+#define STORED_SERVER_CERT_FORMAT "./certificate-%s-server.pem"
 
 
 /* Proxy hostname and port if specified on the command line. */