commit 114d06461e57c7ce2949e5de9f98e3cb3ae30ea6
parent 2a9aa77706f96e965894bd184d29ad6eae6b69ad
Author: Nihal Jere <nihal@nihaljere.xyz>
Date: Fri, 8 May 2020 19:34:09 -0500
added config.def.h
Diffstat:
3 files changed, 32 insertions(+), 1 deletion(-)
diff --git a/Makefile b/Makefile
@@ -9,7 +9,12 @@ CC = cc
SRC = tlsrp.c util.c
OBJ = tlsrp
-all:
+all: config.h tlsrp
+
+config.h:
+ cp config.def.h $@
+
+tlsrp:
$(CC) $(SRC) -o $(OBJ) $(FLAGS)
clean:
diff --git a/config.def.h b/config.def.h
@@ -0,0 +1,9 @@
+/* check libtls documentation for possible values */
+
+#include <libressl/tls.h>
+
+int protocols = TLS_PROTOCOLS_DEFAULT;
+
+const char* ciphers = "default";
+const char* dheparams = "auto";
+const char* ecdhecurves = "default";
diff --git a/tlsrp.c b/tlsrp.c
@@ -15,6 +15,7 @@
#include <libressl/tls.h>
#include "util.h"
+#include "config.h"
// capped at 104 for portability
#define SUN_PATH_LENGTH 104
@@ -247,6 +248,22 @@ main(int argc, char* argv[])
die("failed to get tls config:");
}
+ if (tls_config_set_protocols(config, protocols) == -1) {
+ die("failed to set protocols:");
+ }
+
+ if (tls_config_set_ciphers(config, ciphers) == -1) {
+ die("failed to set ciphers:");
+ }
+
+ if (tls_config_set_dheparams(config, dheparams) == -1) {
+ die("failed to set dheparams:");
+ }
+
+ if (tls_config_set_ecdhecurves(config, ecdhecurves) == -1) {
+ die("failed to set ecdhecurves:");
+ }
+
if (tls_config_set_ca_file(config, ca_path) == -1) {
tls_config_free(config);
die("failed to load ca file:");
