/[svn]/ircd-hybrid/trunk/src/tls_openssl.c
ViewVC logotype

Diff of /ircd-hybrid/trunk/src/tls_openssl.c

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

revision 7232 by michael, Sat Jan 30 18:48:01 2016 UTC revision 7233 by michael, Wed Feb 3 16:07:50 2016 UTC
# Line 83  tls_init(void) Line 83  tls_init(void)
83    SSL_CTX_set_cipher_list(ConfigServerInfo.tls_ctx.server_ctx, "EECDH+HIGH:EDH+HIGH:HIGH:!aNULL");    SSL_CTX_set_cipher_list(ConfigServerInfo.tls_ctx.server_ctx, "EECDH+HIGH:EDH+HIGH:HIGH:!aNULL");
84    
85  #ifndef OPENSSL_NO_ECDH  #ifndef OPENSSL_NO_ECDH
86    {    EC_KEY *key = EC_KEY_new_by_curve_name(NID_X9_62_prime256v1);
     EC_KEY *key = EC_KEY_new_by_curve_name(NID_X9_62_prime256v1);  
87    
88      if (key)    if (key)
89      {    {
90        SSL_CTX_set_tmp_ecdh(ConfigServerInfo.tls_ctx.server_ctx, key);      SSL_CTX_set_tmp_ecdh(ConfigServerInfo.tls_ctx.server_ctx, key);
91        EC_KEY_free(key);      EC_KEY_free(key);
     }  
92    }    }
93    
94    SSL_CTX_set_options(ConfigServerInfo.tls_ctx.server_ctx, SSL_OP_SINGLE_ECDH_USE);    SSL_CTX_set_options(ConfigServerInfo.tls_ctx.server_ctx, SSL_OP_SINGLE_ECDH_USE);
Legend:
Removed from v.7232  
changed lines
  Added in v.7233
svnadmin@ircd-hybrid.org
 ViewVC Help
Powered by ViewVC 1.1.28