Make ECDHE group configurable: 224 for public, 256 for bridges (default)

author: Nick Mathewson <nickm@torproject.org> 2012-12-25 20:04:54 -0500
committer: Nick Mathewson <nickm@torproject.org> 2012-12-25 20:22:46 -0500
commit: 25afecdbf999eb91ed9216be1f8b8cdf0f78135b (patch)
tree: 73665d46e5858deac1c95c2473166c8c67e98dc7 /src/common/tortls.h
parent: c8b3bdb78215d4d7821d9bfa15bb8f7786403ce9 (diff)
download: tor-25afecdbf999eb91ed9216be1f8b8cdf0f78135b.tar.gz
tor-25afecdbf999eb91ed9216be1f8b8cdf0f78135b.zip
1 files changed, 6 insertions, 1 deletions
diff --git a/src/common/tortls.h b/src/common/tortls.h
index 8881827cef..df3ab87a17 100644
--- a/src/common/tortls.h
+++ b/src/common/tortls.h
@@ -54,7 +54,12 @@ const char *tor_tls_err_to_string(int err);
 void tor_tls_get_state_description(tor_tls_t *tls, char *buf, size_t sz);
 
 void tor_tls_free_all(void);
-int tor_tls_context_init(int is_public_server,
+
+#define TOR_TLS_CTX_IS_PUBLIC_SERVER (1u<<0)
+#define TOR_TLS_CTX_USE_ECDHE_P256   (1u<<1)
+#define TOR_TLS_CTX_USE_ECDHE_P224   (1u<<2)
+
+int tor_tls_context_init(unsigned flags,
                          crypto_pk_t *client_identity,
                          crypto_pk_t *server_identity,
                          unsigned int key_lifetime);
author	Nick Mathewson <nickm@torproject.org>	2012-12-25 20:04:54 -0500
committer	Nick Mathewson <nickm@torproject.org>	2012-12-25 20:22:46 -0500
commit	25afecdbf999eb91ed9216be1f8b8cdf0f78135b (patch)
tree	73665d46e5858deac1c95c2473166c8c67e98dc7 /src/common/tortls.h
parent	c8b3bdb78215d4d7821d9bfa15bb8f7786403ce9 (diff)
download	tor-25afecdbf999eb91ed9216be1f8b8cdf0f78135b.tar.gz tor-25afecdbf999eb91ed9216be1f8b8cdf0f78135b.zip