diff options
| author | Yawning Angel <yawning@schwanenlied.me> | 2015-05-21 17:07:30 +0000 |
|---|---|---|
| committer | Yawning Angel <yawning@schwanenlied.me> | 2015-05-21 17:07:30 +0000 |
| commit | 452cebc4a41bdba41d4a8ce3c16e73d585bb53f4 (patch) | |
| tree | 90145e18db15b67bdaf7e47a771c51014ec54ba7 /src/common/tortls.h | |
| parent | 0b7bf3585a378bca4fc5bb551af3c37d517fdf28 (diff) | |
| download | tor-452cebc4a41bdba41d4a8ce3c16e73d585bb53f4.tar.gz tor-452cebc4a41bdba41d4a8ce3c16e73d585bb53f4.zip | |
Remove support for OpenSSL without ECC.
As OpenSSL >= 1.0.0 is now required, ECDHE is now mandatory. The group
has to be validated at runtime, because of RedHat lawyers (P224 support
is entirely missing in the OpenSSL RPM, but P256 is present and is the
default).
Resolves ticket #16140.
Diffstat (limited to 'src/common/tortls.h')
| -rw-r--r-- | src/common/tortls.h | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/src/common/tortls.h b/src/common/tortls.h index 083052f4b2..9216e83150 100644 --- a/src/common/tortls.h +++ b/src/common/tortls.h @@ -139,5 +139,7 @@ int tor_tls_cert_is_valid(int severity, int check_rsa_1024); const char *tor_tls_get_ciphersuite_name(tor_tls_t *tls); +int evaluate_ecgroup_for_tls(const char *ecgroup); + #endif |