summaryrefslogtreecommitdiff
path: root/src/or/config.c
diff options
context:
space:
mode:
authorNick Mathewson <nickm@torproject.org>2015-03-14 12:40:55 -0400
committerNick Mathewson <nickm@torproject.org>2015-03-14 12:40:55 -0400
commit511ca9b91cec03f4ef6f23adccd5cdd47a245e5f (patch)
treeb9af3492ed729dffbe25149151e9c1845d38101c /src/or/config.c
parent4247ce99e5d9b7b2063df66cc808fac1f09fb799 (diff)
downloadtor-511ca9b91cec03f4ef6f23adccd5cdd47a245e5f.tar.gz
tor-511ca9b91cec03f4ef6f23adccd5cdd47a245e5f.zip
Remove DynamicDHGroups as obsoleted by PluggableTransports or P256.
Closes ticket 13736.
Diffstat (limited to 'src/or/config.c')
-rw-r--r--src/or/config.c25
1 files changed, 3 insertions, 22 deletions
diff --git a/src/or/config.c b/src/or/config.c
index fca350c203..a29cbce481 100644
--- a/src/or/config.c
+++ b/src/or/config.c
@@ -225,7 +225,7 @@ static config_var_t option_vars_[] = {
V(DisableDebuggerAttachment, BOOL, "1"),
V(DisableIOCP, BOOL, "1"),
OBSOLETE("DisableV2DirectoryInfo_"),
- V(DynamicDHGroups, BOOL, "0"),
+ OBSOLETE("DynamicDHGroups"),
VPORT(DNSPort, LINELIST, NULL),
V(DNSListenAddress, LINELIST, NULL),
V(DownloadExtraInfo, BOOL, "0"),
@@ -1318,10 +1318,6 @@ options_transition_requires_fresh_tls_context(const or_options_t *old_options,
if (!old_options)
return 0;
- if ((old_options->DynamicDHGroups != new_options->DynamicDHGroups)) {
- return 1;
- }
-
if (!opt_streq(old_options->TLSECGroup, new_options->TLSECGroup))
return 1;
@@ -1503,23 +1499,8 @@ options_act(const or_options_t *old_options)
finish_daemon(options->DataDirectory);
}
- /* If needed, generate a new TLS DH prime according to the current torrc. */
- if (server_mode(options) && options->DynamicDHGroups) {
- char *keydir = get_datadir_fname("keys");
- if (check_private_dir(keydir, CPD_CREATE, options->User)) {
- tor_free(keydir);
- return -1;
- }
- tor_free(keydir);
-
- if (!old_options || !old_options->DynamicDHGroups) {
- char *fname = get_datadir_fname2("keys", "dynamic_dh_params");
- crypto_set_tls_dh_prime(fname);
- tor_free(fname);
- }
- } else { /* clients don't need a dynamic DH prime. */
- crypto_set_tls_dh_prime(NULL);
- }
+ /* Probably not needed any longer XXXX */
+ crypto_set_tls_dh_prime();
/* We want to reinit keys as needed before we do much of anything else:
keys are important, and other things can depend on them. */
7apu2bq3rhoylwmucxizk54afw5jyda7pho4j5zdcqpwkufke7zdzwad.onion