diff options
Diffstat (limited to 'src/transport')
-rw-r--r-- | src/transport/plugin_transport_http_server.c | 58 | ||||
-rw-r--r-- | src/transport/transport.conf.in | 17 |
2 files changed, 30 insertions, 45 deletions
diff --git a/src/transport/plugin_transport_http_server.c b/src/transport/plugin_transport_http_server.c index 323379d3e..8e6eff072 100644 --- a/src/transport/plugin_transport_http_server.c +++ b/src/transport/plugin_transport_http_server.c | |||
@@ -1868,61 +1868,47 @@ server_load_file (const char *file) | |||
1868 | * Load ssl certificate | 1868 | * Load ssl certificate |
1869 | * | 1869 | * |
1870 | * @param plugin the plugin | 1870 | * @param plugin the plugin |
1871 | * @return GNUNET_OK on success, GNUNET_SYSERR on failure | 1871 | * @return #GNUNET_OK on success, #GNUNET_SYSERR on failure |
1872 | */ | 1872 | */ |
1873 | static int | 1873 | static int |
1874 | server_load_certificate (struct HTTP_Server_Plugin *plugin) | 1874 | server_load_certificate (struct HTTP_Server_Plugin *plugin) |
1875 | { | 1875 | { |
1876 | int res = GNUNET_OK; | 1876 | int res = GNUNET_OK; |
1877 | |||
1878 | char *sh; | ||
1879 | char *key_file; | 1877 | char *key_file; |
1880 | char *cert_file; | 1878 | char *cert_file; |
1881 | 1879 | ||
1882 | /* Get crypto init string from config | ||
1883 | * If not present just use default values */ | ||
1884 | |||
1885 | if (GNUNET_OK != | ||
1886 | GNUNET_CONFIGURATION_get_value_string (plugin->env->cfg, | ||
1887 | "PATHS", | ||
1888 | "SERVICEHOME", | ||
1889 | &sh)) | ||
1890 | { | ||
1891 | GNUNET_log_from (GNUNET_ERROR_TYPE_ERROR, plugin->name, | ||
1892 | "Failed to get servicehome!\n"); | ||
1893 | return GNUNET_SYSERR; | ||
1894 | } | ||
1895 | |||
1896 | |||
1897 | if (GNUNET_OK == | ||
1898 | GNUNET_CONFIGURATION_get_value_string (plugin->env->cfg, | ||
1899 | plugin->name, | ||
1900 | "CRYPTO_INIT", | ||
1901 | &plugin->crypto_init)) | ||
1902 | GNUNET_log_from (GNUNET_ERROR_TYPE_DEBUG, plugin->name, | ||
1903 | "Using crypto init string `%s'\n", | ||
1904 | plugin->crypto_init); | ||
1905 | else | ||
1906 | GNUNET_log_from (GNUNET_ERROR_TYPE_DEBUG, plugin->name, | ||
1907 | "Using default crypto init string \n"); | ||
1908 | 1880 | ||
1909 | if (GNUNET_OK != | 1881 | if (GNUNET_OK != |
1910 | GNUNET_CONFIGURATION_get_value_filename (plugin->env->cfg, plugin->name, | 1882 | GNUNET_CONFIGURATION_get_value_filename (plugin->env->cfg, plugin->name, |
1911 | "KEY_FILE", &key_file)) | 1883 | "KEY_FILE", &key_file)) |
1912 | { | 1884 | { |
1913 | GNUNET_break (0); | 1885 | GNUNET_log_config_missing (GNUNET_ERROR_TYPE_ERROR, |
1914 | GNUNET_asprintf (&key_file, "%s/%s", sh, "https_key.key"); | 1886 | plugin->name, "CERT_FILE"); |
1887 | return GNUNET_SYSERR; | ||
1915 | } | 1888 | } |
1916 | |||
1917 | |||
1918 | if (GNUNET_OK != | 1889 | if (GNUNET_OK != |
1919 | GNUNET_CONFIGURATION_get_value_filename (plugin->env->cfg, plugin->name, | 1890 | GNUNET_CONFIGURATION_get_value_filename (plugin->env->cfg, plugin->name, |
1920 | "CERT_FILE", &cert_file)) | 1891 | "CERT_FILE", &cert_file)) |
1921 | { | 1892 | { |
1922 | GNUNET_break (0); | 1893 | GNUNET_log_config_missing (GNUNET_ERROR_TYPE_ERROR, |
1923 | GNUNET_asprintf (&cert_file, "%s/%s", sh, "https_cert.crt"); | 1894 | plugin->name, "CERT_FILE"); |
1895 | GNUNET_free (key_file); | ||
1896 | return GNUNET_SYSERR; | ||
1924 | } | 1897 | } |
1925 | GNUNET_free (sh); | 1898 | /* Get crypto init string from config. If not present, use |
1899 | * default values */ | ||
1900 | if (GNUNET_OK == | ||
1901 | GNUNET_CONFIGURATION_get_value_string (plugin->env->cfg, | ||
1902 | plugin->name, | ||
1903 | "CRYPTO_INIT", | ||
1904 | &plugin->crypto_init)) | ||
1905 | GNUNET_log_from (GNUNET_ERROR_TYPE_DEBUG, plugin->name, | ||
1906 | "Using crypto init string `%s'\n", | ||
1907 | plugin->crypto_init); | ||
1908 | else | ||
1909 | GNUNET_log_from (GNUNET_ERROR_TYPE_DEBUG, plugin->name, | ||
1910 | "Using default crypto init string \n"); | ||
1911 | |||
1926 | /* read key & certificates from file */ | 1912 | /* read key & certificates from file */ |
1927 | GNUNET_log (GNUNET_ERROR_TYPE_DEBUG, | 1913 | GNUNET_log (GNUNET_ERROR_TYPE_DEBUG, |
1928 | "Trying to loading TLS certificate from key-file `%s' cert-file`%s'\n", | 1914 | "Trying to loading TLS certificate from key-file `%s' cert-file`%s'\n", |
diff --git a/src/transport/transport.conf.in b/src/transport/transport.conf.in index fd8b5dbbb..d9abdbf11 100644 --- a/src/transport/transport.conf.in +++ b/src/transport/transport.conf.in | |||
@@ -2,7 +2,6 @@ | |||
2 | AUTOSTART = YES | 2 | AUTOSTART = YES |
3 | @UNIXONLY@ PORT = 2091 | 3 | @UNIXONLY@ PORT = 2091 |
4 | HOSTNAME = localhost | 4 | HOSTNAME = localhost |
5 | HOME = $SERVICEHOME | ||
6 | BINARY = gnunet-service-transport | 5 | BINARY = gnunet-service-transport |
7 | #PREFIX = valgrind | 6 | #PREFIX = valgrind |
8 | NEIGHBOUR_LIMIT = 50 | 7 | NEIGHBOUR_LIMIT = 50 |
@@ -10,11 +9,11 @@ ACCEPT_FROM = 127.0.0.1; | |||
10 | ACCEPT_FROM6 = ::1; | 9 | ACCEPT_FROM6 = ::1; |
11 | PLUGINS = tcp udp | 10 | PLUGINS = tcp udp |
12 | UNIXPATH = /tmp/gnunet-service-transport.sock | 11 | UNIXPATH = /tmp/gnunet-service-transport.sock |
13 | BLACKLIST_FILE = $SERVICEHOME/blacklist | 12 | BLACKLIST_FILE = $GNUNET_CONFIG_HOME/transport/blacklist |
14 | UNIX_MATCH_UID = NO | 13 | UNIX_MATCH_UID = NO |
15 | UNIX_MATCH_GID = YES | 14 | UNIX_MATCH_GID = YES |
16 | # DISABLE_SOCKET_FORWARDING = NO | 15 | # DISABLE_SOCKET_FORWARDING = NO |
17 | # USERNAME = | 16 | # USERNAME = |
18 | # MAXBUF = | 17 | # MAXBUF = |
19 | # TIMEOUT = | 18 | # TIMEOUT = |
20 | # DISABLEV6 = | 19 | # DISABLEV6 = |
@@ -26,11 +25,11 @@ UNIX_MATCH_GID = YES | |||
26 | # Configuration settings related to traffic manipulation for testing purposes | 25 | # Configuration settings related to traffic manipulation for testing purposes |
27 | # Distance | 26 | # Distance |
28 | # MANIPULATE_DISTANCE_IN = 1 | 27 | # MANIPULATE_DISTANCE_IN = 1 |
29 | # MANIPULATE_DISTANCE_OUT = 1 | 28 | # MANIPULATE_DISTANCE_OUT = 1 |
30 | # Delay; WARNING: to large values may lead to peers not connecting! | 29 | # Delay; WARNING: to large values may lead to peers not connecting! |
31 | # MANIPULATE_DELAY_IN = 1 ms | 30 | # MANIPULATE_DELAY_IN = 1 ms |
32 | # MANIPULATE_DELAY_OUT = 1 ms | 31 | # MANIPULATE_DELAY_OUT = 1 ms |
33 | 32 | ||
34 | 33 | ||
35 | [transport-unix] | 34 | [transport-unix] |
36 | PORT = 22086 | 35 | PORT = 22086 |
@@ -79,16 +78,16 @@ TESTING_IGNORE_KEYS = ACCEPT_FROM; | |||
79 | [transport-https_server] | 78 | [transport-https_server] |
80 | # EXTERNAL_HOSTNAME = <your hostname/path> | 79 | # EXTERNAL_HOSTNAME = <your hostname/path> |
81 | # EXTERNAL_HOSTNAME_ONLY = YES | 80 | # EXTERNAL_HOSTNAME_ONLY = YES |
82 | # If you have a valid SSL certificate for your external hostname tell, | 81 | # If you have a valid SSL certificate for your external hostname tell, |
83 | # clients to verify it | 82 | # clients to verify it |
84 | # VERIFY_EXTERNAL_HOSTNAME = YES | 83 | # VERIFY_EXTERNAL_HOSTNAME = YES |
85 | # Does the external hostname use the same port? | 84 | # Does the external hostname use the same port? |
86 | # EXTERNAL_HOSTNAME_USE_PORT = YES | 85 | # EXTERNAL_HOSTNAME_USE_PORT = YES |
87 | PORT = 4433 | 86 | PORT = 4433 |
88 | ADVERTISED_PORT = 4433 | 87 | ADVERTISED_PORT = 4433 |
89 | CRYPTO_INIT = NORMAL | 88 | CRYPTO_INIT = NORMAL |
90 | KEY_FILE = $SERVICEHOME/https.key | 89 | KEY_FILE = $GNUNET_DATA_HOME/transport/https.key |
91 | CERT_FILE = $SERVICEHOME/https.cert | 90 | CERT_FILE = $GNUNET_DATA_HOME/transport/https.cert |
92 | MAX_CONNECTIONS = 128 | 91 | MAX_CONNECTIONS = 128 |
93 | TESTING_IGNORE_KEYS = ACCEPT_FROM; | 92 | TESTING_IGNORE_KEYS = ACCEPT_FROM; |
94 | 93 | ||