Roxen.git / server / base_server / roxen.pike

version» Context lines:

Roxen.git/server/base_server/roxen.pike:2324:       protected void create()    {    path = "";    port = default_port;    ip = "0.0.0.0";    }   }      #if constant(SSL.sslfile) +  + // Some convenience functions. + #if constant(SSL.Constants.fmt_cipher_suites) + constant fmt_cipher_suite = SSL.Constants.fmt_cipher_suite; + constant fmt_cipher_suites = SSL.Constants.fmt_cipher_suites; + #else + protected mapping(int:string) suite_to_symbol = ([]); +  + string fmt_cipher_suite(int suite) + { +  if (!sizeof(suite_to_symbol)) { +  foreach(indices(SSL.Constants), string id) { +  if (has_prefix(id, "SSL_") || has_prefix(id, "TLS_") || +  has_prefix(id, "SSL2_")) { +  suite_to_symbol[SSL.Constants[id]] = id; +  } +  } +  } +  string res = suite_to_symbol[suite]; +  if (res) return res; +  return suite_to_symbol[suite] = sprintf("unknown(%d)", suite); + } +  + string fmt_cipher_suites(array(int) s) + { +  String.Buffer b = String.Buffer(); +  foreach(s, int c) { +  b->add(sprintf(" %-6d: %s\n", c, fmt_cipher_suite(c))); +  } +  return (string)b; + } + #endif +    class SSLProtocol   //! Base protocol for SSL ports. Exactly like Port, but uses SSL.   {    inherit Protocol;       // SSL context    SSL.context ctx = SSL.context();       int cert_failure;   
Roxen.git/server/base_server/roxen.pike:2442: Inside #if undefined(ALLOW_WEAK_SSL)
   SSL.Constants.SSL_dhe_dss_with_des_cbc_sha,    SSL.Constants.SSL_rsa_export_with_rc4_40_md5,    SSL.Constants.TLS_rsa_with_null_sha256,    SSL.Constants.SSL_rsa_with_null_sha,    SSL.Constants.SSL_rsa_with_null_md5,    SSL.Constants.SSL_dhe_dss_export_with_des40_cbc_sha,    SSL.Constants.SSL_null_with_null_null,    });   #endif   #endif /* SSL.ServerConnection */ + #ifdef ROXEN_SSL_DEBUG +  report_debug("SSL: Cipher suites enabled for %O:\n" +  "%s\n", +  this_object(), +  fmt_cipher_suites(ctx->preferred_suites)); + #endif    }       // NB: The TBS Tools.X509 API has been deprecated in Pike 8.0.   #pragma no_deprecation_warnings    void certificates_changed(Variable.Variable|void ignored,    void|int ignore_eaddrinuse)    {    int old_cert_failure = cert_failure;       string raw_keydata;