diff --git a/http_server.c b/http_server.c index fd13dca..f6d718e 100644 --- a/http_server.c +++ b/http_server.c @@ -250,10 +250,10 @@ void load_config(const char *file) LOG("SSL enable %d", server_config.usessl); LOG("SSL cert %s", server_config.sslcert); LOG("SSL key %s", server_config.sslkey); - if(!server_config.ssl_cipher) + /*if(!server_config.ssl_cipher) LOG("SSL Cipher suite: %s", "HIGH"); else - LOG("SSL Cipher suite: %s", server_config.ssl_cipher); + LOG("SSL Cipher suite: %s", server_config.ssl_cipher);*/ #endif } LOG("%d mimes entries found", server_config.mimes->size); diff --git a/httpd.c b/httpd.c index 41da595..d5d4f5b 100644 --- a/httpd.c +++ b/httpd.c @@ -10,7 +10,6 @@ static int server_sock = -1; // define the cipher suit used // dirty hack, this should be configured by the configuration file -// #define CIPHER_SUIT "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256" #define CIPHER_SUIT "HIGH" static int ssl_session_ctx_id = 1; @@ -61,6 +60,7 @@ void configure_context(SSL_CTX *ctx) // set the cipher suit config_t * cnf = config(); const char* suit = cnf->ssl_cipher?cnf->ssl_cipher:CIPHER_SUIT; + LOG("Cirpher suit used: %s", suit); if (SSL_CTX_set_cipher_list(ctx, suit) != 1) { ERR_print_errors_fp(stderr);