mirror of
https://github.com/unrealircd/unrealircd.git
synced 2026-06-29 15:06:37 +02:00
Bram Matthys
18b171a071
+#define HAS_ASN1_TIME_diff
+#define HAS_SSL_CTX_SET_MIN_PROTO_VERSION
+#define HAS_SSL_CTX_SET_SECURITY_LEVEL
+#define HAS_X509_check_host
+#define HAS_X509_get0_notAfter
In practice, this only adds that we now do certificate expiry checks
and give warnings, like on *NIX.
The HAS_X509_check_host is good because then OpenSSL/LibreSSL code is
used instead of the one we have from cURL and the ssl conservatory.
To be honest I wanted to rip out this fallback completely at first,
but let's do that in next major version of UnrealIRCd and not during
an existing series.
The HAS_SSL_CTX_SET_* would have given an admin the option to downgrade
to TLSv1.0 or TLSv1.1 but LibreSSL no longer builds with these since
LibreSSL 3.8.1, which is sensible, so... no actual change there.
I'll document the behavior in the docs (wiki), though.
Also the previous claim in b653c68df0 with
regards to what curves were actually enabled in our LibreSSL UnrealIRCd 6
builds was incorrect, an hour ago I claimed X448 would show up as an extra,
but that is not the case (that was with OpenSSL). The correct statement is:
"This also meant the default curves that were offered were up to LibreSSL,
which meant the following list in practice:
Elliptic curves offered: prime256v1 secp384r1 X25519
Instead of:
Elliptic curves offered: prime256v1 secp384r1 secp521r1 X25519"
So it was only missing secp521r1. Nothing major.
79 lines
2.4 KiB
C
79 lines
2.4 KiB
C
/************************************************************************
|
|
* IRC - Internet Relay Chat, include/win32/setup.h
|
|
* Copyright (C) 1999 Carsten Munk
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 1, or (at your option)
|
|
* any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software
|
|
* Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
|
|
*
|
|
* $Id$
|
|
*/
|
|
|
|
#ifndef __setup_include__
|
|
#define __setup_include__
|
|
|
|
#undef SYSSYSLOGH
|
|
#define NOINDEX
|
|
#undef TIMES_2
|
|
#undef GETRUSAGE_2
|
|
#define CONFDIR "conf"
|
|
#define MODULESDIR "modules"
|
|
#define LOGDIR "logs"
|
|
#define PERMDATADIR "data"
|
|
#define CACHEDIR "cache"
|
|
#define TMPDIR "tmp"
|
|
#define PIDFILE PERMDATADIR"/unrealircd.pid"
|
|
#define CONTROLFILE PERMDATADIR"/unrealircd.ctl"
|
|
#define NO_U_TYPES
|
|
#define NEED_U_INT32_T
|
|
#define strcasecmp _stricmp
|
|
#define strncasecmp _strnicmp
|
|
#define HAVE_EXPLICIT_BZERO
|
|
#define HAVE_STRNLEN
|
|
#define explicit_bzero(a,b) SecureZeroMemory(a,b)
|
|
#define HAS_ASN1_TIME_diff
|
|
#define HAS_SSL_CTX_SET1_CURVES_LIST
|
|
#define HAS_SSL_CTX_SET_MIN_PROTO_VERSION
|
|
#define HAS_SSL_CTX_SET_SECURITY_LEVEL
|
|
#define HAS_X509_check_host
|
|
#define HAS_X509_get0_notAfter
|
|
|
|
/* mode_t: Needed in s_conf.c for the third argument of open(3p).
|
|
* Should be an int because of http://msdn.microsoft.com/en-us/library/z0kc8e3z(VS.71).aspx
|
|
*/
|
|
#define mode_t int
|
|
|
|
/* We don't use any of the wincrypt stuff and this silences
|
|
* a warning emitted by LibreSSL:
|
|
*/
|
|
#define NOCRYPT
|
|
|
|
/* We require Windows 7 or later */
|
|
#define NTDDI_VERSION 0x06010000
|
|
#define _WIN32_WINNT 0x0601
|
|
|
|
/* Generation version number (e.g.: 3 for Unreal3*) */
|
|
#define UNREAL_VERSION_GENERATION 6
|
|
|
|
/* Major version number (e.g.: 2 for Unreal3.2*) */
|
|
#define UNREAL_VERSION_MAJOR 1
|
|
|
|
/* Minor version number (e.g.: 1 for Unreal3.2.1) */
|
|
#define UNREAL_VERSION_MINOR 8
|
|
|
|
/* Version suffix such as a beta marker or release candidate marker. (e.g.:
|
|
-rcX for unrealircd-3.2.9-rcX) */
|
|
#define UNREAL_VERSION_SUFFIX ".1"
|
|
|
|
#endif
|