modules/s_keys: Auto-generate dhparams on key init.

2024-12-28 16:34:13 +01:00 · 2018-08-28 15:06:07 -07:00 · 2018-08-28 15:06:07 -07:00 · 1ae8b8cc4a
commit 1ae8b8cc4a
parent c7ccf8dcc8
1 changed files with 22 additions and 0 deletions
--- a/modules/s_keys.cc
+++ b/modules/s_keys.cc
@ -63,6 +63,12 @@ init_my_tls_crt()
 		m::self::origin + ".crt.key.pub",
 	};

+	const std::string dhparam_path_parts[]
+	{
+		tls_key_dir,
+		m::self::origin + ".crt.dh",
+	};
+
 	const std::string certificate_path_parts[]
 	{
 		tls_key_dir,
@ -79,6 +85,11 @@ init_my_tls_crt()
 		fs::make_path(public_key_path_parts)
 	};

+	const std::string dhparam_file
+	{
+		fs::make_path(dhparam_path_parts)
+	};
+
 	const std::string cert_file
 	{
 		fs::make_path(certificate_path_parts)
@ -95,6 +106,17 @@ init_my_tls_crt()
 		openssl::genrsa(private_key_file, public_key_file);
 	}

+	if(!fs::exists(dhparam_file))
+	{
+		log::warning
+		{
+			"Failed to find dhparam file @ `%s'; creating; this will take a long time...",
+			dhparam_file
+		};
+
+		openssl::gendh(dhparam_file);
+	}
+
 	const json::object config{};
 	if(!fs::exists(cert_file))
 	{