daemon/tls: readjust unwrap buffer size

author Oto Šťáva <oto.stava@nic.cz>

Thu, 23 Feb 2023 08:58:39 +0000 (09:58 +0100)

committer Oto Šťáva <oto.stava@nic.cz>

Thu, 23 Feb 2023 08:58:39 +0000 (09:58 +0100)
author Oto Šťáva <oto.stava@nic.cz>
Thu, 23 Feb 2023 08:58:39 +0000 (09:58 +0100)
committer Oto Šťáva <oto.stava@nic.cz>
Thu, 23 Feb 2023 08:58:39 +0000 (09:58 +0100)
diff --git a/daemon/tls.c b/daemon/tls.c

index 984e6330c661568ece12b019548612b90c2dbfcb..f30bd83f6f68bae0975a840bf21ba0d61d13e39c 100644 (file)
--- a/daemon/tls.c
+++ b/daemon/tls.c
@@ -26,6 +26,7 @@
  
  #define EPHEMERAL_CERT_EXPIRATION_SECONDS_RENEW_BEFORE (60*60*24*7)
  #define GNUTLS_PIN_MIN_VERSION  0x030400
+#define UNWRAP_BUF_SIZE 131072
  #define TLS_CHUNK_SIZE (16 * 1024)
  
  #define VERBOSE_MSG(cl_side, ...)\
@@ -944,7 +945,7 @@ static int pl_tls_sess_server_init(struct protolayer_manager *manager,
         }
  
         tls->client_side = false;
-       wire_buf_init(&tls->unwrap_buf, manager->wire_buf.size);
+       wire_buf_init(&tls->unwrap_buf, UNWRAP_BUF_SIZE);
  
         gnutls_transport_set_pull_function(tls->tls_session, kres_gnutls_pull);
         gnutls_transport_set_vec_push_function(tls->tls_session, kres_gnutls_vec_push);
@@ -1021,7 +1022,7 @@ static int pl_tls_sess_client_init(struct protolayer_manager *manager,
         }
  
         tls->client_side = true;
-       wire_buf_init(&tls->unwrap_buf, manager->wire_buf.size);
+       wire_buf_init(&tls->unwrap_buf, UNWRAP_BUF_SIZE);
  
         gnutls_transport_set_pull_function(tls->tls_session, kres_gnutls_pull);
         gnutls_transport_set_vec_push_function(tls->tls_session, kres_gnutls_vec_push);
author	Oto Šťáva <oto.stava@nic.cz>
	Thu, 23 Feb 2023 08:58:39 +0000 (09:58 +0100)
committer	Oto Šťáva <oto.stava@nic.cz>
	Thu, 23 Feb 2023 08:58:39 +0000 (09:58 +0100)