X-Git-Url: https://git.saurik.com/apple/security.git/blobdiff_plain/6b200bc335dc93c5516ccb52f14bd896d8c7fad7..7e6b461318c8a779d91381531435a68ee4e8b6ed:/OSX/libsecurity_ssl/lib/sslBuildFlags.h?ds=sidebyside

diff --git a/OSX/libsecurity_ssl/lib/sslBuildFlags.h b/OSX/libsecurity_ssl/lib/sslBuildFlags.h
index af18517e..fcb19aeb 100644
--- a/OSX/libsecurity_ssl/lib/sslBuildFlags.h
+++ b/OSX/libsecurity_ssl/lib/sslBuildFlags.h
@@ -32,6 +32,14 @@
 extern "C" {
 #endif
 
+/*
+ * Implementation-specific functionality.
+ */
+#if 1
+#undef USE_CDSA_CRYPTO				/* use corecrypto, instead of CDSA */
+#undef USE_SSLCERTIFICATE			/* use CF-based certs, not structs */
+#endif
+
 /*
  * Work around the Netscape Server Key Exchange bug. When this is
  * true, only do server key exchange if both of the following are
@@ -75,16 +83,15 @@ extern "C" {
 /* Experimental */
 #define ENABLE_DTLS                 1
 
-#define ENABLE_3DES			1		/* normally enabled */
-#define ENABLE_RC4			1		/* normally enabled */
-#define ENABLE_DES			0		/* normally disabled */
-#define ENABLE_RC2			0		/* normally disabled */
-#define ENABLE_AES			1		/* normally enabled, our first preference */
-#define ENABLE_AES256		1		/* normally enabled */
-#define ENABLE_ECDHE		1
-#define ENABLE_ECDHE_RSA	1
-#define ENABLE_ECDH			1
-#define ENABLE_ECDH_RSA		1
+#define ENABLE_3DES                 1		/* normally enabled */
+#define ENABLE_DES                  0		/* normally disabled */
+#define ENABLE_RC2                  0		/* normally disabled */
+#define ENABLE_AES                  1		/* normally enabled, our first preference */    
+#define ENABLE_AES256               1		/* normally enabled */
+#define ENABLE_ECDHE                1
+#define ENABLE_ECDHE_RSA            1
+#define ENABLE_ECDH                 1
+#define ENABLE_ECDH_RSA             1
 
 #if defined(__cplusplus)
 }