apatchy/doxygen/mod__md__status_8c_source.html

/* Licensed to the Apache Software Foundation (ASF) under one or more

 * contributor license agreements.  See the NOTICE file distributed with

 * this work for additional information regarding copyright ownership.

 * The ASF licenses this file to You under the Apache License, Version 2.0

 * (the "License"); you may not use this file except in compliance with

 * the License.  You may obtain a copy of the License at

 *

 *     http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing, software

 * distributed under the License is distributed on an "AS IS" BASIS,

 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 * See the License for the specific language governing permissions and

 * limitations under the License.

 */


#include <assert.h>

#include <apr_optional.h>

#include <apr_time.h>

#include <apr_date.h>

#include <apr_strings.h>


#include <httpd.h>

#include <http_core.h>

#include <http_protocol.h>

#include <http_request.h>

#include <http_log.h>


#include "mod_status.h"


#include "md.h"

#include "md_curl.h"

#include "md_crypt.h"

#include "md_http.h"

#include "md_ocsp.h"

#include "md_json.h"

#include "md_status.h"

#include "md_store.h"

#include "md_store_fs.h"

#include "md_log.h"

#include "md_reg.h"

#include "md_util.h"

#include "md_version.h"

#include "md_acme.h"

#include "md_acme_authz.h"


#include "mod_md.h"

#include "mod_md_private.h"

#include "mod_md_config.h"

#include "mod_md_drive.h"

#include "mod_md_status.h"


/**************************************************************************************************/

/* Certificate status */


#define APACHE_PREFIX               "/.httpd/"

#define MD_STATUS_RESOURCE          APACHE_PREFIX"certificate-status"

#define HTML_STATUS(X)              (!((X)->flags & AP_STATUS_SHORT))


int md_http_cert_status(request_rec *r)

{

    int i;

    md_json_t *resp, *mdj, *cj;

    const md_srv_conf_t *sc;

    const md_t *md;

    md_pkey_spec_t *spec;

    const char *keyname;

    apr_bucket_brigade *bb;

    apr_status_t rv;


    if (!r->parsed_uri.path || strcmp(MD_STATUS_RESOURCE, r->parsed_uri.path))

        return DECLINED;


    ap_log_rerror(APLOG_MARK, APLOG_TRACE2, 0, r,

                  "requesting status for: %s", r->hostname);


    /* We are looking for information about a staged certificate */

    sc = ap_get_module_config(r->server->module_config, &md_module);

    if (!sc || !sc->mc || !sc->mc->reg || !sc->mc->certificate_status_enabled) return DECLINED;

    md = md_get_by_domain(sc->mc->mds, r->hostname);

    if (!md) return DECLINED;


    if (r->method_number != M_GET) {

        ap_log_rerror(APLOG_MARK, APLOG_TRACE2, 0, r,

                      "md(%s): status supports only GET", md->name);

        return HTTP_NOT_IMPLEMENTED;

    }


    ap_log_rerror(APLOG_MARK, APLOG_TRACE2, 0, r,

                  "requesting status for MD: %s", md->name);


    rv = md_status_get_md_json(&mdj, md, sc->mc->reg, sc->mc->ocsp, r->pool);

    if (APR_SUCCESS != rv) {

        ap_log_rerror(APLOG_MARK, APLOG_ERR, rv, r, APLOGNO(10204)

                      "loading md status for %s", md->name);

        return HTTP_INTERNAL_SERVER_ERROR;

    }


    ap_log_rerror(APLOG_MARK, APLOG_TRACE2, 0, r,

                  "status for MD: %s is %s", md->name, md_json_writep(mdj, r->pool, MD_JSON_FMT_INDENT));


    resp = md_json_create(r->pool);


    if (md_json_has_key(mdj, MD_KEY_CERT, MD_KEY_VALID, NULL)) {

         md_json_setj(md_json_getj(mdj, MD_KEY_CERT, MD_KEY_VALID, NULL), resp, MD_KEY_VALID, NULL);

     }


    for (i = 0; i < md_cert_count(md); ++i) {

        spec = md_pkeys_spec_get(md->pks, i);

        keyname = md_pkey_spec_name(spec);

        cj = md_json_create(r->pool);


        if (md_json_has_key(mdj, MD_KEY_CERT, keyname, MD_KEY_VALID, NULL)) {

            md_json_setj(md_json_getj(mdj, MD_KEY_CERT, keyname, MD_KEY_VALID, NULL),

                         cj, MD_KEY_VALID, NULL);

        }


        if (md_json_has_key(mdj, MD_KEY_CERT, keyname, MD_KEY_SERIAL, NULL)) {

            md_json_sets(md_json_gets(mdj, MD_KEY_CERT, keyname, MD_KEY_SERIAL, NULL),

                         cj, MD_KEY_SERIAL, NULL);

        }

        if (md_json_has_key(mdj, MD_KEY_CERT, keyname, MD_KEY_SHA256_FINGERPRINT, NULL)) {

            md_json_sets(md_json_gets(mdj, MD_KEY_CERT, keyname, MD_KEY_SHA256_FINGERPRINT, NULL),

                         cj, MD_KEY_SHA256_FINGERPRINT, NULL);

        }

        md_json_setj(cj, resp, keyname, NULL );

    }


    if (md_json_has_key(mdj, MD_KEY_RENEWAL, NULL)) {

           /* copy over the information we want to make public about this:

            *  - when not finished, add an empty object to indicate something is going on

            *  - when a certificate is staged, add the information from that */

           cj = md_json_getj(mdj, MD_KEY_RENEWAL, MD_KEY_CERT, NULL);

           cj = cj? cj : md_json_create(r->pool);

           md_json_setj(cj, resp, MD_KEY_RENEWAL, MD_KEY_CERT, NULL);

     }


    ap_log_rerror(APLOG_MARK, APLOG_TRACE2, 0, r, "md[%s]: sending status", md->name);

    apr_table_set(r->headers_out, "Content-Type", "application/json");

    bb = apr_brigade_create(r->pool, r->connection->bucket_alloc);

    md_json_writeb(resp, MD_JSON_FMT_INDENT, bb);

    ap_pass_brigade(r->output_filters, bb);

    apr_brigade_cleanup(bb);


    return DONE;

}


/**************************************************************************************************/

/* Status hook */


typedef struct {

    apr_pool_t *p;

    const md_mod_conf_t *mc;

    apr_bucket_brigade *bb;

    int flags;

    const char *prefix;

    const char *separator;

} status_ctx;


typedef struct status_info status_info;


static void add_json_val(status_ctx *ctx, md_json_t *j);


typedef void add_status_fn(status_ctx *ctx, md_json_t *mdj, const status_info *info);


struct status_info {

    const char *label;

    const char *key;

    add_status_fn *fn;

};


static void si_val_status(status_ctx *ctx, md_json_t *mdj, const status_info *info)

{

    const char *s = "unknown";

    apr_time_t until;

    (void)info;

    switch (md_json_getl(mdj, info->key, NULL)) {

        case MD_S_INCOMPLETE:

            s = md_json_gets(mdj, MD_KEY_STATE_DESCR, NULL);

            s = s? apr_psprintf(ctx->p, "incomplete: %s", s) : "incomplete";

            break;

        case MD_S_EXPIRED_DEPRECATED:

        case MD_S_COMPLETE:

            until = md_json_get_time(mdj, MD_KEY_CERT, MD_KEY_VALID, MD_KEY_UNTIL, NULL);

            s = (!until || until > apr_time_now())? "good" : "expired";

            break;

        case MD_S_ERROR: s = "error"; break;

        case MD_S_MISSING_INFORMATION: s = "missing information"; break;

        default: break;

    }

    if (HTML_STATUS(ctx)) {

        apr_brigade_puts(ctx->bb, NULL, NULL, s);

    }

    else {

        apr_brigade_printf(ctx->bb, NULL, NULL, "%s%s: %s\n",

                           ctx->prefix, info->label, s);

    }

}


static void si_val_url(status_ctx *ctx, md_json_t *mdj, const status_info *info)

{

    const char *url, *s;


    s = url = md_json_gets(mdj, info->key, NULL);

    if (!url) return;

    s = md_get_ca_name_from_url(ctx->p, url);

    if (HTML_STATUS(ctx)) {

        apr_brigade_printf(ctx->bb, NULL, NULL, "<a href='%s'>%s</a>",

                           ap_escape_html2(ctx->p, url, 1),

                           ap_escape_html2(ctx->p, s, 1));

    }

    else {

        apr_brigade_printf(ctx->bb, NULL, NULL, "%s%sName: %s\n",

                           ctx->prefix, info->label, s);

        apr_brigade_printf(ctx->bb, NULL, NULL, "%s%sURL: %s\n",

                           ctx->prefix, info->label, url);

    }

}


static void print_date(status_ctx *ctx, apr_time_t timestamp, const char *title)

{

    apr_bucket_brigade *bb = ctx->bb;

    if (timestamp > 0) {

        char ts[128];

        char ts2[128];

        apr_time_exp_t texp;

        apr_size_t len;


        apr_time_exp_gmt(&texp, timestamp);

        apr_strftime(ts, &len, sizeof(ts2)-1, "%Y-%m-%d", &texp);

        ts[len] = '\0';

        if (!title) {

            apr_strftime(ts2, &len, sizeof(ts)-1, "%Y-%m-%dT%H:%M:%SZ", &texp);

            ts2[len] = '\0';

            title = ts2;

        }

        if (HTML_STATUS(ctx)) {

            apr_brigade_printf(bb, NULL, NULL,

                               "<span title='%s' style='white-space: nowrap;'>%s</span>",

                               ap_escape_html2(bb->p, title, 1), ts);

        }

        else {

            apr_brigade_printf(bb, NULL, NULL, "%s%s: %s\n",

                               ctx->prefix, title, ts);

        }

    }

}


static void print_time(status_ctx *ctx, const char *label, apr_time_t t)

{

    apr_bucket_brigade *bb = ctx->bb;

    apr_time_t now;

    const char *pre, *post, *sep;

    char ts[APR_RFC822_DATE_LEN];

    char ts2[128];

    apr_time_exp_t texp;

    apr_size_t len;

    apr_interval_time_t delta;


    if (t == 0) {

        /* timestamp is 0, we use that for "not set" */

        return;

    }

    apr_time_exp_gmt(&texp, t);

    now = apr_time_now();

    pre = post = "";

    sep = (label && strlen(label))? " " : "";

    delta = 0;

    if (HTML_STATUS(ctx)) {

        apr_rfc822_date(ts, t);

        if (t > now) {

            delta = t - now;

            pre = "in ";

        }

        else {

            delta = now - t;

            post = " ago";

        }

        if (delta >= (4 * apr_time_from_sec(MD_SECS_PER_DAY))) {

            apr_strftime(ts2, &len, sizeof(ts2)-1, "%Y-%m-%d", &texp);

            ts2[len] = '\0';

            apr_brigade_printf(bb, NULL, NULL, "%s%s<span title='%s' "

                               "style='white-space: nowrap;'>%s</span>",

                               label, sep, ts, ts2);

        }

        else {

            apr_brigade_printf(bb, NULL, NULL, "%s%s<span title='%s'>%s%s%s</span>",

                               label, sep, ts, pre, md_duration_roughly(bb->p, delta), post);

        }

    }

    else {

        delta = t - now;

        apr_brigade_printf(bb, NULL, NULL, "%s%s: %" APR_TIME_T_FMT "\n",

                           ctx->prefix, label, apr_time_sec(delta));

    }

}


static void si_val_valid_time(status_ctx *ctx, md_json_t *mdj, const status_info *info)

{

    const char *sfrom, *suntil, *sep, *title;

    apr_time_t from, until;


    sep = NULL;

    sfrom = md_json_gets(mdj, info->key, MD_KEY_FROM, NULL);

    from = sfrom? apr_date_parse_rfc(sfrom) : 0;

    suntil = md_json_gets(mdj, info->key, MD_KEY_UNTIL, NULL);

    until = suntil?apr_date_parse_rfc(suntil) : 0;


    if (HTML_STATUS(ctx)) {

        if (from > apr_time_now()) {

            apr_brigade_puts(ctx->bb, NULL, NULL, "from ");

            print_date(ctx, from, sfrom);

            sep = " ";

        }

        if (until) {

            if (sep) apr_brigade_puts(ctx->bb, NULL, NULL, sep);

            apr_brigade_puts(ctx->bb, NULL, NULL, "until ");

            title = sfrom? apr_psprintf(ctx->p, "%s - %s", sfrom, suntil) : suntil;

            print_date(ctx, until, title);

        }

    }

    else {

        if (from > apr_time_now()) {

            print_date(ctx, from,

            apr_pstrcat(ctx->p, info->label, "From", NULL));

        }

        if (until) {

            print_date(ctx, until,

            apr_pstrcat(ctx->p, info->label, "Until", NULL));

        }

    }

}


static void si_add_header(status_ctx *ctx, const status_info *info)

{

    if (HTML_STATUS(ctx)) {

        const char *html = ap_escape_html2(ctx->p, info->label, 1);

        apr_brigade_printf(ctx->bb, NULL, NULL, "<th class=\"%s\">%s</th>", html, html);

    }

}


static void si_val_cert_valid_time(status_ctx *ctx, md_json_t *mdj, const status_info *info)

{

    md_json_t *jcert;

    status_info sub = *info;


    sub.key = MD_KEY_VALID;

    jcert = md_json_getj(mdj, info->key, NULL);

    if (jcert) si_val_valid_time(ctx, jcert, &sub);

}


static void val_url_print(status_ctx *ctx, const status_info *info,

                          const char*url, const char *proto, int i)

{

    const char *s;


    if (proto && !strcmp(proto, "tailscale")) {

        s = "tailscale";

    }

    else if (url) {

        s = md_get_ca_name_from_url(ctx->p, url);

    }

    else {

        return;

    }

    if (HTML_STATUS(ctx)) {

        apr_brigade_printf(ctx->bb, NULL, NULL, "%s<a href='%s'>%s</a>",

                           i? " " : "",

                           ap_escape_html2(ctx->p, url, 1),

                           ap_escape_html2(ctx->p, s, 1));

    }

    else if (i == 0) {

        apr_brigade_printf(ctx->bb, NULL, NULL, "%s%sName: %s\n",

                           ctx->prefix, info->label, s);

        apr_brigade_printf(ctx->bb, NULL, NULL, "%s%sURL: %s\n",

                           ctx->prefix, info->label, url);

    }

    else {

        apr_brigade_printf(ctx->bb, NULL, NULL, "%s%sName%d: %s\n",

                           ctx->prefix, info->label, i, s);

        apr_brigade_printf(ctx->bb, NULL, NULL, "%s%sURL%d: %s\n",

                           ctx->prefix, info->label, i, url);

    }

}


static void si_val_ca_urls(status_ctx *ctx, md_json_t *mdj, const status_info *info)

{

    md_json_t *jcert;

    const char *proto, *url;

    apr_array_header_t *urls;

    int i;


    jcert = md_json_getj(mdj, info->key, NULL);

    if (!jcert) {

        return;

    }


    proto = md_json_gets(jcert, MD_KEY_PROTO, NULL);

    url = md_json_gets(jcert, MD_KEY_URL, NULL);

    if (url) {

        /* print the effective CA url used, if set */

        val_url_print(ctx, info, url, proto, 0);

    }

    else {

        /* print the available CA urls configured */

        urls = apr_array_make(ctx->p, 3, sizeof(const char*));

        md_json_getsa(urls, jcert, MD_KEY_URLS, NULL);

        for (i = 0; i < urls->nelts; ++i) {

            url = APR_ARRAY_IDX(urls, i, const char*);

            val_url_print(ctx, info, url, proto, i);

        }

    }

}


static int count_certs(void *baton, const char *key, md_json_t *json)

{

    int *pcount = baton;


    (void)json;

    if (strcmp(key, MD_KEY_VALID)) {

        *pcount += 1;

    }

    return 1;

}


static void print_job_summary(status_ctx *ctx, md_json_t *mdj, const char *key,

                              const char *separator)

{

    apr_bucket_brigade *bb = ctx->bb;

    char buffer[HUGE_STRING_LEN];

    apr_status_t rv;

    int finished, errors, cert_count;

    apr_time_t t;

    const char *s, *line;


    if (!md_json_has_key(mdj, key, NULL)) {

        return;

    }


    finished = md_json_getb(mdj, key, MD_KEY_FINISHED, NULL);

    errors = (int)md_json_getl(mdj, key, MD_KEY_ERRORS, NULL);

    rv = (apr_status_t)md_json_getl(mdj, key, MD_KEY_LAST, MD_KEY_STATUS, NULL);


    line = separator? separator : "";


    if (rv != APR_SUCCESS) {

        char *errstr = apr_strerror(rv, buffer, sizeof(buffer));

        s = md_json_gets(mdj, key, MD_KEY_LAST, MD_KEY_PROBLEM, NULL);

        if (HTML_STATUS(ctx)) {

            line = apr_psprintf(bb->p, "%s Error[%s]: %s", line,

                                errstr, s? s : "");

        }

        else {

            apr_brigade_printf(bb, NULL, NULL, "%sLastStatus: %s\n", ctx->prefix, errstr);

            apr_brigade_printf(bb, NULL, NULL, "%sLastProblem: %s\n", ctx->prefix, s);

        }

    }


    if (!HTML_STATUS(ctx)) {

        apr_brigade_printf(bb, NULL, NULL, "%sFinished: %s\n", ctx->prefix,

                           finished ? "yes" : "no");

    }

    if (finished) {

        cert_count = 0;

        md_json_iterkey(count_certs, &cert_count, mdj, key, MD_KEY_CERT, NULL);

        if (HTML_STATUS(ctx)) {

            if (cert_count > 0) {

                line =apr_psprintf(bb->p, "%s  finished, %d new certificate%s staged.",

                                   line, cert_count, cert_count > 1? "s" : "");

            }

            else {

                line = apr_psprintf(bb->p, "%s  finished successfully.", line);

            }

        }

        else {

            apr_brigade_printf(bb, NULL, NULL, "%sNewStaged: %d\n", ctx->prefix, cert_count);

        }

    }

    else {

        s = md_json_gets(mdj, key, MD_KEY_LAST, MD_KEY_DETAIL, NULL);

        if (s) {

            if (HTML_STATUS(ctx)) {

                line = apr_psprintf(bb->p, "%s %s", line, s);

            }

            else {

                apr_brigade_printf(bb, NULL, NULL, "%sLastDetail: %s\n", ctx->prefix, s);

            }

        }

    }


    errors = (int)md_json_getl(mdj, MD_KEY_ERRORS, NULL);

    if (errors > 0) {

        if (HTML_STATUS(ctx)) {

            line = apr_psprintf(bb->p, "%s (%d retr%s) ", line,

                                errors, (errors > 1)? "y" : "ies");

        }

        else {

            apr_brigade_printf(bb, NULL, NULL, "%sRetries: %d\n", ctx->prefix, errors);

        }

    }


    if (HTML_STATUS(ctx)) {

        apr_brigade_puts(bb, NULL, NULL, line);

    }


    t = md_json_get_time(mdj, key, MD_KEY_NEXT_RUN, NULL);

    if (t > apr_time_now() && !finished) {

        print_time(ctx,

                   HTML_STATUS(ctx) ? "\nNext run" : "NextRun",

                   t);

    }

    else if (line[0] != '\0') {

        if (HTML_STATUS(ctx)) {

            apr_brigade_puts(bb, NULL, NULL, "\nOngoing...");

        }

        else {

            apr_brigade_printf(bb, NULL, NULL, "%s: Ongoing\n", ctx->prefix);

        }

    }

}


static void si_val_activity(status_ctx *ctx, md_json_t *mdj, const status_info *info)

{

    apr_time_t t;

    const char *prefix = ctx->prefix;


    (void)info;

    if (!HTML_STATUS(ctx)) {

        ctx->prefix = apr_pstrcat(ctx->p, prefix, info->label, NULL);

    }


    if (md_json_has_key(mdj, MD_KEY_RENEWAL, NULL)) {

        print_job_summary(ctx, mdj, MD_KEY_RENEWAL, NULL);

        return;

    }


    t = md_json_get_time(mdj, MD_KEY_RENEW_AT, NULL);

    if (t > apr_time_now()) {

        print_time(ctx, "Renew", t);

    }

    else if (t) {

        if (HTML_STATUS(ctx)) {

            apr_brigade_puts(ctx->bb, NULL, NULL, "Pending");

        }

        else {

            apr_brigade_printf(ctx->bb, NULL, NULL, "%s: %s", ctx->prefix, "Pending");

        }

    }

    else if (MD_RENEW_MANUAL == md_json_getl(mdj, MD_KEY_RENEW_MODE, NULL)) {

        if (HTML_STATUS(ctx)) {

            apr_brigade_puts(ctx->bb, NULL, NULL, "Manual renew");

        }

        else {

            apr_brigade_printf(ctx->bb, NULL, NULL, "%s: %s", ctx->prefix, "Manual renew");

        }

    }

    if (!HTML_STATUS(ctx)) {

        ctx->prefix = prefix;

    }

}


static int cert_check_iter(void *baton, const char *key, md_json_t *json)

{

    status_ctx *ctx = baton;

    const char *fingerprint;


    fingerprint = md_json_gets(json, MD_KEY_SHA256_FINGERPRINT, NULL);

    if (fingerprint) {

        if (HTML_STATUS(ctx)) {

            apr_brigade_printf(ctx->bb, NULL, NULL,

                               "<a href=\"%s%s\">%s[%s]</a><br>",

                               ctx->mc->cert_check_url, fingerprint,

                               ctx->mc->cert_check_name, key);

        }

        else {

            apr_brigade_printf(ctx->bb, NULL, NULL,

                               "%sType: %s\n",

                               ctx->prefix,

                               key);

            apr_brigade_printf(ctx->bb, NULL, NULL,

                               "%sName: %s\n",

                               ctx->prefix,

                               ctx->mc->cert_check_name);

            apr_brigade_printf(ctx->bb, NULL, NULL,

                               "%sURL: %s%s\n",

                               ctx->prefix,

                               ctx->mc->cert_check_url, fingerprint);

            apr_brigade_printf(ctx->bb, NULL, NULL,

                               "%sFingerprint: %s\n",

                               ctx->prefix,

                               fingerprint);

        }

    }

    return 1;

}


static void si_val_remote_check(status_ctx *ctx, md_json_t *mdj, const status_info *info)

{

    (void)info;

    if (ctx->mc->cert_check_name && ctx->mc->cert_check_url) {

        const char *prefix = ctx->prefix;

        if (!HTML_STATUS(ctx)) {

            ctx->prefix = apr_pstrcat(ctx->p, prefix, info->label, NULL);

        }

        md_json_iterkey(cert_check_iter, ctx, mdj, MD_KEY_CERT, NULL);

        if (!HTML_STATUS(ctx)) {

            ctx->prefix = prefix;

        }

    }

}


static void si_val_stapling(status_ctx *ctx, md_json_t *mdj, const status_info *info)

{

    (void)info;

    if (!md_json_getb(mdj, MD_KEY_STAPLING, NULL)) return;

    if (HTML_STATUS(ctx)) {

        apr_brigade_puts(ctx->bb, NULL, NULL, "on");

    }

    else {

        apr_brigade_printf(ctx->bb, NULL, NULL, "%s: on", ctx->prefix);

    }

}


static int json_iter_val(void *data, size_t index, md_json_t *json)

{

    status_ctx *ctx = data;

    const char *prefix = ctx->prefix;

    if (HTML_STATUS(ctx)) {

        if (index) apr_brigade_puts(ctx->bb, NULL, NULL, ctx->separator);

    }

    else {

        ctx->prefix = apr_pstrcat(ctx->p, prefix, apr_psprintf(ctx->p, "[%" APR_SIZE_T_FMT "]", index), NULL);

    }

    add_json_val(ctx, json);

    if (!HTML_STATUS(ctx)) {

        ctx->prefix = prefix;

    }

    return 1;

}


static void add_json_val(status_ctx *ctx, md_json_t *j)

{

    if (!j) return;

    if (md_json_is(MD_JSON_TYPE_ARRAY, j, NULL)) {

        md_json_itera(json_iter_val, ctx, j, NULL);

        return;

    }

    if (!HTML_STATUS(ctx)) {

        apr_brigade_puts(ctx->bb, NULL, NULL, ctx->prefix);

        apr_brigade_puts(ctx->bb, NULL, NULL, ": ");

    }

    if (md_json_is(MD_JSON_TYPE_INT, j, NULL)) {

        md_json_writeb(j, MD_JSON_FMT_COMPACT, ctx->bb);

    }

    else if (md_json_is(MD_JSON_TYPE_STRING, j, NULL)) {

        apr_brigade_puts(ctx->bb, NULL, NULL, md_json_gets(j, NULL));

    }

    else if (md_json_is(MD_JSON_TYPE_OBJECT, j, NULL)) {

        md_json_writeb(j, MD_JSON_FMT_COMPACT, ctx->bb);

    }

    else if (md_json_is(MD_JSON_TYPE_BOOL, j, NULL)) {

        apr_brigade_puts(ctx->bb, NULL, NULL, md_json_getb(j, NULL)? "on" : "off");

    }

    if (!HTML_STATUS(ctx)) {

        apr_brigade_puts(ctx->bb, NULL, NULL, "\n");

    }

}


static void si_val_names(status_ctx *ctx, md_json_t *mdj, const status_info *info)

{

    const char *prefix = ctx->prefix;

    if (HTML_STATUS(ctx)) {

        apr_brigade_puts(ctx->bb, NULL, NULL, "<div style=\"max-width:400px;\">");

    }

    else {

        ctx->prefix = apr_pstrcat(ctx->p, prefix, info->label, NULL);

    }

    add_json_val(ctx, md_json_getj(mdj, info->key, NULL));

    if (HTML_STATUS(ctx)) {

        apr_brigade_puts(ctx->bb, NULL, NULL, "</div>");

    }

    else {

        ctx->prefix = prefix;

    }

}


static void add_status_cell(status_ctx *ctx, md_json_t *mdj, const status_info *info)

{

    if (info->fn) {

        info->fn(ctx, mdj, info);

    }

    else {

        const char *prefix = ctx->prefix;

        if (!HTML_STATUS(ctx)) {

            ctx->prefix = apr_pstrcat(ctx->p, prefix, info->label, NULL);

        }

        add_json_val(ctx, md_json_getj(mdj, info->key, NULL));

        if (!HTML_STATUS(ctx)) {

            ctx->prefix = prefix;

        }

    }

}


static const status_info status_infos[] = {

    { "Domain", MD_KEY_NAME, NULL },

    { "Names", MD_KEY_DOMAINS, si_val_names },

    { "Status", MD_KEY_STATE, si_val_status },

    { "Valid", MD_KEY_CERT, si_val_cert_valid_time },

    { "CA", MD_KEY_CA, si_val_ca_urls },

    { "Stapling", MD_KEY_STAPLING, si_val_stapling },

    { "CheckAt", MD_KEY_SHA256_FINGERPRINT, si_val_remote_check },

    { "Activity", MD_KEY_NOTIFIED, si_val_activity },

};


static int add_md_row(void *baton, apr_size_t index, md_json_t *mdj)

{

    status_ctx *ctx = baton;

    const char *prefix = ctx->prefix;

    int i;


    if (HTML_STATUS(ctx)) {

        apr_brigade_printf(ctx->bb, NULL, NULL, "<tr class=\"%s\">", (index % 2)? "odd" : "even");

        for (i = 0; i < (int)(sizeof(status_infos)/sizeof(status_infos[0])); ++i) {

            apr_brigade_puts(ctx->bb, NULL, NULL, "<td>");

            add_status_cell(ctx, mdj, &status_infos[i]);

            apr_brigade_puts(ctx->bb, NULL, NULL, "</td>");

        }

        apr_brigade_puts(ctx->bb, NULL, NULL, "</tr>");

    } else {

        for (i = 0; i < (int)(sizeof(status_infos)/sizeof(status_infos[0])); ++i) {

            ctx->prefix = apr_pstrcat(ctx->p, prefix, apr_psprintf(ctx->p, "[%" APR_SIZE_T_FMT "]", index), NULL);

            add_status_cell(ctx, mdj, &status_infos[i]);

            ctx->prefix = prefix;

        }

    }

    return 1;

}


static int md_name_cmp(const void *v1, const void *v2)

{

    return strcmp((*(const md_t**)v1)->name, (*(const md_t**)v2)->name);

}


int md_domains_status_hook(request_rec *r, int flags)

{

    const md_srv_conf_t *sc;

    const md_mod_conf_t *mc;

    int i;

    status_ctx ctx;

    apr_array_header_t *mds;

    md_json_t *jstatus, *jstock;


    ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r, "server-status for managed domains, start");

    sc = ap_get_module_config(r->server->module_config, &md_module);

    if (!sc) return DECLINED;

    mc = sc->mc;

    if (!mc || !mc->server_status_enabled) return DECLINED;


    ctx.p = r->pool;

    ctx.mc = mc;

    ctx.bb = apr_brigade_create(r->pool, r->connection->bucket_alloc);

    ctx.flags = flags;

    ctx.prefix = "ManagedCertificates";

    ctx.separator = " ";


    mds = apr_array_copy(r->pool, mc->mds);

    qsort(mds->elts, (size_t)mds->nelts, sizeof(md_t *), md_name_cmp);


    if (!HTML_STATUS(&ctx)) {

        int total = 0, complete = 0, renewing = 0, errored = 0, ready = 0;

        ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r, "no-html managed domain status summary");

        if (mc->mds->nelts > 0) {

            md_status_take_stock(&jstock, mds, mc->reg, r->pool);

            ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r, "got JSON managed domain status summary");

            total = (int)md_json_getl(jstock, MD_KEY_TOTAL, NULL);

            complete = (int)md_json_getl(jstock, MD_KEY_COMPLETE, NULL);

            renewing = (int)md_json_getl(jstock, MD_KEY_RENEWING, NULL);

            errored = (int)md_json_getl(jstock, MD_KEY_ERRORED, NULL);

            ready = (int)md_json_getl(jstock, MD_KEY_READY, NULL);

        }

        apr_brigade_printf(ctx.bb, NULL, NULL, "%sTotal: %d\n", ctx.prefix, total);

        apr_brigade_printf(ctx.bb, NULL, NULL, "%sOK: %d\n", ctx.prefix, complete);

        apr_brigade_printf(ctx.bb, NULL, NULL, "%sRenew: %d\n", ctx.prefix, renewing);

        apr_brigade_printf(ctx.bb, NULL, NULL, "%sErrored: %d\n", ctx.prefix, errored);

        apr_brigade_printf(ctx.bb, NULL, NULL, "%sReady: %d\n", ctx.prefix, ready);

    }

    if (mc->mds->nelts > 0) {

        md_status_get_json(&jstatus, mds, mc->reg, mc->ocsp, r->pool);

        ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r, "got JSON managed domain status");

        if (HTML_STATUS(&ctx)) {

            ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r, "html managed domain status table");

            apr_brigade_puts(ctx.bb, NULL, NULL,

                             "<hr>\n<h3>Managed Certificates</h3>\n<table class='md_status'><thead><tr>\n");

            for (i = 0; i < (int)(sizeof(status_infos)/sizeof(status_infos[0])); ++i) {

                si_add_header(&ctx, &status_infos[i]);

            }

            apr_brigade_puts(ctx.bb, NULL, NULL, "</tr>\n</thead><tbody>");

        }

        else {

            ctx.prefix = "ManagedDomain";

        }

        ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r, "iterating JSON managed domain status");

        md_json_itera(add_md_row, &ctx, jstatus, MD_KEY_MDS, NULL);

        if (HTML_STATUS(&ctx)) {

            apr_brigade_puts(ctx.bb, NULL, NULL, "</td></tr>\n</tbody>\n</table>\n");

        }

    }


    ap_pass_brigade(r->output_filters, ctx.bb);

    apr_brigade_cleanup(ctx.bb);

    ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r, "server-status for managed domains, end");


    return OK;

}


static void si_val_ocsp_activity(status_ctx *ctx, md_json_t *mdj, const status_info *info)

{

    apr_time_t t;

    const char *prefix = ctx->prefix;


    (void)info;

    if (!HTML_STATUS(ctx)) {

        ctx->prefix = apr_pstrcat(ctx->p, prefix, info->label, NULL);

    }

    t = md_json_get_time(mdj, MD_KEY_RENEW_AT, NULL);

    print_time(ctx, "Refresh", t);

    print_job_summary(ctx, mdj, MD_KEY_RENEWAL, ": ");

    if (!HTML_STATUS(ctx)) {

        ctx->prefix = prefix;

    }

}


static const status_info ocsp_status_infos[] = {

    { "Domain", MD_KEY_DOMAIN, NULL },

    { "CertificateID", MD_KEY_ID, NULL },

    { "OCSPStatus", MD_KEY_STATUS, NULL },

    { "StaplingValid", MD_KEY_VALID, si_val_valid_time },

    { "Responder", MD_KEY_URL, si_val_url },

    { "Activity", MD_KEY_NOTIFIED, si_val_ocsp_activity },

};


static int add_ocsp_row(void *baton, apr_size_t index, md_json_t *mdj)

{

    status_ctx *ctx = baton;

    const char *prefix = ctx->prefix;

    int i;


    if (HTML_STATUS(ctx)) {

        apr_brigade_printf(ctx->bb, NULL, NULL, "<tr class=\"%s\">", (index % 2)? "odd" : "even");

        for (i = 0; i < (int)(sizeof(ocsp_status_infos)/sizeof(ocsp_status_infos[0])); ++i) {

            apr_brigade_puts(ctx->bb, NULL, NULL, "<td>");

            add_status_cell(ctx, mdj, &ocsp_status_infos[i]);

            apr_brigade_puts(ctx->bb, NULL, NULL, "</td>");

        }

        apr_brigade_puts(ctx->bb, NULL, NULL, "</tr>");

    } else {

        for (i = 0; i < (int)(sizeof(ocsp_status_infos)/sizeof(ocsp_status_infos[0])); ++i) {

            ctx->prefix = apr_pstrcat(ctx->p, prefix, apr_psprintf(ctx->p, "[%" APR_SIZE_T_FMT "]", index), NULL);

            add_status_cell(ctx, mdj, &ocsp_status_infos[i]);

            ctx->prefix = prefix;

        }

    }

    return 1;

}


int md_ocsp_status_hook(request_rec *r, int flags)

{

    const md_srv_conf_t *sc;

    const md_mod_conf_t *mc;

    int i;

    status_ctx ctx;

    md_json_t *jstatus, *jstock;


    ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r, "server-status for ocsp stapling, start");

    sc = ap_get_module_config(r->server->module_config, &md_module);

    if (!sc) return DECLINED;

    mc = sc->mc;

    if (!mc || !mc->server_status_enabled) return DECLINED;


    ctx.p = r->pool;

    ctx.mc = mc;

    ctx.bb = apr_brigade_create(r->pool, r->connection->bucket_alloc);

    ctx.flags = flags;

    ctx.prefix = "ManagedStaplings";

    ctx.separator = " ";


    if (!HTML_STATUS(&ctx)) {

        int total = 0, good = 0, revoked = 0, unknown = 0;

        ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r, "no-html ocsp stapling status summary");

        if (md_ocsp_count(mc->ocsp) > 0) {

            md_ocsp_get_summary(&jstock, mc->ocsp, r->pool);

            ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r, "got JSON ocsp stapling status summary");

            total = (int)md_json_getl(jstock, MD_KEY_TOTAL, NULL);

            good = (int)md_json_getl(jstock, MD_KEY_GOOD, NULL);

            revoked = (int)md_json_getl(jstock, MD_KEY_REVOKED, NULL);

            unknown = (int)md_json_getl(jstock, MD_KEY_UNKNOWN, NULL);

        }

        apr_brigade_printf(ctx.bb, NULL, NULL, "%sTotal: %d\n", ctx.prefix, total);

        apr_brigade_printf(ctx.bb, NULL, NULL, "%sOK: %d\n", ctx.prefix, good);

        apr_brigade_printf(ctx.bb, NULL, NULL, "%sRenew: %d\n", ctx.prefix, revoked);

        apr_brigade_printf(ctx.bb, NULL, NULL, "%sErrored: %d\n", ctx.prefix, unknown);

    }

    if (md_ocsp_count(mc->ocsp) > 0) {

        md_ocsp_get_status_all(&jstatus, mc->ocsp, r->pool);

        ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r, "got JSON ocsp stapling status");

        if (HTML_STATUS(&ctx)) {

            ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r, "html ocsp stapling status table");

            apr_brigade_puts(ctx.bb, NULL, NULL,

                             "<hr>\n<h3>Managed Staplings</h3>\n<table class='md_ocsp_status'><thead><tr>\n");

            for (i = 0; i < (int)(sizeof(ocsp_status_infos)/sizeof(ocsp_status_infos[0])); ++i) {

                si_add_header(&ctx, &ocsp_status_infos[i]);

            }

            apr_brigade_puts(ctx.bb, NULL, NULL, "</tr>\n</thead><tbody>");

        }

        else {

            ctx.prefix = "ManagedStapling";

        }

        ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r, "iterating JSON ocsp stapling status");

        md_json_itera(add_ocsp_row, &ctx, jstatus, MD_KEY_OCSPS, NULL);

        if (HTML_STATUS(&ctx)) {

            apr_brigade_puts(ctx.bb, NULL, NULL, "</td></tr>\n</tbody>\n</table>\n");

        }

    }


    ap_pass_brigade(r->output_filters, ctx.bb);

    apr_brigade_cleanup(ctx.bb);

    ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r, "server-status for ocsp stapling, end");


    return OK;

}


/**************************************************************************************************/

/* Status handlers */


int md_status_handler(request_rec *r)

{

    const md_srv_conf_t *sc;

    const md_mod_conf_t *mc;

    apr_array_header_t *mds;

    md_json_t *jstatus;

    apr_bucket_brigade *bb;

    const md_t *md;

    const char *name;


    if (strcmp(r->handler, "md-status")) {

        return DECLINED;

    }


    sc = ap_get_module_config(r->server->module_config, &md_module);

    if (!sc) return DECLINED;

    mc = sc->mc;

    if (!mc) return DECLINED;


    if (r->method_number != M_GET) {

        ap_log_rerror(APLOG_MARK, APLOG_TRACE2, 0, r, "md-status supports only GET");

        return HTTP_NOT_IMPLEMENTED;

    }


    jstatus = NULL;

    md = NULL;

    if (r->path_info && r->path_info[0] == '/' && r->path_info[1] != '\0') {

        name = strrchr(r->path_info, '/') + 1;

        md = md_get_by_name(mc->mds, name);

        if (!md) md = md_get_by_domain(mc->mds, name);

    }


    if (md) {

        md_status_get_md_json(&jstatus, md, mc->reg, mc->ocsp, r->pool);

    }

    else {

        mds = apr_array_copy(r->pool, mc->mds);

        qsort(mds->elts, (size_t)mds->nelts, sizeof(md_t *), md_name_cmp);

        md_status_get_json(&jstatus, mds, mc->reg, mc->ocsp, r->pool);

    }


    if (jstatus) {

        apr_table_set(r->headers_out, "Content-Type", "application/json");

        bb = apr_brigade_create(r->pool, r->connection->bucket_alloc);

        md_json_writeb(jstatus, MD_JSON_FMT_INDENT, bb);

        ap_pass_brigade(r->output_filters, bb);

        apr_brigade_cleanup(bb);


        return DONE;

    }

    return DECLINED;

}


len
const char apr_size_t len
Definition ap_regex.h:187

apr_date.h
APR-UTIL date routines.

apr_optional.h
APR-UTIL registration of functions exported by modules.

apr_strings.h
APR Strings library.

apr_time.h
APR Time Library.

ap_get_module_config
#define ap_get_module_config(v, m)
Definition http_config.h:550

r
request_rec * r
Definition http_config.h:1168

HUGE_STRING_LEN
#define HUGE_STRING_LEN
Definition httpd.h:303

DECLINED
#define DECLINED
Definition httpd.h:457

OK
#define OK
Definition httpd.h:456

DONE
#define DONE
Definition httpd.h:458

ap_pass_brigade
apr_status_t ap_pass_brigade(ap_filter_t *filter, apr_bucket_brigade *bucket)
Definition util_filter.c:564

APLOGNO
#define APLOGNO(n)
Definition http_log.h:117

ap_log_rerror
#define ap_log_rerror
Definition http_log.h:454

APLOG_ERR
#define APLOG_ERR
Definition http_log.h:67

APLOG_MARK
#define APLOG_MARK
Definition http_log.h:283

APLOG_TRACE2
#define APLOG_TRACE2
Definition http_log.h:73

APLOG_TRACE1
#define APLOG_TRACE1
Definition http_log.h:72

baton
ap_vhost_iterate_conn_cb void * baton
Definition http_vhost.h:87

ctx
apr_brigade_flush void * ctx
Definition apr_buckets.h:802

label
apr_pool_t apr_dbd_t const char const char * label
Definition apr_dbd.h:397

flags
const char apr_ssize_t int flags
Definition apr_encode.h:168

url
const char * url
Definition apr_escape.h:120

mc
apr_memcache_t * mc
Definition apr_memcache.h:161

HTTP_INTERNAL_SERVER_ERROR
#define HTTP_INTERNAL_SERVER_ERROR
Definition httpd.h:535

HTTP_NOT_IMPLEMENTED
#define HTTP_NOT_IMPLEMENTED
Definition httpd.h:536

M_GET
#define M_GET
Definition httpd.h:592

ap_escape_html2
char * ap_escape_html2(apr_pool_t *p, const char *s, int toasc)
Definition util.c:2131

size
apr_size_t size
Definition apr_allocator.h:115

APR_SUCCESS
#define APR_SUCCESS
Definition apr_errno.h:225

apr_status_t
int apr_status_t
Definition apr_errno.h:44

key
const char * key
Definition apr_file_io.h:822

data
void * data
Definition apr_file_io.h:832

buffer
char * buffer
Definition apr_file_io.h:667

t
apr_interval_time_t t
Definition apr_network_io.h:710

sep
const char * sep
Definition apr_strings.h:247

s
const char * s
Definition apr_strings.h:95

APR_ARRAY_IDX
#define APR_ARRAY_IDX(ary, i, type)
Definition apr_tables.h:141

APR_RFC822_DATE_LEN
#define APR_RFC822_DATE_LEN
Definition apr_time.h:186

APR_TIME_T_FMT
#define APR_TIME_T_FMT
Definition apr_time.h:52

apr_interval_time_t
apr_int64_t apr_interval_time_t
Definition apr_time.h:55

apr_time_t
apr_int64_t apr_time_t
Definition apr_time.h:45

apr_time_sec
#define apr_time_sec(time)
Definition apr_time.h:63

apr_time_from_sec
#define apr_time_from_sec(sec)
Definition apr_time.h:78

http_core.h
CORE HTTP Daemon.

http_log.h
Apache Logging library.

http_protocol.h
HTTP protocol handling.

http_request.h
Apache Request library.

httpd.h
HTTP Daemon routines.

md.h

md_cert_count
int md_cert_count(const md_t *md)
Definition md_core.c:187

MD_KEY_RENEWAL
#define MD_KEY_RENEWAL
Definition md.h:184

MD_KEY_UNTIL
#define MD_KEY_UNTIL
Definition md.h:206

MD_KEY_OCSPS
#define MD_KEY_OCSPS
Definition md.h:172

MD_KEY_STATE_DESCR
#define MD_KEY_STATE_DESCR
Definition md.h:195

MD_KEY_RENEW_MODE
#define MD_KEY_RENEW_MODE
Definition md.h:183

MD_KEY_GOOD
#define MD_KEY_GOOD
Definition md.h:151

MD_S_INCOMPLETE
@ MD_S_INCOMPLETE
Definition md.h:54

MD_S_ERROR
@ MD_S_ERROR
Definition md.h:57

MD_S_COMPLETE
@ MD_S_COMPLETE
Definition md.h:55

MD_S_EXPIRED_DEPRECATED
@ MD_S_EXPIRED_DEPRECATED
Definition md.h:56

MD_S_MISSING_INFORMATION
@ MD_S_MISSING_INFORMATION
Definition md.h:58

MD_KEY_REVOKED
#define MD_KEY_REVOKED
Definition md.h:190

MD_KEY_RENEW_AT
#define MD_KEY_RENEW_AT
Definition md.h:182

MD_KEY_TOTAL
#define MD_KEY_TOTAL
Definition md.h:202

MD_KEY_NAME
#define MD_KEY_NAME
Definition md.h:167

MD_KEY_ID
#define MD_KEY_ID
Definition md.h:155

MD_KEY_COMPLETE
#define MD_KEY_COMPLETE
Definition md.h:131

MD_KEY_URL
#define MD_KEY_URL
Definition md.h:207

MD_KEY_SERIAL
#define MD_KEY_SERIAL
Definition md.h:191

MD_KEY_ERRORED
#define MD_KEY_ERRORED
Definition md.h:144

MD_KEY_FROM
#define MD_KEY_FROM
Definition md.h:150

MD_KEY_PROBLEM
#define MD_KEY_PROBLEM
Definition md.h:177

MD_KEY_STAPLING
#define MD_KEY_STAPLING
Definition md.h:193

MD_KEY_PROTO
#define MD_KEY_PROTO
Definition md.h:178

md_get_by_name
md_t * md_get_by_name(struct apr_array_header_t *mds, const char *name)
Definition md_core.c:151

MD_KEY_READY
#define MD_KEY_READY
Definition md.h:179

md_get_by_domain
md_t * md_get_by_domain(struct apr_array_header_t *mds, const char *domain)
Definition md_core.c:163

MD_KEY_ERRORS
#define MD_KEY_ERRORS
Definition md.h:146

MD_KEY_STATUS
#define MD_KEY_STATUS
Definition md.h:196

MD_KEY_SHA256_FINGERPRINT
#define MD_KEY_SHA256_FINGERPRINT
Definition md.h:192

MD_KEY_FINISHED
#define MD_KEY_FINISHED
Definition md.h:149

MD_KEY_RENEWING
#define MD_KEY_RENEWING
Definition md.h:185

MD_KEY_LAST
#define MD_KEY_LAST
Definition md.h:160

MD_KEY_NOTIFIED
#define MD_KEY_NOTIFIED
Definition md.h:169

MD_KEY_DOMAIN
#define MD_KEY_DOMAIN
Definition md.h:139

MD_KEY_STATE
#define MD_KEY_STATE
Definition md.h:194

MD_KEY_CA
#define MD_KEY_CA
Definition md.h:122

MD_KEY_NEXT_RUN
#define MD_KEY_NEXT_RUN
Definition md.h:168

MD_KEY_VALID
#define MD_KEY_VALID
Definition md.h:210

MD_KEY_URLS
#define MD_KEY_URLS
Definition md.h:208

md_get_ca_name_from_url
const char * md_get_ca_name_from_url(apr_pool_t *p, const char *url)
Definition md_core.c:417

MD_RENEW_MANUAL
@ MD_RENEW_MANUAL
Definition md.h:70

MD_KEY_CERT
#define MD_KEY_CERT
Definition md.h:124

MD_KEY_MDS
#define MD_KEY_MDS
Definition md.h:164

MD_KEY_DETAIL
#define MD_KEY_DETAIL
Definition md.h:136

MD_KEY_UNKNOWN
#define MD_KEY_UNKNOWN
Definition md.h:205

MD_KEY_DOMAINS
#define MD_KEY_DOMAINS
Definition md.h:140

md_acme.h

md_acme_authz.h

md_pkeys_spec_get
md_pkey_spec_t * md_pkeys_spec_get(const md_pkeys_spec_t *pks, int index)
Definition md_crypt.c:562

md_pkey_spec_name
const char * md_pkey_spec_name(const md_pkey_spec_t *spec)
Definition md_crypt.c:520

md_crypt.h

md_curl.h

md_http.h

md_json_create
md_json_t * md_json_create(apr_pool_t *pool)
Definition md_json.c:92

md_json_getsa
apr_status_t md_json_getsa(apr_array_header_t *a, const md_json_t *json,...)
Definition md_json.c:864

md_json_getb
int md_json_getb(const md_json_t *json,...)
Definition md_json.c:330

md_json_sets
apr_status_t md_json_sets(const char *value, md_json_t *json,...)
Definition md_json.c:430

md_json_gets
const char * md_json_gets(const md_json_t *json,...)
Definition md_json.c:406

md_json_getl
long md_json_getl(const md_json_t *json,...)
Definition md_json.c:381

md_json_getj
md_json_t * md_json_getj(md_json_t *json,...)
Definition md_json.c:473

md_json_iterkey
int md_json_iterkey(md_json_iterkey_cb *cb, void *baton, md_json_t *json,...)
Definition md_json.c:835

md_json_is
int md_json_is(const md_json_type_t jtype, md_json_t *json,...)
Definition md_json.c:294

md_json_setj
apr_status_t md_json_setj(const md_json_t *value, md_json_t *json,...)
Definition md_json.c:527

md_json_has_key
int md_json_has_key(const md_json_t *json,...)
Definition md_json.c:279

md_json_itera
int md_json_itera(md_json_itera_cb *cb, void *baton, md_json_t *json,...)
Definition md_json.c:809

md_json_get_time
apr_time_t md_json_get_time(const md_json_t *json,...)
Definition md_json.c:444

md_json_writeb
apr_status_t md_json_writeb(const md_json_t *json, md_json_fmt_t fmt, apr_bucket_brigade *bb)
Definition md_json.c:972

md_json_writep
const char * md_json_writep(const md_json_t *json, apr_pool_t *p, md_json_fmt_t fmt)
Definition md_json.c:992

md_json.h

MD_JSON_FMT_COMPACT
@ MD_JSON_FMT_COMPACT
Definition md_json.h:43

MD_JSON_FMT_INDENT
@ MD_JSON_FMT_INDENT
Definition md_json.h:44

MD_JSON_TYPE_INT
@ MD_JSON_TYPE_INT
Definition md_json.h:36

MD_JSON_TYPE_ARRAY
@ MD_JSON_TYPE_ARRAY
Definition md_json.h:33

MD_JSON_TYPE_BOOL
@ MD_JSON_TYPE_BOOL
Definition md_json.h:37

MD_JSON_TYPE_STRING
@ MD_JSON_TYPE_STRING
Definition md_json.h:34

MD_JSON_TYPE_OBJECT
@ MD_JSON_TYPE_OBJECT
Definition md_json.h:32

md_log.h

md_ocsp_get_status_all
void md_ocsp_get_status_all(md_json_t **pjson, md_ocsp_reg_t *reg, apr_pool_t *p)
Definition md_ocsp.c:1033

md_ocsp_count
apr_size_t md_ocsp_count(md_ocsp_reg_t *reg)
Definition md_ocsp.c:491

md_ocsp_get_summary
void md_ocsp_get_summary(md_json_t **pjson, md_ocsp_reg_t *reg, apr_pool_t *p)
Definition md_ocsp.c:955

md_ocsp.h

md_reg.h

md_status_get_json
apr_status_t md_status_get_json(md_json_t **pjson, apr_array_header_t *mds, md_reg_t *reg, md_ocsp_reg_t *ocsp, apr_pool_t *p)
Definition md_status.c:267

md_status_get_md_json
apr_status_t md_status_get_md_json(md_json_t **pjson, const md_t *md, md_reg_t *reg, md_ocsp_reg_t *ocsp, apr_pool_t *p)
Definition md_status.c:261

md_status_take_stock
void md_status_take_stock(md_json_t **pjson, apr_array_header_t *mds, md_reg_t *reg, apr_pool_t *p)
Definition md_status.c:446

md_status.h

md_store.h

md_store_fs.h

md_duration_roughly
const char * md_duration_roughly(apr_pool_t *p, apr_interval_time_t duration)
Definition md_time.c:113

MD_SECS_PER_DAY
#define MD_SECS_PER_DAY
Definition md_time.h:23

md_util.h

md_version.h

mod_md.h

mod_md_config.h

mod_md_drive.h

mod_md_private.h

add_status_cell
static void add_status_cell(status_ctx *ctx, md_json_t *mdj, const status_info *info)
Definition mod_md_status.c:687

si_val_names
static void si_val_names(status_ctx *ctx, md_json_t *mdj, const status_info *info)
Definition mod_md_status.c:669

val_url_print
static void val_url_print(status_ctx *ctx, const status_info *info, const char *url, const char *proto, int i)
Definition mod_md_status.c:352

print_date
static void print_date(status_ctx *ctx, apr_time_t timestamp, const char *title)
Definition mod_md_status.c:220

md_status_handler
int md_status_handler(request_rec *r)
Definition mod_md_status.c:935

HTML_STATUS
#define HTML_STATUS(X)
Definition mod_md_status.c:58

si_val_remote_check
static void si_val_remote_check(status_ctx *ctx, md_json_t *mdj, const status_info *info)
Definition mod_md_status.c:597

add_ocsp_row
static int add_ocsp_row(void *baton, apr_size_t index, md_json_t *mdj)
Definition mod_md_status.c:842

MD_STATUS_RESOURCE
#define MD_STATUS_RESOURCE
Definition mod_md_status.c:57

status_infos
static const status_info status_infos[]
Definition mod_md_status.c:704

add_json_val
static void add_json_val(status_ctx *ctx, md_json_t *j)
Definition mod_md_status.c:641

cert_check_iter
static int cert_check_iter(void *baton, const char *key, md_json_t *json)
Definition mod_md_status.c:562

si_val_ca_urls
static void si_val_ca_urls(status_ctx *ctx, md_json_t *mdj, const status_info *info)
Definition mod_md_status.c:386

si_val_ocsp_activity
static void si_val_ocsp_activity(status_ctx *ctx, md_json_t *mdj, const status_info *info)
Definition mod_md_status.c:816

md_http_cert_status
int md_http_cert_status(request_rec *r)
Definition mod_md_status.c:60

print_time
static void print_time(status_ctx *ctx, const char *label, apr_time_t t)
Definition mod_md_status.c:249

json_iter_val
static int json_iter_val(void *data, size_t index, md_json_t *json)
Definition mod_md_status.c:624

md_domains_status_hook
int md_domains_status_hook(request_rec *r, int flags)
Definition mod_md_status.c:744

si_add_header
static void si_add_header(status_ctx *ctx, const status_info *info)
Definition mod_md_status.c:334

si_val_valid_time
static void si_val_valid_time(status_ctx *ctx, md_json_t *mdj, const status_info *info)
Definition mod_md_status.c:298

si_val_activity
static void si_val_activity(status_ctx *ctx, md_json_t *mdj, const status_info *info)
Definition mod_md_status.c:522

si_val_cert_valid_time
static void si_val_cert_valid_time(status_ctx *ctx, md_json_t *mdj, const status_info *info)
Definition mod_md_status.c:342

add_md_row
static int add_md_row(void *baton, apr_size_t index, md_json_t *mdj)
Definition mod_md_status.c:715

si_val_url
static void si_val_url(status_ctx *ctx, md_json_t *mdj, const status_info *info)
Definition mod_md_status.c:200

md_name_cmp
static int md_name_cmp(const void *v1, const void *v2)
Definition mod_md_status.c:739

add_status_fn
void add_status_fn(status_ctx *ctx, md_json_t *mdj, const status_info *info)
Definition mod_md_status.c:164

si_val_stapling
static void si_val_stapling(status_ctx *ctx, md_json_t *mdj, const status_info *info)
Definition mod_md_status.c:612

print_job_summary
static void print_job_summary(status_ctx *ctx, md_json_t *mdj, const char *key, const char *separator)
Definition mod_md_status.c:426

si_val_status
static void si_val_status(status_ctx *ctx, md_json_t *mdj, const status_info *info)
Definition mod_md_status.c:172

count_certs
static int count_certs(void *baton, const char *key, md_json_t *json)
Definition mod_md_status.c:415

ocsp_status_infos
static const status_info ocsp_status_infos[]
Definition mod_md_status.c:833

md_ocsp_status_hook
int md_ocsp_status_hook(request_rec *r, int flags)
Definition mod_md_status.c:866

mod_md_status.h

NULL
return NULL
Definition mod_so.c:359

i
int i
Definition mod_so.c:347

mod_status.h
Status Report Extension Module to Apache.

name
char * name
Definition ssl_engine_vars.c:563

apr_array_header_t
Definition apr_tables.h:62

apr_array_header_t::nelts
int nelts
Definition apr_tables.h:68

apr_array_header_t::elts
char * elts
Definition apr_tables.h:72

apr_bucket_brigade
Definition apr_buckets.h:258

apr_bucket_brigade::p
apr_pool_t * p
Definition apr_buckets.h:264

apr_pool_t
Definition apr_pools.c:562

apr_time_exp_t
Definition apr_time.h:97

apr_uri_t::path
char * path
Definition apr_uri.h:99

conn_rec::bucket_alloc
struct apr_bucket_alloc_t * bucket_alloc
Definition httpd.h:1201

md_json_t
Definition md_json.c:56

md_mod_conf_t
Definition mod_md_config.h:50

md_mod_conf_t::mds
apr_array_header_t * mds
Definition mod_md_config.h:51

md_mod_conf_t::certificate_status_enabled
int certificate_status_enabled
Definition mod_md_config.h:72

md_mod_conf_t::reg
struct md_reg_t * reg
Definition mod_md_config.h:54

md_mod_conf_t::ocsp
struct md_ocsp_reg_t * ocsp
Definition mod_md_config.h:55

md_pkey_spec_t
Definition md_crypt.h:63

md_srv_conf_t
Definition mod_md_config.h:86

md_srv_conf_t::mc
md_mod_conf_t * mc
Definition mod_md_config.h:89

md_t
Definition md.h:76

md_t::name
const char * name
Definition md.h:77

md_t::pks
struct md_pkeys_spec_t * pks
Definition md.h:81

prefix
Definition xmlparse.c:281

request_rec
A structure that represents the current request.
Definition httpd.h:845

request_rec::output_filters
struct ap_filter_t * output_filters
Definition httpd.h:1070

request_rec::handler
const char * handler
Definition httpd.h:994

request_rec::hostname
const char * hostname
Definition httpd.h:883

request_rec::method_number
int method_number
Definition httpd.h:898

request_rec::pool
apr_pool_t * pool
Definition httpd.h:847

request_rec::parsed_uri
apr_uri_t parsed_uri
Definition httpd.h:1092

request_rec::connection
conn_rec * connection
Definition httpd.h:849

request_rec::server
server_rec * server
Definition httpd.h:851

request_rec::path_info
char * path_info
Definition httpd.h:1024

request_rec::headers_out
apr_table_t * headers_out
Definition httpd.h:978

server_rec::module_config
struct ap_conf_vector_t * module_config
Definition httpd.h:1341

status_ctx
Definition mod_md_status.c:151

status_ctx::flags
int flags
Definition mod_md_status.c:155

status_ctx::bb
apr_bucket_brigade * bb
Definition mod_md_status.c:154

status_ctx::separator
const char * separator
Definition mod_md_status.c:157

status_ctx::prefix
const char * prefix
Definition mod_md_status.c:156

status_ctx::mc
const md_mod_conf_t * mc
Definition mod_md_status.c:153

status_ctx::p
apr_pool_t * p
Definition mod_md_status.c:152

status_info
Definition mod_md_status.c:166

status_info::fn
add_status_fn * fn
Definition mod_md_status.c:169

status_info::label
const char * label
Definition mod_md_status.c:167

status_info::key
const char * key
Definition mod_md_status.c:168

now
static apr_time_t now
Definition testtime.c:33

apr_strftime
apr_status_t apr_strftime(char *s, apr_size_t *retsize, apr_size_t max, const char *format, apr_time_exp_t *xt)
Definition timestr.c:132

apr_rfc822_date
apr_status_t apr_rfc822_date(char *date_str, apr_time_t t)
Definition timestr.c:42

int
typedef int(WSAAPI *apr_winapi_fpt_WSAPoll)(IN OUT LPWSAPOLLFD fdArray

info
INT info
Definition apr_arch_misc.h:388