#include "ssl_private.h"
#include "mpm_common.h"
#include "mod_md.h"

Classes
struct	dhparam

Macros
#define	KEYTYPES "RSA or DSA"

#define	MODSSL_BLOCKS_RENEG (1)

#define	CHECK_PRIVKEY_ERROR(ec) (ERR_GET_FUNC(ec) != X509_F_X509_CHECK_PRIVATE_KEY)

#define	MODSSL_CFG_ITEM_FREE(func, item)

Functions
static apr_status_t	ssl_init_ca_cert_path (server_rec , apr_pool_t , const char , STACK_OF(X509_NAME) , STACK_OF(X509_INFO) *)

int	ssl_run_init_server (server_rec s, apr_pool_t p, int is_proxy, SSL_CTX *ctx)

int	ssl_run_add_cert_files (server_rec s, apr_pool_t p, apr_array_header_t cert_files, apr_array_header_t key_files)

int	ssl_run_add_fallback_cert_files (server_rec s, apr_pool_t p, apr_array_header_t cert_files, apr_array_header_t key_files)

int	ssl_run_answer_challenge (conn_rec c, const char server_name, X509 pcert, EVP_PKEY pkey)

static int	DH_set0_pqg (DH dh, BIGNUM p, BIGNUM q, BIGNUM g)

static DH *	make_dh_params (BIGNUM (prime)(BIGNUM *))

static void	init_dh_params (void)

static void	free_dh_params (void)

DH *	modssl_get_dh_params (unsigned keylen)

static void	ssl_add_version_components (apr_pool_t ptemp, apr_pool_t pconf, server_rec *s)

int	ssl_is_challenge (conn_rec c, const char servername, X509 pcert, EVP_PKEY pkey, const char pcert_pem, const char pkey_pem)

static APR_INLINE unsigned long	modssl_runtime_lib_version (void)

apr_status_t	ssl_init_Module (apr_pool_t p, apr_pool_t plog, apr_pool_t ptemp, server_rec base_server)

apr_status_t	ssl_init_Engine (server_rec s, apr_pool_t p)

static apr_status_t	ssl_init_ctx_protocol (server_rec s, apr_pool_t p, apr_pool_t ptemp, modssl_ctx_t mctx)

static void	ssl_init_ctx_session_cache (server_rec s, apr_pool_t p, apr_pool_t ptemp, modssl_ctx_t mctx)

static void	ssl_init_ctx_callbacks (server_rec s, apr_pool_t p, apr_pool_t ptemp, modssl_ctx_t mctx)

static APR_INLINE int	modssl_CTX_load_verify_locations (SSL_CTX ctx, const char file, const char *path)

static apr_status_t	ssl_init_ctx_verify (server_rec s, apr_pool_t p, apr_pool_t ptemp, modssl_ctx_t mctx)

static apr_status_t	ssl_init_ctx_cipher_suite (server_rec s, apr_pool_t p, apr_pool_t ptemp, modssl_ctx_t mctx)

static APR_INLINE int	modssl_X509_STORE_load_locations (X509_STORE store, const char file, const char *path)

static apr_status_t	ssl_init_ctx_crl (server_rec s, apr_pool_t p, apr_pool_t ptemp, modssl_ctx_t mctx)

static int	use_certificate_chain (SSL_CTX ctx, char file, int skipfirst, pem_password_cb *cb)

static apr_status_t	ssl_init_ctx_cert_chain (server_rec s, apr_pool_t p, apr_pool_t ptemp, modssl_ctx_t mctx)

static apr_status_t	ssl_init_ctx (server_rec s, apr_pool_t p, apr_pool_t ptemp, modssl_ctx_t mctx)

static void	ssl_check_public_cert (server_rec s, apr_pool_t ptemp, X509 cert, const char key_id)

static int	ssl_no_passwd_prompt_cb (char buf, int size, int rwflag, void userdata)

static apr_status_t	ssl_init_server_certs (server_rec s, apr_pool_t p, apr_pool_t ptemp, modssl_ctx_t mctx, apr_array_header_t *pphrases)

static unsigned int	load_x509_info (apr_pool_t ptemp, STACK_OF(X509_INFO) sk, const char *filename)

static apr_status_t	ssl_init_proxy_certs (server_rec s, apr_pool_t p, apr_pool_t ptemp, modssl_ctx_t mctx)

static void	ssl_init_ctx_cleanup (modssl_ctx_t *mctx)

static apr_status_t	ssl_cleanup_proxy_ctx (void *data)

static apr_status_t	ssl_init_proxy_ctx (server_rec s, apr_pool_t p, apr_pool_t ptemp, modssl_ctx_t proxy)

static apr_status_t	ssl_init_server_ctx (server_rec s, apr_pool_t p, apr_pool_t ptemp, SSLSrvConfigRec sc, apr_array_header_t *pphrases)

apr_status_t	ssl_init_ConfigureServer (server_rec s, apr_pool_t p, apr_pool_t ptemp, SSLSrvConfigRec sc, apr_array_header_t *pphrases)

apr_status_t	ssl_init_CheckServers (server_rec base_server, apr_pool_t p)

int	ssl_proxy_section_post_config (apr_pool_t p, apr_pool_t plog, apr_pool_t ptemp, server_rec s, ap_conf_vector_t *section_config)

	STACK_OF (X509_NAME)

void	ssl_init_Child (apr_pool_t p, server_rec s)

apr_status_t	ssl_init_ModuleKill (void *data)

Variables
static struct dhparam	dhparams []

Macro Definition Documentation

◆ CHECK_PRIVKEY_ERROR

#define CHECK_PRIVKEY_ERROR ( ec ) (ERR_GET_FUNC(ec) != X509_F_X509_CHECK_PRIVATE_KEY)

Definition at line 1352 of file ssl_engine_init.c.

◆ KEYTYPES

#define KEYTYPES "RSA or DSA"

Definition at line 69 of file ssl_engine_init.c.

◆ MODSSL_BLOCKS_RENEG

#define MODSSL_BLOCKS_RENEG (1)

Definition at line 887 of file ssl_engine_init.c.

◆ MODSSL_CFG_ITEM_FREE

#define MODSSL_CFG_ITEM_FREE	(	func,
		item
	)

Value:

    if (item) { \
        func(item); \
        item = NULL; \
    }

Definition at line 1904 of file ssl_engine_init.c.

Function Documentation

◆ DH_set0_pqg()

static int DH_set0_pqg	(	DH *	dh,
		BIGNUM *	p,
		BIGNUM *	q,
		BIGNUM *	g
	)

static

Definition at line 75 of file ssl_engine_init.c.

◆ free_dh_params()

static void free_dh_params ( void )

static

Definition at line 142 of file ssl_engine_init.c.

◆ init_dh_params()

static void init_dh_params ( void )

static

Definition at line 134 of file ssl_engine_init.c.

◆ load_x509_info()

static unsigned int load_x509_info	(	apr_pool_t *	ptemp,
		STACK_OF(X509_INFO) *	sk,
		const char *	filename
	)

static

Definition at line 1704 of file ssl_engine_init.c.

◆ make_dh_params()

static DH * make_dh_params ( BIGNUM *(*)(BIGNUM *) prime )

static

Definition at line 98 of file ssl_engine_init.c.

◆ modssl_CTX_load_verify_locations()

static APR_INLINE int modssl_CTX_load_verify_locations	(	SSL_CTX *	ctx,
		const char *	file,
		const char *	path
	)

static

Definition at line 917 of file ssl_engine_init.c.

◆ modssl_runtime_lib_version()

static APR_INLINE unsigned long modssl_runtime_lib_version ( void )

static

Definition at line 220 of file ssl_engine_init.c.

◆ modssl_X509_STORE_load_locations()

static APR_INLINE int modssl_X509_STORE_load_locations	(	X509_STORE *	store,
		const char *	file,
		const char *	path
	)

static

Definition at line 1060 of file ssl_engine_init.c.

◆ ssl_add_version_components()

static void ssl_add_version_components	(	apr_pool_t *	ptemp,
		apr_pool_t *	pconf,
		server_rec *	s
	)

static

Definition at line 174 of file ssl_engine_init.c.

◆ ssl_check_public_cert()

static void ssl_check_public_cert	(	server_rec *	s,
		apr_pool_t *	ptemp,
		X509 *	cert,
		const char *	key_id
	)

static

Definition at line 1300 of file ssl_engine_init.c.

◆ ssl_cleanup_proxy_ctx()

static apr_status_t ssl_cleanup_proxy_ctx ( void * data )

static

Definition at line 1922 of file ssl_engine_init.c.

◆ ssl_init_ca_cert_path()

static apr_status_t ssl_init_ca_cert_path	(	server_rec *	s,
		apr_pool_t *	ptemp,
		const char *	path,
		STACK_OF(X509_NAME) *	ca_list,
		STACK_OF(X509_INFO) *	xi_list
	)

static

< Type

< ->name in proper case

Definition at line 2270 of file ssl_engine_init.c.

◆ ssl_init_ctx()

static apr_status_t ssl_init_ctx	(	server_rec *	s,
		apr_pool_t *	p,
		apr_pool_t *	ptemp,
		modssl_ctx_t *	mctx
	)

static

Definition at line 1257 of file ssl_engine_init.c.

◆ ssl_init_ctx_callbacks()

static void ssl_init_ctx_callbacks	(	server_rec *	s,
		apr_pool_t *	p,
		apr_pool_t *	ptemp,
		modssl_ctx_t *	mctx
	)

static

Definition at line 890 of file ssl_engine_init.c.

◆ ssl_init_ctx_cert_chain()

static apr_status_t ssl_init_ctx_cert_chain	(	server_rec *	s,
		apr_pool_t *	p,
		apr_pool_t *	ptemp,
		modssl_ctx_t *	mctx
	)

static

Definition at line 1207 of file ssl_engine_init.c.

◆ ssl_init_ctx_cipher_suite()

static apr_status_t ssl_init_ctx_cipher_suite	(	server_rec *	s,
		apr_pool_t *	p,
		apr_pool_t *	ptemp,
		modssl_ctx_t *	mctx
	)

static

Definition at line 1018 of file ssl_engine_init.c.

◆ ssl_init_ctx_cleanup()

static void ssl_init_ctx_cleanup ( modssl_ctx_t * mctx )

static

Definition at line 1910 of file ssl_engine_init.c.

◆ ssl_init_ctx_crl()

static apr_status_t ssl_init_ctx_crl	(	server_rec *	s,
		apr_pool_t *	p,
		apr_pool_t *	ptemp,
		modssl_ctx_t *	mctx
	)

static

Definition at line 1076 of file ssl_engine_init.c.

◆ ssl_init_ctx_protocol()

static apr_status_t ssl_init_ctx_protocol	(	server_rec *	s,
		apr_pool_t *	p,
		apr_pool_t *	ptemp,
		modssl_ctx_t *	mctx
	)

static

Definition at line 610 of file ssl_engine_init.c.

◆ ssl_init_ctx_session_cache()

static void ssl_init_ctx_session_cache	(	server_rec *	s,
		apr_pool_t *	p,
		apr_pool_t *	ptemp,
		modssl_ctx_t *	mctx
	)

static

Definition at line 865 of file ssl_engine_init.c.

◆ ssl_init_ctx_verify()

static apr_status_t ssl_init_ctx_verify	(	server_rec *	s,
		apr_pool_t *	p,
		apr_pool_t *	ptemp,
		modssl_ctx_t *	mctx
	)

static

Definition at line 933 of file ssl_engine_init.c.

◆ ssl_init_proxy_certs()

static apr_status_t ssl_init_proxy_certs	(	server_rec *	s,
		apr_pool_t *	p,
		apr_pool_t *	ptemp,
		modssl_ctx_t *	mctx
	)

static

Definition at line 1728 of file ssl_engine_init.c.

◆ ssl_init_proxy_ctx()

static apr_status_t ssl_init_proxy_ctx	(	server_rec *	s,
		apr_pool_t *	p,
		apr_pool_t *	ptemp,
		modssl_ctx_t *	proxy
	)

static

Definition at line 1947 of file ssl_engine_init.c.

◆ ssl_init_server_certs()

static apr_status_t ssl_init_server_certs	(	server_rec *	s,
		apr_pool_t *	p,
		apr_pool_t *	ptemp,
		modssl_ctx_t *	mctx,
		apr_array_header_t *	pphrases
	)

static

Definition at line 1360 of file ssl_engine_init.c.

◆ ssl_init_server_ctx()

static apr_status_t ssl_init_server_ctx	(	server_rec *	s,
		apr_pool_t *	p,
		apr_pool_t *	ptemp,
		SSLSrvConfigRec *	sc,
		apr_array_header_t *	pphrases
	)

static

Definition at line 1974 of file ssl_engine_init.c.

◆ ssl_no_passwd_prompt_cb()

static int ssl_no_passwd_prompt_cb	(	char *	buf,
		int	size,
		int	rwflag,
		void *	userdata
	)

static

Definition at line 1339 of file ssl_engine_init.c.

◆ STACK_OF()

STACK_OF ( X509_NAME )

Definition at line 2304 of file ssl_engine_init.c.

◆ use_certificate_chain()

static int use_certificate_chain	(	SSL_CTX *	ctx,
		char *	file,
		int	skipfirst,
		pem_password_cb *	cb
	)

static

Definition at line 1151 of file ssl_engine_init.c.

Variable Documentation

◆ dhparams

struct dhparam dhparams[]

static

Initial value:

= {
    {  get_rfc3526_prime_8192 , NULL, 6145 },
    {  get_rfc3526_prime_6144 , NULL, 4097 },
    {  get_rfc3526_prime_4096 , NULL, 3073 },
    {  get_rfc3526_prime_3072 , NULL, 2049 },
    {  get_rfc3526_prime_2048 , NULL, 1025 },
    {  get_rfc2409_prime_1024 , NULL, 0 }
}

Classes

Macros

Functions

Variables

Macro Definition Documentation

◆ CHECK_PRIVKEY_ERROR

◆ KEYTYPES

◆ MODSSL_BLOCKS_RENEG

◆ MODSSL_CFG_ITEM_FREE

Function Documentation

◆ DH_set0_pqg()

◆ free_dh_params()

◆ init_dh_params()

◆ load_x509_info()

◆ make_dh_params()

◆ modssl_CTX_load_verify_locations()

◆ modssl_runtime_lib_version()

◆ modssl_X509_STORE_load_locations()

◆ ssl_add_version_components()

◆ ssl_check_public_cert()

◆ ssl_cleanup_proxy_ctx()

◆ ssl_init_ca_cert_path()

◆ ssl_init_ctx()

◆ ssl_init_ctx_callbacks()

◆ ssl_init_ctx_cert_chain()

◆ ssl_init_ctx_cipher_suite()

◆ ssl_init_ctx_cleanup()

◆ ssl_init_ctx_crl()

◆ ssl_init_ctx_protocol()

◆ ssl_init_ctx_session_cache()

◆ ssl_init_ctx_verify()

◆ ssl_init_proxy_certs()

◆ ssl_init_proxy_ctx()

◆ ssl_init_server_certs()

◆ ssl_init_server_ctx()

◆ ssl_no_passwd_prompt_cb()

◆ STACK_OF()

◆ use_certificate_chain()

Variable Documentation

◆ dhparams