granicus.if.org Git - apache/commit

author	Joe Orton <jorton@apache.org>
	Sun, 25 Oct 2009 17:21:10 +0000 (17:21 +0000)
committer	Joe Orton <jorton@apache.org>
	Sun, 25 Oct 2009 17:21:10 +0000 (17:21 +0000)
commit	b2cb650f615f216d2bb8530e683f1674ee11e252
tree	4a294e56a536bdff392ef148d160471060369371	tree \| snapshot
parent	299688e2b1e4ece056dde95aec74b90956a11d28	commit \| diff

Add support for OCSP "stapling":

* modules/ssl/ssl_util_stapling.c: New file.

* modules/ssl/config.m4, modules/ssl/mod_ssl.dsp: Build it.

* modules/ssl/ssl_toolkit_compat.h: Define HAVE_OCSP_STAPLING if
  OpenSSL is of suitable version (>= 0.9.8g) and capability (TLS
  extension support enabled).

* modules/ssl/mod_ssl.c: Add config directives.

* modules/ssl/ssl_private.h: Add prototypes for new functions.
  (SSLModConfigRec): Add fields for stapling socache instance and
  associated mutex.
  (modssl_ctx_t): Add config fields for stapling.

* modules/ssl/ssl_engine_init.c (ssl_init_Module, ssl_init_Child):
  Call the stapling initialization functions.

* modules/ssl/ssl_engine_config.c: Add config hooks.

* modules/ssl/ssl_scache.c: Create, initialize and destroy the socache
  instance for OCSP responses.

Submitted by: Dr Stephen Henson <shenson oss-institute.org>

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@829619 13f79535-47bb-0310-9956-ffa450edef68

CHANGES		diff \| blob \| history
modules/ssl/config.m4		diff \| blob \| history
modules/ssl/mod_ssl.c		diff \| blob \| history
modules/ssl/mod_ssl.dsp		diff \| blob \| history
modules/ssl/ssl_engine_config.c		diff \| blob \| history
modules/ssl/ssl_engine_init.c		diff \| blob \| history
modules/ssl/ssl_private.h		diff \| blob \| history
modules/ssl/ssl_scache.c		diff \| blob \| history
modules/ssl/ssl_toolkit_compat.h		diff \| blob \| history
modules/ssl/ssl_util_stapling.c	[new file with mode: 0644]	blob