mod_ssl namespacing: SSL_X509_match_name -> modssl_X509_match_name

author Stefan Sperling <stsp@apache.org>

Fri, 1 May 2015 14:42:42 +0000 (14:42 +0000)

committer Stefan Sperling <stsp@apache.org>

Fri, 1 May 2015 14:42:42 +0000 (14:42 +0000)
author Stefan Sperling <stsp@apache.org>
Fri, 1 May 2015 14:42:42 +0000 (14:42 +0000)
committer Stefan Sperling <stsp@apache.org>
Fri, 1 May 2015 14:42:42 +0000 (14:42 +0000)
diff --git a/modules/ssl/ssl_engine_init.c b/modules/ssl/ssl_engine_init.c

index 88cb20ef018e77c5dd554ef2e249cc2649384515..6d07e5edf49e96d8a2c41359244f753671904a80 100644 (file)
--- a/modules/ssl/ssl_engine_init.c
+++ b/modules/ssl/ssl_engine_init.c
@@ -955,8 +955,8 @@ static void ssl_check_public_cert(server_rec *s,
          }
      }
  
-    if (SSL_X509_match_name(ptemp, cert, (const char *)s->server_hostname,
-                            TRUE, s) == FALSE) {
+    if (modssl_X509_match_name(ptemp, cert, (const char *)s->server_hostname,
+                               TRUE, s) == FALSE) {
          ap_log_error(APLOG_MARK, APLOG_WARNING, 0, s, APLOGNO(01909)
                       "%s server certificate does NOT include an ID "
                       "which matches the server name", key_id);
diff --git a/modules/ssl/ssl_engine_io.c b/modules/ssl/ssl_engine_io.c

index 9a08843a867d5c6f16ae081cfdac7c34875762f5..6c346e90f4054b63d76873b98c24a69a93953b7f 100644 (file)
--- a/modules/ssl/ssl_engine_io.c
+++ b/modules/ssl/ssl_engine_io.c
@@ -1182,8 +1182,8 @@ static apr_status_t ssl_io_filter_handshake(ssl_filter_ctx_t *filter_ctx)
              hostname_note) {
              apr_table_unset(c->notes, "proxy-request-hostname");
              if (!cert
-                || SSL_X509_match_name(c->pool, cert, hostname_note,
-                                       TRUE, server) == FALSE) {
+                || modssl_X509_match_name(c->pool, cert, hostname_note,
+                                          TRUE, server) == FALSE) {
                  proxy_ssl_check_peer_ok = FALSE;
                  ap_log_cerror(APLOG_MARK, APLOG_INFO, 0, c, APLOGNO(02411)
                                "SSL Proxy: Peer certificate does not match "
diff --git a/modules/ssl/ssl_util_ssl.c b/modules/ssl/ssl_util_ssl.c

index 0c778962dabae50961b79b4c2092b11f62dc6396..40e343da7cd3eeb2b06cdf7d42b08f1d9513ae09 100644 (file)
--- a/modules/ssl/ssl_util_ssl.c
+++ b/modules/ssl/ssl_util_ssl.c
@@ -340,8 +340,8 @@ static BOOL getIDs(apr_pool_t *p, X509 *x509, apr_array_header_t **ids)
   * DNS-IDs and CN-IDs (RFC 6125), optionally with basic wildcard matching.
   * If server_rec is non-NULL, some (debug/trace) logging is enabled.
   */
-BOOL SSL_X509_match_name(apr_pool_t *p, X509 *x509, const char *name,
-                         BOOL allow_wildcard, server_rec *s)
+BOOL modssl_X509_match_name(apr_pool_t *p, X509 *x509, const char *name,
+                            BOOL allow_wildcard, server_rec *s)
  {
      BOOL matched = FALSE;
      apr_array_header_t *ids;
@@ -387,7 +387,7 @@ BOOL SSL_X509_match_name(apr_pool_t *p, X509 *x509, const char *name,
  
              if (s) {
                  ap_log_error(APLOG_MARK, APLOG_TRACE3, 0, s,
-                             "[%s] SSL_X509_match_name: expecting name '%s', "
+                             "[%s] modssl_X509_match_name: expecting name '%s', "
                               "%smatched by ID '%s'",
                               (mySrvConfig(s))->vhost_id, name,
                               matched == TRUE ? "" : "NOT ", id[i]);
diff --git a/modules/ssl/ssl_util_ssl.h b/modules/ssl/ssl_util_ssl.h

index c50504b1267884bb1606d35a1f6c7d369b13b13c..a4130b125dcc4c9ec4eaeb02cbe6814d4d441594 100644 (file)
--- a/modules/ssl/ssl_util_ssl.h
+++ b/modules/ssl/ssl_util_ssl.h
@@ -66,7 +66,7 @@ BOOL        modssl_X509_getBC(X509 *, int *, int *);
  char       *modssl_X509_NAME_ENTRY_to_string(apr_pool_t *p, X509_NAME_ENTRY *xsne);
  char       *modssl_X509_NAME_to_string(apr_pool_t *, X509_NAME *, int);
  BOOL        modssl_X509_getSAN(apr_pool_t *, X509 *, int, int, apr_array_header_t **);
-BOOL        SSL_X509_match_name(apr_pool_t *, X509 *, const char *, BOOL, server_rec *);
+BOOL        modssl_X509_match_name(apr_pool_t *, X509 *, const char *, BOOL, server_rec *);
  BOOL        SSL_X509_INFO_load_file(apr_pool_t *, STACK_OF(X509_INFO) *, const char *);
  BOOL        SSL_X509_INFO_load_path(apr_pool_t *, STACK_OF(X509_INFO) *, const char *);
  int         SSL_CTX_use_certificate_chain(SSL_CTX *, char *, int, pem_password_cb *);
author	Stefan Sperling <stsp@apache.org>
	Fri, 1 May 2015 14:42:42 +0000 (14:42 +0000)
committer	Stefan Sperling <stsp@apache.org>
	Fri, 1 May 2015 14:42:42 +0000 (14:42 +0000)
modules/ssl/ssl_engine_init.c		patch \| blob \| history
modules/ssl/ssl_engine_io.c		patch \| blob \| history
modules/ssl/ssl_util_ssl.c		patch \| blob \| history
modules/ssl/ssl_util_ssl.h		patch \| blob \| history