{
md_acme_driver_t *ad;
apr_status_t rv = APR_SUCCESS;
+ int challenges_configured = 0;
ad = apr_pcalloc(d->p, sizeof(*ad));
if (d->challenge) {
/* we have been told to use this type */
APR_ARRAY_PUSH(ad->ca_challenges, const char*) = apr_pstrdup(d->p, d->challenge);
+ challenges_configured = 1;
}
else if (d->md->ca_challenges && d->md->ca_challenges->nelts > 0) {
/* pre-configured set for this managed domain */
apr_array_cat(ad->ca_challenges, d->md->ca_challenges);
+ challenges_configured = 1;
}
else {
/* free to chose. Add all we support and see what we get offered */
" port 443 is needed.", d->md->name);
return APR_EGENERAL;
}
+ else if (ad->ca_challenges->nelts == 1
+ && md_array_str_index(ad->ca_challenges, MD_AUTHZ_TYPE_TLSSNI01, 0, 0) >= 0) {
+ md_log_perror(MD_LOG_MARK, MD_LOG_WARNING, 0, d->p, "%s: only challenge type '%s' "
+ "is available. This method of obtaining certificates will be "
+ "discontinued by Let's Encrypt and other CAs from early 2019 on, "
+ "if it is not already disabled for you.",
+ d->md->name, MD_AUTHZ_TYPE_TLSSNI01);
+ }
md_log_perror(MD_LOG_MARK, MD_LOG_TRACE1, 0, d->p, "%s: init driver", d->md->name);
CURL *curl;
struct curl_slist *req_hdrs = NULL;
- rv = curl_init(req);
+ if (APR_SUCCESS != (rv = curl_init(req))) return rv;
curl = req->internals;
res = apr_pcalloc(req->pool, sizeof(*res));
return rv;
}
-static apr_status_t dispatch(md_store_fs_t *s_fs, md_store_fs_ev_t ev, int group,
+static apr_status_t dispatch(md_store_fs_t *s_fs, md_store_fs_ev_t ev, unsigned int group,
const char *fname, apr_filetype_e ftype, apr_pool_t *p)
{
(void)ev;
} md_store_fs_ev_t;
typedef apr_status_t md_store_fs_cb(void *baton, struct md_store_t *store,
- md_store_fs_ev_t ev, int group,
+ md_store_fs_ev_t ev, unsigned int group,
const char *fname, apr_filetype_e ftype,
apr_pool_t *p);
* @macro
* Version number of the md module as c string
*/
-#define MOD_MD_VERSION "1.1.16"
+#define MOD_MD_VERSION "1.1.17-DEV"
/**
* @macro
* release. This is a 24 bit number with 8 bits for major number, 8 bits
* for minor and 8 bits for patch. Version 1.2.3 becomes 0x010203.
*/
-#define MOD_MD_VERSION_NUM 0x010110
+#define MOD_MD_VERSION_NUM 0x010111
#define MD_ACME_DEF_URL "https://acme-v01.api.letsencrypt.org/directory"
#include <apr_strings.h>
#include <ap_release.h>
-#include <ap_mmn.h>
-#if !AP_MODULE_MAGIC_AT_LEAST(20180720, 5)
#ifndef AP_ENABLE_EXCEPTION_HOOK
#define AP_ENABLE_EXCEPTION_HOOK 0
#endif
-#endif
#include <mpm_common.h>
#include <httpd.h>
#include <http_core.h>
/* store & registry setup */
static apr_status_t store_file_ev(void *baton, struct md_store_t *store,
- md_store_fs_ev_t ev, int group,
+ md_store_fs_ev_t ev, unsigned int group,
const char *fname, apr_filetype_e ftype,
apr_pool_t *p)
{
buffer[LOG_BUF_LEN-1] = '\0';
if (log_server) {
- ap_log_error(file, line, APLOG_MODULE_INDEX, level, rv, log_server, "%s",buffer);
+ ap_log_error(file, line, APLOG_MODULE_INDEX, (int)level, rv, log_server, "%s",buffer);
}
else {
- ap_log_perror(file, line, APLOG_MODULE_INDEX, level, rv, p, "%s", buffer);
+ ap_log_perror(file, line, APLOG_MODULE_INDEX, (int)level, rv, p, "%s", buffer);
}
}
}
projects / apache / commitdiff