Mercurial > hg > nginx
comparison src/event/quic/ngx_event_quic_ssl.c @ 8827:fe919fd63b0b quic
QUIC: client certificate validation with OCSP.
| author | Sergey Kandaurov <pluknet@nginx.com> |
|---|---|
| date | Wed, 04 Aug 2021 15:49:18 +0300 |
| parents | 4715f3e669f1 |
| children | 01bd1c0de1f4 |
comparison
equal
deleted
inserted
replaced
| 8826:c35b255d80dc | 8827:fe919fd63b0b |
|---|---|
| 359 | 359 |
| 360 static ngx_int_t | 360 static ngx_int_t |
| 361 ngx_quic_crypto_input(ngx_connection_t *c, ngx_chain_t *data) | 361 ngx_quic_crypto_input(ngx_connection_t *c, ngx_chain_t *data) |
| 362 { | 362 { |
| 363 int n, sslerr; | 363 int n, sslerr; |
| 364 ngx_int_t rc; | |
| 364 ngx_buf_t *b; | 365 ngx_buf_t *b; |
| 365 ngx_chain_t *cl; | 366 ngx_chain_t *cl; |
| 366 ngx_ssl_conn_t *ssl_conn; | 367 ngx_ssl_conn_t *ssl_conn; |
| 367 ngx_quic_frame_t *frame; | 368 ngx_quic_frame_t *frame; |
| 368 ngx_quic_connection_t *qc; | 369 ngx_quic_connection_t *qc; |
| 460 /* start accepting clients on negotiated number of server ids */ | 461 /* start accepting clients on negotiated number of server ids */ |
| 461 if (ngx_quic_create_sockets(c) != NGX_OK) { | 462 if (ngx_quic_create_sockets(c) != NGX_OK) { |
| 462 return NGX_ERROR; | 463 return NGX_ERROR; |
| 463 } | 464 } |
| 464 | 465 |
| 466 rc = ngx_ssl_ocsp_validate(c); | |
| 467 | |
| 468 if (rc == NGX_ERROR) { | |
| 469 return NGX_ERROR; | |
| 470 } | |
| 471 | |
| 472 if (rc == NGX_AGAIN) { | |
| 473 c->ssl->handler = ngx_quic_init_streams; | |
| 474 return NGX_OK; | |
| 475 } | |
| 476 | |
| 477 ngx_quic_init_streams(c); | |
| 478 | |
| 465 return NGX_OK; | 479 return NGX_OK; |
| 466 } | 480 } |
| 467 | 481 |
| 468 | 482 |
| 469 ngx_int_t | 483 ngx_int_t |