Mercurial > hg > nginx-quic
annotate src/os/win32/ngx_user.c @ 6548:8a34e92d8ab5
SSL: made it possible to iterate though all certificates.
A pointer to a previously configured certificate now stored in a certificate.
This makes it possible to iterate though all certificates configured in
the SSL context. This is now used to configure OCSP stapling for all
certificates, and in ngx_ssl_session_id_context().
As SSL_CTX_use_certificate() frees previously loaded certificate of the same
type, and we have no way to find out if it's the case, X509_free() calls
are now posponed till ngx_ssl_cleanup_ctx().
Note that in OpenSSL 1.0.2+ this can be done without storing things in exdata
using the SSL_CTX_set_current_cert() and SSL_CTX_get0_certificate() functions.
These are not yet available in all supported versions though, so it's easier
to continue to use exdata for now.
| author | Maxim Dounin <mdounin@mdounin.ru> |
|---|---|
| date | Thu, 19 May 2016 14:46:32 +0300 |
| parents | d620f497c50f |
| children |
| rev | line source |
|---|---|
| 503 | 1 /* |
| 2 * Copyright (C) Igor Sysoev | |
| 4412 | 3 * Copyright (C) Nginx, Inc. |
| 503 | 4 */ |
| 5 | |
| 6 | |
| 7 #include <ngx_config.h> | |
| 8 #include <ngx_core.h> | |
| 9 | |
| 10 | |
| 11 #if (NGX_CRYPT) | |
| 12 | |
| 13 ngx_int_t | |
|
3922
9c057d5e1c27
"$apr1", "{PLAIN}", and "{SSHA}" password methods in auth basic module
Igor Sysoev <igor@sysoev.ru>
parents:
503
diff
changeset
|
14 ngx_libc_crypt(ngx_pool_t *pool, u_char *key, u_char *salt, u_char **encrypted) |
| 503 | 15 { |
| 16 /* STUB: a plain text password */ | |
| 17 | |
| 18 *encrypted = key; | |
| 19 | |
| 20 return NGX_OK; | |
| 21 } | |
| 22 | |
| 23 #endif /* NGX_CRYPT */ |