Mercurial > hg > nginx
comparison src/event/ngx_event_openssl.c @ 8081:4eeb53743d25
SSL: renamed session ticket key type.
The ngx_ssl_session_ticket_key_t is way too long, renamed to
ngx_ssl_ticket_key_t to simplify writing code.
| author | Maxim Dounin <mdounin@mdounin.ru> |
|---|---|
| date | Wed, 12 Oct 2022 20:14:47 +0300 |
| parents | f106f4a68faf |
| children | c71e113b57d8 |
comparison
equal
deleted
inserted
replaced
| 8080:bf02161f291e | 8081:4eeb53743d25 |
|---|---|
| 4227 #ifdef SSL_CTRL_SET_TLSEXT_TICKET_KEY_CB | 4227 #ifdef SSL_CTRL_SET_TLSEXT_TICKET_KEY_CB |
| 4228 | 4228 |
| 4229 ngx_int_t | 4229 ngx_int_t |
| 4230 ngx_ssl_session_ticket_keys(ngx_conf_t *cf, ngx_ssl_t *ssl, ngx_array_t *paths) | 4230 ngx_ssl_session_ticket_keys(ngx_conf_t *cf, ngx_ssl_t *ssl, ngx_array_t *paths) |
| 4231 { | 4231 { |
| 4232 u_char buf[80]; | 4232 u_char buf[80]; |
| 4233 size_t size; | 4233 size_t size; |
| 4234 ssize_t n; | 4234 ssize_t n; |
| 4235 ngx_str_t *path; | 4235 ngx_str_t *path; |
| 4236 ngx_file_t file; | 4236 ngx_file_t file; |
| 4237 ngx_uint_t i; | 4237 ngx_uint_t i; |
| 4238 ngx_array_t *keys; | 4238 ngx_array_t *keys; |
| 4239 ngx_file_info_t fi; | 4239 ngx_file_info_t fi; |
| 4240 ngx_pool_cleanup_t *cln; | 4240 ngx_pool_cleanup_t *cln; |
| 4241 ngx_ssl_session_ticket_key_t *key; | 4241 ngx_ssl_ticket_key_t *key; |
| 4242 | 4242 |
| 4243 if (paths == NULL) { | 4243 if (paths == NULL) { |
| 4244 return NGX_OK; | 4244 return NGX_OK; |
| 4245 } | 4245 } |
| 4246 | 4246 |
| 4247 keys = ngx_array_create(cf->pool, paths->nelts, | 4247 keys = ngx_array_create(cf->pool, paths->nelts, |
| 4248 sizeof(ngx_ssl_session_ticket_key_t)); | 4248 sizeof(ngx_ssl_ticket_key_t)); |
| 4249 if (keys == NULL) { | 4249 if (keys == NULL) { |
| 4250 return NGX_ERROR; | 4250 return NGX_ERROR; |
| 4251 } | 4251 } |
| 4252 | 4252 |
| 4253 cln = ngx_pool_cleanup_add(cf->pool, 0); | 4253 cln = ngx_pool_cleanup_add(cf->pool, 0); |
| 4370 static int | 4370 static int |
| 4371 ngx_ssl_session_ticket_key_callback(ngx_ssl_conn_t *ssl_conn, | 4371 ngx_ssl_session_ticket_key_callback(ngx_ssl_conn_t *ssl_conn, |
| 4372 unsigned char *name, unsigned char *iv, EVP_CIPHER_CTX *ectx, | 4372 unsigned char *name, unsigned char *iv, EVP_CIPHER_CTX *ectx, |
| 4373 HMAC_CTX *hctx, int enc) | 4373 HMAC_CTX *hctx, int enc) |
| 4374 { | 4374 { |
| 4375 size_t size; | 4375 size_t size; |
| 4376 SSL_CTX *ssl_ctx; | 4376 SSL_CTX *ssl_ctx; |
| 4377 ngx_uint_t i; | 4377 ngx_uint_t i; |
| 4378 ngx_array_t *keys; | 4378 ngx_array_t *keys; |
| 4379 ngx_connection_t *c; | 4379 ngx_connection_t *c; |
| 4380 ngx_ssl_session_ticket_key_t *key; | 4380 ngx_ssl_ticket_key_t *key; |
| 4381 const EVP_MD *digest; | 4381 const EVP_MD *digest; |
| 4382 const EVP_CIPHER *cipher; | 4382 const EVP_CIPHER *cipher; |
| 4383 | 4383 |
| 4384 c = ngx_ssl_get_connection(ssl_conn); | 4384 c = ngx_ssl_get_connection(ssl_conn); |
| 4385 ssl_ctx = c->ssl->session_ctx; | 4385 ssl_ctx = c->ssl->session_ctx; |
| 4386 | 4386 |
| 4387 #ifdef OPENSSL_NO_SHA256 | 4387 #ifdef OPENSSL_NO_SHA256 |
| 4506 ngx_ssl_session_ticket_keys_cleanup(void *data) | 4506 ngx_ssl_session_ticket_keys_cleanup(void *data) |
| 4507 { | 4507 { |
| 4508 ngx_array_t *keys = data; | 4508 ngx_array_t *keys = data; |
| 4509 | 4509 |
| 4510 ngx_explicit_memzero(keys->elts, | 4510 ngx_explicit_memzero(keys->elts, |
| 4511 keys->nelts * sizeof(ngx_ssl_session_ticket_key_t)); | 4511 keys->nelts * sizeof(ngx_ssl_ticket_key_t)); |
| 4512 } | 4512 } |
| 4513 | 4513 |
| 4514 #else | 4514 #else |
| 4515 | 4515 |
| 4516 ngx_int_t | 4516 ngx_int_t |