nginx: src/event/ngx_event_openssl.c comparison

comparison src/event/ngx_event_openssl.c @ 2123:9697407e9ecb

*) ssl_verify_client ask *) test ssl_client_certificate for ssl_verify_client *) $ssl_client_cert adds TAB before each line except first one *) $ssl_client_raw_cert contains certificate as is

author	Igor Sysoev <igor@sysoev.ru>
date	Tue, 29 Jul 2008 14:29:02 +0000
parents	b4085596a7e6
children	05e8de8fcfbb

comparison

equal deleted inserted replaced

-:d090fa684433
+:9697407e9ecb
 return NGX_OK;
 }
 ngx_int_t
-ngx_ssl_get_certificate(ngx_connection_t *c, ngx_pool_t *pool, ngx_str_t *s)
+ngx_ssl_get_raw_certificate(ngx_connection_t *c, ngx_pool_t *pool, ngx_str_t *s)
 {
 size_t   len;
 BIO     *bio;
 X509    *cert;
 BIO_free(bio);
 X509_free(cert);
 return NGX_ERROR;
+}
+ngx_int_t
+ngx_ssl_get_certificate(ngx_connection_t *c, ngx_pool_t *pool, ngx_str_t *s)
+{
+u_char      *p;
+size_t       len;
+ngx_uint_t   i;
+ngx_str_t    cert;
+if (ngx_ssl_get_raw_certificate(c, pool, &cert) != NGX_OK) {
+return NGX_ERROR;
+}
+if (cert.len == 0) {
+s->len = 0;
+return NGX_OK;
+}
+len = cert.len - 1;
+for (i = 0; i < cert.len - 1; i++) {
+if (cert.data[i] == LF) {
+len++;
+}
+}
+s->len = len;
+s->data = ngx_pnalloc(pool, len);
+if (s->data == NULL) {
+return NGX_ERROR;
+}
+p = s->data;
+for (i = 0; i < len; i++) {
+*p++ = cert.data[i];
+if (cert.data[i] == LF) {
+*p++ = '\t';
+}
+}
+return NGX_OK;
 }
 ngx_int_t
 ngx_ssl_get_subject_dn(ngx_connection_t *c, ngx_pool_t *pool, ngx_str_t *s)

Mercurial > hg > nginx

comparison src/event/ngx_event_openssl.c @ 2123:9697407e9ecb