nginx: src/event/ngx_event_openssl.c comparison

comparison src/event/ngx_event_openssl.c @ 8082:c71e113b57d8

SSL: renamed session ticket key functions and data index. Previously used names are way too long, renamed to simplify writing code.

author	Maxim Dounin <mdounin@mdounin.ru>
date	Wed, 12 Oct 2022 20:14:49 +0300
parents	4eeb53743d25
children	e13a271bdd40

comparison

equal deleted inserted replaced

-:4eeb53743d25
+:c71e113b57d8
 ngx_slab_pool_t *shpool, ngx_uint_t n);
 static void ngx_ssl_session_rbtree_insert_value(ngx_rbtree_node_t *temp,
 ngx_rbtree_node_t *node, ngx_rbtree_node_t *sentinel);
 #ifdef SSL_CTRL_SET_TLSEXT_TICKET_KEY_CB
-static int ngx_ssl_session_ticket_key_callback(ngx_ssl_conn_t *ssl_conn,
+static int ngx_ssl_ticket_key_callback(ngx_ssl_conn_t *ssl_conn,
 unsigned char *name, unsigned char *iv, EVP_CIPHER_CTX *ectx,
 HMAC_CTX *hctx, int enc);
-static void ngx_ssl_session_ticket_keys_cleanup(void *data);
+static void ngx_ssl_ticket_keys_cleanup(void *data);
 #endif
 #ifndef X509_CHECK_FLAG_ALWAYS_CHECK_SUBJECT
 static ngx_int_t ngx_ssl_check_name(ngx_str_t *name, ASN1_STRING *str);
 #endif
 int  ngx_ssl_connection_index;
 int  ngx_ssl_server_conf_index;
 int  ngx_ssl_session_cache_index;
-int  ngx_ssl_session_ticket_keys_index;
+int  ngx_ssl_ticket_keys_index;
 int  ngx_ssl_ocsp_index;
 int  ngx_ssl_certificate_index;
 int  ngx_ssl_next_certificate_index;
 int  ngx_ssl_certificate_name_index;
 int  ngx_ssl_stapling_index;
 ngx_ssl_error(NGX_LOG_ALERT, log, 0,
 "SSL_CTX_get_ex_new_index() failed");
 return NGX_ERROR;
 }
-ngx_ssl_session_ticket_keys_index = SSL_CTX_get_ex_new_index(0, NULL, NULL,
+ngx_ssl_ticket_keys_index = SSL_CTX_get_ex_new_index(0, NULL, NULL, NULL,
-NULL, NULL);
+NULL);
-if (ngx_ssl_session_ticket_keys_index == -1) {
+if (ngx_ssl_ticket_keys_index == -1) {
 ngx_ssl_error(NGX_LOG_ALERT, log, 0,
 "SSL_CTX_get_ex_new_index() failed");
 return NGX_ERROR;
 }
 cln = ngx_pool_cleanup_add(cf->pool, 0);
 if (cln == NULL) {
 return NGX_ERROR;
 }
-cln->handler = ngx_ssl_session_ticket_keys_cleanup;
+cln->handler = ngx_ssl_ticket_keys_cleanup;
 cln->data = keys;
 path = paths->elts;
 for (i = 0; i < paths->nelts; i++) {
 }
 ngx_explicit_memzero(&buf, 80);
 }
-if (SSL_CTX_set_ex_data(ssl->ctx, ngx_ssl_session_ticket_keys_index, keys)
+if (SSL_CTX_set_ex_data(ssl->ctx, ngx_ssl_ticket_keys_index, keys) == 0) {
-== 0)
-{
 ngx_ssl_error(NGX_LOG_EMERG, ssl->log, 0,
 "SSL_CTX_set_ex_data() failed");
 return NGX_ERROR;
 }
-if (SSL_CTX_set_tlsext_ticket_key_cb(ssl->ctx,
+if (SSL_CTX_set_tlsext_ticket_key_cb(ssl->ctx, ngx_ssl_ticket_key_callback)
-ngx_ssl_session_ticket_key_callback)
 == 0)
 {
 ngx_log_error(NGX_LOG_WARN, cf->log, 0,
 "nginx was built with Session Tickets support, however, "
 "now it is linked dynamically to an OpenSSL library "
 return NGX_ERROR;
 }
 static int
-ngx_ssl_session_ticket_key_callback(ngx_ssl_conn_t *ssl_conn,
+ngx_ssl_ticket_key_callback(ngx_ssl_conn_t *ssl_conn,
 unsigned char *name, unsigned char *iv, EVP_CIPHER_CTX *ectx,
 HMAC_CTX *hctx, int enc)
 {
 size_t                 size;
 SSL_CTX               *ssl_ctx;
 digest = EVP_sha1();
 #else
 digest = EVP_sha256();
 #endif
-keys = SSL_CTX_get_ex_data(ssl_ctx, ngx_ssl_session_ticket_keys_index);
+keys = SSL_CTX_get_ex_data(ssl_ctx, ngx_ssl_ticket_keys_index);
 if (keys == NULL) {
 return -1;
 }
 key = keys->elts;
 }
 }
 static void
-ngx_ssl_session_ticket_keys_cleanup(void *data)
+ngx_ssl_ticket_keys_cleanup(void *data)
 {
 ngx_array_t  *keys = data;
 ngx_explicit_memzero(keys->elts,
 keys->nelts * sizeof(ngx_ssl_ticket_key_t));

Mercurial > hg > nginx

comparison src/event/ngx_event_openssl.c @ 8082:c71e113b57d8