summaryrefslogtreecommitdiff
path: root/modules/tls
Commit message (Collapse)AuthorAgeFilesLines
* *) mod_tls: updating to rustls-ffi version 0.9.2 or higher.Stefan Eissing2023-05-022-3/+4
| | | | | | | | | Checking in configure for proper version installed. Code fixes for changed clienthello member name. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1909558 13f79535-47bb-0310-9956-ffa450edef68
* Fix some typoChristophe Jaillet2021-12-2510-23/+23
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1896393 13f79535-47bb-0310-9956-ffa450edef68
* Try to workaround a linkage issue with rustls.Christophe Jaillet2021-12-221-0/+13
| | | | | | | | | See https://github.com/rustls/rustls-ffi/issues/133 for discussion about it. Only 1.55, 1.56 and 1.57 should be affected. Tested with 1.56.1 on Linux pop-os 5.15.5 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1896278 13f79535-47bb-0310-9956-ffa450edef68
* * mod_tls: remove modules.mk, should not be under version controlStefan Eissing2021-12-011-7/+0
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895472 13f79535-47bb-0310-9956-ffa450edef68
* *) mod_tls: added mod_tls from abetterinternet, donatedStefan Eissing2021-11-3024-0/+7223
| | | | | | | | | | | | | | by ISRG/Prossimo <https://github.com/abetterinternet/mod_tls>. - adds font-/backend TLS (v1.2/v1.3) via the Rust rustls crate and its rustls-ffi C binding <https://github.com/rustls/rustls-ffi>. - documentation at <https://github.com/abetterinternet/mod_tls> (adding to Apache's manual TBD) - build support for Apache httpd configure on *nix platforms, rustls is linked statically into mod_tls. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1895432 13f79535-47bb-0310-9956-ffa450edef68
* Remove mod_tls. All of the filters in mod_tls can now be found inRyan Bloom2001-09-128-988/+0
| | | | | | | | | mod_ssl. Also, mod_ssl is being kept up to date, while mod_tls is not, so that if you use mod_tls, there are a lot of bugs, both security related, and otherwise. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@91013 13f79535-47bb-0310-9956-ffa450edef68
* Toggle the /Zi flag to allow all supportd versions of VC (5, 6, 7) toWilliam A. Rowe Jr2001-08-261-1/+1
| | | | | | | build 'out of the box' in debugging mode. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@90686 13f79535-47bb-0310-9956-ffa450edef68
* Changes for rbb's #include/build openssl/inc32 patch.William A. Rowe Jr2001-08-211-2/+2
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@90458 13f79535-47bb-0310-9956-ffa450edef68
* Based on the VC6 switch - and pulling the win32 make files from cvsWilliam A. Rowe Jr2001-08-171-2/+5
| | | | | | | - some more ignores are in order. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@90274 13f79535-47bb-0310-9956-ffa450edef68
* The purpose of this patch is to toggle the debugging mode (default) toWilliam A. Rowe Jr2001-08-171-12/+10
| | | | | | | | | | | | | | | | Program Database (from Program Database for Modify on the fly debugging). The net effect of this patch is to clean up all of the irrelevant entries associated with either the debugging or release command line switches, and generally straighten the projects as they would be exported from VC6/SP5. The outcome of this patch is that VC5 users -should- be able to load and build the workspace without any errors (as they used to have no symbols database at all, the /ZI option doesn't work, they had to use cvtdsp.pl to toggle these to /Zi.) git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@90269 13f79535-47bb-0310-9956-ffa450edef68
* Given a choice between chasing my tail to keep these updated, and rollingWilliam A. Rowe Jr2001-08-171-389/+0
| | | | | | | a set when we actually roll a tarball, I'll take the later, thank you. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@90268 13f79535-47bb-0310-9956-ffa450edef68
* Ignore goodnessWilliam A. Rowe Jr2001-08-161-0/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@90250 13f79535-47bb-0310-9956-ffa450edef68
* More VersioningWilliam A. Rowe Jr2001-08-161-4/+39
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@90208 13f79535-47bb-0310-9956-ffa450edef68
* Update for the 2.0.23 tagWilliam A. Rowe Jr2001-08-071-62/+28
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89994 13f79535-47bb-0310-9956-ffa450edef68
* Undo my unintentionally overzelous name change, and fix the style of sizeof()William A. Rowe Jr2001-08-021-9/+9
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89887 13f79535-47bb-0310-9956-ffa450edef68
* Port mod_tls.c from Eastern Europe to Apache-landWilliam A. Rowe Jr2001-08-011-244/+256
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89858 13f79535-47bb-0310-9956-ffa450edef68
* Ooops... my fooness.William A. Rowe Jr2001-07-311-2/+2
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89843 13f79535-47bb-0310-9956-ffa450edef68
* Ok... for _today_ ...William A. Rowe Jr2001-07-311-3/+47
| | | | | | | | | | This patch conditionally builds against openssl 0.9.6b _if_ openssl is unpacked and properly built (using pretty much the defaults) in the srclib/openssl/ directory. Someday soon this needs to be more exhaustive, but this should solve the 80% problem :) git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89823 13f79535-47bb-0310-9956-ffa450edef68
* Change lib locations for openssl's debugging default targetsWilliam A. Rowe Jr2001-07-311-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89814 13f79535-47bb-0310-9956-ffa450edef68
* zero the SSLStateMachine in case of early error, else SSLStateMachine_free segvsDoug MacEachern2001-07-241-0/+2
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89680 13f79535-47bb-0310-9956-ffa450edef68
* Update for latest structure changes for 2.0.21William A. Rowe Jr2001-07-201-8/+9
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89644 13f79535-47bb-0310-9956-ffa450edef68
* s/destroy/free/g; likeness to SSL namingDoug MacEachern2001-07-183-5/+5
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89606 13f79535-47bb-0310-9956-ffa450edef68
* give some more diagnostics if server cert or key file cannot be readDoug MacEachern2001-07-182-3/+23
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89605 13f79535-47bb-0310-9956-ffa450edef68
* add cleanup of SSLStateMachine to tls filterDoug MacEachern2001-07-183-0/+16
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89597 13f79535-47bb-0310-9956-ffa450edef68
* Fix incl/libpath to / slashes for an upcoming patch to cvtdsp.cWilliam A. Rowe Jr2001-07-171-4/+4
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89570 13f79535-47bb-0310-9956-ffa450edef68
* Remove openssl path-specific .h comparisonsWilliam A. Rowe Jr2001-07-091-51/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89525 13f79535-47bb-0310-9956-ffa450edef68
* Refresh .mak files for tagging 2.0.19William A. Rowe Jr2001-06-281-0/+428
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89458 13f79535-47bb-0310-9956-ffa450edef68
* Ignore goodnessWilliam A. Rowe Jr2001-06-281-0/+3
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89457 13f79535-47bb-0310-9956-ffa450edef68
* Just a mssing braceWilliam A. Rowe Jr2001-06-271-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89454 13f79535-47bb-0310-9956-ffa450edef68
* tls goodness for Win32William A. Rowe Jr2001-06-272-0/+123
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89452 13f79535-47bb-0310-9956-ffa450edef68
* Win32/OS2 require APR_STATUS_IS_EFOO() tests, not == EFOO, since ourWilliam A. Rowe Jr2001-06-271-1/+1
| | | | | | | socket error codes vary. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89430 13f79535-47bb-0310-9956-ffa450edef68
* Be more strict when --with-tls was given without a DIR value.Martin Kraemer2001-05-081-0/+3
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89057 13f79535-47bb-0310-9956-ffa450edef68
* Try to auto-detect the location of the OpenSSL stuff. The old logic wasMartin Kraemer2001-05-081-27/+29
| | | | | | | | | incorrect anyway (it tested for .../ssl/ssl.h and then used .../include/ssl.h). Now we have a configurable list of candidates, each with: a name, an include path, a lib path, and a list of libs. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89056 13f79535-47bb-0310-9956-ffa450edef68
* Back out the recent change to ap_get_brigade, to make it use indirectionRyan Bloom2001-05-061-2/+2
| | | | | | | | | | | | | | | again. The problem is that the amount of data read from the network, is not necessarily the amount of data returned from the filters. It is possible for input filters to add bytes to the data read from the network. To fix the original bug, I just removed the line from ap_get_client_block that decremented r->remaining, we allow the http_filter to do that for us. I have also removed an incorrect comment. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89041 13f79535-47bb-0310-9956-ffa450edef68
* Fix a bug in the input handling. ap_http_filter() was modifying *readbytesGreg Stein2001-05-051-5/+4
| | | | | | | | | | | | | | | | | which corresponded to r->remaining (in ap_get_client_block). However, ap_get_client_block was *also* adjusting r->remaining. Net result was that PUT (and probably POST) was broken. (at least on large inputs) To fix it, I simply removed the indirection on "readbytes" for input filters. There is no reason for them to return data (the brigade length is the return length). This also simplifies a number of calls where people needed to do &zero just to pass zero. I also added a number of comments about operations and where things could be improved, or are (semi) broken. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89008 13f79535-47bb-0310-9956-ffa450edef68
* Move the AC_MSG_CHECKING into the module-specific macro to make sure theRalf S. Engelschall2001-05-051-1/+1
| | | | | | | output is generated in sync with the AC_MSG_RESULT. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89001 13f79535-47bb-0310-9956-ffa450edef68
* Allow mod_tls and mod_ssl coexists without interfering each other byRalf S. Engelschall2001-05-051-3/+3
| | | | | | | | | renaming the --with-ssl option of mod_tls to --with-tls. This way we can use --enable-ssl/--with-ssl for mod_ssl and --enable-tls/--with-tls for mod_tls. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88999 13f79535-47bb-0310-9956-ffa450edef68
* fix my APR_STATUS_IS_EAGAIN() usageJeff Trawick2001-04-301-1/+1
| | | | | | | Submitted by: Bernhard Schrenk <b.schrenk@improx.com> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88966 13f79535-47bb-0310-9956-ffa450edef68
* Completely revamp configure so that it preserves the standard makeRoy T. Fielding2001-04-291-8/+8
| | | | | | | | | | | | | variables CPPFLAGS, CFLAGS, CXXFLAGS, LDFLAGS and LIBS by moving the configure additions to EXTRA_* variables. Also, allow the user to specify NOTEST_* values for all of the above, which eliminates the need for THREAD_CPPFLAGS, THREAD_CFLAGS, and OPTIM. Fix the setting of INCLUDES and EXTRA_INCLUDES. Check flags as they are added to avoid pointless duplications. Fix the order in which flags are given on the compile and link lines. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88960 13f79535-47bb-0310-9956-ffa450edef68
* Get mod_tls to compile/work better on Windows.Jeff Trawick2001-04-272-3/+7
| | | | | | | | | PR: 7612 Submitted by: Bernhard Schrenk <b.schrenk@improx.com> Reviewed by: Jeff Trawick git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88955 13f79535-47bb-0310-9956-ffa450edef68
* Prevent a core dump (openssl_state_machine.c is completely infected withMartin Kraemer2001-04-271-1/+1
| | | | | | | | | | | assert()s in place of sensible error handling) when a server-root-relative certificate path is given (which is what most users are going to try first). assertion "n > 0" failed: file "openssl_state_machine.c", line 142 That does NOT fix the openssl_state_machine.c though., So, never try to use invalid certs, missing keys or other fancy "1st time user" stuff. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88950 13f79535-47bb-0310-9956-ffa450edef68
* Not that it matters, but the compiler complains (suggest parentheses around ...)Martin Kraemer2001-04-271-2/+4
| | | | | | | and we had a coding style once. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88949 13f79535-47bb-0310-9956-ffa450edef68
* This is C, not C++ (yet ;-).Martin Kraemer2001-04-271-23/+25
| | | | | | | Submitted by: Jean-Frederic Clere <JFrederic.Clere@fujitsu-siemens.com> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88947 13f79535-47bb-0310-9956-ffa450edef68
* Search for OpenSSL in the "standard locations" .../include and .../libMartin Kraemer2001-04-271-1/+8
| | | | | | | | | | which are ubiquitous after openSSL's "make install". The old logic relied on a common directory for both include files and libraries (very non-standard). Submitted by: Clere Jean-Frederic <JFrederic.Clere@fujitsu-siemens.com> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88944 13f79535-47bb-0310-9956-ffa450edef68
* Make mod_tls compile. Fix supplied by Jean-Frederic ClereMartin Kraemer2001-04-261-2/+3
| | | | | | | Submitted by: Jean-Frederic Clere <JFrederic.Clere@fujitsu-siemens.com> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88939 13f79535-47bb-0310-9956-ffa450edef68
* At the hack-athon we decided to change the way that input filtersRyan Bloom2001-04-221-4/+4
| | | | | | | | | | | determine how much data is returned to the previous filter. Prior to this change, we used a field in the conn_rec to determine how much to return. After this change, we use an argument to ap_get_brigade. This makes it much more obvious how things work at all levels, so that module authors can easily determine how much data is supposed to be returned to them. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88912 13f79535-47bb-0310-9956-ffa450edef68
* Working SSL/TLS! Yay!Ben Laurie2001-02-183-75/+153
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88223 13f79535-47bb-0310-9956-ffa450edef68
* Remove some Makefile.libdir's. These were used by Configure in ApacheRyan Bloom2001-02-161-4/+0
| | | | | | | 1.3, but they aren't used at all by 2.0. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88200 13f79535-47bb-0310-9956-ffa450edef68
* ignore generated file modules.mkJeff Trawick2001-02-121-0/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88118 13f79535-47bb-0310-9956-ffa450edef68
* Allow mod_tls to compile on Unix boxes where openssl has already beenRyan Bloom2001-02-121-1/+8
| | | | | | | | | installed. Submitted by: Gomez Henri <new-httpd@slib.fr> Reviewed by: Ryan Bloom git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88115 13f79535-47bb-0310-9956-ffa450edef68
View Lorry Controller Status