asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
|
Last change
on this file since 33af2b7 was
2cde026d,
checked in by Thomas Klute <thomas2.klute@…>, 8 years ago
|
|
Merge branch 'new-gnutls-api'
Merge my TLS proxy implementation with Nikos Mavrogiannopoulos' changes
to use the new GnuTLS key handling API. Some conflicts had to be
resolved.
In Nikos' branch, structures for credentials and priorities are
allocated in mgs_load_files (gnutls_config.c), rather than during server
config structure creation as before. This makes sense, but his patch
doesn't consider the proxy credentials because they didn't exist at the
time.
To minimize additional changes during the merge, proxy credentials are
now allocated in load_proxy_x509_credentials (gnutls_hooks.c), and
mgs_set_priorities (gnutls_config.c) treats proxy and front end
credentials differently (value of GnuTLSPriorities is stored for
mgs_load_files, GnuTLSProxyPriorities is parsed immediately).
Unified handling of priority strings in mgs_set_priorities should be
restored later (towards parsing in post config), handling front end and
proxy credentials separately makes sense because the latter need only be
loaded when TLS proxy operation is enabled and there are some
differences between client (proxy back end) and server (front end)
operation.
|
-
Property mode set to
100644
|
|
File size:
1018 bytes
|
| Line | |
|---|
| 1 | mod_gnutls, Apache GnuTLS module |
|---|
| 2 | ================================ |
|---|
| 3 | |
|---|
| 4 | https://mod.gnutls.org/ |
|---|
| 5 | |
|---|
| 6 | Mailing List: |
|---|
| 7 | |
|---|
| 8 | mod_gnutls development <mod_gnutls-devel@lists.gnutls.org> |
|---|
| 9 | |
|---|
| 10 | Lead Maintainer: |
|---|
| 11 | |
|---|
| 12 | Daniel Kahn Gillmor <dkg@fifthhorseman.net> |
|---|
| 13 | |
|---|
| 14 | Past maintainers and other contributors: |
|---|
| 15 | |
|---|
| 16 | Paul Querna <chip at force-elite.com> |
|---|
| 17 | Nikos Mavrogiannopoulos <nmav at gnutls.org> |
|---|
| 18 | Dash Shendy <neuromancer at dash.za.net> |
|---|
| 19 | Thomas Klute <thomas2.klute@uni-dortmund.de> |
|---|
| 20 | |
|---|
| 21 | Prerequisites |
|---|
| 22 | ------------- |
|---|
| 23 | |
|---|
| 24 | * GnuTLS >= 3.1.4 <http://www.gnutls.org/> (3.2.* or newer preferred) |
|---|
| 25 | * Apache HTTPD >= 2.2 <http://httpd.apache.org/> (2.4.* preferred) |
|---|
| 26 | * autotools & gcc |
|---|
| 27 | * APR Memcache >= 0.7.0 (Optional) |
|---|
| 28 | * libmsv >= 0.1 (Optional) |
|---|
| 29 | |
|---|
| 30 | Installation |
|---|
| 31 | ------------ |
|---|
| 32 | |
|---|
| 33 | tar xzvf mod_gnutls-version.tar.gz |
|---|
| 34 | cd mod_gnutls-version/ |
|---|
| 35 | autoreconf -fiv |
|---|
| 36 | ./configure --with-apxs=PATH --enable-msva |
|---|
| 37 | make |
|---|
| 38 | make install |
|---|
| 39 | # Configure & restart apache |
|---|
| 40 | |
|---|
| 41 | Configuration |
|---|
| 42 | ------------- |
|---|
| 43 | |
|---|
| 44 | Please see doc/mod_gnutls_manual.mdwn for more details. |
|---|
Note: See
TracBrowser
for help on using the repository browser.
