Changeset 19e80a5 in mod_gnutls for src/gnutls_ocsp.h


Ignore:
Timestamp:
Jan 28, 2019, 2:50:38 PM (21 months ago)
Author:
Fiona Klute <fiona.klute@…>
Branches:
debian/master
Children:
102aa67
Parents:
0931b35 (diff), ea9c699 (diff)
Note: this is a merge changeset, the changes displayed below correspond to the merge itself.
Use the (diff) links above to see all the changes relative to each parent.
Message:

Update upstream source from tag 'upstream/0.9.0'

Update to upstream version '0.9.0'
with Debian dir 619b546038886b240d2c8e61ee1a1b13ce0867d7

File:
1 edited

Legend:

Unmodified
Added
Removed
  • src/gnutls_ocsp.h

    r0931b35 r19e80a5  
    11/*
    2  *  Copyright 2016 Fiona Klute
     2 *  Copyright 2016-2018 Fiona Klute
    33 *
    44 *  Licensed under the Apache License, Version 2.0 (the "License");
     
    2424
    2525#define MGS_OCSP_MUTEX_NAME "gnutls-ocsp"
     26#define MGS_OCSP_CACHE_MUTEX_NAME "gnutls-ocsp-cache"
     27#define MGS_OCSP_CACHE_NAME "gnutls_ocsp"
    2628
    2729/** Default OCSP response cache timeout in seconds */
     
    5355                                     void *dummy __attribute__((unused)),
    5456                                     const int arg);
     57
     58const char *mgs_set_ocsp_auto_refresh(cmd_parms *parms,
     59                                      void *dummy __attribute__((unused)),
     60                                      const int arg);
    5561
    5662const char *mgs_set_ocsp_check_nonce(cmd_parms *parms,
     
    9298
    9399/**
    94  * Initialize server config for OCSP, supposed to be called in the
    95  * post_config hook for each server where OCSP stapling is enabled,
    96  * after certificates have been loaded.
     100 * Try to generate the OCSP stapling configuration for a (virtual)
     101 * host. This function must be called in the post_config hook after
     102 * certificates have been loaded. This method does not actually enable
     103 * stapling, it only prepares the configuration. The reason for
     104 * splitting these tasks is that configuration failure may be ignored
     105 * if stapling is not explicitly enabled but only opportunistically.
     106 *
     107 * @return `NULL` on success, a string describing why configuration
     108 * failed otherwise (static or allocated from ptemp)
     109 */
     110const char* mgs_ocsp_configure_stapling(apr_pool_t *pconf, apr_pool_t *ptemp,
     111                                        server_rec *server);
     112
     113/**
     114 * Enable OCSP stapling for a (virtual) host. Must be called in the
     115 * post_config hook after mgs_ocsp_configure_stapling has returned
     116 * successfully for that host.
    97117 *
    98118 * @return OK or DECLINED on success, any other value on error (like
    99  * the post_config hook itself)
     119 * the post_config hook)
    100120 */
    101 int mgs_ocsp_post_config_server(apr_pool_t *pconf, apr_pool_t *ptemp,
    102                                 server_rec *server);
     121int mgs_ocsp_enable_stapling(apr_pool_t *pconf, apr_pool_t *ptemp,
     122                             server_rec *server);
    103123
    104124int mgs_get_ocsp_response(gnutls_session_t session, void *ptr,
Note: See TracChangeset for help on using the changeset viewer.