Changeset 32f2e60 in mod_gnutls for src

Timestamp:

Dec 9, 2004, 2:52:31 AM (18 years ago)

Author:

Paul Querna <chip@…>

Branches:

asyncio, debian/master, debian/stretch-backports, jessie-backports, main, master, msva, proxy-ticket, upstream

Children:

76bd3bf

Parents:

0314deb

Message:

fixes and stuff that i should of already committed.

Location:

src

Files:

• gnutls_cache.c (modified) (1 diff)
• gnutls_io.c (modified) (5 diffs)
• mod_gnutls.c (modified) (3 diffs)

src/gnutls_cache.c

@@ -22 +22 @@
  *
  */
+/*
+#include "memcache.h"
 
-#include "libmemcache/memcache.h"
+int mod_gnutls_cache_init()
+{
+  return 0;
+}
+static int cache_store((void* baton, gnutls_datum_t key, gnutls_datum_t data)
+{
+    mc_set(struct memcache *mc,
+           key->data, key->size,
+           data->data, data->size, 
+           3600, 0);
+  return 0;
+}
+
+static int cache_fetch(void* baton, gnutls_datum_t key)
+{
+    mod_gnutls_handle_t *ctxt = baton;
+  return 0;
+}
+
+static int cache_delete(void* baton, gnutls_datum_t key)
+{
+    mod_gnutls_handle_t *ctxt = baton;
+  return 0;
+}
+
+int mod_gnutls_cache_session_init(mod_gnutls_handle_t *ctxt)
+{
+    gnutls_db_set_cache_expiration
+    gnutls_db_set_retrieve_function(session, cache_fetch);
+    gnutls_db_set_remove_function(session, cache_delete);
+    gnutls_db_set_store_function(session, cache_store);
+    gnutls_db_set_ptr(session, NULL);
+  return 0;
+}
+*/

src/gnutls_io.c

@@ -333 +333 @@
 
 
-#define GNUTLS_HANDSHAKE_ATTEMPTS 10
-
 static void gnutls_do_handshake(mod_gnutls_handle_t * ctxt)
 {
-    int i, ret;
+    int ret;
 
     if (ctxt->status != 0)
         return;
-#if 0
-
-    for (i = GNUTLS_HANDSHAKE_ATTEMPTS; i > 0; i--) {
-        ret = gnutls_handshake(ctxt->session);
-        if (ret == GNUTLS_E_INTERRUPTED || ret == GNUTLS_E_AGAIN) {
-            continue;
-        }
-
-        if (ret < 0) {
-            if (ret == GNUTLS_E_WARNING_ALERT_RECEIVED
-                || ret == GNUTLS_E_FATAL_ALERT_RECEIVED) {
-                ret = gnutls_alert_get(ctxt->session);
-                ap_log_error(APLOG_MARK, APLOG_ERR, 0, ctxt->c->base_server,
-                             "GnuTLS: Hanshake Alert (%d) '%s'.\n", ret,
-                             gnutls_alert_get_name(ret));
-            }
-
-            gnutls_deinit(ctxt->session);
-            ap_log_error(APLOG_MARK, APLOG_ERR, 0, ctxt->c->base_server,
-                             "GnuTLS: Handshake Failed (%d) '%s'", ret,
-                             gnutls_strerror(ret));
-                ctxt->status = -1;
-                return;
-        }
-        else {
-            ctxt->status = 1;
-            return;             /* all done with the handshake */
-        }
-    }
-    ctxt->status = -1;
-    return;
-#else
         ret = gnutls_handshake(ctxt->session);
         if (ret < 0) {
@@ -394 +360 @@
             return;             /* all done with the handshake */
         }
-
-#endif
 }
 
@@ -466 +430 @@
                                       apr_bucket_brigade * bb)
 {
-    int ret;
+    apr_size_t ret;
     mod_gnutls_handle_t *ctxt = (mod_gnutls_handle_t *) f->ctx;
     apr_status_t status = APR_SUCCESS;
@@ -514 +478 @@
         }
         else {
-
             /* filter output */
             const char *data;
@@ -547 +510 @@
                 }
             }
-            else if ((apr_size_t) ret != len) {
-                //apr_bucket_split(bucket, ret);
-                //APR_BUCKET_REMOVE(bucket);
-                /* not all of the data was sent. */
-                /* mod_ssl basicly errors out here.. this doesn't seem right? */
-                ap_log_error(APLOG_MARK, APLOG_INFO, ctxt->output_rc,
-                             ctxt->c->base_server,
-                             "GnuTLS: failed to write %" APR_SSIZE_T_FMT
-                             " of %" APR_SIZE_T_FMT " bytes.",
-                             len - (apr_size_t) ret, len);
-                //continue;
-                if (ctxt->output_rc == APR_SUCCESS) {
-                    ctxt->output_rc = APR_EGENERAL;
-                }
+            else if (ret != len) {
+                /* Not able to send the entire bucket, 
+                   split it and send it again. */
+                apr_bucket_split(bucket, ret);
             }
 

src/mod_gnutls.c

@@ -45 +45 @@
 
 #define DH_BITS 1024
+#ifdef USE_RSA
 #define RSA_BITS 512
-
+#endif
 static int mod_gnutls_hook_post_config(apr_pool_t * p, apr_pool_t * plog,
                                        apr_pool_t * ptemp,
@@ -54 +55 @@
     server_rec *s;
     gnutls_dh_params_t dh_params;
+#ifdef USE_RSA
     gnutls_rsa_params_t rsa_params;
-
+#endif
 
     /* TODO: Should we regenerate these after X requests / X time ? */
     gnutls_dh_params_init(&dh_params);
     gnutls_dh_params_generate2(dh_params, DH_BITS);
-//    gnutls_rsa_params_init(&rsa_params);
-//    gnutls_rsa_params_generate2(rsa_params, RSA_BITS);
-
+#ifdef USE_RSA
+    gnutls_rsa_params_init(&rsa_params);
+    gnutls_rsa_params_generate2(rsa_params, RSA_BITS);
+#endif
     for (s = base_server; s; s = s->next) {
         sc = (mod_gnutls_srvconf_rec *) ap_get_module_config(s->module_config,
@@ -70 +73 @@
                                                  sc->key_file,
                                                  GNUTLS_X509_FMT_PEM);
-//          gnutls_certificate_set_rsa_export_params(sc->certs, rsa_params);
+#ifdef USE_RSA
+          gnutls_certificate_set_rsa_export_params(sc->certs, rsa_params);
+#endif
           gnutls_certificate_set_dh_params(sc->certs, dh_params);
         }