Changeset 7ba803b in mod_gnutls

Timestamp:

Apr 24, 2005, 7:41:15 PM (18 years ago)

Author:

Paul Querna <chip@…>

Branches:

asyncio, debian/master, debian/stretch-backports, jessie-backports, main, master, msva, proxy-ticket, upstream

Children:

46e3920

Parents:

c301152

Message:

add SSL_SERVER_S_DN and SSL_SERVER_I_DN

File:

• src/gnutls_hooks.c (modified) (2 diffs)

src/gnutls_hooks.c

@@ -521 +521 @@
 {
     unsigned char sbuf[GNUTLS_MAX_SESSION_ID];
-    char buf[GNUTLS_SESSION_ID_STRING_LEN];
+    char buf[AP_IOBUFSIZE];
     const char* tmp;
     int len;
     mgs_handle_t *ctxt;
+    int rv;
+    
     apr_table_t *env = r->subprocess_env;
 
@@ -557 +559 @@
     tmp = mgs_session_id2sz(sbuf, len, buf, sizeof(buf));
     apr_table_setn(env, "SSL_SESSION_ID", tmp);
-    
+
+    /* TODO: There are many other env vars that we need to add */
+    {
+        const gnutls_datum *certs;
+        gnutls_x509_crt cert;
+
+        certs = gnutls_certificate_get_ours(ctxt->session);
+        if (certs) {
+
+            rv = gnutls_x509_crt_init(&cert);
+            if (rv < 0) {
+                goto end_fixups;
+            }
+            
+            rv = gnutls_x509_crt_import(cert, &certs[0], GNUTLS_X509_FMT_DER);
+            if (rv < 0) {
+                gnutls_x509_crt_deinit(cert);
+                goto end_fixups;
+            }
+            
+            len = sizeof(buf);
+            if (gnutls_x509_crt_get_dn(cert, buf, &len) == 0) {
+                apr_table_setn(env, "SSL_SERVER_S_DN", buf);
+            }
+            
+            len = sizeof(buf);
+            if (gnutls_x509_crt_get_issuer_dn(cert, buf, &len) == 0) {
+                apr_table_setn(env, "SSL_SERVER_I_DN", buf);
+            }
+            
+            gnutls_x509_crt_deinit(cert);
+        }
+    }
+    
+end_fixups:
     return OK;
 }