Changeset beb14d9 in mod_gnutls for src/gnutls_io.c


Ignore:
Timestamp:
Jan 27, 2015, 7:20:27 AM (5 years ago)
Author:
Thomas Klute <thomas2.klute@…>
Branches:
debian/master, debian/stretch-backports, jessie-backports, master, upstream
Children:
4fefa39
Parents:
c1ef069
Message:

Proof of concept: Support for proxy back end connections using TLS

This commit enables TLS on proxy back end connections if requested from
mod_proxy. Since mod_gnutls acts as client instead of server on proxy
back end connections, TLS session setup is quite different.

Note that this implementation is not finished, in particular the proxy
back end connection is hard coded to use the same X.509 credentials as
the server side, which severely restricts usable certificate
combinations.

Some typos in comments and an error message related to TLS handshake are
fixed as well.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • src/gnutls_io.c

    rc1ef069 rbeb14d9  
    405405            ap_log_error(APLOG_MARK, APLOG_INFO, 0,
    406406                    ctxt->c->base_server,
    407                     "GnuTLS: Hanshake Alert (%d) '%s'.",
     407                    "GnuTLS: Handshake Alert (%d) '%s'.",
    408408                    errcode,
    409409                    gnutls_alert_get_name(errcode));
Note: See TracChangeset for help on using the changeset viewer.