50 static char *ssl_var_lookup_ssl_cert_rfc4523_cea(apr_pool_t *p, SSL *ssl);
54 static void  ssl_var_lookup_ssl_cipher_bits(SSL *ssl, int *usekeysize, int *algkeysize);
56 static char *ssl_var_lookup_ssl_compress_meth(SSL *ssl);
61     return sslconn && sslconn->ssl;
84     if (!sslconn || !sslconn->ssl) {
88         l = SSL_get_peer_finished(sslconn->ssl, cb, TLS_CB_MAX);
91         l = SSL_get_finished(sslconn->ssl, cb, TLS_CB_MAX);
94         x = SSL_get_certificate(sslconn->ssl);
97         x = SSL_get_peer_certificate(sslconn->ssl);
319             && sslconn && sslconn->ssl)
322             if (sslconn && sslconn->ssl)
397     SSL *ssl;
401     ssl = sslconn->ssl;
405     else if (ssl != NULL && strcEQ(var, "PROTOCOL")) {
406         result = (char *)SSL_get_version(ssl);
408     else if (ssl != NULL && strcEQ(var, "SESSION_ID")) {
410         SSL_SESSION *pSession = SSL_get_session(ssl);
426     else if(ssl != NULL && strcEQ(var, "SESSION_RESUMED")) {
427         if (SSL_session_reused(ssl) == 1)
432     else if (ssl != NULL && strlen(var) >= 6 && strcEQn(var, "CIPHER", 6)) {
435     else if (ssl != NULL && strlen(var) > 18 && strcEQn(var, "CLIENT_CERT_CHAIN_", 18)) {
436         sk = SSL_get_peer_cert_chain(ssl);
439     else if (ssl != NULL && strcEQ(var, "CLIENT_CERT_RFC4523_CEA")) {
440         result = ssl_var_lookup_ssl_cert_rfc4523_cea(p, ssl);
442     else if (ssl != NULL && strcEQ(var, "CLIENT_VERIFY")) {
445     else if (ssl != NULL && strlen(var) > 7 && strcEQn(var, "CLIENT_", 7)) {
446         if ((xs = SSL_get_peer_certificate(ssl)) != NULL) {
451     else if (ssl != NULL && strlen(var) > 7 && strcEQn(var, "SERVER_", 7)) {
452         if ((xs = SSL_get_certificate(ssl)) != NULL) {
459     else if (ssl != NULL && strcEQ(var, "COMPRESS_METHOD")) {
460         result = ssl_var_lookup_ssl_compress_meth(ssl);
463     else if (ssl != NULL && strcEQ(var, "TLS_SNI")) {
464         result = apr_pstrdup(p, SSL_get_servername(ssl,
468     else if (ssl != NULL && strcEQ(var, "SECURE_RENEG")) {
471         flag = SSL_get_secure_renegotiation_support(ssl);
476     else if (ssl != NULL && strcEQ(var, "SRP_USER")) {
477         if ((result = SSL_get_srp_username(ssl)) != NULL) {
481     else if (ssl != NULL && strcEQ(var, "SRP_USERINFO")) {
482         if ((result = SSL_get_srp_userinfo(ssl)) != NULL) {
789 static char *ssl_var_lookup_ssl_cert_rfc4523_cea(apr_pool_t *p, SSL *ssl)
796     if (!(xs = SSL_get_peer_certificate(ssl))) {
844     SSL *ssl;
848     ssl   = sslconn->ssl;
851     vrc   = SSL_get_verify_result(ssl);
852     xs    = SSL_get_peer_certificate(ssl);
879     SSL *ssl;
884     ssl = sslconn->ssl;
885     ssl_var_lookup_ssl_cipher_bits(ssl, &usekeysize, &algkeysize);
887     if (ssl && strEQ(var, "")) {
888         MODSSL_SSL_CIPHER_CONST SSL_CIPHER *cipher = SSL_get_current_cipher(ssl);
907 static void ssl_var_lookup_ssl_cipher_bits(SSL *ssl, int *usekeysize, int *algkeysize)
913     if (ssl != NULL)
914         if ((cipher = SSL_get_current_cipher(ssl)) != NULL)
981 void modssl_var_extract_dns(apr_table_t *t, SSL *ssl, apr_pool_t *p)
1000     xs = SSL_get_certificate(ssl);
1008     xs = SSL_get_peer_certificate(ssl);
1027 void modssl_var_extract_san_entries(apr_table_t *t, SSL *ssl, apr_pool_t *p)
1033     xs = SSL_get_certificate(ssl);
1045     xs = SSL_get_peer_certificate(ssl);
1082     SSL *ssl = NULL;
1088     if (!sslconn || !sslconn->ssl || !extension) {
1091     ssl = sslconn->ssl;
1105     xs = peer ? SSL_get_peer_certificate(ssl) : SSL_get_certificate(ssl);
1156 static char *ssl_var_lookup_ssl_compress_meth(SSL *ssl)
1160     SSL_SESSION *pSession = SSL_get_session(ssl);
1228     if (sslconn == NULL || sslconn->ssl == NULL)

Indexes created Tue Jul 24 14:28:13 CEST 2018