データ構造 | |
| struct | ssl_require_t |
| struct | ssl_randseed_t |
| struct | ssl_asn1_t |
| struct | SSLConnRec |
| struct | SSLModConfigRec |
| struct | modssl_pk_server_t |
| struct | modssl_pk_proxy_t |
| struct | modssl_auth_ctx_t |
| struct | modssl_ctx_t |
| struct | SSLSrvConfigRec |
| struct | SSLDirConfigRec |
マクロ定義 | |
| #define | APR_WANT_STRFUNC |
| #define | MOD_SSL_VERSION AP_SERVER_BASEREVISION |
| #define | PFALSE ((void *)FALSE) |
| #define | PTRUE ((void *)TRUE) |
| #define | UNSET (-1) |
| #define | RAND_MAX INT_MAX |
| #define | UCHAR unsigned char |
| #define | strEQ(s1, s2) (strcmp(s1,s2) == 0) |
| #define | strNE(s1, s2) (strcmp(s1,s2) != 0) |
| #define | strEQn(s1, s2, n) (strncmp(s1,s2,n) == 0) |
| #define | strNEn(s1, s2, n) (strncmp(s1,s2,n) != 0) |
| #define | strcEQ(s1, s2) (strcasecmp(s1,s2) == 0) |
| #define | strcNE(s1, s2) (strcasecmp(s1,s2) != 0) |
| #define | strcEQn(s1, s2, n) (strncasecmp(s1,s2,n) == 0) |
| #define | strcNEn(s1, s2, n) (strncasecmp(s1,s2,n) != 0) |
| #define | strIsEmpty(s) (s == NULL || s[0] == NUL) |
| #define | myConnConfig(c) (SSLConnRec *)ap_get_module_config(c->conn_config, &ssl_module) |
| #define | myCtxConfig(sslconn, sc) (sslconn->is_proxy ? sc->proxy : sc->server) |
| #define | myConnConfigSet(c, val) ap_set_module_config(c->conn_config, &ssl_module, val) |
| #define | mySrvConfig(srv) (SSLSrvConfigRec *)ap_get_module_config(srv->module_config, &ssl_module) |
| #define | myDirConfig(req) (SSLDirConfigRec *)ap_get_module_config(req->per_dir_config, &ssl_module) |
| #define | myModConfig(srv) (mySrvConfig((srv)))->mc |
| #define | myCtxVarSet(mc, num, val) mc->rCtx.pV##num = val |
| #define | myCtxVarGet(mc, num, type) (type)(mc->rCtx.pV##num) |
| #define | SSL_SESSION_CACHE_TIMEOUT 300 |
| #define | SSL_MM_FILE_MODE ( APR_UREAD | APR_UWRITE | APR_GREAD | APR_WREAD ) |
| #define | SSL_DBM_FILE_MODE ( APR_UREAD | APR_UWRITE | APR_GREAD | APR_WREAD ) |
| #define | SSL_DBM_FILE_SUFFIX_DIR ".dir" |
| #define | SSL_DBM_FILE_SUFFIX_PAG ".pag" |
| #define | SSL_ALGO_UNKNOWN (0) |
| #define | SSL_ALGO_RSA (1<<0) |
| #define | SSL_ALGO_DSA (1<<1) |
| #define | SSL_ALGO_ALL (SSL_ALGO_RSA|SSL_ALGO_DSA) |
| #define | SSL_AIDX_RSA (0) |
| #define | SSL_AIDX_DSA (1) |
| #define | SSL_AIDX_MAX (2) |
| #define | SSL_TMP_KEY_RSA_512 (0) |
| #define | SSL_TMP_KEY_RSA_1024 (1) |
| #define | SSL_TMP_KEY_DH_512 (2) |
| #define | SSL_TMP_KEY_DH_1024 (3) |
| #define | SSL_TMP_KEY_MAX (4) |
| #define | SSL_OPT_NONE (0) |
| #define | SSL_OPT_RELSET (1<<0) |
| #define | SSL_OPT_STDENVVARS (1<<1) |
| #define | SSL_OPT_EXPORTCERTDATA (1<<3) |
| #define | SSL_OPT_FAKEBASICAUTH (1<<4) |
| #define | SSL_OPT_STRICTREQUIRE (1<<5) |
| #define | SSL_OPT_OPTRENEGOTIATE (1<<6) |
| #define | SSL_OPT_ALL (SSL_OPT_STDENVVARS|SSL_OPT_EXPORTCERTDATA|SSL_OPT_FAKEBASICAUTH|SSL_OPT_STRICTREQUIRE|SSL_OPT_OPTRENEGOTIATE) |
| #define | SSL_PROTOCOL_NONE (0) |
| #define | SSL_PROTOCOL_SSLV2 (1<<0) |
| #define | SSL_PROTOCOL_SSLV3 (1<<1) |
| #define | SSL_PROTOCOL_TLSV1 (1<<2) |
| #define | SSL_PROTOCOL_ALL (SSL_PROTOCOL_SSLV2|SSL_PROTOCOL_SSLV3|SSL_PROTOCOL_TLSV1) |
| #define | SSL_VERIFY_PEER_STRICT (SSL_VERIFY_PEER|SSL_VERIFY_FAIL_IF_NO_PEER_CERT) |
| #define | X509_V_ERR_CERT_UNTRUSTED 27 |
| #define | ssl_verify_error_is_optional(errnum) |
| #define | SSL_PCM_EXISTS 1 |
| #define | SSL_PCM_ISREG 2 |
| #define | SSL_PCM_ISDIR 4 |
| #define | SSL_PCM_ISNONZERO 8 |
| #define | APR_SHM_MAXSIZE (64 * 1024 * 1024) |
型定義 | |
| typedef int | ssl_algo_t |
| typedef int | ssl_opt_t |
| typedef int | ssl_proto_t |
| typedef unsigned int | ssl_pathcheck_t |
| typedef SSLSrvConfigRec | SSLSrvConfigRec |
列挙型 | |
| enum | ssl_verify_t { SSL_CVERIFY_UNSET = UNSET, SSL_CVERIFY_NONE = 0, SSL_CVERIFY_OPTIONAL = 1, SSL_CVERIFY_REQUIRE = 2, SSL_CVERIFY_OPTIONAL_NO_CA = 3 } |
| enum | ssl_pphrase_t { SSL_PPTYPE_UNSET = UNSET, SSL_PPTYPE_BUILTIN = 0, SSL_PPTYPE_FILTER = 1, SSL_PPTYPE_PIPE = 2 } |
| enum | ssl_scmode_t { SSL_SCMODE_UNSET = UNSET, SSL_SCMODE_NONE = 0, SSL_SCMODE_DBM = 1, SSL_SCMODE_SHMCB = 3, SSL_SCMODE_DC = 4, SSL_SCMODE_NONE_NOT_NULL = 5 } |
| enum | ssl_mutexmode_t { SSL_MUTEXMODE_UNSET = UNSET, SSL_MUTEXMODE_NONE = 0, SSL_MUTEXMODE_USED = 1 } |
| enum | ssl_enabled_t { SSL_ENABLED_UNSET = UNSET, SSL_ENABLED_FALSE = 0, SSL_ENABLED_TRUE = 1, SSL_ENABLED_OPTIONAL = 3 } |
| enum | ssl_rsctx_t { SSL_RSCTX_STARTUP = 1, SSL_RSCTX_CONNECT = 2 } |
| enum | ssl_rssrc_t { SSL_RSSRC_BUILTIN = 1, SSL_RSSRC_FILE = 2, SSL_RSSRC_EXEC = 3, SSL_RSSRC_EGD = 4 } |
| enum | ssl_shutdown_type_e { SSL_SHUTDOWN_TYPE_UNSET, SSL_SHUTDOWN_TYPE_STANDARD, SSL_SHUTDOWN_TYPE_UNCLEAN, SSL_SHUTDOWN_TYPE_ACCURATE } |
関数 | |
| SSLModConfigRec * | ssl_config_global_create (server_rec *) |
| void | ssl_config_global_fix (SSLModConfigRec *) |
| BOOL | ssl_config_global_isfixed (SSLModConfigRec *) |
| void * | ssl_config_server_create (apr_pool_t *, server_rec *) |
| void * | ssl_config_server_merge (apr_pool_t *, void *, void *) |
| void * | ssl_config_perdir_create (apr_pool_t *, char *) |
| void * | ssl_config_perdir_merge (apr_pool_t *, void *, void *) |
| const char * | ssl_cmd_SSLMutex (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLPassPhraseDialog (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLCryptoDevice (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLRandomSeed (cmd_parms *, void *, const char *, const char *, const char *) |
| const char * | ssl_cmd_SSLEngine (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLCipherSuite (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLCertificateFile (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLCertificateKeyFile (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLCertificateChainFile (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLCACertificatePath (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLCACertificateFile (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLCADNRequestPath (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLCADNRequestFile (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLCARevocationPath (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLCARevocationFile (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLHonorCipherOrder (cmd_parms *cmd, void *dcfg, int flag) |
| const char * | ssl_cmd_SSLVerifyClient (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLVerifyDepth (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLSessionCache (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLSessionCacheTimeout (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLProtocol (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLOptions (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLRequireSSL (cmd_parms *, void *) |
| const char * | ssl_cmd_SSLRequire (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLUserName (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLProxyEngine (cmd_parms *cmd, void *dcfg, int flag) |
| const char * | ssl_cmd_SSLProxyProtocol (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLProxyCipherSuite (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLProxyVerify (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLProxyVerifyDepth (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLProxyCACertificatePath (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLProxyCACertificateFile (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLProxyCARevocationPath (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLProxyCARevocationFile (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLProxyMachineCertificatePath (cmd_parms *, void *, const char *) |
| const char * | ssl_cmd_SSLProxyMachineCertificateFile (cmd_parms *, void *, const char *) |
| int | ssl_init_Module (apr_pool_t *, apr_pool_t *, apr_pool_t *, server_rec *) |
| void | ssl_init_Engine (server_rec *, apr_pool_t *) |
| void | ssl_init_ConfigureServer (server_rec *, apr_pool_t *, apr_pool_t *, SSLSrvConfigRec *) |
| void | ssl_init_CheckServers (server_rec *, apr_pool_t *) |
| * | ssl_init_FindCAList (server_rec *, apr_pool_t *, const char *, const char *) |
| void | ssl_init_Child (apr_pool_t *, server_rec *) |
| apr_status_t | ssl_init_ModuleKill (void *data) |
| int | ssl_hook_Auth (request_rec *) |
| int | ssl_hook_UserCheck (request_rec *) |
| int | ssl_hook_Access (request_rec *) |
| int | ssl_hook_Fixup (request_rec *) |
| int | ssl_hook_ReadReq (request_rec *) |
| int | ssl_hook_Upgrade (request_rec *) |
| void | ssl_hook_ConfigTest (apr_pool_t *pconf, server_rec *s) |
| RSA * | ssl_callback_TmpRSA (SSL *, int, int) |
| DH * | ssl_callback_TmpDH (SSL *, int, int) |
| int | ssl_callback_SSLVerify (int, X509_STORE_CTX *) |
| int | ssl_callback_SSLVerify_CRL (int, X509_STORE_CTX *, conn_rec *) |
| int | ssl_callback_proxy_cert (SSL *ssl, MODSSL_CLIENT_CERT_CB_ARG_TYPE **x509, EVP_PKEY **pkey) |
| int | ssl_callback_NewSessionCacheEntry (SSL *, SSL_SESSION *) |
| SSL_SESSION * | ssl_callback_GetSessionCacheEntry (SSL *, unsigned char *, int, int *) |
| void | ssl_callback_DelSessionCacheEntry (SSL_CTX *, SSL_SESSION *) |
| void | ssl_callback_LogTracingState (MODSSL_INFO_CB_ARG_TYPE, int, int) |
| void | ssl_scache_init (server_rec *, apr_pool_t *) |
| void | ssl_scache_status_register (apr_pool_t *p) |
| void | ssl_scache_kill (server_rec *) |
| BOOL | ssl_scache_store (server_rec *, UCHAR *, int, time_t, SSL_SESSION *) |
| SSL_SESSION * | ssl_scache_retrieve (server_rec *, UCHAR *, int) |
| void | ssl_scache_remove (server_rec *, UCHAR *, int) |
| char * | ssl_scache_id2sz (UCHAR *, int) |
| void | ssl_scache_dbm_init (server_rec *, apr_pool_t *) |
| void | ssl_scache_dbm_kill (server_rec *) |
| BOOL | ssl_scache_dbm_store (server_rec *, UCHAR *, int, time_t, SSL_SESSION *) |
| SSL_SESSION * | ssl_scache_dbm_retrieve (server_rec *, UCHAR *, int) |
| void | ssl_scache_dbm_remove (server_rec *, UCHAR *, int) |
| void | ssl_scache_dbm_status (request_rec *r, int flags, apr_pool_t *pool) |
| void | ssl_scache_shmcb_init (server_rec *, apr_pool_t *) |
| void | ssl_scache_shmcb_kill (server_rec *) |
| BOOL | ssl_scache_shmcb_store (server_rec *, UCHAR *, int, time_t, SSL_SESSION *) |
| SSL_SESSION * | ssl_scache_shmcb_retrieve (server_rec *, UCHAR *, int) |
| void | ssl_scache_shmcb_remove (server_rec *, UCHAR *, int) |
| void | ssl_scache_shmcb_status (request_rec *r, int flags, apr_pool_t *pool) |
| void | ssl_scache_dc_init (server_rec *, apr_pool_t *) |
| void | ssl_scache_dc_kill (server_rec *) |
| BOOL | ssl_scache_dc_store (server_rec *, UCHAR *, int, time_t, SSL_SESSION *) |
| SSL_SESSION * | ssl_scache_dc_retrieve (server_rec *, UCHAR *, int) |
| void | ssl_scache_dc_remove (server_rec *, UCHAR *, int) |
| void | ssl_scache_dc_status (request_rec *r, int flags, apr_pool_t *pool) |
| int | ssl_proxy_enable (conn_rec *c) |
| int | ssl_engine_disable (conn_rec *c) |
| void | ssl_io_filter_init (conn_rec *, SSL *) |
| void | ssl_io_filter_register (apr_pool_t *) |
| long | ssl_io_data_cb (BIO *, int, MODSSL_BIO_CB_ARG_TYPE *, int, long, long) |
| int | ssl_io_buffer_fill (request_rec *r) |
| int | ssl_rand_seed (server_rec *, apr_pool_t *, ssl_rsctx_t, char *) |
| char * | ssl_util_vhostid (apr_pool_t *, server_rec *) |
| apr_file_t * | ssl_util_ppopen (server_rec *, apr_pool_t *, const char *, const char *const *) |
| void | ssl_util_ppclose (server_rec *, apr_pool_t *, apr_file_t *) |
| char * | ssl_util_readfilter (server_rec *, apr_pool_t *, const char *, const char *const *) |
| BOOL | ssl_util_path_check (ssl_pathcheck_t, const char *, apr_pool_t *) |
| ssl_algo_t | ssl_util_algotypeof (X509 *, EVP_PKEY *) |
| char * | ssl_util_algotypestr (ssl_algo_t) |
| void | ssl_util_thread_setup (apr_pool_t *) |
| int | ssl_init_ssl_connection (conn_rec *c) |
| void | ssl_pphrase_Handle (server_rec *, apr_pool_t *) |
| DH * | ssl_dh_GetTmpParam (int) |
| DH * | ssl_dh_GetParamFromFile (char *) |
| unsigned char * | ssl_asn1_table_set (apr_hash_t *table, const char *key, long int length) |
| ssl_asn1_t * | ssl_asn1_table_get (apr_hash_t *table, const char *key) |
| void | ssl_asn1_table_unset (apr_hash_t *table, const char *key) |
| const char * | ssl_asn1_keystr (int keytype) |
| const char * | ssl_asn1_table_keyfmt (apr_pool_t *p, const char *id, int keytype) |
| int | ssl_mutex_init (server_rec *, apr_pool_t *) |
| int | ssl_mutex_reinit (server_rec *, apr_pool_t *) |
| int | ssl_mutex_on (server_rec *) |
| int | ssl_mutex_off (server_rec *) |
| void | ssl_die (void) |
| void | ssl_log_ssl_error (const char *, int, int, server_rec *) |
| void | ssl_var_register (void) |
| char * | ssl_var_lookup (apr_pool_t *, server_rec *, conn_rec *, request_rec *, char *) |
| const char * | ssl_ext_lookup (apr_pool_t *p, conn_rec *c, int peer, const char *oid) |
| apr_array_header_t * | ssl_extlist_by_oid (request_rec *r, const char *oidstr) |
| void | ssl_var_log_config_register (apr_pool_t *p) |
変数 | |
| module AP_MODULE_DECLARE_DATA | ssl_module |
| const char | ssl_valid_ssl_mutex_string [] |
| #define APR_WANT_STRFUNC |
Apache headers
| #define PFALSE ((void *)FALSE) |
Provide reasonable default for some defines
| #define SSL_DBM_FILE_MODE ( APR_UREAD | APR_UWRITE | APR_GREAD | APR_WREAD ) |
Support for DBM library
| #define SSL_MM_FILE_MODE ( APR_UREAD | APR_UWRITE | APR_GREAD | APR_WREAD ) |
Support for MM library
| #define SSL_OPT_NONE (0) |
Define the SSL options
| #define SSL_PCM_EXISTS 1 |
Define the Path Checking modes
| #define SSL_PROTOCOL_NONE (0) |
Define the SSL Protocol options
| #define SSL_SESSION_CACHE_TIMEOUT 300 |
Defaults for the configuration
| #define SSL_TMP_KEY_RSA_512 (0) |
Define IDs for the temporary RSA keys and DH params
| #define ssl_verify_error_is_optional | ( | errnum | ) |
値:
((errnum == X509_V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT) \
|| (errnum == X509_V_ERR_SELF_SIGNED_CERT_IN_CHAIN) \
|| (errnum == X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY) \
|| (errnum == X509_V_ERR_CERT_UNTRUSTED) \
|| (errnum == X509_V_ERR_UNABLE_TO_VERIFY_LEAF_SIGNATURE))
| #define strEQ | ( | s1, | |||
| s2 | ) | (strcmp(s1,s2) == 0) |
Provide useful shorthands
| #define UCHAR unsigned char |
Provide reasonable defines for some types
| typedef int ssl_algo_t |
Define the certificate algorithm types
| enum ssl_enabled_t |
Define the SSL enabled state
| enum ssl_mutexmode_t |
Define the SSL mutex modes
| enum ssl_pphrase_t |
Define the SSL pass phrase dialog types
| enum ssl_rsctx_t |
Define the SSL random number generator seeding source
| enum ssl_scmode_t |
Define the SSL session cache modes and structures
| enum ssl_shutdown_type_e |
Define the mod_ssl per-module configuration structure (i.e. the global configuration for each httpd process)
| enum ssl_verify_t |
Define the SSL verify levels
| RSA* ssl_callback_TmpRSA | ( | SSL * | , | |
| int | , | |||
| int | ||||
| ) |
OpenSSL callbacks
| SSLModConfigRec* ssl_config_global_create | ( | server_rec * | ) |
configuration handling
| DH* ssl_dh_GetTmpParam | ( | int | ) |
Diffie-Hellman Parameter Support
| void ssl_die | ( | void | ) |
Logfile Support
| int ssl_hook_Auth | ( | request_rec * | ) |
Apache API hooks
| int ssl_init_Module | ( | apr_pool_t * | , | |
| apr_pool_t * | , | |||
| apr_pool_t * | , | |||
| server_rec * | ||||
| ) |
module initialization
| void ssl_io_filter_init | ( | conn_rec * | , | |
| SSL * | ||||
| ) |
I/O
| int ssl_mutex_init | ( | server_rec * | , | |
| apr_pool_t * | ||||
| ) |
Mutex Support
| void ssl_pphrase_Handle | ( | server_rec * | , | |
| apr_pool_t * | ||||
| ) |
Pass Phrase Support
| int ssl_proxy_enable | ( | conn_rec * | c | ) |
Proxy Support
| void ssl_scache_init | ( | server_rec * | , | |
| apr_pool_t * | ||||
| ) |
Session Cache Support
| char* ssl_util_vhostid | ( | apr_pool_t * | , | |
| server_rec * | ||||
| ) |
Utility Functions
| void ssl_var_register | ( | void | ) |
Variables
| module AP_MODULE_DECLARE_DATA ssl_module |
API glue structures
| const char ssl_valid_ssl_mutex_string[] |
"global" stuff
1.4.7