RepoMirrors/haproxy
1
0
Fork 0
mirror of http://git.haproxy.org/git/haproxy.git/ synced 2025-02-21 05:06:56 +00:00
Code Issues Packages Projects Releases Wiki Activity
3054880e09
haproxy/include
History
Christopher Faulet 3054880e09 MINOR: ssl: Export functions to manipulate generated certificates 
Following functions are now available in the SSL public API:

  * ssl_sock_create_cert
  * ssl_sock_get_generated_cert
  * ssl_sock_set_generated_cert
  * ssl_sock_generated_cert_serial

These functions could be used to create a certificate by hand, set it in the
cache used to store generated certificates and retrieve it. Here is an example
(pseudo code):

  X509        *cacert     = ...;
  EVP_PKEY    *capkey     = ...;
  char        *servername = ...;
  unsigned int serial;

  serial = ssl_sock_generated_cert_serial(servername, strlen(servername));
  if (!ssl_sock_get_generated_cert(serial, cacert)) {
      SSL_CTX *ctx = ssl_sock_create_cert(servername, serial, cacert, capkey);
      ssl_sock_set_generated_cert(ctx, serial, cacert);
  }
2015-06-12 18:06:59 +02:00
..
common MEDIUM: ssl: Add options to forge SSL certificates 2015-06-12 18:06:59 +02:00
import MINOR: lru: Add lru64_lookup function 2015-06-12 18:06:59 +02:00
proto MINOR: ssl: Export functions to manipulate generated certificates 2015-06-12 18:06:59 +02:00
types MEDIUM: ssl: Add options to forge SSL certificates 2015-06-12 18:06:59 +02:00