forked from grahamedgecombe/nginx-ct
-
Notifications
You must be signed in to change notification settings - Fork 1
/
ngx_stream_ssl_ct_module.c
89 lines (77 loc) · 3.2 KB
/
ngx_stream_ssl_ct_module.c
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
/*
* Copyright (c) 2015-2017 Graham Edgecombe <[email protected]>
*
* Permission to use, copy, modify, and/or distribute this software for any
* purpose with or without fee is hereby granted, provided that the above
* copyright notice and this permission notice appear in all copies.
*
* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
*/
#include <ngx_stream.h>
#include "ngx_ssl_ct_module.h"
static char *ngx_stream_ssl_ct_merge_srv_conf(ngx_conf_t *cf, void *parent,
void *child);
static ngx_stream_module_t ngx_stream_ssl_ct_module_ctx = {
#if nginx_version >= 1011002
NULL, /* preconfiguration */
#endif
NULL, /* postconfiguration */
NULL, /* create main configuration */
NULL, /* init main configuration */
&ngx_ssl_ct_create_srv_conf, /* create server configuration */
&ngx_stream_ssl_ct_merge_srv_conf /* merge server configuration */
};
static ngx_command_t ngx_stream_ssl_ct_commands[] = {
{
ngx_string("ssl_ct"),
NGX_STREAM_MAIN_CONF | NGX_STREAM_SRV_CONF | NGX_CONF_FLAG,
&ngx_conf_set_flag_slot,
NGX_STREAM_SRV_CONF_OFFSET,
offsetof(ngx_ssl_ct_srv_conf_t, enable),
NULL
},
{
ngx_string("ssl_ct_static_scts"),
NGX_STREAM_MAIN_CONF | NGX_STREAM_SRV_CONF | NGX_CONF_TAKE1,
&ngx_conf_set_str_array_slot,
NGX_STREAM_SRV_CONF_OFFSET,
offsetof(ngx_ssl_ct_srv_conf_t, sct_dirs),
NULL
},
ngx_null_command
};
ngx_module_t ngx_stream_ssl_ct_module = {
NGX_MODULE_V1,
&ngx_stream_ssl_ct_module_ctx, /* module context */
ngx_stream_ssl_ct_commands, /* module directives */
NGX_STREAM_MODULE, /* module type */
NULL, /* init master */
NULL, /* init module */
NULL, /* init process */
NULL, /* init thread */
NULL, /* exit thread */
NULL, /* exit process */
NULL, /* exit master */
NGX_MODULE_V1_PADDING
};
static char *ngx_stream_ssl_ct_merge_srv_conf(ngx_conf_t *cf, void *parent,
void *child) {
ngx_stream_ssl_conf_t *ssl_conf = ngx_stream_conf_get_module_srv_conf(cf,
ngx_stream_ssl_module);
ngx_array_t *certificates;
#if nginx_version >= 1011000
certificates = ssl_conf->certificates;
#else
certificates = ngx_array_create(cf->pool, 1, sizeof(ngx_str_t));
ngx_str_t *certificate = ngx_array_push(certificates);
*certificate = ssl_conf->certificate;
#endif
return ngx_ssl_ct_merge_srv_conf(cf, parent, child, ssl_conf->ssl.ctx,
certificates);
}