Return-Path: Delivered-To: apmail-httpd-dev-archive@www.apache.org Received: (qmail 34361 invoked from network); 2 Jul 2009 11:48:31 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 2 Jul 2009 11:48:31 -0000 Received: (qmail 34300 invoked by uid 500); 2 Jul 2009 11:48:39 -0000 Delivered-To: apmail-httpd-dev-archive@httpd.apache.org Received: (qmail 34200 invoked by uid 500); 2 Jul 2009 11:48:38 -0000 Mailing-List: contact dev-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: dev@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list dev@httpd.apache.org Received: (qmail 34181 invoked by uid 99); 2 Jul 2009 11:48:38 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 02 Jul 2009 11:48:38 +0000 X-ASF-Spam-Status: No, hits=-4.0 required=10.0 tests=RCVD_IN_DNSWL_MED,SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of jorton@redhat.com designates 66.187.237.31 as permitted sender) Received: from [66.187.237.31] (HELO mx2.redhat.com) (66.187.237.31) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 02 Jul 2009 11:48:28 +0000 Received: from int-mx2.corp.redhat.com (int-mx2.corp.redhat.com [172.16.27.26]) by mx2.redhat.com (8.13.8/8.13.8) with ESMTP id n62Bm69A024337 for ; Thu, 2 Jul 2009 07:48:06 -0400 Received: from ns3.rdu.redhat.com (ns3.rdu.redhat.com [10.11.255.199]) by int-mx2.corp.redhat.com (8.13.1/8.13.1) with ESMTP id n62Bm6e2029297 for ; Thu, 2 Jul 2009 07:48:06 -0400 Received: from turnip.manyfish.co.uk (vpn-12-30.rdu.redhat.com [10.11.12.30]) by ns3.rdu.redhat.com (8.13.8/8.13.8) with ESMTP id n62Bm5pg017622 for ; Thu, 2 Jul 2009 07:48:05 -0400 Received: from jorton by turnip.manyfish.co.uk with local (Exim 4.69) (envelope-from ) id 1MMKlo-0003Mk-6h for dev@httpd.apache.org; Thu, 02 Jul 2009 12:48:04 +0100 Date: Thu, 2 Jul 2009 12:48:04 +0100 From: Joe Orton To: dev@httpd.apache.org Subject: Re: mod_ssl / ssl_engine_ocsp.c customizations Message-ID: <20090702114804.GA5033@redhat.com> Mail-Followup-To: dev@httpd.apache.org References: MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: User-Agent: Mutt/1.5.18 (2008-05-17) Organization: Red Hat UK Ltd, Amberley Place, 107-111 Peascod Street, Windsor, Berkshire, SL4 1TE, United Kingdom. Registered in UK and Wales under Company Registration No. 03798903 Directors: Michael Cunningham (USA), Brendan Lane (Ireland), Matt Parson (USA), Charlie Peters (USA) X-Scanned-By: MIMEDefang 2.58 on 172.16.27.26 X-Virus-Checked: Checked by ClamAV on apache.org On Fri, Jun 26, 2009 at 03:55:27PM +0200, Natanael Mignon - michael-wessel.de wrote: > I am currently working on - dirty, please have mercy - customizations > of mod_ssl and especially OCSP-handling for a specific project (on > basis of Apache 2.3 code). As I am neither a seasoned C-coder nor > familiar with OpenSSL libraries, I am having problems extracting the > issuer name from an X.509 cert into a usable string format. > > What I need to do: > > > · Write my own "static const char *extract_responder_uri()" > > · Don't read responder uri from certificate, but from a file This could be done by making mod_ssl run an optional external hook to retrieve a responder URI given a certificate. I will try to find time to add such a hook, or patches are welcome ;) > how to get a char* or some string from an X509_NAME? This kind of question is better off asked in openssl-users@openssl.org - you can see lots of examples of how to do it in mod_ssl's ssl_engine_vars.c however. Regards, Joe