You are viewing a plain text version of this content. The canonical link for it is here.
Posted to cvs@httpd.apache.org by jo...@apache.org on 2011/02/11 10:48:00 UTC
svn commit: r1069725 - /httpd/httpd/trunk/modules/ssl/ssl_private.h
Author: jorton
Date: Fri Feb 11 09:48:00 2011
New Revision: 1069725
URL: http://svn.apache.org/viewvc?rev=1069725&view=rev
Log:
* modules/ssl/ssl_private.h: Clarify comment on modssl_pk_server_t.
Modified:
httpd/httpd/trunk/modules/ssl/ssl_private.h
Modified: httpd/httpd/trunk/modules/ssl/ssl_private.h
URL: http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/ssl/ssl_private.h?rev=1069725&r1=1069724&r2=1069725&view=diff
==============================================================================
--- httpd/httpd/trunk/modules/ssl/ssl_private.h (original)
+++ httpd/httpd/trunk/modules/ssl/ssl_private.h Fri Feb 11 09:48:00 2011
@@ -446,14 +446,19 @@ typedef struct {
} rCtx;
} SSLModConfigRec;
-/** public cert/private key */
+/** Structure representing configured filenames for certs and keys for
+ * a given vhost, and the corresponding in-memory structures once the
+ * files are parsed. */
typedef struct {
- /**
- * server only has 1-2 certs/keys
- * 1 RSA and/or 1 DSA
- */
+ /* Lists of configured certs and keys for this server; from index
+ * 0 up to SSL_AIDX_MAX-1 or the first NULL pointer. Note that
+ * these arrays are NOT indexed by algorithm type, they are simply
+ * unordered lists. */
const char *cert_files[SSL_AIDX_MAX];
const char *key_files[SSL_AIDX_MAX];
+ /* Loaded certs and keys; these arrays ARE indexed by the
+ * algorithm type, i.e. keys[SSL_AIDX_RSA] maps to the RSA
+ * private key. */
X509 *certs[SSL_AIDX_MAX];
EVP_PKEY *keys[SSL_AIDX_MAX];