src/acl/ServerCertificate.cc

   1 /*
   2  * Copyright (C) 1996-2016 The Squid Software Foundation and contributors
   3  *
   4  * Squid software is distributed under GPLv2+ license and includes
   5  * contributions from numerous individuals and organizations.
   6  * Please see the COPYING and CONTRIBUTORS files for details.
   7  */
   8
   9 #include "squid.h"
  10
  11 #if USE_OPENSSL
  12
  13 #include "acl/CertificateData.h"
  14 #include "acl/Checklist.h"
  15 #include "acl/ServerCertificate.h"
  16 #include "client_side.h"
  17 #include "fde.h"
  18 #include "http/StreamContext.h"
  19 #include "ssl/ServerBump.h"
  20
  21 int
  22 ACLServerCertificateStrategy::match(ACLData<MatchType> * &data, ACLFilledChecklist *checklist, ACLFlags &)
  23 {
  24     X509 *cert = NULL;
  25     if (checklist->serverCert.get())
  26         cert = checklist->serverCert.get();
  27     else if (checklist->conn() != NULL && checklist->conn()->serverBump())
  28         cert = checklist->conn()->serverBump()->serverCert.get();
  29
  30     if (!cert)
  31         return 0;
  32
  33     return data->match(cert);
  34 }
  35
  36 ACLServerCertificateStrategy *
  37 ACLServerCertificateStrategy::Instance()
  38 {
  39     return &Instance_;
  40 }
  41
  42 ACLServerCertificateStrategy ACLServerCertificateStrategy::Instance_;
  43
  44 #endif /* USE_OPENSSL */
  45