On Thu, Aug 06, 2020 at 06:11:37PM +0200, William Dauchy wrote:
> trivial commit, does not change the code behaviour
>
On Thu, Aug 06, 2020 at 06:11:38PM +0200, William Dauchy wrote:
> Following work from Arjen and Mathilde, it adds ssl_{c,s}_chain_der
> methods; it returns DER encoded certs from SSL_get_peer_cert_chain
>
> Also update existing vtc tests to add random intermediate certificates
>
> When getting the result through this header:
> http-response add-header x-ssl-chain-der %[ssl_c_chain_der,hex]
> One can parse it with any lib accepting ASN.1 DER data, such as in go:
> bin, err := encoding/hex.DecodeString(cert)
> certs_parsed, err := x509.ParseCertificates(bin)
>
> Cc: Arjen Nienhuis <ar...@zorgdoc.nl>
> Signed-off-by: Mathilde Gilles <m.gil...@criteo.com>
> Signed-off-by: William Dauchy <w.dau...@criteo.com>
> ---
> v2:
> - add missing check after trasj alloc
> v3:
> - add ssl_s_chain_der support
Thanks William, I merged both patches.
--
William Lallemand
