Dr. Stephen Henson 2c1f5ce4b1 PR: 2576 13 年之前
..
.cvsignore 4bb61becbb Add emacs cache files to .cvsignore. 19 年之前
Makefile df6de39fe7 Change AR to ARX to allow exclusion of fips object modules 14 年之前
README ee7ca0941a Tidy up docs, remove warning. 17 年之前
cnf_save.c 3c91484052 Move all the existing function pointer casts associated with LHASH's two 24 年之前
conf.h ab3eafd5b5 Stop warning about extra ';' outside of function. 16 年之前
conf_api.c 2c1f5ce4b1 PR: 2576 13 年之前
conf_api.h 9dd5ae6553 Constification, add config to /dev/crypto. 23 年之前
conf_def.c c8bbd98a2b Fix warnings. 14 年之前
conf_def.h e7227322b3 Allow 8-bit characters. This is not really complete, it only marks 23 年之前
conf_err.c 2ec0be9e77 Don't die if the value is NULL (Coverity CID 98). 17 年之前
conf_lib.c 3c1d6bbc92 LHASH revamp. make depend. 16 年之前
conf_mall.c 2e5975285e Update obsolete email address... 16 年之前
conf_mod.c 2e5975285e Update obsolete email address... 16 年之前
conf_sap.c 2e5975285e Update obsolete email address... 16 年之前
keysets.pl e7227322b3 Allow 8-bit characters. This is not really complete, it only marks 23 年之前
ssleay.cnf d02b48c63a Import of old SSLeay release: SSLeay 0.8.1b 26 年之前
test.c d86b6915be I've always wanted to make the CONF library more adaptable. Here's 24 年之前

README

Configuration modules. These are a set of modules which can perform
various configuration functions.

Currently the routines should be called at most once when an application
starts up: that is before it starts any threads.

The routines read a configuration file set up like this:

-----
#default section
openssl_conf=init_section

[init_section]

module1=value1
#Second instance of module1
module1.1=valueX
module2=value2
module3=dso_literal
module4=dso_section

[dso_section]

path=/some/path/to/some/dso.so
other_stuff=other_value
----

When this file is loaded a configuration module with the specified string
(module* in the above example) is looked up and its init function called as:

int conf_init_func(CONF_IMODULE *md, CONF *cnf);

The function can then take whatever action is appropriate, for example further
lookups based on the value. Multiple instances of the same config module can be
loaded.

When the application closes down the modules are cleaned up by calling an
optional finish function:

void conf_finish_func(CONF_IMODULE *md);

The finish functions are called in reverse order: that is the last module
loaded is the first one cleaned up.

If no module exists with a given name then an attempt is made to load a DSO
with the supplied name. This might mean that "module3" attempts to load a DSO
called libmodule3.so or module3.dll for example. An explicit DSO name can be
given by including a separate section as in the module4 example above.

The DSO is expected to at least contain an initialization function:

int OPENSSL_init(CONF_IMODULE *md, CONF *cnf);

and may also include a finish function:

void OPENSSL_finish(CONF_IMODULE *md);

Static modules can also be added using,

int CONF_module_add(char *name, dso_mod_init_func *ifunc, dso_mod_finish_func
*ffunc);

where "name" is the name in the configuration file this function corresponds
to.

A set of builtin modules (currently only an ASN1 non functional test module)
can be added by calling OPENSSL_load_builtin_modules().

The function OPENSSL_config() is intended as a simple configuration function
that any application can call to perform various default configuration tasks.
It uses the file openssl.cnf in the usual locations.