summaryrefslogtreecommitdiffstatsabout
path: root/mod_log_sql_ssl.c
blob: 47bba8b46c03c517e01f5bb21e079f0d877df5f1 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
/* $Id$ */

#if defined(WITH_APACHE20)
#	include "apache20.h"
#elif defined(WITH_APACHE13)
#	include "apache13.h"
#else
#	error Unsupported Apache version
#endif

#ifdef HAVE_CONFIG_H
/* Undefine these to prevent conflicts between Apache ap_config_auto.h and
 * my config.h. Only really needed for Apache < 2.0.48, but it can't hurt.
 */
#undef PACKAGE_BUGREPORT
#undef PACKAGE_NAME
#undef PACKAGE_STRING
#undef PACKAGE_TARNAME
#undef PACKAGE_VERSION

#include "config.h"
#endif

#include "mod_log_sql.h"

#include "mod_ssl.h"

#if defined(WITH_APACHE20)
static APR_OPTIONAL_FN_TYPE(ssl_var_lookup) *header_ssl_lookup = NULL;
#	define TEST_SSL(r) header_ssl_lookup
#elif defined(WITH_APACHE13)
#	define TEST_SSL(r) ap_ctx_get(r->connection->client->ctx, "ssl")
#   define header_ssl_lookup ssl_var_lookup
#endif

static const char *extract_ssl_keysize(request_rec *r, char *a)
{
	char *result = NULL;
	if (TEST_SSL(r) != NULL)
	{
	    result = header_ssl_lookup(r->pool, r->server, r->connection, r, "SSL_CIPHER_USEKEYSIZE");
   	    log_error(APLOG_MARK,APLOG_DEBUG,0, r->server,"SSL_KEYSIZE: %s", result);
		if (result && result[0])
		    return result;
        else
            return "0";
	} else {
		return "0";
	}
}

static const char *extract_ssl_maxkeysize(request_rec *r, char *a)
{
	char *result = NULL;
	if (TEST_SSL(r) != NULL)
	{
		result = header_ssl_lookup(r->pool, r->server, r->connection, r, "SSL_CIPHER_ALGKEYSIZE");
   	    log_error(APLOG_MARK,APLOG_DEBUG,0, r->server,"SSL_ALGKEYSIZE: %s", result);
		if (result && result[0])
		    return result;
        else
            return "0";
    } else {
		return "0";
	}
}

static const char *extract_ssl_cipher(request_rec *r, char *a)
{
	char *result = NULL;
	if (TEST_SSL(r) != NULL)
	{
	    result = header_ssl_lookup(r->pool, r->server, r->connection, r, "SSL_CIPHER");
   	    log_error(APLOG_MARK,APLOG_DEBUG,0, r->server,"SSL_CIPHER: %s", result);
		if (result && result[0])
		    return result;
        else
            return "0";
	} else {
		return "-";
	}
}


LOGSQL_REGISTER(ssl)
{
	log_sql_register_function(p, "ssl_keysize",		extract_ssl_keysize,       LOGSQL_FUNCTION_REQ_FINAL);
	log_sql_register_function(p, "ssl_maxkeysize",	extract_ssl_maxkeysize,    LOGSQL_FUNCTION_REQ_FINAL);
	log_sql_register_function(p, "ssl_cipher",		extract_ssl_cipher,        LOGSQL_FUNCTION_REQ_FINAL);

	log_sql_register_alias(s,p,'q', "ssl_keysize");
	log_sql_register_alias(s,p,'Q', "ssl_maxkeysize");
	log_sql_register_alias(s,p,'z', "ssl_cipher");

	log_sql_register_field(p, "ssl_keysize",		"ssl_keysize", NULL,
			"ssl_keysize",  LOGSQL_DATATYPE_VARCHAR, 0);
	log_sql_register_field(p, "ssl_maxkeysize",	"ssl_maxkeysize", NULL,
			"ssl_maxkeysize", LOGSQL_DATATYPE_VARCHAR, 0);
	log_sql_register_field(p, "ssl_cipher",		"ssl_cipher", NULL,
			"ssl_cipher", LOGSQL_DATATYPE_VARCHAR, 0);

#if defined(WITH_APACHE20)
    header_ssl_lookup = APR_RETRIEVE_OPTIONAL_FN(ssl_var_lookup);
#endif
	LOGSQL_REGISTER_RETURN;
}