hi,

thanks to your work on VIA padlock, i wrote a patch for the lighttpd web
server to let it support Padlock.
You may want to distribute it with your OpenSSL and OpenSSH patches.
Feel free to do so :)

The patch is against lighttpd-1.4.13 tarball.

And again, thanks for your work.

PS : if you do distribute it, please do not publish this email address,
(i'd prefer gornack@snowboard.com), thx


--- lighttpd-1.4.13.orig/src/network.c  2006-10-04 15:29:17.000000000 +0200
+++ lighttpd-1.4.13/src/network.c       2006-11-27 14:58:41.000000000 +0100
@@ -24,6 +24,7 @@
 # include <openssl/ssl.h>
 # include <openssl/err.h>
 # include <openssl/rand.h>
+# include <openssl/engine.h>
 #endif

 handler_t network_server_handle_fdevent(void *s, void *context, int
revents) {
@@ -317,6 +318,10 @@
                        SSL_library_init();
                        srv->ssl_is_init = 1;

+                       ENGINE_load_builtin_engines();
+                       ENGINE_register_all_complete();
+                       ENGINE_set_default_ciphers(ENGINE_by_id("padlock"));
+
                        if (0 == RAND_status()) {
                                log_error_write(srv, __FILE__, __LINE__, "ss", "SSL:",
                                                "not enough entropy in the pool");



-- 
Michael BAUDINO