Lines 1-19
Link Here
|
1 |
--- Library/src/SSL/HTSSL.c.orig 2018-07-04 23:30:19 UTC |
1 |
--- Library/src/SSL/HTSSL.c.orig 2018-10-07 06:52:26 UTC |
2 |
+++ Library/src/SSL/HTSSL.c |
2 |
+++ Library/src/SSL/HTSSL.c |
3 |
@@ -214,12 +214,16 @@ PUBLIC BOOL HTSSL_init (void) |
3 |
@@ -98,6 +98,7 @@ PRIVATE void apps_ssl_info_callback (SSL * s, int wher |
|
|
4 |
PRIVATE int verify_callback (int ok, X509_STORE_CTX * ctx) |
5 |
{ |
6 |
char buf[256]; |
7 |
+ int ctx_error; |
8 |
X509 * err_cert = X509_STORE_CTX_get_current_cert(ctx); |
9 |
int err = X509_STORE_CTX_get_error(ctx); |
10 |
int depth = X509_STORE_CTX_get_error_depth(ctx); |
11 |
@@ -115,24 +116,28 @@ PRIVATE int verify_callback (int ok, X509_STORE_CTX * |
12 |
verify_error=X509_V_ERR_CERT_CHAIN_TOO_LONG; |
13 |
} |
14 |
} |
15 |
- switch (ctx->error) { |
16 |
+ switch (ctx_error = X509_STORE_CTX_get_error(ctx)) { |
4 |
|
17 |
|
|
|
18 |
case X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT: |
19 |
+#if OPENSSL_VERSION_NUMBER >= 0x10100000 |
20 |
+ X509_NAME_oneline(X509_get_issuer_name(X509_STORE_CTX_get0_cert(ctx)), buf, 256); |
21 |
+#else |
22 |
X509_NAME_oneline(X509_get_issuer_name(ctx->current_cert), buf, 256); |
23 |
+#endif |
24 |
HTTRACE(PROT_TRACE, "issuer= %s\n" _ buf); |
25 |
break; |
26 |
|
27 |
case X509_V_ERR_CERT_NOT_YET_VALID: |
28 |
case X509_V_ERR_ERROR_IN_CERT_NOT_BEFORE_FIELD: |
29 |
HTTRACE(PROT_TRACE, "notBefore="); |
30 |
-// ASN1_TIME_print(bio_err,X509_get_notBefore(ctx->current_cert)); |
31 |
+// ASN1_TIME_print(bio_err,X509_get_notBefore(X509_STORE_CTX_get0_cert(ctx))); |
32 |
HTTRACE(PROT_TRACE, "\n"); |
33 |
break; |
34 |
|
35 |
case X509_V_ERR_CERT_HAS_EXPIRED: |
36 |
case X509_V_ERR_ERROR_IN_CERT_NOT_AFTER_FIELD: |
37 |
HTTRACE(PROT_TRACE, "notAfter="); |
38 |
-// ASN1_TIME_print(bio_err,X509_get_notAfter(ctx->current_cert)); |
39 |
+// ASN1_TIME_print(bio_err,X509_get_notAfter(X509_STORE_CTX_get0_cert(ctx))); |
40 |
HTTRACE(PROT_TRACE, "\n"); |
41 |
break; |
42 |
} |
43 |
@@ -214,12 +219,6 @@ PUBLIC BOOL HTSSL_init (void) |
44 |
|
5 |
/* select the protocol method */ |
45 |
/* select the protocol method */ |
6 |
switch (ssl_prot_method) { |
46 |
switch (ssl_prot_method) { |
7 |
+#ifndef OPENSSL_NO_SSL2 |
47 |
- case HTSSL_V2: |
8 |
case HTSSL_V2: |
48 |
- meth = SSLv2_client_method(); |
9 |
meth = SSLv2_client_method(); |
49 |
- break; |
10 |
break; |
50 |
- case HTSSL_V3: |
11 |
+#endif |
51 |
- meth = SSLv3_client_method(); |
12 |
+#ifndef OPENSSL_NO_SSL3_METHOD |
52 |
- break; |
13 |
case HTSSL_V3: |
|
|
14 |
meth = SSLv3_client_method(); |
15 |
break; |
16 |
+#endif |
17 |
case HTSSL_V23: |
53 |
case HTSSL_V23: |
18 |
meth = SSLv23_client_method(); |
54 |
meth = SSLv23_client_method(); |
19 |
break; |
55 |
break; |