Lines 1-6
Link Here
|
1 |
--- src/tls-openssl.c.orig 2023-11-07 21:07:29.239948000 +0100 |
1 |
--- src/tls-openssl.c.orig 2023-11-04 12:55:49 UTC |
2 |
+++ src/tls-openssl.c 2023-11-07 21:08:03.517118000 +0100 |
2 |
+++ src/tls-openssl.c |
3 |
@@ -2605,7 +2605,7 @@ |
3 |
@@ -69,12 +69,14 @@ crypto provider for libtls instead of continuing to ti |
|
|
4 |
into even twistier knots. If LibreSSL gains the same API, we can just |
5 |
change this guard and punt the issue for a while longer. */ |
6 |
|
7 |
-#ifndef LIBRESSL_VERSION_NUMBER |
8 |
+#if !defined(LIBRESSL_VERSION_NUMBER) || LIBRESSL_VERSION_NUMBER >= 0x3080200fL |
9 |
# if OPENSSL_VERSION_NUMBER >= 0x010100000L |
10 |
# define EXIM_HAVE_OPENSSL_CHECKHOST |
11 |
# define EXIM_HAVE_OPENSSL_DH_BITS |
12 |
# define EXIM_HAVE_OPENSSL_TLS_METHOD |
13 |
-# define EXIM_HAVE_OPENSSL_KEYLOG |
14 |
+# ifndef LIBRESSL_VERSION_NUMBER |
15 |
+# define EXIM_HAVE_OPENSSL_KEYLOG |
16 |
+# endif |
17 |
# define EXIM_HAVE_OPENSSL_CIPHER_GET_ID |
18 |
# define EXIM_HAVE_SESSION_TICKET |
19 |
# define EXIM_HAVE_OPESSL_TRACE |
20 |
@@ -2605,7 +2607,7 @@ if (!(bs = OCSP_response_get1_basic(rsp))) |
4 |
asking for certificate-status under DANE, so this callback won't run for |
21 |
asking for certificate-status under DANE, so this callback won't run for |
5 |
that combination. It still will for non-DANE. */ |
22 |
that combination. It still will for non-DANE. */ |
6 |
|
23 |
|