|
Lines 1-6
Link Here
|
| 1 |
--- src/tls-openssl.c.orig 2023-11-07 21:07:29.239948000 +0100 |
1 |
--- src/tls-openssl.c.orig 2023-11-04 12:55:49 UTC |
| 2 |
+++ src/tls-openssl.c 2023-11-07 21:08:03.517118000 +0100 |
2 |
+++ src/tls-openssl.c |
| 3 |
@@ -2605,7 +2605,7 @@ |
3 |
@@ -69,12 +69,14 @@ crypto provider for libtls instead of continuing to ti |
|
|
4 |
into even twistier knots. If LibreSSL gains the same API, we can just |
| 5 |
change this guard and punt the issue for a while longer. */ |
| 6 |
|
| 7 |
-#ifndef LIBRESSL_VERSION_NUMBER |
| 8 |
+#if !defined(LIBRESSL_VERSION_NUMBER) || LIBRESSL_VERSION_NUMBER >= 0x3080200fL |
| 9 |
# if OPENSSL_VERSION_NUMBER >= 0x010100000L |
| 10 |
# define EXIM_HAVE_OPENSSL_CHECKHOST |
| 11 |
# define EXIM_HAVE_OPENSSL_DH_BITS |
| 12 |
# define EXIM_HAVE_OPENSSL_TLS_METHOD |
| 13 |
-# define EXIM_HAVE_OPENSSL_KEYLOG |
| 14 |
+# ifndef LIBRESSL_VERSION_NUMBER |
| 15 |
+# define EXIM_HAVE_OPENSSL_KEYLOG |
| 16 |
+# endif |
| 17 |
# define EXIM_HAVE_OPENSSL_CIPHER_GET_ID |
| 18 |
# define EXIM_HAVE_SESSION_TICKET |
| 19 |
# define EXIM_HAVE_OPESSL_TRACE |
| 20 |
@@ -2605,7 +2607,7 @@ if (!(bs = OCSP_response_get1_basic(rsp))) |
| 4 |
asking for certificate-status under DANE, so this callback won't run for |
21 |
asking for certificate-status under DANE, so this callback won't run for |
| 5 |
that combination. It still will for non-DANE. */ |
22 |
that combination. It still will for non-DANE. */ |
| 6 |
|
23 |
|