mirror of
https://github.com/OpenVPN/openvpn.git
synced 2024-09-20 03:52:28 +02:00
Fix build with LibreSSL
Detect the presence of SSL_CTX_set_security_level(), don't check OPENSSL_VERSION_NUMBER. Signed-off-by: Jeremie Courreges-Anglas <jca@wxcvbn.org> Acked-by: Steffan Karger <steffan.karger@fox-it.com> Message-Id: <8760a6kjwc.fsf@ritchie.wxcvbn.org> URL: https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg15902.html Signed-off-by: Gert Doering <gert@greenie.muc.de>
This commit is contained in:
parent
4da4b93866
commit
88a827f25c
@ -927,6 +927,7 @@ if test "${enable_crypto}" = "yes" -a "${with_crypto_library}" = "openssl"; then
|
||||
EVP_MD_CTX_reset \
|
||||
SSL_CTX_get_default_passwd_cb \
|
||||
SSL_CTX_get_default_passwd_cb_userdata \
|
||||
SSL_CTX_set_security_level \
|
||||
X509_get0_pubkey \
|
||||
X509_STORE_get0_objects \
|
||||
X509_OBJECT_free \
|
||||
|
@ -386,7 +386,7 @@ tls_ctx_restrict_ciphers(struct tls_root_ctx *ctx, const char *ciphers)
|
||||
void
|
||||
tls_ctx_set_cert_profile(struct tls_root_ctx *ctx, const char *profile)
|
||||
{
|
||||
#if (OPENSSL_VERSION_NUMBER >= 0x10100000)
|
||||
#ifdef HAVE_SSL_CTX_SET_SECURITY_LEVEL
|
||||
/* OpenSSL does not have certificate profiles, but a complex set of
|
||||
* callbacks that we could try to implement to achieve something similar.
|
||||
* For now, use OpenSSL's security levels to achieve similar (but not equal)
|
||||
|
Loading…
Reference in New Issue
Block a user