Home Explore Help
Register Sign In
oss
/
openadk
4
1
Fork 3
Files Issues 0 Pull Requests 0 Wiki
Tree: 44af70d2b8
Branches Tags
openadk
/
package
/
curl
/
patches
/
patch-lib_vtls_openssl_c

patch-lib_vtls_openssl_c 2.3 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152 
  1. --- curl-7.59.0.orig/lib/vtls/openssl.c	2018-03-12 08:18:59.000000000 +0100
    2. 

  2. +++ curl-7.59.0/lib/vtls/openssl.c	2018-04-10 03:38:32.766247842 +0100
    3. 

  3. @@ -104,7 +104,8 @@
    4. 

  4.  #endif
    5. 

  5.  
    6. 

  6.  #if (OPENSSL_VERSION_NUMBER >= 0x10100000L) && /* OpenSSL 1.1.0+ */ \
    7. 

  7. -  !defined(LIBRESSL_VERSION_NUMBER)
    8. 

  8. +    !(defined(LIBRESSL_VERSION_NUMBER) && \
    9. 

  9. +      LIBRESSL_VERSION_NUMBER < 0x20700000L)
    10. 

  10.  #define SSLEAY_VERSION_NUMBER OPENSSL_VERSION_NUMBER
    11. 

  11.  #define HAVE_X509_GET0_EXTENSIONS 1 /* added in 1.1.0 -pre1 */
    12. 

  12.  #define HAVE_OPAQUE_EVP_PKEY 1 /* since 1.1.0 -pre3 */
    13. 

  13. @@ -128,7 +129,8 @@ static unsigned long OpenSSL_version_num
    14. 

  14.  #endif
    15. 

  15.  
    16. 

  16.  #if (OPENSSL_VERSION_NUMBER >= 0x1000200fL) && /* 1.0.2 or later */ \
    17. 

  17. -  !defined(LIBRESSL_VERSION_NUMBER)
    18. 

  18. +    !(defined(LIBRESSL_VERSION_NUMBER) && \
    19. 

  19. +      LIBRESSL_VERSION_NUMBER < 0x20700000L)
    20. 

  20.  #define HAVE_X509_GET0_SIGNATURE 1
    21. 

  21.  #endif
    22. 

  22.  
    23. 

  23. @@ -147,7 +149,7 @@ static unsigned long OpenSSL_version_num
    24. 

  24.   * Whether SSL_CTX_set_keylog_callback is available.
    25. 

  25.   * OpenSSL: supported since 1.1.1 https://github.com/openssl/openssl/pull/2287
    26. 

  26.   * BoringSSL: supported since d28f59c27bac (committed 2015-11-19)
    27. 

  27. - * LibreSSL: unsupported in at least 2.5.1 (explicitly check for it since it
    28. 

  28. + * LibreSSL: unsupported in at least 2.7.2 (explicitly check for it since it
    29. 

  29.   *           lies and pretends to be OpenSSL 2.0.0).
    30. 

  30.   */
    31. 

  31.  #if (OPENSSL_VERSION_NUMBER >= 0x10101000L && \
    32. 

  32. @@ -259,7 +261,9 @@ static void tap_ssl_key(const SSL *ssl,
    33. 

  33.    if(!session || !keylog_file_fp)
    34. 

  34.      return;
    35. 

  35.  
    36. 

  36. -#if OPENSSL_VERSION_NUMBER >= 0x10100000L && !defined(LIBRESSL_VERSION_NUMBER)
    37. 

  37. +#if OPENSSL_VERSION_NUMBER >= 0x10100000L && \
    38. 

  38. +    !(defined(LIBRESSL_VERSION_NUMBER) && \
    39. 

  39. +      LIBRESSL_VERSION_NUMBER < 0x20700000L)
    40. 

  40.    /* ssl->s3 is not checked in openssl 1.1.0-pre6, but let's assume that
    41. 

  41.     * we have a valid SSL context if we have a non-NULL session. */
    42. 

  42.    SSL_get_client_random(ssl, client_random, SSL3_RANDOM_SIZE);
    43. 

  43. @@ -2082,8 +2086,7 @@ static CURLcode ossl_connect_step1(struc
    44. 

  44.    case CURL_SSLVERSION_TLSv1_2:
    45. 

  45.    case CURL_SSLVERSION_TLSv1_3:
    46. 

  46.      /* it will be handled later with the context options */
    47. 

  47. -#if (OPENSSL_VERSION_NUMBER >= 0x10100000L) && \
    48. 

  48. -    !defined(LIBRESSL_VERSION_NUMBER)
    49. 

  49. +#if (OPENSSL_VERSION_NUMBER >= 0x10100000L)
    50. 

  50.      req_method = TLS_client_method();
    51. 

  51.  #else
    52. 

  52.      req_method = SSLv23_client_method();
    53.