mirror of
https://git.freebsd.org/ports.git
synced 2025-05-17 17:43:11 -04:00
b1926a29fe
- Remove patch for CVE-2017-9798 (included upstream) - Remove mod_ssl LibreSSL patches (included upstream) - Fix SSL stapling patch for LibreSSL - mod_http2 no longer experimental PR: 222814 With hat: apache
11 lines
592 B
C
11 lines
592 B
C
--- modules/ssl/ssl_util_stapling.c.orig 2017-07-06 21:11:28 UTC
|
|
+++ modules/ssl/ssl_util_stapling.c
|
|
@@ -91,7 +91,7 @@ static X509 *stapling_get_issuer(modssl_
|
|
for (i = 0; i < sk_X509_num(extra_certs); i++) {
|
|
issuer = sk_X509_value(extra_certs, i);
|
|
if (X509_check_issued(issuer, x) == X509_V_OK) {
|
|
-#if OPENSSL_VERSION_NUMBER < 0x10100000L
|
|
+#if OPENSSL_VERSION_NUMBER < 0x10100000L || (defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x2050000fL)
|
|
CRYPTO_add(&issuer->references, 1, CRYPTO_LOCK_X509);
|
|
#else
|
|
X509_up_ref(issuer);
|