diff options
author | Natanael Copa <ncopa@alpinelinux.org> | 2018-10-31 09:38:37 +0000 |
---|---|---|
committer | Natanael Copa <ncopa@alpinelinux.org> | 2018-11-07 16:46:12 +0000 |
commit | e0c4bf32c3423530abb4919dd2fd0f20ae7df2e8 (patch) | |
tree | 3a677ab8f9ff99193de6cc1a9b9157a09290fbf6 /main/libtls-standalone/openssl-1.1.0-verify-param.patch | |
parent | ca6964abf88ba5441e9a23f0005fafd4485a39a4 (diff) | |
download | aports-e0c4bf32c3423530abb4919dd2fd0f20ae7df2e8.tar.bz2 aports-e0c4bf32c3423530abb4919dd2fd0f20ae7df2e8.tar.xz |
main/libtls-standalone: move from testing
needed by busybox
Diffstat (limited to 'main/libtls-standalone/openssl-1.1.0-verify-param.patch')
-rw-r--r-- | main/libtls-standalone/openssl-1.1.0-verify-param.patch | 50 |
1 files changed, 50 insertions, 0 deletions
diff --git a/main/libtls-standalone/openssl-1.1.0-verify-param.patch b/main/libtls-standalone/openssl-1.1.0-verify-param.patch new file mode 100644 index 0000000000..ef3f948e02 --- /dev/null +++ b/main/libtls-standalone/openssl-1.1.0-verify-param.patch @@ -0,0 +1,50 @@ +--- libressl-2.7.4.orig/tls/tls.c ++++ libressl-2.7.4/tls/tls.c +@@ -438,8 +438,16 @@ + } + + if (ctx->config->verify_time == 0) { +- X509_VERIFY_PARAM_set_flags(ssl_ctx->param, +- X509_V_FLAG_NO_CHECK_TIME); ++ X509_VERIFY_PARAM *param = X509_VERIFY_PARAM_new(); ++ ++ if (param == NULL) { ++ goto err; ++ } ++ ++ X509_VERIFY_PARAM_set_flags(param, X509_V_FLAG_NO_CHECK_TIME); ++ SSL_CTX_set1_param(ssl_ctx, param); ++ ++ X509_VERIFY_PARAM_free(param); + } + + /* Disable any form of session caching by default */ +@@ -487,6 +495,7 @@ + STACK_OF(X509_INFO) *xis = NULL; + X509_STORE *store; + X509_INFO *xi; ++ X509_VERIFY_PARAM *param; + BIO *bio = NULL; + int rv = -1; + int i; +@@ -548,8 +557,19 @@ + } + xi->crl = NULL; + } +- X509_VERIFY_PARAM_set_flags(store->param, ++ ++ param = X509_VERIFY_PARAM_new(); ++ ++ if (param == NULL) { ++ goto err; ++ } ++ ++ X509_VERIFY_PARAM_set_flags(param, + X509_V_FLAG_CRL_CHECK | X509_V_FLAG_CRL_CHECK_ALL); ++ ++ X509_STORE_set1_param(store, param); ++ ++ X509_VERIFY_PARAM_free(param); + } + + done: |