Hanno Böck
2014-Jul-22 15:54 UTC
[patch] enable ECDH auto functions based on feature defines, not on version number
Hello, I recently tried to build my system with libressl instead of openssl. In dovecot one issue that popped up was that libressl doesn't have the ECDH auto functions from openssl 1.0.2 beta versions. However as the #ifdef's in dovecot's code check for the openssl version and libressl's version numbers are higher the compilation fails there. Attached is a patch that will change that checks. Instead of checking for the version number it checks for the availability of the feature itself (by checking for the define of SSL_CTRL_SET_ECDH_AUTO). This should make this check more robust and work independently of the version number of the used openssl instance. cu, -- Hanno B?ck http://hboeck.de/ mail/jabber: hanno at hboeck.de GPG: BBB51E42 -------------- next part -------------- A non-text attachment was scrubbed... Name: dovecot-ecdh-auto.diff Type: text/x-patch Size: 3068 bytes Desc: not available URL: <http://dovecot.org/pipermail/dovecot/attachments/20140722/93275cd4/attachment.bin> -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 819 bytes Desc: not available URL: <http://dovecot.org/pipermail/dovecot/attachments/20140722/93275cd4/attachment.sig>
Apparently Analagous Threads
- openssh portable and libressl portable cause recursion between arc4random and RAND_bytes
- separating logs by port
- Invalid memory access / read stack overflow when reading config with zero bytes
- Invalid memory access / read stack overflow when reading config with zero bytes
- Problems with dovecot 2.2.13 and monit
Wisdom of the Ancients
