TLS: do not use DH_bits for LibreSSL; it is not supported (as of LibreSSL 2.3.2)

author Jeremy Harris <jgh146exb@wizmail.org>

Sun, 21 May 2017 15:51:24 +0000 (16:51 +0100)

committer Jeremy Harris <jgh146exb@wizmail.org>

Sun, 21 May 2017 15:51:24 +0000 (16:51 +0100)
author Jeremy Harris <jgh146exb@wizmail.org>
Sun, 21 May 2017 15:51:24 +0000 (16:51 +0100)
committer Jeremy Harris <jgh146exb@wizmail.org>
Sun, 21 May 2017 15:51:24 +0000 (16:51 +0100)
diff --git a/src/src/tls-openssl.c b/src/src/tls-openssl.c

index 08382667453d5cbae8bd27455894f3cbc1c0c546..66483704c93a25399432e2ea34e5b6ed39d4f1c0 100644 (file)
--- a/src/src/tls-openssl.c
+++ b/src/src/tls-openssl.c
@@ -46,7 +46,6 @@ functions from the OpenSSL library. */
  #endif
  #if OPENSSL_VERSION_NUMBER >= 0x10100000L
  # define EXIM_HAVE_OCSP_RESP_COUNT
  #endif
  #if OPENSSL_VERSION_NUMBER >= 0x10100000L
  # define EXIM_HAVE_OCSP_RESP_COUNT
-# define EXIM_HAVE_OPENSSL_DH_BITS
  #else
  # define EXIM_HAVE_EPHEM_RSA_KEX
  # define EXIM_HAVE_RAND_PSEUDO
  #else
  # define EXIM_HAVE_EPHEM_RSA_KEX
  # define EXIM_HAVE_RAND_PSEUDO
@@ -70,6 +69,7 @@ functions from the OpenSSL library. */
  #ifndef LIBRESSL_VERSION_NUMBER
  # if OPENSSL_VERSION_NUMBER >= 0x010100000L
  #  define EXIM_HAVE_OPENSSL_CHECKHOST
  #ifndef LIBRESSL_VERSION_NUMBER
  # if OPENSSL_VERSION_NUMBER >= 0x010100000L
  #  define EXIM_HAVE_OPENSSL_CHECKHOST
+#  define EXIM_HAVE_OPENSSL_DH_BITS
  # endif
  # if OPENSSL_VERSION_NUMBER >= 0x010000000L \
      && (OPENSSL_VERSION_NUMBER & 0x0000ff000L) >= 0x000002000L
  # endif
  # if OPENSSL_VERSION_NUMBER >= 0x010000000L \
      && (OPENSSL_VERSION_NUMBER & 0x0000ff000L) >= 0x000002000L
author	Jeremy Harris <jgh146exb@wizmail.org>
	Sun, 21 May 2017 15:51:24 +0000 (16:51 +0100)
committer	Jeremy Harris <jgh146exb@wizmail.org>
	Sun, 21 May 2017 15:51:24 +0000 (16:51 +0100)