LILiK
/
openwrt-packages-dist
5
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
16138 Commits
1 Branch
46 MiB
Tree: bbb1ea7345
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'bbb1ea7345'
${ noResults }
openwrt-packages-dist/mail/sendmail/patches/202-openssl-deprecated.patch

76 lines
2.2 KiB
Raw Normal View History

sendmail: Add OpenSSL 1.1 support First patch is from Debian and enables OpenSSL 1.1 support. Second patch is a fix for OpenSSL 1.1 ECC curves. Third patch allows compilation without deprecated APIs. Signed-off-by: Rosen Penev <rosenp@gmail.com>
6 years ago
 
  1. Must be rebased for 8.16
  2. 

  3. --- a/sendmail/main.c

  4. +++ b/sendmail/main.c

  5. @@ -17,6 +17,9 @@

  6.  #include <sm/xtrap.h>
  7.  #include <sm/signal.h>
  8.  
  9. +#if OPENSSL_VERSION_NUMBER < 0x10100000L

  10. +#define OpenSSL_version_num SSLeay

  11. +#endif

  12.  #ifndef lint
  13.  SM_UNUSED(static char copyright[]) =
  14.  "@(#) Copyright (c) 1998-2013 Proofpoint, Inc. and its suppliers.\n\
  15. @@ -650,7 +653,7 @@ main(argc, argv, envp)

  16.  		sm_dprintf("       OpenSSL: compiled 0x%08x\n",
  17.  			   (uint) OPENSSL_VERSION_NUMBER);
  18.  		sm_dprintf("       OpenSSL: linked   0x%08x\n",
  19. -			   (uint) SSLeay());

  20. +			   (uint) OpenSSL_version_num());

  21.  	}
  22.  #endif /* STARTTLS */
  23.  
  24. --- a/sendmail/tls.c

  25. +++ b/sendmail/tls.c

  26. @@ -16,9 +16,25 @@ SM_RCSID("@(#)$Id: tls.c,v 8.127 2013-11-27 02:51:11 gshapiro Exp $")

  27.  # include <openssl/err.h>
  28.  # include <openssl/bio.h>
  29.  # include <openssl/pem.h>
  30. +# include <openssl/bn.h>

  31. +# include <openssl/dh.h>

  32. +# include <openssl/dsa.h>

  33. +# include <openssl/rsa.h>

  34.  # ifndef HASURANDOMDEV
  35.  #  include <openssl/rand.h>
  36.  # endif /* ! HASURANDOMDEV */
  37. +#if OPENSSL_VERSION_NUMBER < 0x10100000L

  38. +#define OpenSSL_version_num SSLeay

  39. +#endif

  40. +

  41. +#ifndef CRYPTO_thread_id

  42. +#define CRYPTO_thread_id() (0UL)

  43. +#endif

  44. +

  45. +#ifndef SSL_CTX_set_tmp_rsa_callback

  46. +#define SSL_CTX_set_tmp_rsa_callback(ctx, cb) while(0) (cb)(NULL, 0, 0)

  47. +#endif

  48. +

  49.  # if !TLS_NO_RSA
  50.  static RSA *rsa_tmp = NULL;	/* temporary RSA key */
  51.  static RSA *tmp_rsa_key __P((SSL *, int, int));
  52. @@ -380,6 +396,7 @@ init_tls_library(fipsmode)

  53.  {
  54.  	bool bv;
  55.  
  56. +#if OPENSSL_VERSION_NUMBER < 0x10100000L

  57.  	/* basic TLS initialization, ignore result for now */
  58.  	SSL_library_init();
  59.  	SSL_load_error_strings();
  60. @@ -388,6 +405,7 @@ init_tls_library(fipsmode)

  61.  	/* this is currently a macro for SSL_library_init */
  62.  	SSLeay_add_ssl_algorithms();
  63.  # endif /* 0 */
  64. +#endif /* OPENSSL_VERSION_NUMBER */

  65.  
  66.  	bv = tls_rand_init(RandFile, 7);
  67.  # if _FFR_FIPSMODE
  68. @@ -1207,7 +1225,7 @@ inittls(ctx, req, options, srv, certfile, keyfile, cacertpath, cacertfile, dhpar

  69.  	**  just the compile time version.
  70.  	*/
  71.  
  72. -	rt_version = SSLeay();

  73. +	rt_version = OpenSSL_version_num();

  74.  	if (rt_version >= 0x00908000L && rt_version <= 0x0090802fL)
  75.  	{
  76.  		comp_methods = SSL_COMP_get_compression_methods();