Date: Mon, 12 Sep 2016 15:34:22 +0000 (UTC) From: John Marino <marino@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r421930 - head/net/asterisk/files Message-ID: <201609121534.u8CFYM08076528@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: marino Date: Mon Sep 12 15:34:22 2016 New Revision: 421930 URL: https://svnweb.freebsd.org/changeset/ports/421930 Log: net/asterisk: Fix build when SSLv3 method is N/A (LibreSSL) Approved by: SSL blanket P.S. Why is this port still in the tree? It expired in April 2016. Added: head/net/asterisk/files/patch-main_tcptls.c (contents, props changed) Added: head/net/asterisk/files/patch-main_tcptls.c ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/net/asterisk/files/patch-main_tcptls.c Mon Sep 12 15:34:22 2016 (r421930) @@ -0,0 +1,17 @@ +--- main/tcptls.c.orig 2015-04-08 18:53:07.000000000 +0200 ++++ main/tcptls.c 2015-09-23 21:30:28.092457300 +0200 +@@ -768,10 +768,13 @@ static int __ssl_setup(struct ast_tls_co + cfg->ssl_ctx = SSL_CTX_new(SSLv2_client_method()); + } else + #endif ++#ifndef OPENSSL_NO_SSL3 + if (ast_test_flag(&cfg->flags, AST_SSL_SSLV3_CLIENT)) { + ast_log(LOG_WARNING, "Usage of SSLv3 is discouraged due to known vulnerabilities. Please use 'tlsv1' or leave the TLS method unspecified!\n"); + cfg->ssl_ctx = SSL_CTX_new(SSLv3_client_method()); +- } else if (ast_test_flag(&cfg->flags, AST_SSL_TLSV1_CLIENT)) { ++ } else ++#endif ++ if (ast_test_flag(&cfg->flags, AST_SSL_TLSV1_CLIENT)) { + cfg->ssl_ctx = SSL_CTX_new(TLSv1_client_method()); + } else { + disable_ssl = 1;
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201609121534.u8CFYM08076528>