On 2018/11/01 12:58, [email protected] wrote:
> Hi,
>
>
>
> I hit the following error after building Apache 2.4.37 in OpenBSD 6.4 and
> trying to start it:
>
> httpd:/usr/local/apache2/modules/mod_ssl.so: undefined symbol
> 'SSL_CTX_set_post_handshake_auth'
>
> No problems with Apache 2.4.33 in the same environment.
>
>
>
> Do you guys have any ideas where I should try to find a solution for it?
>
>
>
> Many Thanks,
>
> Helmut Kiessling
>
The patch below is needed, I've just committed a fix to ports.
Index: modules/ssl/ssl_engine_init.c
--- modules/ssl/ssl_engine_init.c.orig
+++ modules/ssl/ssl_engine_init.c
@@ -1492,7 +1492,7 @@ static apr_status_t ssl_init_proxy_certs(server_rec *s
X509_STORE_CTX *sctx;
X509_STORE *store = SSL_CTX_get_cert_store(mctx->ssl_ctx);
-#if OPENSSL_VERSION_NUMBER >= 0x1010100fL
+#if OPENSSL_VERSION_NUMBER >= 0x1010100fL && !defined(LIBRESSL_VERSION_NUMBER)
/* For OpenSSL >=1.1.1, turn on client cert support which is
* otherwise turned off by default (by design).
* https://github.com/openssl/openssl/issues/6933 */
