barbieri pushed a commit to branch master. http://git.enlightenment.org/core/efl.git/commit/?id=54e00b5e9de5647654f7438d5f14aad8671d63f4
commit 54e00b5e9de5647654f7438d5f14aad8671d63f4 Author: Gustavo Sverzut Barbieri <[email protected]> Date: Tue Nov 1 19:36:20 2016 -0200 unbreak build for OpenSSL < 1.0.2 not the ideal solution, but we need a decision if we're going to copy the long code from OpenSSL into our library just to support legacy users, given that Efl.Net targeted at the future. --- src/lib/ecore_con/efl_net_ssl_conn-openssl.c | 28 ++++++++++++++++++++++++++++ 1 file changed, 28 insertions(+) diff --git a/src/lib/ecore_con/efl_net_ssl_conn-openssl.c b/src/lib/ecore_con/efl_net_ssl_conn-openssl.c index 37dcf0e..dbc540d 100644 --- a/src/lib/ecore_con/efl_net_ssl_conn-openssl.c +++ b/src/lib/ecore_con/efl_net_ssl_conn-openssl.c @@ -390,6 +390,34 @@ efl_net_ssl_conn_read(Efl_Net_Ssl_Conn *conn, Eina_Rw_Slice *slice) return 0; } +#ifndef X509_CHECK_FLAG_ALWAYS_CHECK_SUBJECT +/* OpenSSL 1.0.2 introduced X509_check_host() and X509_check_ip_asc() + * and with them the X509_CHECK_FLAG_ALWAYS_CHECK_SUBJECT define. + */ +static int +X509_check_host(X509 *x, const char *chk, size_t chklen, unsigned int flags, char **peername) +{ + ERR("your OpenSSL do not support X509_check_ip_asc() - no verification can be done"); + return 0; + (void)x; + (void)chk; + (void)chklen; + (void)flags; + (void)peername; +} + +static int +X509_check_ip_asc(X509 *x, const char *ipasc, unsigned int flags) +{ + ERR("your OpenSSL do not support X509_check_ip_asc() - no verification can be done"); + return 0; + (void)x; + (void)ipasc; + (void)flags; +} +#endif + + static Eina_Error _efl_net_ssl_conn_hostname_verify(Efl_Net_Ssl_Conn *conn) { --
