Fix compilation on Libressl

author Nick Mathewson <nickm@torproject.org>

Sun, 27 Apr 2025 14:31:24 +0000 (10:31 -0400)

committer Nick Mathewson <nickm@torproject.org>

Sun, 27 Apr 2025 14:31:24 +0000 (10:31 -0400)
author Nick Mathewson <nickm@torproject.org>
Sun, 27 Apr 2025 14:31:24 +0000 (10:31 -0400)
committer Nick Mathewson <nickm@torproject.org>
Sun, 27 Apr 2025 14:31:24 +0000 (10:31 -0400)
diff --git a/src/lib/tls/tortls_openssl.c b/src/lib/tls/tortls_openssl.c

index a7613d82f32f9c877ff6141a77720b950bedf077..05a8bfc0a4b705d456d909e985a254d7ed3fd5cc 100644 (file)
--- a/src/lib/tls/tortls_openssl.c
+++ b/src/lib/tls/tortls_openssl.c
@@ -568,7 +568,12 @@ tor_tls_context_new(crypto_pk_t *identity, unsigned int key_lifetime,
    SSL_CTX_set_options(result->ctx,
                        SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION);
  #endif
+#ifdef SSL_OP_NO_RENEGOTIATION
    SSL_CTX_set_options(result->ctx, SSL_OP_NO_RENEGOTIATION);
+#endif
+#ifdef SSL_OP_NO_CLIENT_RENEGOTIATION
+  SSL_CTX_set_options(result->ctx, SSL_OP_NO_CLIENT_RENEGOTIATION);
+#endif
  
    /* Don't actually allow compression; it uses RAM and time, it makes TLS
     * vulnerable to CRIME-style attacks, and most of the data we transmit over
author	Nick Mathewson <nickm@torproject.org>
	Sun, 27 Apr 2025 14:31:24 +0000 (10:31 -0400)
committer	Nick Mathewson <nickm@torproject.org>
	Sun, 27 Apr 2025 14:31:24 +0000 (10:31 -0400)