BUILD: ssl: use OPENSSL_NO_OCSP to detect OCSP support

author Lukas Tribus <luky-37@hotmail.com>

Tue, 9 Dec 2014 15:32:51 +0000 (16:32 +0100)

committer Willy Tarreau <w@1wt.eu>

Tue, 9 Dec 2014 19:49:22 +0000 (20:49 +0100)
author Lukas Tribus <luky-37@hotmail.com>
Tue, 9 Dec 2014 15:32:51 +0000 (16:32 +0100)
committer Willy Tarreau <w@1wt.eu>
Tue, 9 Dec 2014 19:49:22 +0000 (20:49 +0100)
diff --git a/include/proto/ssl_sock.h b/include/proto/ssl_sock.h

index 217acccba09716704c272a6963552b89d4ad7813..6eb97ebcf6be022eac5f1a2b3c5612b097af9d6d 100644 (file)
--- a/include/proto/ssl_sock.h
+++ b/include/proto/ssl_sock.h
@@ -55,7 +55,7 @@ int ssl_sock_get_cert_used_sess(struct connection *conn);
  int ssl_sock_get_cert_used_conn(struct connection *conn);
  int ssl_sock_get_remote_common_name(struct connection *conn, struct chunk *out);
  unsigned int ssl_sock_get_verify_result(struct connection *conn);
-#if (defined SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB && !defined OPENSSL_IS_BORINGSSL)
+#if (defined SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB && !defined OPENSSL_NO_OCSP)
  int ssl_sock_update_ocsp_response(struct chunk *ocsp_response, char **err);
  #endif
  
diff --git a/src/dumpstats.c b/src/dumpstats.c

index 26b0a9f1d7a7f6e6eb526384517a6410bf6f51c9..b8968f1680f45c958127e3e4502e3938998a715a 100644 (file)
--- a/src/dumpstats.c
+++ b/src/dumpstats.c
@@ -1795,7 +1795,7 @@ static int stats_sock_parse_request(struct stream_interface *si, char *line)
  #ifdef USE_OPENSSL
                 else if (strcmp(args[1], "ssl") == 0) {
                         if (strcmp(args[2], "ocsp-response") == 0) {
-#if (defined SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB && !defined OPENSSL_IS_BORINGSSL)
+#if (defined SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB && !defined OPENSSL_NO_OCSP)
                                 char *err = NULL;
  
                                 /* Expect one parameter: the new response in base64 encoding */
diff --git a/src/ssl_sock.c b/src/ssl_sock.c

index a8b4ea8cd044ced618b3509c87bb90de88059ca3..6edc14950d829aaa6aa9263d938b618c22174be0 100644 (file)
--- a/src/ssl_sock.c
+++ b/src/ssl_sock.c
@@ -44,7 +44,7 @@
  #include <openssl/x509.h>
  #include <openssl/err.h>
  #include <openssl/rand.h>
-#if (defined SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB && !defined OPENSSL_IS_BORINGSSL)
+#if (defined SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB && !defined OPENSSL_NO_OCSP)
  #include <openssl/ocsp.h>
  #endif
  
@@ -113,7 +113,7 @@ static DH *local_dh_4096 = NULL;
  static DH *local_dh_8192 = NULL;
  #endif /* OPENSSL_NO_DH */
  
-#if (defined SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB && !defined OPENSSL_IS_BORINGSSL)
+#if (defined SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB && !defined OPENSSL_NO_OCSP)
  struct certificate_ocsp {
         struct ebmb_node key;
         unsigned char key_data[OCSP_MAX_CERTID_ASN1_LENGTH];
@@ -1283,7 +1283,7 @@ static int ssl_sock_load_cert_file(const char *path, struct bind_conf *bind_conf
         }
  #endif
  
-#if (defined SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB && !defined OPENSSL_IS_BORINGSSL)
+#if (defined SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB && !defined OPENSSL_NO_OCSP)
         ret = ssl_sock_load_ocsp(ctx, path);
         if (ret < 0) {
                 if (err)
author	Lukas Tribus <luky-37@hotmail.com>
	Tue, 9 Dec 2014 15:32:51 +0000 (16:32 +0100)
committer	Willy Tarreau <w@1wt.eu>
	Tue, 9 Dec 2014 19:49:22 +0000 (20:49 +0100)
include/proto/ssl_sock.h		patch \| blob \| blame \| history
src/dumpstats.c		patch \| blob \| blame \| history
src/ssl_sock.c		patch \| blob \| blame \| history