From c8fa9e47ca41e05abc7efc46aab38a7d0f024ad2 Mon Sep 17 00:00:00 2001
From: Viktor Dukhovni <postfix-users@dukhovni.org>
Date: Sat, 20 Aug 2016 02:11:58 -0400
Subject: [PATCH] Bitrot: OpenSSL 1.1.0 X509_STORE_CTX is opaque

Avoid direct access to member fields, use the accessors.
---
 postfix/src/tls/tls_verify.c | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/postfix/src/tls/tls_verify.c b/postfix/src/tls/tls_verify.c
index 0962f8377..49cc26634 100644
--- a/postfix/src/tls/tls_verify.c
+++ b/postfix/src/tls/tls_verify.c
@@ -245,8 +245,7 @@ int     tls_verify_certificate_callback(int ok, X509_STORE_CTX *ctx)
 	 * provided, but not found in CAfile/CApath. Either way, we don't
 	 * trust it.
 	 */
-	X509_NAME_oneline(X509_get_issuer_name(ctx->current_cert),
-			  buf, sizeof(buf));
+	X509_NAME_oneline(X509_get_issuer_name(cert), buf, sizeof(buf));
 	msg_info("certificate verification failed for %s: untrusted issuer %s",
 		 TLScontext->namaddr, printable(buf, '?'));
 	break;
-- 
2.47.3