495b1cad04
In OpenSSL 3.4, TS_VERIFY_CTX_set_certs() and TS_VERIFY_CTX_set_store() are deprecated in favor of the new functions with "set0" in the names. The new functions have a slightly different behavior. They will free the previous value automatically. Increment the reference counter of X509_STORE before setting it to TS_VERIFY_CTX, and do not try to manually unset it. We avoided doing this to work around a bug that was present in older versions of OpenSSL, which has now been fixed in OpenSSL 1.0.2 by commit https://github.com/openssl/openssl/commit/bff9ce4db38b. https://github.com/ruby/openssl/commit/ce37f7d93a
33 lines
781 B
C
33 lines
781 B
C
/*
|
|
* 'OpenSSL for Ruby' project
|
|
* Copyright (C) 2001-2002 Michal Rokos <m.rokos@sh.cvut.cz>
|
|
* All rights reserved.
|
|
*/
|
|
/*
|
|
* This program is licensed under the same licence as Ruby.
|
|
* (See the file 'COPYING'.)
|
|
*/
|
|
#if !defined(_OSSL_OPENSSL_MISSING_H_)
|
|
#define _OSSL_OPENSSL_MISSING_H_
|
|
|
|
#include "ruby/config.h"
|
|
|
|
/* added in 3.0.0 */
|
|
#ifndef HAVE_EVP_MD_CTX_GET0_MD
|
|
# define EVP_MD_CTX_get0_md(ctx) EVP_MD_CTX_md(ctx)
|
|
#endif
|
|
|
|
/*
|
|
* OpenSSL 1.1.0 added EVP_MD_CTX_pkey_ctx(), and then it was renamed to
|
|
* EVP_MD_CTX_get_pkey_ctx(x) in OpenSSL 3.0.
|
|
*/
|
|
#ifndef HAVE_EVP_MD_CTX_GET_PKEY_CTX
|
|
# define EVP_MD_CTX_get_pkey_ctx(x) EVP_MD_CTX_pkey_ctx(x)
|
|
#endif
|
|
|
|
#ifndef HAVE_EVP_PKEY_EQ
|
|
# define EVP_PKEY_eq(a, b) EVP_PKEY_cmp(a, b)
|
|
#endif
|
|
|
|
#endif /* _OSSL_OPENSSL_MISSING_H_ */
|