Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Make
get_dh1024
compatible with OpenSSL v1.1.0
Fixes the following error: ``` ../../../../ext/puma_http11/mini_ssl.c: In function ‘get_dh1024’: ../../../../ext/puma_http11/mini_ssl.c:90:5: error: dereferencing pointer to incomplete type ‘DH {aka struct dh_st}’ dh->p = BN_bin2bn(dh1024_p, sizeof(dh1024_p), NULL); ^~ ``` These changes are based on the following patch to nginx: <nginx/nginx@789abf2> ("SSL: default DH parameters compatible with OpenSSL 1.1.0"). Relevant parts of the nginx source code in their full context can be found here: <https://github.com/nginx/nginx/blob/release-1.10.2/src/event/ngx_event_openssl.c#L954-L980>. For reference: > *) Made DH and DH_METHOD opaque. The structures for managing DH objects > have been moved out of the public header files. New functions for managing > these have been added. > [Matt Caswell] <https://www.openssl.org/news/cl110.txt> Fixes #1136.
- Loading branch information