diff options
author | Linus Nordberg <linus@nordberg.se> | 2017-11-14 15:53:57 +0100 |
---|---|---|
committer | Linus Nordberg <linus@nordberg.se> | 2017-11-14 15:53:57 +0100 |
commit | 2e0e6f26031f5377845a0d41da41f5ee962d5ac6 (patch) | |
tree | 964e16f4819e624daf4f064c1bc694751622d115 | |
parent | 49fda337c980ead599c64009f324a00d8a5689e1 (diff) |
Use DTLS_method() for new SSL context if it exists.
From radsecproxy commit 69027c1.
-rw-r--r-- | radsecproxy/tlscommon.c | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/radsecproxy/tlscommon.c b/radsecproxy/tlscommon.c index 97b5914..9a2310b 100644 --- a/radsecproxy/tlscommon.c +++ b/radsecproxy/tlscommon.c @@ -214,10 +214,15 @@ static SSL_CTX *tlscreatectx(uint8_t type, struct tls *conf) { #endif /* RADPROT_TLS */ #ifdef RADPROT_DTLS case RAD_DTLS: +#if OPENSSL_VERSION_NUMBER >= 0x10002000 + /* DTLS_method() seems to have been introduced in OpenSSL 1.0.2. */ + ctx = SSL_CTX_new(DTLS_method()); +#else ctx = SSL_CTX_new(DTLSv1_method()); +#endif SSL_CTX_set_read_ahead(ctx, 1); break; -#endif +#endif /* RADPROT_DTLS */ } if (!ctx) { debug(DBG_ERR, "tlscreatectx: Error initialising SSL/TLS in TLS context %s", conf->name); |