[nginx] Stream: avoid SSL_CTX_set_tmp_rsa_callback() call with L...

Fri Jun 19 18:39:47 UTC 2015

details:   http://hg.nginx.org/nginx/rev/4b703a5a4631
branches:  
changeset: 6199:4b703a5a4631
user:      Piotr Sikora <piotr at cloudflare.com>
date:      Thu Jun 18 03:36:41 2015 -0700
description:
Stream: avoid SSL_CTX_set_tmp_rsa_callback() call with LibreSSL.

Signed-off-by: Piotr Sikora <piotr at cloudflare.com>

diffstat:

 src/stream/ngx_stream_ssl_module.c |  2 ++
 1 files changed, 2 insertions(+), 0 deletions(-)

diffs (13 lines):

diff --git a/src/stream/ngx_stream_ssl_module.c b/src/stream/ngx_stream_ssl_module.c
--- a/src/stream/ngx_stream_ssl_module.c
+++ b/src/stream/ngx_stream_ssl_module.c
@@ -276,7 +276,9 @@ ngx_stream_ssl_merge_conf(ngx_conf_t *cf
         SSL_CTX_set_options(conf->ssl.ctx, SSL_OP_CIPHER_SERVER_PREFERENCE);
     }
 
+#ifndef LIBRESSL_VERSION_NUMBER
     SSL_CTX_set_tmp_rsa_callback(conf->ssl.ctx, ngx_ssl_rsa512_key_callback);
+#endif
 
     if (ngx_ssl_dhparam(cf, &conf->ssl, &conf->dhparam) != NGX_OK) {
         return NGX_CONF_ERROR;

