Blame SOURCES/sendmail-8.15.2-openssl-1.1.0-ecdhe-fix.patch
|
 |
813923 |
diff --git a/sendmail/tls.c b/sendmail/tls.c
|
|
|
813923 |
index 16cb93f..9338380 100644
|
|
|
813923 |
--- a/sendmail/tls.c
|
|
|
813923 |
+++ b/sendmail/tls.c
|
|
|
813923 |
@@ -1329,13 +1329,8 @@ inittls(ctx, req, options, srv, certfile, keyfile, cacertpath, cacertfile, dhpar
|
|
|
813923 |
}
|
|
|
813923 |
|
|
|
813923 |
#if _FFR_TLS_EC
|
|
|
813923 |
- ecdh = EC_KEY_new_by_curve_name(NID_X9_62_prime256v1);
|
|
|
813923 |
- if (ecdh != NULL)
|
|
|
813923 |
- {
|
|
|
813923 |
- SSL_CTX_set_options(*ctx, SSL_OP_SINGLE_ECDH_USE);
|
|
|
813923 |
- SSL_CTX_set_tmp_ecdh(*ctx, ecdh);
|
|
|
813923 |
- EC_KEY_free(ecdh);
|
|
|
813923 |
- }
|
|
|
813923 |
+ SSL_CTX_set_options(*ctx, SSL_OP_SINGLE_ECDH_USE);
|
|
|
813923 |
+ SSL_CTX_set_ecdh_auto(*ctx, 1);
|
|
|
813923 |
#endif /* _FFR_TLS_EC */
|
|
|
813923 |
|
|
|
813923 |
}
|