main/tcptls: Add checks for OpenSSL Elliptic Curve support

The patch for ASTERISK-23905 that added PFS support in Asterisk depends on the elliptic curve library support being present in OpenSSL. As it turns out, some versions of OpenSSL don't have this library - notably the version running on our build agents. This patch fixes the build by providing a configure check for the specific library calls that the PFS patch relies on. Review: https://reviewboard.asterisk.org/r/3709/ git-svn-id: https://origsvn.digium.com/svn/asterisk/trunk@417900 65c4cc65-6c06-0410-ace0-fbb531ad65f3
2025-11-17 15:29:05 +00:00 · 2014-07-03 16:55:44 +00:00
parent aa370d6105
commit 758b13858b
4 changed files with 377 additions and 252 deletions
--- a/main/tcptls.c
+++ b/main/tcptls.c
@@ -825,6 +825,8 @@ static int __ssl_setup(struct ast_tls_config *cfg, int client)
 		}
 	}

+#ifdef HAVE_OPENSSL_EC
+
 	if (!ast_strlen_zero(cfg->pvtfile)) {
 		BIO *bio = BIO_new_file(cfg->pvtfile, "r");
 		if (bio != NULL) {
@@ -857,6 +859,8 @@ static int __ssl_setup(struct ast_tls_config *cfg, int client)
 		}
 	}

+#endif /* #ifdef HAVE_OPENSSL_EC */
+
 	ast_verb(2, "TLS/SSL certificate ok\n");	/* We should log which one that is ok. This message doesn't really make sense in production use */
 	return 1;
 #endif