GnuTLS: fix build with older GnuTLS

author Jeremy Harris <jgh146exb@wizmail.org>

Tue, 22 Jun 2021 22:42:24 +0000 (23:42 +0100)

committer Jeremy Harris <jgh146exb@wizmail.org>

Tue, 22 Jun 2021 22:46:08 +0000 (23:46 +0100)
author Jeremy Harris <jgh146exb@wizmail.org>
Tue, 22 Jun 2021 22:42:24 +0000 (23:42 +0100)
committer Jeremy Harris <jgh146exb@wizmail.org>
Tue, 22 Jun 2021 22:46:08 +0000 (23:46 +0100)
diff --git a/src/src/tls-gnu.c b/src/src/tls-gnu.c

index 1affba3668f6c1928e6aa527a013b8bda6414731..2d7041f3e4077e41a4cee7e8f0061c2b3266f0cb 100644 (file)
--- a/src/src/tls-gnu.c
+++ b/src/src/tls-gnu.c
@@ -120,7 +120,9 @@ require current GnuTLS, then we'll drop support for the ancient libraries).
  #endif
  
  #if GNUTLS_VERSION_NUMBER >= 0x030200
-# define EXIM_HAVE_ALPN
+# ifdef SUPPORT_GNUTLS_EXT_RAW_PARSE
+#  define EXIM_HAVE_ALPN
+# endif
  #endif
  
  #ifndef DISABLE_OCSP
@@ -1142,12 +1144,12 @@ tls_server_certstatus_cb(gnutls_session_t session, unsigned int htype,
    unsigned when, unsigned int incoming, const gnutls_datum_t * msg)
  {
  DEBUG(D_tls) debug_printf("Sending certificate-status\n");             /*XXX we get this for tls1.2 but not for 1.3 */
-#ifdef SUPPORT_SRV_OCSP_STACK
+# ifdef SUPPORT_SRV_OCSP_STACK
  tls_in.ocsp = exim_testharness_disable_ocsp_validity_check
    ? OCSP_VFY_NOT_TRIED : OCSP_VFIED;   /* We know that GnuTLS verifies responses */
-#else
+# else
  tls_in.ocsp = OCSP_VFY_NOT_TRIED;
-#endif
+# endif
  return 0;
  }
author	Jeremy Harris <jgh146exb@wizmail.org>
	Tue, 22 Jun 2021 22:42:24 +0000 (23:42 +0100)
committer	Jeremy Harris <jgh146exb@wizmail.org>
	Tue, 22 Jun 2021 22:46:08 +0000 (23:46 +0100)