From 781d5a820df9aec9b6dbfe86fa1e7ef1f5112b47 Mon Sep 17 00:00:00 2001
From: Matthias Andree <matthias.andree@gmx.de>
Date: Sat, 20 Nov 2021 14:47:44 +0100
Subject: Fix X509_V_FLAG_TRUSTED_FIRST OpenSSL 1.0.2 workaround

The original comparison contained a typo,
0x1000200fL == (ver & 0xfffff000L) and could never match.

Fix, and also match at compile time to not even reference
this flag on other OpenSSL versions.
---
 NEWS | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'NEWS')

diff --git a/NEWS b/NEWS
index f75000ce..8e5bc68d 100644
--- a/NEWS
+++ b/NEWS
@@ -101,6 +101,10 @@ fetchmail-6.4.25 (not yet released):
   release, and 1.0.2u is publicly available from
   https://www.openssl.org/source/old/1.0.2/
 
+# BUG FIXES
+* 6.4.24's workaround for OpenSSL 1.0.2's X509_V_FLAG_TRUSTED_FIRST flag
+  contained a typo and would not kick in properly.
+
 --------------------------------------------------------------------------------
 fetchmail-6.4.24 (released 2021-11-20, 30218 LoC):
 
-- 
cgit v1.2.3