From e1bb13c09f8d4cb8d1499fc9f51734729cdcdf2c Mon Sep 17 00:00:00 2001
From: Steve Holme <steve_holme@hotmail.com>
Date: Tue, 27 Jan 2015 11:55:19 +0000
Subject: [PATCH] openssl: Fixed Curl_ossl_cert_status_request() not returning
 FALSE

Modified the Curl_ossl_cert_status_request() function to return FALSE
when built with BoringSSL or when OpenSSL is missing the necessary TLS
extensions.
---
 lib/vtls/openssl.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/lib/vtls/openssl.c b/lib/vtls/openssl.c
index fb19ab1aef..e514e3270c 100644
--- a/lib/vtls/openssl.c
+++ b/lib/vtls/openssl.c
@@ -3202,6 +3202,10 @@ void Curl_ossl_md5sum(unsigned char *tmp, /* input */
 
 bool Curl_ossl_cert_status_request(void)
 {
+#if !defined(HAVE_BORINGSSL) && !defined(OPENSSL_NO_TLSEXT)
   return TRUE;
+#else
+  return FALSE;
+#endif
 }
 #endif /* USE_SSLEAY */
-- 
GitLab