#endif

#endif

static const SSL_CIPHER *SSL_CIPHER_find(SSL *ssl, const unsigned char *ptr)

static const SSL_CIPHER *SSL_CIPHER_find(SSL *ssl, const unsigned char *ptr)

{

{

    return ssl->method->get_cipher_by_char(ptr);

    return ssl->method->get_cipher_by_char(ptr);

openssl-esp.c         |  5 ++++-

openssl-esp.c         |  5 ++++-

tests/bad_dtls_test.c | 10 ++++++++--

tests/bad_dtls_test.c | 10 ++++++++--

2 files changed, 12 insertions(+), 3 deletions(-)

2 files changed, 12 insertions(+), 3 deletions(-)

				    HMAC_CTX_cleanup(c);	\

				    HMAC_CTX_cleanup(c);	\

				    free(c); } while (0)

				    free(c); } while (0)

{

{

	HMAC_CTX *ret = malloc(sizeof(*ret));

	HMAC_CTX *ret = malloc(sizeof(*ret));

	if (ret)

	if (ret)

static EVP_MD_CTX *handshake_sha1;

static EVP_MD_CTX *handshake_sha1;

#if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER)

#if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER)

    HMAC_CTX *ret = malloc(sizeof(*ret));

    HMAC_CTX *ret = malloc(sizeof(*ret));

    HMAC_CTX_init(ret);

    HMAC_CTX_init(ret);

    return ret;

    return ret;

}

}

    HMAC_CTX_cleanup(ctx);

    HMAC_CTX_cleanup(ctx);

    free(ctx);

    free(ctx);

}

}

 error: 'DTLS1_2_VERSION' undeclared

 error: 'DTLS1_2_VERSION' undeclared

cstp.c         | 2 +-

cstp.c         | 2 +-

library.c      | 2 +-

library.c      | 2 +-

main.c         | 4 ++--

main.c         | 4 ++--

openssl-dtls.c | 2 +-

openssl-dtls.c | 2 +-

4 files changed, 5 insertions(+), 5 deletions(-)

4 files changed, 5 insertions(+), 5 deletions(-)

			       vpninfo->disable_ipv6 ? "IPv4" : "IPv6,IPv4");

			       vpninfo->disable_ipv6 ? "IPv4" : "IPv6,IPv4");

	if (!vpninfo->disable_ipv6)

	if (!vpninfo->disable_ipv6)

		buf_append(reqbuf, "X-CSTP-Full-IPv6-Capability: true\r\n");

		buf_append(reqbuf, "X-CSTP-Full-IPv6-Capability: true\r\n");

	if (vpninfo->dtls_state != DTLS_DISABLED) {

	if (vpninfo->dtls_state != DTLS_DISABLED) {

		/* The X-DTLS-Master-Secret is only used for the legacy protocol negotation

		/* The X-DTLS-Master-Secret is only used for the legacy protocol negotation

		 * which required the client to send explicitly the secret. In the PSK-NEGOTIATE

		 * which required the client to send explicitly the secret. In the PSK-NEGOTIATE

		.add_http_headers = cstp_common_headers,

		.add_http_headers = cstp_common_headers,

		.obtain_cookie = cstp_obtain_cookie,

		.obtain_cookie = cstp_obtain_cookie,

		.udp_protocol = "DTLS",

		.udp_protocol = "DTLS",

		.udp_setup = dtls_setup,

		.udp_setup = dtls_setup,

		.udp_mainloop = dtls_mainloop,

		.udp_mainloop = dtls_mainloop,

		.udp_close = dtls_close,

		.udp_close = dtls_close,

		sep = comma;

		sep = comma;

	}

	}

	printf("%sDTLS", sep);

	printf("%sDTLS", sep);

#endif

#endif

#ifdef HAVE_ESP

#ifdef HAVE_ESP

#endif

#endif

	printf("\n");

	printf("\n");

	printf(_("WARNING: This binary lacks DTLS and/or ESP support. Performance will be impaired.\n"));

	printf(_("WARNING: This binary lacks DTLS and/or ESP support. Performance will be impaired.\n"));

#endif

#endif

}

}

	int dtlsver = DTLS1_BAD_VER;

	int dtlsver = DTLS1_BAD_VER;

	const char *cipher = vpninfo->dtls_cipher;

	const char *cipher = vpninfo->dtls_cipher;

	/* These things should never happen unless they're supported */

	/* These things should never happen unless they're supported */

	if (vpninfo->cisco_dtls12) {

	if (vpninfo->cisco_dtls12) {

		dtlsver = DTLS1_2_VERSION;

		dtlsver = DTLS1_2_VERSION;