--- httpd-2.4.37/modules/ssl/ssl_engine_init.c.orig	2018-11-05 15:07:09.787065100 +0100
+++ httpd-2.4.37/modules/ssl/ssl_engine_init.c	2018-11-05 15:08:01.477030038 +0100
@@ -761,7 +761,7 @@
         SSL_CTX_set_mode(ctx, SSL_MODE_RELEASE_BUFFERS);
 #endif
 
-#if OPENSSL_VERSION_NUMBER >= 0x1010100fL
+#if OPENSSL_VERSION_NUMBER >= 0x1010100fL && !defined(LIBRESSL_VERSION_NUMBER)
     /* For OpenSSL >=1.1.1, disable auto-retry mode so it's possible
      * to consume handshake records without blocking for app-data.
      * https://github.com/openssl/openssl/issues/7178 */
@@ -1492,7 +1492,7 @@
     X509_STORE_CTX *sctx;
     X509_STORE *store = SSL_CTX_get_cert_store(mctx->ssl_ctx);
 
-#if OPENSSL_VERSION_NUMBER >= 0x1010100fL
+#if OPENSSL_VERSION_NUMBER >= 0x1010100fL && !defined(LIBRESSL_VERSION_NUMBER)
     /* For OpenSSL >=1.1.1, turn on client cert support which is
      * otherwise turned off by default (by design).
      * https://github.com/openssl/openssl/issues/6933 */