diff options
author | Philip Hands <phil@hands.com> | 2014-02-09 16:10:14 +0000 |
---|---|---|
committer | Colin Watson <cjwatson@debian.org> | 2014-03-20 00:32:30 +0000 |
commit | 20690ea4b33e8ff81fea287492270df3a7029777 (patch) | |
tree | 4fd2dbec1eb3cecda0dac35c5db727d839edf762 /entropy.c | |
parent | d53483ab71ac2a9195c8f171da5a5dcf54ec16ec (diff) |
Disable OpenSSL version check
OpenSSL's SONAME is sufficient nowadays.
Author: Colin Watson <cjwatson@debian.org>
Bug-Debian: http://bugs.debian.org/93581
Bug-Debian: http://bugs.debian.org/664383
Forwarded: not-needed
Last-Update: 2013-12-23
Patch-Name: no-openssl-version-check.patch
Diffstat (limited to 'entropy.c')
-rw-r--r-- | entropy.c | 12 |
1 files changed, 0 insertions, 12 deletions
@@ -209,18 +209,6 @@ seed_rng(void) | |||
209 | #ifndef OPENSSL_PRNG_ONLY | 209 | #ifndef OPENSSL_PRNG_ONLY |
210 | unsigned char buf[RANDOM_SEED_SIZE]; | 210 | unsigned char buf[RANDOM_SEED_SIZE]; |
211 | #endif | 211 | #endif |
212 | /* | ||
213 | * OpenSSL version numbers: MNNFFPPS: major minor fix patch status | ||
214 | * We match major, minor, fix and status (not patch) for <1.0.0. | ||
215 | * After that, we acceptable compatible fix versions (so we | ||
216 | * allow 1.0.1 to work with 1.0.0). Going backwards is only allowed | ||
217 | * within a patch series. | ||
218 | */ | ||
219 | u_long version_mask = SSLeay() >= 0x1000000f ? ~0xffff0L : ~0xff0L; | ||
220 | if (((SSLeay() ^ OPENSSL_VERSION_NUMBER) & version_mask) || | ||
221 | (SSLeay() >> 12) < (OPENSSL_VERSION_NUMBER >> 12)) | ||
222 | fatal("OpenSSL version mismatch. Built against %lx, you " | ||
223 | "have %lx", (u_long)OPENSSL_VERSION_NUMBER, SSLeay()); | ||
224 | 212 | ||
225 | #ifndef OPENSSL_PRNG_ONLY | 213 | #ifndef OPENSSL_PRNG_ONLY |
226 | if (RAND_status() == 1) { | 214 | if (RAND_status() == 1) { |