1 files changed, 41 insertions, 0 deletions
diff --git a/debian/patches/no-openssl-version-check.patch b/debian/patches/no-openssl-version-check.patch
new file mode 100644
index 000000000..67b24c80c
--- /dev/null
+++ b/debian/patches/no-openssl-version-check.patch
@@ -0,0 +1,41 @@
+From 20690ea4b33e8ff81fea287492270df3a7029777 Mon Sep 17 00:00:00 2001
+From: Philip Hands <phil@hands.com>
+Date: Sun, 9 Feb 2014 16:10:14 +0000
+Subject: Disable OpenSSL version check
+OpenSSL's SONAME is sufficient nowadays.
+Author: Colin Watson <cjwatson@debian.org>
+Bug-Debian: http://bugs.debian.org/93581
+Bug-Debian: http://bugs.debian.org/664383
+Forwarded: not-needed
+Last-Update: 2013-12-23
+Patch-Name: no-openssl-version-check.patch
+---
+ entropy.c |   12 ------------
+ 1 file changed, 12 deletions(-)
+diff --git a/entropy.c b/entropy.c
+index 2d483b3..2aee2d9 100644
+--- a/entropy.c
+++ b/entropy.c
+@@ -209,18 +209,6 @@ seed_rng(void)
+ #ifndef OPENSSL_PRNG_ONLY
+        unsigned char buf[RANDOM_SEED_SIZE];
+ #endif
+-       /*
+-        * OpenSSL version numbers: MNNFFPPS: major minor fix patch status
+-        * We match major, minor, fix and status (not patch) for <1.0.0.
+-        * After that, we acceptable compatible fix versions (so we
+-        * allow 1.0.1 to work with 1.0.0). Going backwards is only allowed
+-        * within a patch series.
+-        */
+-       u_long version_mask = SSLeay() >= 0x1000000f ?  ~0xffff0L : ~0xff0L;
+-       if (((SSLeay() ^ OPENSSL_VERSION_NUMBER) & version_mask) ||
+-           (SSLeay() >> 12) < (OPENSSL_VERSION_NUMBER >> 12))
+-               fatal("OpenSSL version mismatch. Built against %lx, you "
+-                   "have %lx", (u_long)OPENSSL_VERSION_NUMBER, SSLeay());
+ 
+ #ifndef OPENSSL_PRNG_ONLY
+        if (RAND_status() == 1) {

diff --git a/debian/patches/no-openssl-version-check.patch b/debian/patches/no-openssl-version-check.patch new file mode 100644 index 000000000..67b24c80c --- /dev/null +++ b/debian/patches/no-openssl-version-check.patch
@@ -0,0 +1,41 @@
	1	From 20690ea4b33e8ff81fea287492270df3a7029777 Mon Sep 17 00:00:00 2001
	2	From: Philip Hands <phil@hands.com>
	3	Date: Sun, 9 Feb 2014 16:10:14 +0000
	4	Subject: Disable OpenSSL version check
	5
	6	OpenSSL's SONAME is sufficient nowadays.
	7
	8	Author: Colin Watson <cjwatson@debian.org>
	9	Bug-Debian: http://bugs.debian.org/93581
	10	Bug-Debian: http://bugs.debian.org/664383
	11	Forwarded: not-needed
	12	Last-Update: 2013-12-23
	13
	14	Patch-Name: no-openssl-version-check.patch
	15	---
	16	entropy.c \| 12 ------------
	17	1 file changed, 12 deletions(-)
	18
	19	diff --git a/entropy.c b/entropy.c
	20	index 2d483b3..2aee2d9 100644
	21	--- a/entropy.c
	22	+++ b/entropy.c
	23	@@ -209,18 +209,6 @@ seed_rng(void)
	24	#ifndef OPENSSL_PRNG_ONLY
	25	unsigned char buf[RANDOM_SEED_SIZE];
	26	#endif
	27	- /*
	28	- * OpenSSL version numbers: MNNFFPPS: major minor fix patch status
	29	- * We match major, minor, fix and status (not patch) for <1.0.0.
	30	- * After that, we acceptable compatible fix versions (so we
	31	- * allow 1.0.1 to work with 1.0.0). Going backwards is only allowed
	32	- * within a patch series.
	33	- */
	34	- u_long version_mask = SSLeay() >= 0x1000000f ? ~0xffff0L : ~0xff0L;
	35	- if (((SSLeay() ^ OPENSSL_VERSION_NUMBER) & version_mask) \|\|
	36	- (SSLeay() >> 12) < (OPENSSL_VERSION_NUMBER >> 12))
	37	- fatal("OpenSSL version mismatch. Built against %lx, you "
	38	- "have %lx", (u_long)OPENSSL_VERSION_NUMBER, SSLeay());
	39
	40	#ifndef OPENSSL_PRNG_ONLY
	41	if (RAND_status() == 1) {