net/freeradius2/files/patch-src__main__version.c

   1 --- src/main/version.c.orig     2014-11-18 19:56:52 UTC
   2 +++ src/main/version.c
   3 @@ -66,8 +66,7 @@ int ssl_check_version(int allow_vulnerab
   4         mismatch:
   5                 radlog(L_ERR, "libssl version mismatch.  built: %lx linked: %lx",
   6                        (unsigned long) ssl_built, (unsigned long) ssl_linked);
   7 -
   8 -               return -1;
   9 +               return 0;
  10         }
  11
  12         /*
  13 @@ -84,18 +83,6 @@ int ssl_check_version(int allow_vulnerab
  14          */
  15         } else if ((ssl_built & 0xffffff) != (ssl_linked & 0xffffff)) goto mismatch;
  16
  17 -       if (!allow_vulnerable) {
  18 -               /* Check for bad versions */
  19 -               /* 1.0.1 - 1.0.1f CVE-2014-0160 http://heartbleed.com */
  20 -               if ((ssl_linked >= 0x010001000) && (ssl_linked < 0x010001070)) {
  21 -                       radlog(L_ERR, "Refusing to start with libssl version %s (in range 1.0.1 - 1.0.1f).  "
  22 -                             "Security advisory CVE-2014-0160 (Heartbleed)", ssl_version());
  23 -                       radlog(L_ERR, "For more information see http://heartbleed.com");
  24 -
  25 -                       return -1;
  26 -               }
  27 -       }
  28 -
  29         return 0;
  30  }
  31