From: William Lallemand <wlallemand@haproxy.org>
Date: Mon, 17 Apr 2023 12:32:25 +0000 (+0200)
Subject: MINOR: ssl: remove OpenSSL 1.0.2 mention into certificate loading error
X-Git-Tag: v2.8-dev8~129
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=a21ca74e83a6459762c2f3e4b134c4297689cbe9;p=thirdparty%2Fhaproxy.git

MINOR: ssl: remove OpenSSL 1.0.2 mention into certificate loading error

Remove the mention to OpenSSL 1.0.2 in the certificate chain loading
error, which is not relevant.

Could be backported in 2.7.
---

diff --git a/src/ssl_sock.c b/src/ssl_sock.c
index 740fc0aebe..cb544d4e4c 100644
--- a/src/ssl_sock.c
+++ b/src/ssl_sock.c
@@ -3389,7 +3389,7 @@ static int ssl_sock_load_cert_chain(const char *path, const struct ckch_data *da
 #ifdef SSL_CTX_set1_chain
 	if (!SSL_CTX_set1_chain(ctx, *find_chain)) {
 		ret = ERR_get_error();
-		memprintf(err, "%sunable to load chain certificate into SSL Context '%s': %s. Make sure you are linking against Openssl >= 1.0.2.\n",
+		memprintf(err, "%sunable to load chain certificate into SSL Context '%s': %s.\n",
 			  err && *err ? *err : "", path,  ERR_reason_error_string(ret));
 		errcode |= ERR_ALERT | ERR_FATAL;
 		goto end;