# include <systemd/sd-daemon.h>
#endif
-#if defined(HAVE_OPENSSL_CRYPTO_H) && OPENSSL_VERSION_NUMBER >= 0x30000000L
+#if defined(WITH_TLS) && OPENSSL_VERSION_NUMBER >= 0x30000000L
# include <openssl/provider.h>
#endif
if (rad_check_lib_magic(RADIUSD_MAGIC_NUMBER) < 0) EXIT_WITH_FAILURE;
-#ifdef HAVE_OPENSSL_CRYPTO_H
+#ifdef WITH_TLS
/*
* Mismatch between build time OpenSSL and linked SSL, better to die
* here than segfault later.
EXIT_WITH_FAILURE;
}
-#ifdef HAVE_OPENSSL_CRYPTO_H
+#ifdef WITH_TLS
if (fr_tls_dict_init() < 0) {
fr_perror("%s", program);
EXIT_WITH_FAILURE;
/*
* Check for vulnerabilities in the version of libssl were linked against.
*/
-#if defined(HAVE_OPENSSL_CRYPTO_H) && defined(ENABLE_OPENSSL_VERSION_CHECK)
+#if defined(WITH_TLS) && defined(ENABLE_OPENSSL_VERSION_CHECK)
if (fr_openssl_version_check(config->allow_vulnerable_openssl) < 0) EXIT_WITH_FAILURE;
#endif
-#ifdef HAVE_OPENSSL_CRYPTO_H
+#ifdef WITH_TLS
/*
* Toggle FIPS mode
*/
*/
unlang_free_global();
-#ifdef HAVE_OPENSSL_CRYPTO_H
+#ifdef WITH_TLS
fr_openssl_free(); /* Cleanup any memory alloced by OpenSSL and placed into globals */
#endif
#include <freeradius-devel/tls/openssl_user_macros.h>
-#ifdef HAVE_OPENSSL_CRYPTO_H
+#ifdef WITH_TLS
# include <freeradius-devel/tls/openssl_user_macros.h>
# include <openssl/crypto.h>
# include <openssl/opensslv.h>
{
return "not linked";
}
-#endif /* ifdef HAVE_OPENSSL_CRYPTO_H */
+#endif /* ifdef WITH_TLS */
/** Check if the application linking to the library has the correct magic number
*
{ FR_CONF_OFFSET("stats_interval", FR_TYPE_TIME_DELTA | FR_TYPE_HIDDEN, main_config_t, stats_interval), },
-#ifdef HAVE_OPENSSL_CRYPTO_H
+#ifdef WITH_TLS
{ FR_CONF_OFFSET("openssl_async_pool_init", FR_TYPE_SIZE, main_config_t, openssl_async_pool_init), .dflt = "64" },
{ FR_CONF_OFFSET("openssl_async_pool_max", FR_TYPE_SIZE, main_config_t, openssl_async_pool_max), .dflt = "1024" },
#endif
{ FR_CONF_OFFSET("allow_vulnerable_openssl", FR_TYPE_STRING, main_config_t, allow_vulnerable_openssl), .dflt = "no" },
#endif
-#ifdef HAVE_OPENSSL_CRYPTO_H
+#ifdef WITH_TLS
{ FR_CONF_OFFSET_IS_SET("openssl_fips_mode", FR_TYPE_BOOL, main_config_t, openssl_fips_mode), .dflt = "no" },
#endif
char const *allow_vulnerable_openssl; //!< The CVE number of the last security issue acknowledged.
#endif
-#ifdef HAVE_OPENSSL_CRYPTO_H
+#ifdef WITH_TLS
bool openssl_fips_mode; //!< Whether OpenSSL fips mode is enabled or disabled.
bool openssl_fips_mode_is_set; //!< Whether the user specified a value.
#include "auth_wbclient.h"
#endif
-#ifdef HAVE_OPENSSL_CRYPTO_H
+#ifdef WITH_TLS
USES_APPLE_DEPRECATED_API /* OpenSSL API has been deprecated by Apple */
# include <freeradius-devel/tls/openssl_user_macros.h>
# include <openssl/rc4.h>
static int CC_HINT(nonnull (1, 2, 4, 5)) do_mschap_cpw(rlm_mschap_t const *inst,
request_t *request,
-#ifdef HAVE_OPENSSL_CRYPTO_H
+#ifdef WITH_TLS
fr_pair_t *nt_password,
#else
UNUSED fr_pair_t *nt_password,
*
*/
} else if (inst->local_cpw) {
-#ifdef HAVE_OPENSSL_CRYPTO_H
+#ifdef WITH_TLS
fr_pair_t *new_pass, *new_hash;
uint8_t *p, *q;
char *x;
static int mod_load(void)
{
-#if defined(HAVE_OPENSSL_CRYPTO_H) && (defined(HAVE_PQINITOPENSSL) || defined(HAVE_PQINITSSL))
+#if defined(WITH_TLS) && (defined(HAVE_PQINITOPENSSL) || defined(HAVE_PQINITSSL))
# ifdef HAVE_PQINITOPENSSL
PQinitOpenSSL(0, 0);
# else
projects / thirdparty / freeradius-server.git / commitdiff
