]> git.ipfire.org Git - thirdparty/freeradius-server.git/commitdiff
projects / thirdparty / freeradius-server.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 27c433d)
OpenSSL >= 3.0 has API/ABI compatibility within major version numbers
authorNick Porter <nick@portercomputing.co.uk>
Tue, 3 Dec 2024 18:12:57 +0000 (18:12 +0000)
committerNick Porter <nick@portercomputing.co.uk>
Tue, 3 Dec 2024 18:15:28 +0000 (18:15 +0000)
So differing minor numbers are not an issue.

src/lib/tls/version.c patch | blob | blame | history

diff --git a/src/lib/tls/version.c b/src/lib/tls/version.c
index 135d0f83c8e2bcbfa7a9de58710e0704050708a4..98cbf2f81813db081bae5b306e7b063cc6f1bd4f 100644 (file)
--- a/src/lib/tls/version.c
+++ b/src/lib/tls/version.c
@@ -53,15 +53,15 @@ int fr_openssl_version_consistent(void)
 
        ssl_linked = OpenSSL_version_num();
 
+
        /*
-        *      Major and minor versions mismatch, that's bad.
+        *      Major mismatch, that's bad.
         *
-        *      We still allow mismatches between patch versions
-        *      as they should be ABI compatible.
+        *      For OpenSSL 3, the minor versions are API/ABI compatible.
         *
-        *      This should work for >= 1.1.0 including 3.0.0
+        *      https://openssl-library.org/policies/releasestrat/index.html
         */
-       if ((ssl_linked & 0xfff00000) != (ssl_built & 0xfff00000)) {
+       if ((ssl_linked & 0xff000000) != (ssl_built & 0xff000000)) {
                ERROR("libssl version mismatch.  built: %lx linked: %lx",
                      (unsigned long) ssl_built,
                      (unsigned long) ssl_linked);
Mirror of https://github.com/FreeRADIUS/freeradius-server.git