From: Alan T. DeKok <aland@freeradius.org>
Date: Thu, 22 Sep 2016 15:59:08 +0000 (-0400)
Subject: Fix tls_global_version_check() function and message
X-Git-Tag: release_3_0_12~36
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=0ff7fdd1c09dd86170d4ee695665642de7a5c6f6;p=thirdparty%2Ffreeradius-server.git

Fix tls_global_version_check() function and message

there is now more than one vulnerability in OpenSSL.
---

diff --git a/src/main/tls.c b/src/main/tls.c
index 6919a7cc022..33ce6834490 100644
--- a/src/main/tls.c
+++ b/src/main/tls.c
@@ -2456,15 +2456,14 @@ int tls_global_version_check(char const *acknowledged)
 			ERROR("Security advisory %s (%s)", defect->id, defect->name);
 			ERROR("%s", defect->comment);
 
+			INFO("Once you have verified libssl has been correctly patched, "
+			     "set security.allow_vulnerable_openssl = '%s'", defect->id);
+
 			bad = true;
 		}
 	}
 
-	if (bad) {
-		INFO("Once you have verified libssl has been correctly patched, "
-		     "set security.allow_vulnerable_openssl = '%s'", libssl_defects[0].id);
-		return -1;
-	}
+	if (bad) return -1;
 
 	return 0;
 }