Bad OpenSSL headers OSX 10.8.4

Arran Cudbard-Bell a.cudbardb at freeradius.org
Sat Jun 8 23:22:49 CEST 2013


This is to preempt the complaints.

I just unpicked some of the OpenSSL tests in configure.in, and added a header/library version consistency check to fail on this early.

radiusd won't start unless libssl version matches the value it got from the headers during compilation, so it seems like a good idea to check this as part of the build process.

checking openssl/engine.h presence... yes
checking for openssl/engine.h... yes
checking for OpenSSL version >= 0.9.7... yes
checking OpenSSL library and header version consistency... library: 90818f header: 90812f... no
configure: error: in `/Users/arr2036/Documents/Repositories/freeradius-server-master':
configure: error: OpenSSL library version does not match header version
See `config.log' for more details

Apple broke OpenSSL in the latest software update (10.8.4) by updating the library version to 90818f but not updating the headers (leaving them at 90812f).

Given that it's the same version of openssl 0.9.8 (just different internal revisions) it's probably safe just to edit /usr/include/openssl/opensslv.h.

28  */
29 #define OPENSSL_VERSION_NUMBER  0x0090812fL
30 #ifdef OPENSSL_FIPS

Alternatively you can use something like homebrew to install a newer version, it also had the added bonus that Apple hasn't sprinkled DEPRECATED_IN_MAC_OS_X_VERSION_10_7_AND_LATER throughout the headers.

-Arran

Arran Cudbard-Bell <a.cudbardb at freeradius.org>
FreeRADIUS Development Team



More information about the Freeradius-Devel mailing list