We can't build with openssl sha1 by default

author Arran Cudbard-Bell <a.cudbardb@freeradius.org>

Tue, 3 Jun 2014 13:56:12 +0000 (14:56 +0100)

committer Arran Cudbard-Bell <a.cudbardb@freeradius.org>

Tue, 3 Jun 2014 13:58:05 +0000 (14:58 +0100)
author Arran Cudbard-Bell <a.cudbardb@freeradius.org>
Tue, 3 Jun 2014 13:56:12 +0000 (14:56 +0100)
committer Arran Cudbard-Bell <a.cudbardb@freeradius.org>
Tue, 3 Jun 2014 13:58:05 +0000 (14:58 +0100)
diff --git a/Make.inc.in b/Make.inc.in

index 4e0d117..854c485 100644 (file)
--- a/Make.inc.in
+++ b/Make.inc.in
@@ -124,8 +124,11 @@ HOSTINFO   = @HOSTINFO@
  #  If the system has OpenSSL, use it's version of MD4/MD5/SHA1, instead of
  #  using ours.
  #
+#  We don't use OpenSSL SHA1 by default because src/modules/rlm_eap/libeap/fips186prf.c
+#  needs access to the SHA internals.
+#
  ifeq "$(WITH_OPENSSL)" "yes"
-CFLAGS         +=  -DWITH_OPENSSL_MD4 -DWITH_OPENSSL_MD5 -DWITH_OPENSSL_SHA1
+CFLAGS         +=  -DWITH_OPENSSL_MD4 -DWITH_OPENSSL_MD5
  endif
  
  OPENSSL_LIBS   = @OPENSSL_LIBS@
author	Arran Cudbard-Bell <a.cudbardb@freeradius.org>
	Tue, 3 Jun 2014 13:56:12 +0000 (14:56 +0100)
committer	Arran Cudbard-Bell <a.cudbardb@freeradius.org>
	Tue, 3 Jun 2014 13:58:05 +0000 (14:58 +0100)