Log a notice if we're running with OpenSSL before 1.0.0.

These versions have some dubious, slow crypto implementations; 1.0.0 is a great improvement, and at this point is pretty mature.
author: Nick Mathewson <nickm@torproject.org> 2012-09-12 19:31:24 -0400
committer: Nick Mathewson <nickm@torproject.org> 2012-09-12 19:32:24 -0400
commit: be68c1fb43a34c61c7a589faec1b3cbaf4ced07f (patch)
tree: 655b93a907be48edc625e1a3e64fda74a6fa4416 /src/common/crypto.c
parent: feabf4148fc00a8535714ff72d9caa8303a73eaf (diff)
download: tor-be68c1fb43a34c61c7a589faec1b3cbaf4ced07f.tar.gz
tor-be68c1fb43a34c61c7a589faec1b3cbaf4ced07f.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/src/common/crypto.c b/src/common/crypto.c
index 6c6bf14893..979ff3cfa6 100644
--- a/src/common/crypto.c
+++ b/src/common/crypto.c
@@ -243,6 +243,11 @@ crypto_global_init(int useAccel, const char *accelName, const char *accelDir)
                SSLeay(), SSLeay_version(SSLEAY_VERSION));
     }
 
+    if (SSLeay() < OPENSSL_V_SERIES(1,0,0)) {
+      log_notice(LD_CRYPTO, "Your OpenSSL version seems to be %s. We "
+                 "recommend 1.0.0 or later.", crypto_openssl_get_version_str());
+    }
+
     if (useAccel > 0) {
 #ifdef DISABLE_ENGINES
       (void)accelName;
author	Nick Mathewson <nickm@torproject.org>	2012-09-12 19:31:24 -0400
committer	Nick Mathewson <nickm@torproject.org>	2012-09-12 19:32:24 -0400
commit	be68c1fb43a34c61c7a589faec1b3cbaf4ced07f (patch)
tree	655b93a907be48edc625e1a3e64fda74a6fa4416 /src/common/crypto.c
parent	feabf4148fc00a8535714ff72d9caa8303a73eaf (diff)
download	tor-be68c1fb43a34c61c7a589faec1b3cbaf4ced07f.tar.gz tor-be68c1fb43a34c61c7a589faec1b3cbaf4ced07f.zip