search for: mnnffpps

...nly thing that part does is track whether the openssl in use is a dev, beta, or release. so if you install 1.0.2-beta1, then build openssh, then install 1.0.2 (the release), this check rejects the openssl version. this is documented in the openssl header: /* Numeric release version identifier: * MNNFFPPS: major minor fix patch status * The status nibble has one of the values 0 for development, 1 to e for betas * 1 to 14, and f for release. The patch level is exactly that. * For example: * 0.9.3-dev 0x00903000 * 0.9.3-beta1 0x00903001 ... simple patch to fix the openssh code: - u_l...

...patible as well. so 1.0.[01234...] should be acceptable. as such, the seed_rng() check in entropy.c needs updating. perhaps something like the (compile-only tested) attached patch. --- a/entropy.c +++ b/entropy.c @@ -211,9 +211,14 @@ seed_rng(void) #endif /* * OpenSSL version numbers: MNNFFPPS: major minor fix patch status - * We match major, minor, fix and status (not patch) + * We match major, minor, fix and status (not patch) for <1.0.0. + * After that, we acceptable compatible minor versions (so we + * allow 1.0.1 to work with 1.0.0). */ - if ((SSLeay() ^ OPENSS...