From df6578bb4df17210f792c3bc98a72bed473e7e11 Mon Sep 17 00:00:00 2001
From: Darren Tucker <dtucker@zip.com.au>
Date: Sat, 7 Nov 2009 16:03:14 +1100
Subject:  - (dtucker) [authfile.c] Fall back to 3DES for the encryption of
 private     keys when built with OpenSSL versions that don't do AES.

---
 authfile.c | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'authfile.c')

diff --git a/authfile.c b/authfile.c
index fc12c00c..3fbe11b0 100644
--- a/authfile.c
+++ b/authfile.c
@@ -187,7 +187,11 @@ key_save_private_pem(Key *key, const char *filename, const char *_passphrase,
 	int success = 0;
 	int len = strlen(_passphrase);
 	u_char *passphrase = (len > 0) ? (u_char *)_passphrase : NULL;
+#if (OPENSSL_VERSION_NUMBER < 0x00907000L)
+	const EVP_CIPHER *cipher = (len > 0) ? EVP_des_ede3_cbc() : NULL;
+#else
 	const EVP_CIPHER *cipher = (len > 0) ? EVP_aes_128_cbc() : NULL;
+#endif
 
 	if (len > 0 && len <= 4) {
 		error("passphrase too short: have %d bytes, need > 4", len);
-- 
cgit v1.2.3