… only condition where a problem actually happened.
…eout on /preauth calls. Failed calls are retried 2 additional times.
…ion, to enforce proper CA pinning on OS X
When SHA2 was originally added to OpenSSL it only loaded if OpenSSL_add_all_algorithms() was called, not by SSL_library_init(). This call ensures any OpenSSL version with SHA2 available will be able to check newfanged server certificates. Removed OpenSSL_add_all_algorithms because it's redundant to SSL_library_init().
This rewrites _BIO_wait inside of https.c so that it uses poll instead of select. When running libduo on a machines with a ton of open file descriptors, checking a token would cause the process to crash if the fd number libduo chose for https was > the max select fd number the host kernel was compiled for. From what I've seen the kernel is default complied with a max fd number limit of 1024 for select. Switching this implementation to poll gets rid of this arbitrary limit and libduo no longer crashes when checking a token.
Committer: James Thomas <firstname.lastname@example.org> modified: lib/duo.c
The RPMs for different distro versions will now have different filenames. This will have no effect if redhat-rpm-config is not installed.
You have the “login_duo: error while loading shared libraries” troubleshooting section on https://www.duosecurity.com/docs/duounix-troubleshooting, but I thought you should add this step to the README so that people don't get stuck.