[pjsip] Use of SSLv2, v3 and v23

Saúl Ibarra Corretgé saul at ag-projects.com
Thu Jun 23 03:03:26 CDT 2011


Hi again :-)

On Jun 23, 2011, at 9:37 AM, Saúl Ibarra Corretgé wrote:

> Hi,
> 
> While trying to compile PJSIP on Debian testing I got build errors because OpenSSL in Debian (>= 1.0.0) is no longer built with such symbols (SSLv2, SSLv3 and SSLv23).
> 
> Is there a use case / specification where any of those methods is used, or is TLv1 the only one supposed to be used? Either way, it would be nice if the fact that they are not available could be detected and ifdef'ed out, leaving TLSv1 as the only option.
> 
> Unfortunately I'm not very much into OpenSSL so I can't provide a patch for this :-S I locally commented all usages of those SSL methods and everything continues to work :-)
> 

I was curious so I checked a bit more and I found that only SSLv2 is the problem, and it can be checked with OPENSSL_NO_SSL2. The attached patch fixes this, applies to both 1.x and 2.0-dev branches.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: openssl_no_ssl2.patch
Type: application/octet-stream
Size: 998 bytes
Desc: not available
URL: <http://lists.pjsip.org/pipermail/pjsip_lists.pjsip.org/attachments/20110623/23de0ab9/attachment.patch>
-------------- next part --------------



--
Saúl Ibarra Corretgé
AG Projects





More information about the pjsip mailing list