Hi Saul, Just created ticket #1321 and committed your patch (only the OPENSSL_NO_SSL2 check parts) into SVN. I took liberty to strip the TLSv1 and SSLv23 swap in init_openssl() patch, as the SSLv23 there is just for listing the available ciphers. Just FYI, this issue doesn't seem to occur on some OpenSSL (binary) distributions, e.g: 1.0.0d for win32 from http://www.openssl.org/related/binaries.html. Thanks and regards, nanang On Thu, Jun 23, 2011 at 3:03 PM, Sa?l Ibarra Corretg? <saul at ag-projects.com> wrote: > Hi again :-) > > On Jun 23, 2011, at 9:37 AM, Sa?l Ibarra Corretg? wrote: > >> Hi, >> >> While trying to compile PJSIP on Debian testing I got build errors because OpenSSL in Debian (>= 1.0.0) is no longer built with such symbols (SSLv2, SSLv3 and SSLv23). >> >> Is there a use case / specification where any of those methods is used, or is TLv1 the only one supposed to be used? Either way, it would be nice if the fact that they are not available could be detected and ifdef'ed out, leaving TLSv1 as the only option. >> >> Unfortunately I'm not very much into OpenSSL so I can't provide a patch for this :-S I locally commented all usages of those SSL methods and everything continues to work :-) >> > > I was curious so I checked a bit more and I found that only SSLv2 is the problem, and it can be checked with OPENSSL_NO_SSL2. The attached patch fixes this, applies to both 1.x and 2.0-dev branches. > > > > > -- > Sa?l Ibarra Corretg? > AG Projects > > > > > _______________________________________________ > Visit our blog: http://blog.pjsip.org > > pjsip mailing list > pjsip at lists.pjsip.org > http://lists.pjsip.org/mailman/listinfo/pjsip_lists.pjsip.org > >
