Use of SSLv2, v3 and v23

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi again :-)

On Jun 23, 2011, at 9:37 AM, Sa?l Ibarra Corretg? wrote:

> Hi,
> 
> While trying to compile PJSIP on Debian testing I got build errors because OpenSSL in Debian (>= 1.0.0) is no longer built with such symbols (SSLv2, SSLv3 and SSLv23).
> 
> Is there a use case / specification where any of those methods is used, or is TLv1 the only one supposed to be used? Either way, it would be nice if the fact that they are not available could be detected and ifdef'ed out, leaving TLSv1 as the only option.
> 
> Unfortunately I'm not very much into OpenSSL so I can't provide a patch for this :-S I locally commented all usages of those SSL methods and everything continues to work :-)
> 

I was curious so I checked a bit more and I found that only SSLv2 is the problem, and it can be checked with OPENSSL_NO_SSL2. The attached patch fixes this, applies to both 1.x and 2.0-dev branches.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: openssl_no_ssl2.patch
Type: application/octet-stream
Size: 998 bytes
Desc: not available
URL: <http://lists.pjsip.org/pipermail/pjsip_lists.pjsip.org/attachments/20110623/23de0ab9/attachment.patch>
-------------- next part --------------



--
Sa?l Ibarra Corretg?
AG Projects





[Index of Archives]     [Asterisk Users]     [Asterisk App Development]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [Linux API]
  Powered by Linux