[Libwebsockets] OpenSSL 1.1.0c

Joel Winarske joel.winarske at gmail.com
Tue Mar 21 20:04:39 CET 2017


My fix is to replace SSLv3_client_method() with TLS_client_method().

On Tue, Mar 21, 2017 at 11:23 AM, Joel Winarske <joel.winarske at gmail.com>
wrote:

> Hi Andy,
>
> When building with OpenSSL 1.1.0c I get deprecation error after I rebuild
> OpenSSL to enable SSLv3:
>
> error: ‘SSLv3_client_method’ is deprecated [-Werror=deprecated-
> declarations]
>   method = (SSL_METHOD *)SSLv3_client_method();
>
>
> In the docs it has:
>
> The SSLv2 and SSLv3 protocols are deprecated and should generally not be
> used. Applications should typically use SSL_CTX_set_options
> <https://www.openssl.org/docs/man1.0.2/ssl/SSL_CTX_set_options.html> in
> combination with the SSL_OP_NO_SSLv3 flag to disable negotiation of SSLv3
> via the above version-flexible SSL/TLS methods. The SSL_OP_NO_SSLv2 option
> is set by default, and would need to be cleared via SSL_CTX_clear_options
> <https://www.openssl.org/docs/man1.0.2/ssl/SSL_CTX_clear_options.html> in
> order to enable negotiation of SSLv2.
>
> Is this something you are planning to update?  I need this OpenSSL version
> for use with nghttp2.
>
>
> Thanks,
> Joel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://libwebsockets.org/pipermail/libwebsockets/attachments/20170321/ffb429b3/attachment-0002.html>


More information about the Libwebsockets mailing list