Subject: new openssl (OPENSSL_NO_DEPRECATED)
To: None <current-users@netbsd.org>
From: Geoff Wing <mason@primenet.com.au>
List: current-users
Date: 11/27/2005 01:40:59
Heyla,
is it deliberate that OPENSSL_NO_DEPRECATED is defined for the new openssl?
So we don't get a (major) version with both old and new functions and thus
we are expected to fix 3rd party products?
e.g. change DH_generate_parameters() calls to use DH_generate_parameters_ex()
This seems a bit strange to me unless the deprecated functions had major
security problems/deficiencies.
I came across a few of these rebuilding all my pkgsrc and some were failing
to build, e.g. news/inn, security/ssldump
Regards,
Geoff