res_rtp_asterisk: Use latest DTLS version available by underlying platform.

Do not use DTLSv1_method() but DTLS_method() when available in OpenSSL of the underlying platform. This change enables DTLS 1.2 since OpenSSL 1.0.2, for WebRTC (DTLS-SRTP via SIP-over-WebSockets). This change enables AEAD-based cipher-suites. ASTERISK-26130 #close Change-Id: I41f24448d6d2953e8bdb97c9f4a6bc8a8f055fd0
author: Alexander Traud <pabstraud@compuserve.com> 2016-06-21 14:05:30 +0200
committer: Richard Mudgett <rmudgett@digium.com> 2016-06-21 13:23:41 -0500
commit: 6eb0354f2d0a7845ee3f302a54a84c39f10be620 (patch)
tree: d17f9743086f35deca005a48135335ff76fbd5d7 /res/res_rtp_asterisk.c
parent: bbaa9c81396083e713c6c1b521743e6ad9a947ba (diff)
1 files changed, 6 insertions, 1 deletions
diff --git a/res/res_rtp_asterisk.c b/res/res_rtp_asterisk.c
index 9e3ff757c..1bf16941d 100644
--- a/res/res_rtp_asterisk.c
+++ b/res/res_rtp_asterisk.c
@@ -1357,7 +1357,12 @@ static int ast_rtp_dtls_set_configuration(struct ast_rtp_instance *instance, con
 		return 0;
 	}
 
-	if (!(rtp->ssl_ctx = SSL_CTX_new(DTLSv1_method()))) {
+#if OPENSSL_VERSION_NUMBER < 0x10002000L
+	rtp->ssl_ctx = SSL_CTX_new(DTLSv1_method());
+#else
+	rtp->ssl_ctx = SSL_CTX_new(DTLS_method());
+#endif
+	if (!rtp->ssl_ctx) {
 		return -1;
 	}
author	Alexander Traud <pabstraud@compuserve.com>	2016-06-21 14:05:30 +0200
committer	Richard Mudgett <rmudgett@digium.com>	2016-06-21 13:23:41 -0500
commit	6eb0354f2d0a7845ee3f302a54a84c39f10be620 (patch)
tree	d17f9743086f35deca005a48135335ff76fbd5d7 /res/res_rtp_asterisk.c
parent	bbaa9c81396083e713c6c1b521743e6ad9a947ba (diff)