commit 730b00f42c206bd84664b577113aedc263016877
author Ed Tanous <etanous@nvidia.com> Wed Oct 22 14:58:21 2025 -0700
committer Ed Tanous <ed@tanous.net> Thu Oct 23 13:08:51 2025 -0700
tree 98daca41401ba5661a45b6d0ce7a5ad5954cc5df
parent 0cb2bf3d6d185aef3aaa5825e0f8d3ecfd072c71

Remove deprecated openssl call

Openssl docs show this as deprecated in OpenSSL 1.1.0, which came out in
2019. It is now just automatically set. OpenSSL =>1.0.2 is deprecated,
which would be the only OpenSSL to use this. OpenBMC is using 3.0.8
OpenSSL, so this can be removed.

[1] https://manpages.debian.org/testing/libssl-doc/SSL_CTX_set_ecdh_auto.3ssl.en.html

Change-Id: I0aab0b00e39dc5cbbf9c6facddf338bd99c4ae67
Signed-off-by: Ed Tanous <etanous@nvidia.com>

src/ssl_key_handler.cpp

diff --git a/src/ssl_key_handler.cpp b/src/ssl_key_handler.cpp
index af64957..77388ee 100644
--- a/src/ssl_key_handler.cpp
+++ b/src/ssl_key_handler.cpp
@@ -519,13 +519,6 @@
         }
     }
 
-    // Set up EC curves to auto (boost asio doesn't have a method for this)
-    // There is a pull request to add this.  Once this is included in an asio
-    // drop, use the right way
-    // http://stackoverflow.com/questions/18929049/boost-asio-with-ecdsa-certificate-issue
-    if (SSL_CTX_set_ecdh_auto(mSslContext.native_handle(), 1) != 1)
-    {}
-
     if (SSL_CTX_set_cipher_list(mSslContext.native_handle(),
                                 mozillaIntermediate) != 1)
     {