Since OpenSSL 1.1.0, the proper way to configure supported protocol versions is via setter functions - use of SSL_CTX_set_options to disable particular protocols is now discouraged. The new API is also necessary for applications that for some reason need to override protocols being disabled in global OpenSSL configuration.
Since OpenSSL 1.1.0, the proper way to configure supported protocol versions is via setter functions - use of
SSL_CTX_set_optionsto disable particular protocols is now discouraged. The new API is also necessary for applications that for some reason need to override protocols being disabled in global OpenSSL configuration.https://www.openssl.org/docs/man1.1.0/man3/SSL_CTX_set_min_proto_version.html