diff --git a/src/apps/relay/dtls_listener.c b/src/apps/relay/dtls_listener.c
index e790095..b646ccf 100644
--- a/src/apps/relay/dtls_listener.c
+++ b/src/apps/relay/dtls_listener.c
@@ -208,7 +208,11 @@ static int generate_cookie(SSL *ssl, unsigned char *cookie, unsigned int *cookie
   return 1;
 }
 
-static int verify_cookie(SSL *ssl, const unsigned char *cookie, unsigned int cookie_len)
+static int verify_cookie(SSL *ssl,
+#if OPENSSL_VERSION_NUMBER >= 0x10100000L
+		const
+#endif
+		unsigned char *cookie, unsigned int cookie_len)
 {
   unsigned int resultlength=0;
   unsigned char result[COOKIE_SECRET_LENGTH];
diff --git a/src/client/ns_turn_msg.c b/src/client/ns_turn_msg.c
index 079522b..1c71174 100644
--- a/src/client/ns_turn_msg.c
+++ b/src/client/ns_turn_msg.c
@@ -2537,8 +2537,8 @@ static int decode_oauth_token_gcm(const u08bits *server_name, const encoded_oaut
 		}
 
 #if OPENSSL_VERSION_NUMBER < 0x10100000L
-		EVP_CIPHER_CTX *ctxp = &ctx;
 		EVP_CIPHER_CTX ctx;
+		EVP_CIPHER_CTX *ctxp = &ctx;
 #else
 		EVP_CIPHER_CTX *ctxp = EVP_CIPHER_CTX_new();
 #endif