Don't disable TLS v1.2 by default any more.

author: Dr. Stephen Henson <steve@openssl.org> 2011-10-09 23:28:25 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2011-10-09 23:28:25 +0000
commit: 6bd173fced6935db65756ecd0678e8666c53284e (patch)
tree: 1192e85de74ab1ea4314b41f49f9dbdea901335d /apps/s_server.c
parent: 6b00cd746afd7758ec1873a8be6a3a9f12c5b482 (diff)
1 files changed, 0 insertions, 3 deletions
diff --git a/apps/s_server.c b/apps/s_server.c
index 71c92e6ca4..0137b31cd1 100644
--- a/apps/s_server.c
+++ b/apps/s_server.c
@@ -1463,9 +1463,6 @@ bad:
 	SSL_CTX_set_quiet_shutdown(ctx,1);
 	if (bugs) SSL_CTX_set_options(ctx,SSL_OP_ALL);
 	if (hack) SSL_CTX_set_options(ctx,SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG);
-	/* HACK while TLS v1.2 is disabled by default */
-	if (!(off & SSL_OP_NO_TLSv1_2))
-		SSL_CTX_clear_options(ctx, SSL_OP_NO_TLSv1_2);
 	SSL_CTX_set_options(ctx,off);
 	/* DTLS: partial reads end up discarding unread UDP bytes :-( 
 	 * Setting read ahead solves this problem.
author	Dr. Stephen Henson <steve@openssl.org>	2011-10-09 23:28:25 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2011-10-09 23:28:25 +0000
commit	6bd173fced6935db65756ecd0678e8666c53284e (patch)
tree	1192e85de74ab1ea4314b41f49f9dbdea901335d /apps/s_server.c
parent	6b00cd746afd7758ec1873a8be6a3a9f12c5b482 (diff)