diff options
author | Dr. Stephen Henson <steve@openssl.org> | 2010-02-16 14:19:42 +0000 |
---|---|---|
committer | Dr. Stephen Henson <steve@openssl.org> | 2010-02-16 14:19:42 +0000 |
commit | b50ef8b21668c8fbd83771808f2c102b966d3408 (patch) | |
tree | e200bfb77973804e66f47a84b7146edfa17bd32d /ssl/s23_clnt.c | |
parent | 1b690c1a8b75b3c160c30c81ef563d0a2a0f7a12 (diff) |
PR: 2171
Submitted by: Tomas Mraz <tmraz@redhat.com>
Since SSLv2 doesn't support renegotiation at all don't reject it if
legacy renegotiation isn't enabled.
Also can now use SSL2 compatible client hello because RFC5746 supports it.
Diffstat (limited to 'ssl/s23_clnt.c')
-rw-r--r-- | ssl/s23_clnt.c | 2 |
1 files changed, 0 insertions, 2 deletions
diff --git a/ssl/s23_clnt.c b/ssl/s23_clnt.c index 70425997df..de0238935a 100644 --- a/ssl/s23_clnt.c +++ b/ssl/s23_clnt.c @@ -235,8 +235,6 @@ static int ssl23_client_hello(SSL *s) ssl2_compat = 0; if (s->tlsext_status_type != -1) ssl2_compat = 0; - if (!(s->ctx->options & SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION)) - ssl2_compat = 0; } #endif |