generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Don't disable TLS v1.2 by default any more.

Browse Source
This commit is contained in:
Dr. Stephen Henson
2011-10-09 23:28:25 +00:00
parent 6b00cd746a
commit 6bd173fced
3 changed files with 0 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
apps/s_server.c
View File

@@ -1463,9 +1463,6 @@ bad:
SSL_CTX_set_quiet_shutdown(ctx,1);
if (bugs) SSL_CTX_set_options(ctx,SSL_OP_ALL);
if (hack) SSL_CTX_set_options(ctx,SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG);
/* HACK while TLS v1.2 is disabled by default */
if (!(off & SSL_OP_NO_TLSv1_2))
SSL_CTX_clear_options(ctx, SSL_OP_NO_TLSv1_2);
SSL_CTX_set_options(ctx,off);
/* DTLS: partial reads end up discarding unread UDP bytes :-(
* Setting read ahead solves this problem.