diff options
author | Dr. Stephen Henson <steve@openssl.org> | 2015-01-02 22:40:41 +0000 |
---|---|---|
committer | Dr. Stephen Henson <steve@openssl.org> | 2015-01-02 22:56:54 +0000 |
commit | 95275599399e277e71d064790a1f828a99fc661a (patch) | |
tree | ae11c50ee76d9d828d0fd8de02f48cba631a6fd1 /ssl | |
parent | 63eab8a620944a990ab3985620966ccd9f48d681 (diff) | |
download | openssl-95275599399e277e71d064790a1f828a99fc661a.tar.gz |
Remove SGC restart flag.
Reviewed-by: Matt Caswell <matt@openssl.org>
Diffstat (limited to 'ssl')
-rw-r--r-- | ssl/ssl3.h | 10 |
1 files changed, 0 insertions, 10 deletions
diff --git a/ssl/ssl3.h b/ssl/ssl3.h index efff233fbd..24e6faa69f 100644 --- a/ssl/ssl3.h +++ b/ssl/ssl3.h @@ -439,16 +439,6 @@ typedef struct ssl3_buffer_st */ #define SSL3_FLAGS_CCS_OK 0x0080 -/* SSL3_FLAGS_SGC_RESTART_DONE is set when we - * restart a handshake because of MS SGC and so prevents us - * from restarting the handshake in a loop. It's reset on a - * renegotiation, so effectively limits the client to one restart - * per negotiation. This limits the possibility of a DDoS - * attack where the client handshakes in a loop using SGC to - * restart. Servers which permit renegotiation can still be - * effected, but we can't prevent that. - */ -#define SSL3_FLAGS_SGC_RESTART_DONE 0x0040 /* Set if we encrypt then mac instead of usual mac then encrypt */ #define TLS1_FLAGS_ENCRYPT_THEN_MAC 0x0100 |