Remove SSLv3 and handling of SSLv2 client hellos.

author: lloyd <[email protected]> 2015-01-11 03:12:54 +0000
committer: lloyd <[email protected]> 2015-01-11 03:12:54 +0000
commit: 53b1202b5a0597be40f40717ee4dc6213f1f0a0e (patch)
tree: 13e9091983a9999d8449d8e21548b40cfd4c1ac6 /src/lib/tls/msg_server_hello.cpp
parent: ac5aae3fa32b51ac38cbbeb0f09116c1f258b9e1 (diff)
1 files changed, 0 insertions, 8 deletions
diff --git a/src/lib/tls/msg_server_hello.cpp b/src/lib/tls/msg_server_hello.cpp
index a0fc008e8..73163a73b 100644
--- a/src/lib/tls/msg_server_hello.cpp
+++ b/src/lib/tls/msg_server_hello.cpp
@@ -35,10 +35,6 @@ Server_Hello::Server_Hello(Handshake_IO& io,
    m_ciphersuite(ciphersuite),
    m_comp_method(compression)
    {
-   /*
-   * Even a client that offered SSLv3 and sent the SCSV will get an
-   * extension back. This is probably the right thing to do.
-   */
    if(client_hello.secure_renegotiation())
       m_extensions.add(new Renegotiation_Extension(reneg_info));
 
@@ -94,10 +90,6 @@ Server_Hello::Server_Hello(Handshake_IO& io,
    m_ciphersuite(resumed_session.ciphersuite_code()),
    m_comp_method(resumed_session.compression_method())
    {
-   /*
-   * Even a client that offered SSLv3 and sent the SCSV will get an
-   * extension back. This is probably the right thing to do.
-   */
    if(client_hello.secure_renegotiation())
       m_extensions.add(new Renegotiation_Extension(reneg_info));
author	lloyd <[email protected]>	2015-01-11 03:12:54 +0000
committer	lloyd <[email protected]>	2015-01-11 03:12:54 +0000
commit	53b1202b5a0597be40f40717ee4dc6213f1f0a0e (patch)
tree	13e9091983a9999d8449d8e21548b40cfd4c1ac6 /src/lib/tls/msg_server_hello.cpp
parent	ac5aae3fa32b51ac38cbbeb0f09116c1f258b9e1 (diff)