aboutsummaryrefslogtreecommitdiffstats
path: root/src/lib/tls/tls_policy.cpp
diff options
context:
space:
mode:
authorlloyd <[email protected]>2014-11-15 23:39:24 +0000
committerlloyd <[email protected]>2014-11-15 23:39:24 +0000
commit060df7809a64d1b589554169443c48bc428ca726 (patch)
tree74ca96453ddb4bd3a8abca43fb81d67859c9f6f8 /src/lib/tls/tls_policy.cpp
parent9751f1a9084aadbfebbc7f7e67fcd5806ead6492 (diff)
A TLS Server can now process either TLS or DTLS but not either,
with the setting set in the constructor. This prevents various surprising things from happening to applications and simplifies record processing.
Diffstat (limited to 'src/lib/tls/tls_policy.cpp')
-rw-r--r--src/lib/tls/tls_policy.cpp4
1 files changed, 1 insertions, 3 deletions
diff --git a/src/lib/tls/tls_policy.cpp b/src/lib/tls/tls_policy.cpp
index c4867d81a..0f2190562 100644
--- a/src/lib/tls/tls_policy.cpp
+++ b/src/lib/tls/tls_policy.cpp
@@ -146,10 +146,8 @@ bool Policy::send_fallback_scsv(Protocol_Version version) const
bool Policy::acceptable_protocol_version(Protocol_Version version) const
{
- // By default require TLS to minimize surprise
if(version.is_datagram_protocol())
- return false;
-
+ return (version >= Protocol_Version::DTLS_V12);
return (version >= Protocol_Version::TLS_V10);
}