From 060df7809a64d1b589554169443c48bc428ca726 Mon Sep 17 00:00:00 2001 From: lloyd Date: Sat, 15 Nov 2014 23:39:24 +0000 Subject: A TLS Server can now process either TLS or DTLS but not either, with the setting set in the constructor. This prevents various surprising things from happening to applications and simplifies record processing. --- src/lib/tls/tls_policy.cpp | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) (limited to 'src/lib/tls/tls_policy.cpp') diff --git a/src/lib/tls/tls_policy.cpp b/src/lib/tls/tls_policy.cpp index c4867d81a..0f2190562 100644 --- a/src/lib/tls/tls_policy.cpp +++ b/src/lib/tls/tls_policy.cpp @@ -146,10 +146,8 @@ bool Policy::send_fallback_scsv(Protocol_Version version) const bool Policy::acceptable_protocol_version(Protocol_Version version) const { - // By default require TLS to minimize surprise if(version.is_datagram_protocol()) - return false; - + return (version >= Protocol_Version::DTLS_V12); return (version >= Protocol_Version::TLS_V10); } -- cgit v1.2.3