Remove SGC restart flag.

author Dr. Stephen Henson <steve@openssl.org>

Fri, 2 Jan 2015 22:40:41 +0000 (22:40 +0000)

committer Dr. Stephen Henson <steve@openssl.org>

Fri, 2 Jan 2015 22:56:54 +0000 (22:56 +0000)
author Dr. Stephen Henson <steve@openssl.org>
Fri, 2 Jan 2015 22:40:41 +0000 (22:40 +0000)
committer Dr. Stephen Henson <steve@openssl.org>
Fri, 2 Jan 2015 22:56:54 +0000 (22:56 +0000)
diff --git a/ssl/ssl3.h b/ssl/ssl3.h

index efff233fbdb3c0e8d082791c30d00cb84acaf019..24e6faa69fc42dc2daf14d0c9a1e149e027c802c 100644 (file)
--- a/ssl/ssl3.h
+++ b/ssl/ssl3.h
@@ -439,16 +439,6 @@ typedef struct ssl3_buffer_st
   */
  #define SSL3_FLAGS_CCS_OK                      0x0080
  
-/* SSL3_FLAGS_SGC_RESTART_DONE is set when we
- * restart a handshake because of MS SGC and so prevents us
- * from restarting the handshake in a loop. It's reset on a
- * renegotiation, so effectively limits the client to one restart
- * per negotiation. This limits the possibility of a DDoS
- * attack where the client handshakes in a loop using SGC to
- * restart. Servers which permit renegotiation can still be
- * effected, but we can't prevent that.
- */
-#define SSL3_FLAGS_SGC_RESTART_DONE            0x0040
  /* Set if we encrypt then mac instead of usual mac then encrypt */
  #define TLS1_FLAGS_ENCRYPT_THEN_MAC            0x0100
author	Dr. Stephen Henson <steve@openssl.org>
	Fri, 2 Jan 2015 22:40:41 +0000 (22:40 +0000)
committer	Dr. Stephen Henson <steve@openssl.org>
	Fri, 2 Jan 2015 22:56:54 +0000 (22:56 +0000)