summary refs log tree commit diff
diff options
context:
space:
mode:
authorJune McEnroe <june@causal.agency>2020-07-28 00:16:32 -0400
committerJune McEnroe <june@causal.agency>2020-07-31 12:12:53 -0400
commitc77870d50d1f1e2bb65199ae3dc8845cf4f3d5ed (patch)
tree3b05003b6622768b5cd941bad558d7782995acff
parenttls_ocsp: Use X509_STORE_CTX_new and X509_OBJECT_new (diff)
downloadlibretls-c77870d50d1f1e2bb65199ae3dc8845cf4f3d5ed.tar.gz
libretls-c77870d50d1f1e2bb65199ae3dc8845cf4f3d5ed.zip
tls_server: Remove SSL_OP_NO_CLIENT_RENEGOTIATION
This is a LibreSSL-specific option.
-rw-r--r--tls_server.c2
1 files changed, 0 insertions, 2 deletions
diff --git a/tls_server.c b/tls_server.c
index ca7c4c6..98a8389 100644
--- a/tls_server.c
+++ b/tls_server.c
@@ -220,8 +220,6 @@ tls_configure_server_ssl(struct tls *ctx, SSL_CTX **ssl_ctx,
 		goto err;
 	}
 
-	SSL_CTX_set_options(*ssl_ctx, SSL_OP_NO_CLIENT_RENEGOTIATION);
-
 	if (SSL_CTX_set_tlsext_servername_callback(*ssl_ctx,
 	    tls_servername_cb) != 1) {
 		tls_set_error(ctx, "failed to set servername callback");