From: Dr. Stephen Henson <steve@openssl.org>
Date: Fri, 2 Jan 2015 23:09:39 +0000 (+0000)
Subject: Update SGC flag comment.
X-Git-Tag: OpenSSL_1_0_2~103
X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=5396c1190fe7c95b71d5d091c31d0fd6d65bb2ff;p=oweals%2Fopenssl.git

Update SGC flag comment.

Since SGC has been removed from OpenSSL 1.0.2 the
SSL3_FLAGS_SGC_RESTART_DONE is no longer used. However the #define is
retained for compatibility.
Reviewed-by: Matt Caswell <matt@openssl.org>
---

diff --git a/ssl/ssl3.h b/ssl/ssl3.h
index 36320ffed0..6525efeeb3 100644
--- a/ssl/ssl3.h
+++ b/ssl/ssl3.h
@@ -435,15 +435,7 @@ typedef struct ssl3_buffer_st
  */
 #define SSL3_FLAGS_CCS_OK			0x0080
 
-/* SSL3_FLAGS_SGC_RESTART_DONE is set when we
- * restart a handshake because of MS SGC and so prevents us
- * from restarting the handshake in a loop. It's reset on a
- * renegotiation, so effectively limits the client to one restart
- * per negotiation. This limits the possibility of a DDoS
- * attack where the client handshakes in a loop using SGC to
- * restart. Servers which permit renegotiation can still be
- * effected, but we can't prevent that.
- */
+/* SSL3_FLAGS_SGC_RESTART_DONE is no longer used */
 #define SSL3_FLAGS_SGC_RESTART_DONE		0x0040
 
 #ifndef OPENSSL_NO_SSL_INTERN