Remove workaround for TLS padding bug from SSLeay days.

OpenSSL doesn't remember which clients were impacted and the functionality has been broken in their stable releases for 2 years. Based on OpenSSL commit a8e4ac6a2fe67c19672ecf0c6aeafa15801ce3a5. ok jsing@
author: doug <> 2015-07-17 07:04:41 +0000
committer: doug <> 2015-07-17 07:04:41 +0000
commit: 489dbb57ee3abd9d28ef0c63007d420b6a34b1f4 (patch)
tree: a3867fae7dea1b800ba72ab3973817fa74caaaab /src/lib/libssl/ssl3.h
parent: 674f02353e7f32c4cbe82e8eaa5b4220714a9bba (diff)
download: openbsd-489dbb57ee3abd9d28ef0c63007d420b6a34b1f4.tar.gz
openbsd-489dbb57ee3abd9d28ef0c63007d420b6a34b1f4.tar.bz2
openbsd-489dbb57ee3abd9d28ef0c63007d420b6a34b1f4.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/src/lib/libssl/ssl3.h b/src/lib/libssl/ssl3.h
index 265d18810e..8bcf9e37e8 100644
--- a/src/lib/libssl/ssl3.h
+++ b/src/lib/libssl/ssl3.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssl3.h,v 1.37 2015/06/18 22:51:05 doug Exp $ */
+/* $OpenBSD: ssl3.h,v 1.38 2015/07/17 07:04:41 doug Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -351,7 +351,7 @@ typedef struct ssl3_buffer_st {
 #define SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS       0x0001
 #define SSL3_FLAGS_DELAY_CLIENT_FINISHED        0x0002
 #define SSL3_FLAGS_POP_BUFFER                   0x0004
-#define TLS1_FLAGS_TLS_PADDING_BUG              0x0008
+#define TLS1_FLAGS_TLS_PADDING_BUG              0x0
 #define TLS1_FLAGS_SKIP_CERT_VERIFY             0x0010
 #define TLS1_FLAGS_KEEP_HANDSHAKE               0x0020
 #define SSL3_FLAGS_CCS_OK                       0x0080
author	doug <>	2015-07-17 07:04:41 +0000
committer	doug <>	2015-07-17 07:04:41 +0000
commit	489dbb57ee3abd9d28ef0c63007d420b6a34b1f4 (patch)
tree	a3867fae7dea1b800ba72ab3973817fa74caaaab /src/lib/libssl/ssl3.h
parent	674f02353e7f32c4cbe82e8eaa5b4220714a9bba (diff)
download	openbsd-489dbb57ee3abd9d28ef0c63007d420b6a34b1f4.tar.gz openbsd-489dbb57ee3abd9d28ef0c63007d420b6a34b1f4.tar.bz2 openbsd-489dbb57ee3abd9d28ef0c63007d420b6a34b1f4.zip

diff --git a/src/lib/libssl/ssl3.h b/src/lib/libssl/ssl3.h index 265d18810e..8bcf9e37e8 100644 --- a/src/lib/libssl/ssl3.h +++ b/src/lib/libssl/ssl3.h
@@ -1,4 +1,4 @@
1	/* $OpenBSD: ssl3.h,v 1.37 2015/06/18 22:51:05 doug Exp $ */	1	/* $OpenBSD: ssl3.h,v 1.38 2015/07/17 07:04:41 doug Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.	3	* All rights reserved.
4	*	4	*
@@ -351,7 +351,7 @@ typedef struct ssl3_buffer_st {
351	#define SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS 0x0001	351	#define SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS 0x0001
352	#define SSL3_FLAGS_DELAY_CLIENT_FINISHED 0x0002	352	#define SSL3_FLAGS_DELAY_CLIENT_FINISHED 0x0002
353	#define SSL3_FLAGS_POP_BUFFER 0x0004	353	#define SSL3_FLAGS_POP_BUFFER 0x0004
354	#define TLS1_FLAGS_TLS_PADDING_BUG 0x0008	354	#define TLS1_FLAGS_TLS_PADDING_BUG 0x0
355	#define TLS1_FLAGS_SKIP_CERT_VERIFY 0x0010	355	#define TLS1_FLAGS_SKIP_CERT_VERIFY 0x0010
356	#define TLS1_FLAGS_KEEP_HANDSHAKE 0x0020	356	#define TLS1_FLAGS_KEEP_HANDSHAKE 0x0020
357	#define SSL3_FLAGS_CCS_OK 0x0080	357	#define SSL3_FLAGS_CCS_OK 0x0080