From c4c220a34fb8ef8921b6629e0de8a0761a7d8a66 Mon Sep 17 00:00:00 2001
From: jsing <>
Date: Thu, 10 Sep 2015 17:57:50 +0000
Subject: Remove support for DTLS_BAD_VER. We do not support non-standard and
 incomplete implementations just so that we can interoperate with products
 from vendors who have not bothered to fix things in the last ~10 years.

ok bcook@ miod@
---
 src/lib/libssl/d1_lib.c | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

(limited to 'src/lib/libssl/d1_lib.c')

diff --git a/src/lib/libssl/d1_lib.c b/src/lib/libssl/d1_lib.c
index e7eca4a8cd..708f3d7206 100644
--- a/src/lib/libssl/d1_lib.c
+++ b/src/lib/libssl/d1_lib.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: d1_lib.c,v 1.30 2015/09/10 15:56:26 jsing Exp $ */
+/* $OpenBSD: d1_lib.c,v 1.31 2015/09/10 17:57:50 jsing Exp $ */
 /*
  * DTLS implementation written by Nagendra Modadugu
  * (nagendra@cs.stanford.edu) for the OpenSSL project 2005.
@@ -246,10 +246,8 @@ dtls1_clear(SSL *s)
 	}
 
 	ssl3_clear(s);
-	if (s->options & SSL_OP_CISCO_ANYCONNECT)
-		s->version = DTLS1_BAD_VER;
-	else
-		s->version = DTLS1_VERSION;
+
+	s->version = DTLS1_VERSION;
 }
 
 long
-- 
cgit v1.2.3-55-g6feb