head	1.2;
access;
symbols;
locks; strict;
comment	@# @;


1.2
date	2005.10.12.11.14.14;	author dinoex;	state dead;
branches;
next	1.1;

1.1
date	2005.10.12.10.49.33;	author dinoex;	state Exp;
branches;
next	;


desc
@@


1.2
log
@- update to 0.9.7g and 0.9.8a
@
text
@Index: crypto/openssl/ssl/s23_srvr.c
===================================================================
RCS file: /home/ncvs/src/crypto/openssl/ssl/s23_srvr.c,v
retrieving revision 1.7
diff -u -p -r1.7 s23_srvr.c
--- ssl/s23_srvr.c	28 Jan 2003 22:34:21 -0000	1.7
+++ ssl/s23_srvr.c	10 Oct 2005 16:39:19 -0000
@@@@ -268,9 +268,6 @@@@ int ssl23_get_client_hello(SSL *s)
 	int n=0,j;
 	int type=0;
 	int v[2];
-#ifndef OPENSSL_NO_RSA
-	int use_sslv2_strong=0;
-#endif
 
 	if (s->state ==	SSL23_ST_SR_CLNT_HELLO_A)
 		{
@@@@ -519,9 +516,7 @@@@ int ssl23_get_client_hello(SSL *s)
 			}
 
 		s->state=SSL2_ST_GET_CLIENT_HELLO_A;
-		if ((s->options & SSL_OP_MSIE_SSLV2_RSA_PADDING) ||
-			use_sslv2_strong ||
-			(s->options & SSL_OP_NO_TLSv1 && s->options & SSL_OP_NO_SSLv3))
+		if (s->options & SSL_OP_NO_TLSv1 && s->options & SSL_OP_NO_SSLv3)
 			s->s2->ssl2_rollback=0;
 		else
 			/* reject SSL 2.0 session if client supports SSL 3.0 or TLS 1.0
@


1.1
log
@- Security Fix: CAN-2005-2969
Security: http://www.openssl.org/news/secadv_20051011.txt
@
text
@@

