From e7653f3bab1d44b4dad65637982e72a15ede0a49 Mon Sep 17 00:00:00 2001 From: Matt Caswell Date: Tue, 14 Jun 2016 10:41:00 +0100 Subject: [PATCH] Fix comment Fix a comment following commit c2c49969e23605. RT2388 Reviewed-by: Rich Salz --- ssl/t1_lib.c | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c index 20d67876a0..9250283e60 100644 --- a/ssl/t1_lib.c +++ b/ssl/t1_lib.c @@ -2521,8 +2521,7 @@ static int ssl_scan_serverhello_tlsext(SSL *s, PACKET *pkt, int *al) * an attack we should *always* see RI even on initial server hello * because the client doesn't see any renegotiation during an attack. * However this would mean we could not connect to any server which - * doesn't support RI so for the immediate future tolerate RI absence on - * initial connect only. + * doesn't support RI so for the immediate future tolerate RI absence */ if (!renegotiate_seen && !(s->options & SSL_OP_LEGACY_SERVER_CONNECT) && !(s->options & SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION)) {