From: Dr. Stephen Henson Date: Tue, 19 Mar 2013 13:46:28 +0000 (+0000) Subject: Disable compression for DTLS. X-Git-Tag: OpenSSL_1_0_1f~77 X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=9c95ff968af6b7a67eeaa17d1e210416d0f48f39;p=oweals%2Fopenssl.git Disable compression for DTLS. The only standard compression method is stateful and is incompatible with DTLS. (cherry picked from commit e14b8410ca882da8e9579a2d928706f894c8e1ae) --- diff --git a/ssl/ssl_lib.c b/ssl/ssl_lib.c index ff5a85aaf1..6dbc3c1f7d 100644 --- a/ssl/ssl_lib.c +++ b/ssl/ssl_lib.c @@ -1797,7 +1797,9 @@ SSL_CTX *SSL_CTX_new(const SSL_METHOD *meth) CRYPTO_new_ex_data(CRYPTO_EX_INDEX_SSL_CTX, ret, &ret->ex_data); ret->extra_certs=NULL; - ret->comp_methods=SSL_COMP_get_compression_methods(); + /* No compression for DTLS */ + if (meth->version != DTLS1_VERSION) + ret->comp_methods=SSL_COMP_get_compression_methods(); ret->max_send_fragment = SSL3_RT_MAX_PLAIN_LENGTH;