From: Dr. Stephen Henson <steve@openssl.org>
Date: Tue, 19 Mar 2013 13:46:28 +0000 (+0000)
Subject: Disable compression for DTLS.
X-Git-Tag: OpenSSL_1_0_0l~29
X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=a47060f1c9a0ed54ec0ca0a6a8234b30dfc48fa9;p=oweals%2Fopenssl.git

Disable compression for DTLS.

The only standard compression method is stateful and is incompatible with
DTLS.
(cherry picked from commit e14b8410ca882da8e9579a2d928706f894c8e1ae)
---

diff --git a/ssl/ssl_lib.c b/ssl/ssl_lib.c
index b3c21ea068..cfe40b2fa4 100644
--- a/ssl/ssl_lib.c
+++ b/ssl/ssl_lib.c
@@ -1629,7 +1629,9 @@ SSL_CTX *SSL_CTX_new(const SSL_METHOD *meth)
 	CRYPTO_new_ex_data(CRYPTO_EX_INDEX_SSL_CTX, ret, &ret->ex_data);
 
 	ret->extra_certs=NULL;
-	ret->comp_methods=SSL_COMP_get_compression_methods();
+	/* No compression for DTLS */
+	if (meth->version != DTLS1_VERSION)
+		ret->comp_methods=SSL_COMP_get_compression_methods();
 
 	ret->max_send_fragment = SSL3_RT_MAX_PLAIN_LENGTH;