Implement session id TLSv1.3 middlebox compatibility mode

Clients will send a "fake" session id and servers must echo it back. Reviewed-by: Ben Kaduk <kaduk@mit.edu> (Merged from https://github.com/openssl/openssl/pull/4701)
author: Matt Caswell <matt@openssl.org> 2017-11-07 10:45:43 +0000
committer: Matt Caswell <matt@openssl.org> 2017-12-14 15:06:37 +0000
commit: a5816a5ab99610201dcec57a0e02b883d9d32891 (patch)
tree: dbcdbc8473d14ad1204c345725e6193d299b22d3 /ssl/ssl_lib.c
parent: 88050dd1960bfaba7ede12a3ce1afe40f5deb124 (diff)
1 files changed, 4 insertions, 2 deletions
diff --git a/ssl/ssl_lib.c b/ssl/ssl_lib.c
index 20073184eb..bba0291421 100644
--- a/ssl/ssl_lib.c
+++ b/ssl/ssl_lib.c
@@ -2894,9 +2894,11 @@ SSL_CTX *SSL_CTX_new(const SSL_METHOD *meth)
      * Disable compression by default to prevent CRIME. Applications can
      * re-enable compression by configuring
      * SSL_CTX_clear_options(ctx, SSL_OP_NO_COMPRESSION);
-     * or by using the SSL_CONF library.
+     * or by using the SSL_CONF library. Similarly we also enable TLSv1.3
+     * middlebox compatibility by default. This may be disabled by default in
+     * a later OpenSSL version.
      */
-    ret->options |= SSL_OP_NO_COMPRESSION;
+    ret->options |= SSL_OP_NO_COMPRESSION | SSL_OP_ENABLE_MIDDLEBOX_COMPAT;
 
     ret->ext.status_type = TLSEXT_STATUSTYPE_nothing;
author	Matt Caswell <matt@openssl.org>	2017-11-07 10:45:43 +0000
committer	Matt Caswell <matt@openssl.org>	2017-12-14 15:06:37 +0000
commit	a5816a5ab99610201dcec57a0e02b883d9d32891 (patch)
tree	dbcdbc8473d14ad1204c345725e6193d299b22d3 /ssl/ssl_lib.c
parent	88050dd1960bfaba7ede12a3ce1afe40f5deb124 (diff)