diff options
| author | Benjamin Kaduk <bkaduk@akamai.com> | 2021-05-03 12:16:19 -0700 |
|---|---|---|
| committer | Benjamin Kaduk <kaduk@mit.edu> | 2021-05-05 08:13:51 -0700 |
| commit | 72d2670bd21becfa6a64bb03fa55ad82d6d0c0f3 (patch) | |
| tree | 4efd2e8c0f9be4e19827548e7244da8958a262d1 /ssl | |
| parent | 8369592d35da7d321b8d2f4b5591acd72481111a (diff) | |
Enforce secure renegotiation support by default
Previously we would set SSL_OP_LEGACY_SERVER_CONNECT by default in
SSL_CTX_new(), to allow connections to legacy servers that did not
implement RFC 5746.
It has been more than a decade since RFC 5746 was published, so
there has been plenty of time for implmentation support to roll out.
Change the default behavior to be to require peers to support
secure renegotiation. Existing applications that already cleared
SSL_OP_LEGACY_SERVER_CONNECT will see no behavior change, as
re-clearing the flag is just a little bit of redundant work.
The old behavior is still available by explicitly setting the flag
in the application.
Also remove SSL_OP_LEGACY_SERVER_CONNECT from SSL_OP_ALL, for
similar reasons.
Document the behavior change in CHANGES.md, and update the
SSL_CTX_set_options() and SSL_CONF_cmd manuals to reflect the change
in default behavior.
Fixes: 14848
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/15127)
Diffstat (limited to 'ssl')
| -rw-r--r-- | ssl/ssl_lib.c | 5 |
1 files changed, 0 insertions, 5 deletions
diff --git a/ssl/ssl_lib.c b/ssl/ssl_lib.c index 27a5ec4581..c9b49279c5 100644 --- a/ssl/ssl_lib.c +++ b/ssl/ssl_lib.c @@ -3311,11 +3311,6 @@ SSL_CTX *SSL_CTX_new_ex(OSSL_LIB_CTX *libctx, const char *propq, # endif #endif /* - * Default is to connect to non-RI servers. When RI is more widely - * deployed might change this. - */ - ret->options |= SSL_OP_LEGACY_SERVER_CONNECT; - /* * Disable compression by default to prevent CRIME. Applications can * re-enable compression by configuring * SSL_CTX_clear_options(ctx, SSL_OP_NO_COMPRESSION); |