Disable TLS compression since the EAP-TTLS/PEAP/FAST payload processing
does not support it currently and EAP-TLS RFC does not allow compression to be negotiated for TLS.
This commit is contained in:
parent
dcf9c2bd77
commit
1f358437d3
1 changed files with 1 additions and 1 deletions
|
@ -892,7 +892,7 @@ struct tls_connection * tls_connection_init(void *ssl_ctx)
|
||||||
SSL_set_app_data(conn->ssl, conn);
|
SSL_set_app_data(conn->ssl, conn);
|
||||||
SSL_set_options(conn->ssl,
|
SSL_set_options(conn->ssl,
|
||||||
SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3 |
|
SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3 |
|
||||||
SSL_OP_SINGLE_DH_USE);
|
SSL_OP_SINGLE_DH_USE | SSL_OP_NO_COMPRESSION);
|
||||||
|
|
||||||
conn->ssl_in = BIO_new(BIO_s_mem());
|
conn->ssl_in = BIO_new(BIO_s_mem());
|
||||||
if (!conn->ssl_in) {
|
if (!conn->ssl_in) {
|
||||||
|
|
Loading…
Reference in a new issue