OpenSSL: Disable SSL/TLS compression

author Cristian Rodríguez <crrodriguez@opensuse.org>

Mon, 12 Nov 2012 15:41:58 +0000 (16:41 +0100)

committer Daniel Stenberg <daniel@haxx.se>

Tue, 13 Nov 2012 22:01:28 +0000 (23:01 +0100)
author Cristian Rodríguez <crrodriguez@opensuse.org>
Mon, 12 Nov 2012 15:41:58 +0000 (16:41 +0100)
committer Daniel Stenberg <daniel@haxx.se>
Tue, 13 Nov 2012 22:01:28 +0000 (23:01 +0100)
diff --git a/lib/ssluse.c b/lib/ssluse.c

index 7c4c9269aeeffd7891fe371ebc32a20769b8a521..92ae2e3e9ce890d3058b8a5ff5605b014eb17568 100644 (file)
--- a/lib/ssluse.c
+++ b/lib/ssluse.c
@@ -1501,6 +1501,10 @@ ossl_connect_step1(struct connectdata *conn,
    ctx_options |= SSL_OP_NO_TICKET;
  #endif
  
+#ifdef SSL_OP_NO_COMPRESSION
+  ctx_options |= SSL_OP_NO_COMPRESSION;
+#endif
+
  #ifdef SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG
    /* mitigate CVE-2010-4180 */
    ctx_options &= ~SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG;
author	Cristian Rodríguez <crrodriguez@opensuse.org>
	Mon, 12 Nov 2012 15:41:58 +0000 (16:41 +0100)
committer	Daniel Stenberg <daniel@haxx.se>
	Tue, 13 Nov 2012 22:01:28 +0000 (23:01 +0100)