Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/20061)
When post-handshake authentication occurs, a refreshed NewSessionTicket
message is sent to the client.
+Post-handshake authentication cannot be used with QUIC.
+
=head1 BUGS
In client mode, it is not checked whether the SSL_VERIFY_PEER flag
sc->s3.flags |= TLS1_FLAGS_QUIC;
/* Restrict options derived from the SSL_CTX. */
- sc->options &= OSSL_QUIC_PERMITTED_OPTIONS;
+ sc->options &= OSSL_QUIC_PERMITTED_OPTIONS;
+ sc->pha_enabled = 0;
#if defined(OPENSSL_THREADS)
if ((qc->mutex = ossl_crypto_mutex_new()) == NULL)