From: Matt Caswell <matt@openssl.org>
Date: Thu, 23 Feb 2017 16:41:15 +0000 (+0000)
Subject: Provide a default value for max_early_data
X-Git-Tag: OpenSSL_1_1_1-pre1~2156
X-Git-Url: https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff_plain;h=bfa9a9afe82e603339801da73ddbabd02d919888;hp=70ef40a05e06d055a89c6c8f9309f047e7e834f1

Provide a default value for max_early_data

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2737)
---

diff --git a/ssl/ssl_lib.c b/ssl/ssl_lib.c
index 2f62f4b0e1..49b43543bc 100644
--- a/ssl/ssl_lib.c
+++ b/ssl/ssl_lib.c
@@ -2772,6 +2772,12 @@ SSL_CTX *SSL_CTX_new(const SSL_METHOD *meth)
 
     ret->ext.status_type = TLSEXT_STATUSTYPE_nothing;
 
+    /*
+     * Default max early data is a fully loaded single record. Could be split
+     * across multiple records in practice
+     */
+    ret->max_early_data = SSL3_RT_MAX_PLAIN_LENGTH;
+
     return ret;
  err:
     SSLerr(SSL_F_SSL_CTX_NEW, ERR_R_MALLOC_FAILURE);