From 6647f48dda571f3a7e2a7012fc0ba1eddfa51bf2 Mon Sep 17 00:00:00 2001 From: Kapil Gupta Date: Wed, 8 Sep 2021 13:43:01 +0530 Subject: [PATCH] esp_wifi: Fix interoperability issue with windows 2008 --- components/wpa_supplicant/src/crypto/tls_mbedtls.c | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/components/wpa_supplicant/src/crypto/tls_mbedtls.c b/components/wpa_supplicant/src/crypto/tls_mbedtls.c index 43bc8c9fe5..23d8d9d700 100644 --- a/components/wpa_supplicant/src/crypto/tls_mbedtls.c +++ b/components/wpa_supplicant/src/crypto/tls_mbedtls.c @@ -470,6 +470,10 @@ static int tls_create_mbedtls_handle(const struct tls_connection_params *params, wpa_printf(MSG_ERROR, "mbedtls_ssl_setup returned -0x%x", -ret); goto exit; } +#if defined(MBEDTLS_SSL_CBC_RECORD_SPLITTING) + /* Disable BEAST attack countermeasures for Windows 2008 interoperability */ + mbedtls_ssl_conf_cbc_record_splitting(&tls->conf, MBEDTLS_SSL_CBC_RECORD_SPLITTING_DISABLED); +#endif /* Enable debug prints in case supplicant's prints are enabled */ #if defined(DEBUG_PRINT) && defined(CONFIG_MBEDTLS_DEBUG) && defined(ESPRESSIF_USE)