From 557706b34c609fa899a3f30fa6070c3a0e839acb Mon Sep 17 00:00:00 2001
From: =?utf8?q?Fr=C3=A9d=C3=A9ric=20L=C3=A9caille?= <flecaille@haproxy.com>
Date: Wed, 7 Jun 2023 11:19:51 +0200
Subject: [PATCH] MINOR: quic: Initialize TLS contexts for QUIC openssl wrapper

When the QUIC OpenSSL wrapper use is enabled, all the TLS contexts (SSL_CTX) must
be configured to support it. This is done calling quic_tls_compat_init() from
ssl_sock_prepare_ctx(). Note that quic_tls_compat_init() ignore the TLS context
which are not linked to non-QUIC TLS sessions/connections.

Required for the QUIC openssl wrapper support.
---
 src/ssl_sock.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/ssl_sock.c b/src/ssl_sock.c
index 9f48483d9a..149d5812ab 100644
--- a/src/ssl_sock.c
+++ b/src/ssl_sock.c
@@ -4799,6 +4799,11 @@ static int ssl_sock_prepare_ctx(struct bind_conf *bind_conf, struct ssl_bind_con
 	}
 #endif
 
+#ifdef USE_QUIC_OPENSSL_COMPAT
+	if (!quic_tls_compat_init(bind_conf, ctx))
+		cfgerr |= ERR_ALERT | ERR_FATAL;
+#endif
+
 	return cfgerr;
 }
 
-- 
2.39.5