From 1dfceb2dc0ef5b87102bd1562be5f3a5f34fcd0c Mon Sep 17 00:00:00 2001
From: Richard Aas <richard@db.org>
Date: Mon, 9 Mar 2015 16:01:50 +0000
Subject: [PATCH] tls: set SSL_set_read_ahead() on DTLS connection

---
 src/tls/openssl/tls.c     | 4 ----
 src/tls/openssl/tls_udp.c | 2 ++
 2 files changed, 2 insertions(+), 4 deletions(-)

diff --git a/src/tls/openssl/tls.c b/src/tls/openssl/tls.c
index fa5772f..45bf5d2 100644
--- a/src/tls/openssl/tls.c
+++ b/src/tls/openssl/tls.c
@@ -128,10 +128,6 @@ int tls_alloc(struct tls **tlsp, enum tls_method method, const char *keyfile,
 	SSL_CTX_set_verify_depth(tls->ctx, 1);
 #endif
 
-	if (method == TLS_METHOD_DTLSV1) {
-		SSL_CTX_set_read_ahead(tls->ctx, 1);
-	}
-
 	/* Load our keys and certificates */
 	if (keyfile) {
 		if (pwd) {
diff --git a/src/tls/openssl/tls_udp.c b/src/tls/openssl/tls_udp.c
index 67a13e4..91947a6 100644
--- a/src/tls/openssl/tls_udp.c
+++ b/src/tls/openssl/tls_udp.c
@@ -435,6 +435,8 @@ static int conn_alloc(struct tls_conn **ptc, struct tls *tls,
 
 	SSL_set_bio(tc->ssl, tc->sbio_in, tc->sbio_out);
 
+	SSL_set_read_ahead(tc->ssl, 1);
+
  out:
 	if (err)
 		mem_deref(tc);