From cb79d23c9b6b09272c88a996893c75a6f81fa5a6 Mon Sep 17 00:00:00 2001
From: Emad Omara <emadomara@webrtc.org>
Date: Thu, 20 Jul 2017 16:34:34 -0700
Subject: [PATCH] Add common TLS extensions

Bug: webrtc:8019
Change-Id: Ic60e892f0acbe394472319c4d943690828446610
Reviewed-on: https://chromium-review.googlesource.com/580261
Commit-Queue: Emad Omara <emadomara@webrtc.org>
Reviewed-by: Justin Uberti <juberti@webrtc.org>
Cr-Commit-Position: refs/heads/master@{#19106}
---
 webrtc/rtc_base/openssladapter.cc | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/webrtc/rtc_base/openssladapter.cc b/webrtc/rtc_base/openssladapter.cc
index d0ed07adb0..eec80216da 100644
--- a/webrtc/rtc_base/openssladapter.cc
+++ b/webrtc/rtc_base/openssladapter.cc
@@ -365,6 +365,11 @@ OpenSSLAdapter::BeginSSL() {
     SSL_set_tlsext_host_name(ssl_, ssl_host_name_.c_str());
   }
 
+  // Set a couple common TLS extensions; even though we don't use them yet.
+  // TODO(emadomara) Add ALPN extension.
+  SSL_enable_ocsp_stapling(ssl_);
+  SSL_enable_signed_cert_timestamps(ssl_);
+
   // the SSL object owns the bio now
   bio = nullptr;