From f669fef85600989c0426dd69dea5a45a986d3084 Mon Sep 17 00:00:00 2001
From: Waleed Elmelegy <waleed.elmelegy@arm.com>
Date: Thu, 22 Aug 2024 16:10:10 +0000
Subject: [PATCH] Add chanelog entry for fixing legacy comprssion methods issue

Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
---
 ChangeLog.d/fix-legacy-compression-issue.txt | 7 +++++++
 1 file changed, 7 insertions(+)
 create mode 100644 ChangeLog.d/fix-legacy-compression-issue.txt

diff --git a/ChangeLog.d/fix-legacy-compression-issue.txt b/ChangeLog.d/fix-legacy-compression-issue.txt
new file mode 100644
index 0000000000..e51ee24a9b
--- /dev/null
+++ b/ChangeLog.d/fix-legacy-compression-issue.txt
@@ -0,0 +1,7 @@
+Bugfix
+   * Fix an issue where ssl_tls13_parse_client_hello() assumed legacy_compression_methods
+     length would always be zero, which is true for TLS 1.3. However, with TLS 1.3 enabled
+     by default, all ClientHello requests (including TLS 1.2 requests) are initially
+     processed by ssl_tls13_parse_client_hello() before being passed to the TLS 1.2
+     parsing function. This caused an issue where legacy_compression_methods
+     might not be zero for TLS 1.2 requests, as it is processed earlier.