From fc179fc54b089e275c945394ce4119ab70375143 Mon Sep 17 00:00:00 2001
From: "fox.cpp" <fox.cpp@disroot.org>
Date: Sun, 24 Nov 2024 19:11:52 +0300
Subject: [PATCH] config/tls: Disable TLS session tickets

Workaround for Outlook delivery issues.
See https://github.com/foxcpp/maddy/issues/730
---
 framework/config/tls/server.go | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/framework/config/tls/server.go b/framework/config/tls/server.go
index 4d30d2cc..c23fdc32 100644
--- a/framework/config/tls/server.go
+++ b/framework/config/tls/server.go
@@ -69,7 +69,10 @@ func TLSDirective(m *config.Map, node config.Node) (interface{}, error) {
 }
 
 func readTLSBlock(globals map[string]interface{}, blockNode config.Node) (*TLSConfig, error) {
-	baseCfg := tls.Config{}
+	baseCfg := tls.Config{
+		// Workaround for issue https://github.com/foxcpp/maddy/issues/730
+		SessionTicketsDisabled: true,
+	}
 
 	var loader module.TLSLoader
 	if len(blockNode.Args) > 0 {