Bug#29414245 - BOTH MYSQL CLIENT AND SHELL FAIL TO CONNECT

               TO 5.7 COMMUNITY SERVER

DESCRIPTION:
============
8.0 clients fail to connect to 5.7 community edition
servers using SSL.

ANALYSIS:
=========
The clients fail to connect with the ssl error:
unsafe legacy renegotiation disabled. This is because,
the option SSL_OP_LEGACY_SERVER_CONNECT was cleared while
setting the ssl options.

FIX:
====
This patch reverts the changes that were added to clear
SSL_OP_LEGACY_SERVER_CONNECT option so that clients can
connect successfully to 5.7 community edition server.
This option is currently set by default in openssl
library.

RB: 21622
(cherry picked from commit a9aeb4c20b5c0cf86764c80438632419ecfd4b2c)

Author: Anushree Prakash B

vio/viossl.c

@@ -1,4 +1,4 @@
-/* Copyright (c) 2000, 2018, Oracle and/or its affiliates. All rights reserved.
+/* Copyright (c) 2000, 2019, Oracle and/or its affiliates. All rights reserved.
 
    This program is free software; you can redistribute it and/or modify
    it under the terms of the GNU General Public License as published by
@@ -397,9 +397,6 @@ static int ssl_do(struct st_VioSSLFd *ptr, Vio *vio,
   DBUG_PRINT("info", ("ssl: 0x%lx timeout: %ld", (long) ssl, timeout));
   SSL_clear(ssl);
   SSL_set_fd(ssl, sd);
-#if !defined(HAVE_YASSL) && OPENSSL_VERSION_NUMBER > 0x00908000L
-  SSL_clear_options(ssl, SSL_OP_LEGACY_SERVER_CONNECT);
-#endif
 #if !defined(HAVE_YASSL) && defined(SSL_OP_NO_COMPRESSION)
   SSL_set_options(ssl, SSL_OP_NO_COMPRESSION); /* OpenSSL >= 1.0 only */
 #elif OPENSSL_VERSION_NUMBER >= 0x00908000L /* workaround for OpenSSL 0.9.8 */