From bf59005fe180b6ad954606a6eee4dc9b1072ce43 Mon Sep 17 00:00:00 2001 From: Mahavir Jain Date: Sat, 7 Oct 2023 21:50:01 +0530 Subject: [PATCH] fix(mbedtls): dynamic buffer feature issue with mbedtls 3.5.0 Set max TLS version in the SSL context during setup phase. Dynamic buffer feature overrides the `mbedtls_ssl_setup` API and hence this change is required per upstream 3.5.0 codebase change. --- components/mbedtls/port/dynamic/esp_ssl_tls.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/components/mbedtls/port/dynamic/esp_ssl_tls.c b/components/mbedtls/port/dynamic/esp_ssl_tls.c index e242b2ced6..f12bc2bf7e 100644 --- a/components/mbedtls/port/dynamic/esp_ssl_tls.c +++ b/components/mbedtls/port/dynamic/esp_ssl_tls.c @@ -283,6 +283,8 @@ static int ssl_handshake_init( mbedtls_ssl_context *ssl ) int __wrap_mbedtls_ssl_setup(mbedtls_ssl_context *ssl, const mbedtls_ssl_config *conf) { ssl->conf = conf; + ssl->tls_version = ssl->conf->max_tls_version; + CHECK_OK(ssl_handshake_init(ssl)); mbedtls_free(ssl->MBEDTLS_PRIVATE(out_buf));