From c844b1c253b519e73dede0646becc68ea0998c6d Mon Sep 17 00:00:00 2001
From: Sean Parkinson <sean@wolfssl.com>
Date: Tue, 11 Dec 2018 11:27:55 +1000
Subject: [PATCH] ALPN is returned in ServerHello when downgrading from TLS 1.3

TLS 1.3 Specification has extension returned in EncryptedExtensions.
---
 src/tls.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/tls.c b/src/tls.c
index 1d7b5a6c7..bdcecf3a9 100644
--- a/src/tls.c
+++ b/src/tls.c
@@ -9951,6 +9951,7 @@ int TLSX_Parse(WOLFSSL* ssl, byte* input, word16 length, byte msgType,
 #ifdef WOLFSSL_TLS13
                 if (IsAtLeastTLSv1_3(ssl->ctx->method->version) &&
                         msgType != client_hello &&
+                        msgType != server_hello &&
                         msgType != encrypted_extensions) {
                     return EXT_NOT_ALLOWED;
                 }