feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

TLS 1.3 PSK no DHE: When not doing PSK don't allow noPskDheKe to be set

Browse Source
This commit is contained in:
Sean Parkinson
2021-03-19 12:11:30 +10:00
parent a688245738
commit e7472384c2
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/tls13.c
View File

@ -4212,6 +4212,9 @@ int DoTls13ClientHello(WOLFSSL* ssl, const byte* input, word32* inOutIdx,
}
if (!usingPSK) {
/* Not using PSK so don't require no KE. */
ssl->options.noPskDheKe = 0;
#ifndef NO_CERTS
if (TLSX_Find(ssl->extensions, TLSX_KEY_SHARE) == NULL) {
WOLFSSL_MSG("Client did not send a KeyShare extension");