feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

Merge pull request #3895 from SparkiDev/no_dhe_psk_fix

Browse Source 
TLS 1.3 PSK no DHE: When not doing PSK don't allow noPskDheKe to be set
This commit is contained in:
toddouska
2021-03-19 14:02:43 -07:00
committed by GitHub
parent 19c321f165 e7472384c2
commit fc2dff0af6
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/tls13.c
View File

@ -4212,6 +4212,9 @@ int DoTls13ClientHello(WOLFSSL* ssl, const byte* input, word32* inOutIdx,
} }
if (!usingPSK) { if (!usingPSK) {
/* Not using PSK so don't require no KE. */
ssl->options.noPskDheKe = 0;
#ifndef NO_CERTS #ifndef NO_CERTS
if (TLSX_Find(ssl->extensions, TLSX_KEY_SHARE) == NULL) { if (TLSX_Find(ssl->extensions, TLSX_KEY_SHARE) == NULL) {
WOLFSSL_MSG("Client did not send a KeyShare extension"); WOLFSSL_MSG("Client did not send a KeyShare extension");