TLS EMS ext: TLS13 - send in second CH if in first

2025-07-30 02:37:28 +02:00 · 2021-06-17 11:34:55 +10:00
parent 54cef64250
commit 4bba282a70
1 changed files with 6 additions and 1 deletions
--- a/src/tls.c
+++ b/src/tls.c
@ -11625,7 +11625,12 @@ int TLSX_Parse(WOLFSSL* ssl, const byte* input, word16 length, byte msgType,
    }

 #ifdef HAVE_EXTENDED_MASTER
-    if (!isRequest && ssl->options.haveEMS && !pendingEMS)
+    if (IsAtLeastTLSv1_3(ssl->version) && msgType == hello_retry_request) {
+        /* Don't change EMS status until server_hello received.
+         * Second ClientHello must have same extensions.
+         */
+    }
+    else if (!isRequest && ssl->options.haveEMS && !pendingEMS)
        ssl->options.haveEMS = 0;
 #endif