Alerts

Expand the guard around sending the PSK identity alert with a more limited option than enabling it with all the other alerts.
2025-08-03 04:34:41 +02:00 · 2021-01-21 16:42:54 -08:00
parent fe7be3e15f
commit 6f21995ec5
1 changed files with 4 additions and 2 deletions
--- a/src/internal.c
+++ b/src/internal.c
@@ -29559,7 +29559,8 @@ static int DoSessionTicket(WOLFSSL* ssl, const byte* input, word32* inOutIdx,

                        if (ssl->arrays->psk_keySz == 0 ||
                                ssl->arrays->psk_keySz > MAX_PSK_KEY_LEN) {
-                            #ifdef WOLFSSL_EXTRA_ALERTS
+                            #if defined(WOLFSSL_EXTRA_ALERTS) || \
+                                defined(WOLFSSL_PSK_IDENTITY_ALERT)
                                SendAlert(ssl, alert_fatal,
                                        unknown_psk_identity);
                            #endif
@@ -30443,7 +30444,8 @@ static int DoSessionTicket(WOLFSSL* ssl, const byte* input, word32* inOutIdx,

                        if (ssl->arrays->psk_keySz == 0 ||
                                ssl->arrays->psk_keySz > MAX_PSK_KEY_LEN) {
-                            #ifdef WOLFSSL_EXTRA_ALERTS
+                            #if defined(WOLFSSL_EXTRA_ALERTS) || \
+                                defined(WOLFSSL_PSK_IDENTITY_ALERT)
                                SendAlert(ssl, alert_fatal,
                                        unknown_psk_identity);
                            #endif