From 7ec8d70eee7d34733ab25b7a09163cb2bdda0a1a Mon Sep 17 00:00:00 2001 From: Sean Parkinson Date: Wed, 20 Jan 2021 10:57:37 +1000 Subject: [PATCH] TLS 1.3: don't group and wait on send session ticket The state machine goes on and frees the handshake resources which frees the digest for the client Finished message. --- src/tls13.c | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/src/tls13.c b/src/tls13.c index 9835e8638..199189d3d 100644 --- a/src/tls13.c +++ b/src/tls13.c @@ -6696,8 +6696,10 @@ static int SendTls13NewSessionTicket(WOLFSSL* ssl) ssl->buffers.outputBuffer.length += sendSz; - if (!ssl->options.groupMessages) - ret = SendBuffered(ssl); + /* Always send as this is either directly after server's Finished or only + * message after client's Finished. + */ + ret = SendBuffered(ssl); WOLFSSL_LEAVE("SendTls13NewSessionTicket", 0); WOLFSSL_END(WC_FUNC_NEW_SESSION_TICKET_SEND);