wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-27 02:42:20 +01:00
Code Issues Packages Projects Releases Wiki Activity

Improve log message and error code for invalid HelloRetryRequest - fix #9653

Browse Source
This commit is contained in:
Josh Holtrop
2026-01-14 11:23:37 -05:00
parent 16e45f94ae
commit e7612ff36f
2 changed files with 4 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/tls13.c
View File

@@ -5677,7 +5677,7 @@ int DoTls13ServerHello(WOLFSSL* ssl, const byte* input, word32* inOutIdx,
#endif
) {
SendAlert(ssl, alert_fatal, illegal_parameter);
return DUPLICATE_MSG_E;
return EXT_MISSING;
}
ssl->options.tls1_3 = 1;

4
tests/api/test_tls13.c
View File

@@ -2355,7 +2355,9 @@ int test_tls13_same_ch(void)
ExpectIntEQ(test_memio_inject_message(&test_ctx, 1, (char*)hrr,
sizeof(hrr)), 0);
ExpectIntEQ(wolfSSL_connect(ssl_c), -1);
ExpectIntEQ(wolfSSL_get_error(ssl_c, -1), DUPLICATE_MSG_E);
/* issue 9653: use a more appropriate error than DUPLICATE_MSG_E.
* Since the cause of this is missing extension, return that. */
ExpectIntEQ(wolfSSL_get_error(ssl_c, -1), EXT_MISSING);
wolfSSL_free(ssl_c);
wolfSSL_CTX_free(ctx_c);