Implement legacy fallback for the TLS 1.3 client.

If the Server Hello received indicates that the server did not negotiate TLS 1.3, fallback to the original TLS client implementation. ok bcook@, tb@
author: jsing <jsing@openbsd.org> 2019-04-04 16:53:57 +0000
committer: jsing <jsing@openbsd.org> 2019-04-04 16:53:57 +0000
commit: 1fdae6bff5c3a0b1adc93d9caed427f888a3aeab (patch)
tree: a5aa2c2bade79ab20a92be12b5c1254d12c14cc1 /lib/libssl/tls13_handshake.c
parent: Clean up the cipher/digest table mess. (diff)
download: wireguard-openbsd-1fdae6bff5c3a0b1adc93d9caed427f888a3aeab.tar.xz
wireguard-openbsd-1fdae6bff5c3a0b1adc93d9caed427f888a3aeab.zip
1 files changed, 4 insertions, 1 deletions
diff --git a/lib/libssl/tls13_handshake.c b/lib/libssl/tls13_handshake.c
index a55c20525a5..cb39974da50 100644
--- a/lib/libssl/tls13_handshake.c
+++ b/lib/libssl/tls13_handshake.c
@@ -1,4 +1,4 @@
-/*	$OpenBSD: tls13_handshake.c,v 1.32 2019/03/17 15:48:02 jsing Exp $	*/
+/*	$OpenBSD: tls13_handshake.c,v 1.33 2019/04/04 16:53:57 jsing Exp $	*/
 /*
  * Copyright (c) 2018-2019 Theo Buehler <tb@openbsd.org>
  * Copyright (c) 2019 Joel Sing <jsing@openbsd.org>
@@ -389,6 +389,9 @@ tls13_handshake_recv_action(struct tls13_ctx *ctx,
 	tls13_handshake_msg_free(ctx->hs_msg);
 	ctx->hs_msg = NULL;
 
+	if (ctx->ssl->method->internal->version < TLS1_3_VERSION)
+		return TLS13_IO_USE_LEGACY;
+
 	return ret;
 }
author	jsing <jsing@openbsd.org>	2019-04-04 16:53:57 +0000
committer	jsing <jsing@openbsd.org>	2019-04-04 16:53:57 +0000
commit	1fdae6bff5c3a0b1adc93d9caed427f888a3aeab (patch)
tree	a5aa2c2bade79ab20a92be12b5c1254d12c14cc1 /lib/libssl/tls13_handshake.c
parent	Clean up the cipher/digest table mess. (diff)
download	wireguard-openbsd-1fdae6bff5c3a0b1adc93d9caed427f888a3aeab.tar.xz wireguard-openbsd-1fdae6bff5c3a0b1adc93d9caed427f888a3aeab.zip