Allow TLS13_AD_MISSING_EXTENSION for older versions

Add a pass-through switch case for TLS13_AD_MISSING_EXTENSION in ssl3_alert_code() and tls1_alert_code(), so that the call to SSLfatal() in final_psk() will always actually generate an alert, even for non-TLS1.3 protocol versions. Fixes #15375 Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/15412)
2025-01-18 13:44:20 +08:00 · 2021-05-21 10:25:00 -07:00 · 2021-05-21 10:25:00 -07:00 · 1376708c1c
commit 1376708c1c
parent e6e618bf22
2 changed files with 4 additions and 0 deletions
--- a/ssl/s3_enc.c
+++ b/ssl/s3_enc.c
@ -589,6 +589,8 @@ int ssl3_alert_code(int code)
        return TLS1_AD_NO_APPLICATION_PROTOCOL;
    case SSL_AD_CERTIFICATE_REQUIRED:
        return SSL_AD_HANDSHAKE_FAILURE;
+    case TLS13_AD_MISSING_EXTENSION:
+        return SSL_AD_HANDSHAKE_FAILURE;
    default:
        return -1;
    }
--- a/ssl/t1_enc.c
+++ b/ssl/t1_enc.c
@ -848,6 +848,8 @@ int tls1_alert_code(int code)
        return TLS1_AD_NO_APPLICATION_PROTOCOL;
    case SSL_AD_CERTIFICATE_REQUIRED:
        return SSL_AD_HANDSHAKE_FAILURE;
+    case TLS13_AD_MISSING_EXTENSION:
+        return SSL_AD_HANDSHAKE_FAILURE;
    default:
        return -1;
    }