Disallow SupportedGroups in ServerHello for TLS 1.3

But allowed when downgrading to TLS 1.2.
2019-02-04 08:58:17 +10:00 · 2019-02-04 08:58:17 +10:00 · b7179c2a54
commit b7179c2a54
parent c080050c80
1 changed files with 5 additions and 0 deletions
--- a/src/tls.c
+++ b/src/tls.c
@ -9654,6 +9654,11 @@ int TLSX_Parse(WOLFSSL* ssl, byte* input, word16 length, byte msgType,
                         msgType == encrypted_extensions) {
                    return EXT_NOT_ALLOWED;
                }
+                else if (IsAtLeastTLSv1_3(ssl->ctx->method->version) &&
+                        msgType == server_hello &&
+                        !ssl->options.downgrade) {
+                    return EXT_NOT_ALLOWED;
+                }
 #endif
                ret = EC_PARSE(ssl, input + offset, size, isRequest);
                break;