Allow TLS13_AD_MISSING_EXTENSION for older versions

Add a pass-through switch case for TLS13_AD_MISSING_EXTENSION in ssl3_alert_code() and tls1_alert_code(), so that the call to SSLfatal() in final_psk() will always actually generate an alert, even for non-TLS1.3 protocol versions. Fixes #15375 Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/15412)
author: Benjamin Kaduk <bkaduk@akamai.com> 2021-05-21 10:25:00 -0700
committer: Benjamin Kaduk <bkaduk@akamai.com> 2021-05-25 14:13:22 -0700
commit: 1376708c1cfee91a891057db132aa45aa2a81a98 (patch)
tree: 7b1390240151d6e8f49d2a18ff162e62323ac450 /ssl/s3_enc.c
parent: e6e618bf22ead6af2d7e5a5a540a39e5073296bb (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/ssl/s3_enc.c b/ssl/s3_enc.c
index cf4d5fe4e7..88ac6e4205 100644
--- a/ssl/s3_enc.c
+++ b/ssl/s3_enc.c
@@ -589,6 +589,8 @@ int ssl3_alert_code(int code)
         return TLS1_AD_NO_APPLICATION_PROTOCOL;
     case SSL_AD_CERTIFICATE_REQUIRED:
         return SSL_AD_HANDSHAKE_FAILURE;
+    case TLS13_AD_MISSING_EXTENSION:
+        return SSL_AD_HANDSHAKE_FAILURE;
     default:
         return -1;
     }
author	Benjamin Kaduk <bkaduk@akamai.com>	2021-05-21 10:25:00 -0700
committer	Benjamin Kaduk <bkaduk@akamai.com>	2021-05-25 14:13:22 -0700
commit	1376708c1cfee91a891057db132aa45aa2a81a98 (patch)
tree	7b1390240151d6e8f49d2a18ff162e62323ac450 /ssl/s3_enc.c
parent	e6e618bf22ead6af2d7e5a5a540a39e5073296bb (diff)