Only allow supported_versions in a TLSv1.3 ServerHello

As per the latest text in TLSv1.3 draft-26 Reviewed-by: Ben Kaduk <kaduk@mit.edu> (Merged from https://github.com/openssl/openssl/pull/5604)
author: Matt Caswell <matt@openssl.org> 2018-03-13 10:36:03 +0000
committer: Matt Caswell <matt@openssl.org> 2018-03-14 09:51:20 +0000
commit: 27e462f1b0c8d6295c745611e36beb5774de6688 (patch)
tree: abb6f14f8acdd950662a5a1c032d370ae8b53e4c /ssl/statem/extensions_srvr.c
parent: 3295d2423889496e0933b3f9af6dc692c9f9a8f2 (diff)
1 files changed, 6 insertions, 2 deletions
diff --git a/ssl/statem/extensions_srvr.c b/ssl/statem/extensions_srvr.c
index 425cd80efe..a1f92b076d 100644
--- a/ssl/statem/extensions_srvr.c
+++ b/ssl/statem/extensions_srvr.c
@@ -1572,8 +1572,12 @@ EXT_RETURN tls_construct_stoc_supported_versions(SSL *s, WPACKET *pkt,
                                                  unsigned int context, X509 *x,
                                                  size_t chainidx)
 {
-    if (!SSL_IS_TLS13(s))
-        return EXT_RETURN_NOT_SENT;
+    if (!ossl_assert(SSL_IS_TLS13(s))) {
+        SSLfatal(s, SSL_AD_INTERNAL_ERROR,
+                 SSL_F_TLS_CONSTRUCT_STOC_SUPPORTED_VERSIONS,
+                 ERR_R_INTERNAL_ERROR);
+        return EXT_RETURN_FAIL;
+    }
 
     if (!WPACKET_put_bytes_u16(pkt, TLSEXT_TYPE_supported_versions)
             || !WPACKET_start_sub_packet_u16(pkt)
author	Matt Caswell <matt@openssl.org>	2018-03-13 10:36:03 +0000
committer	Matt Caswell <matt@openssl.org>	2018-03-14 09:51:20 +0000
commit	27e462f1b0c8d6295c745611e36beb5774de6688 (patch)
tree	abb6f14f8acdd950662a5a1c032d370ae8b53e4c /ssl/statem/extensions_srvr.c
parent	3295d2423889496e0933b3f9af6dc692c9f9a8f2 (diff)