_gnutls_parse_hello_extensions: enforce that pre-shared-key extension is lasttmp-fix-order-extensions

This is a requirement in draft-ietf-tls-tls13-28 4.2.11 section: The "pre_shared_key" extension MUST be the last extension in the ClientHello (this facilitates implementation as described below). Servers MUST check that it is the last extension and otherwise fail the handshake with an "illegal_parameter" alert. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
author: Nikos Mavrogiannopoulos <nmav@redhat.com> 2018-06-12 10:16:10 +0200
committer: Nikos Mavrogiannopoulos <nmav@redhat.com> 2018-06-12 10:16:14 +0200
commit: 64abc885ee83884d2ec117ef63ce33ed7404b5b4 (patch)
tree: 53b6428b37dfe670283dcb392bd80cb595e8ce58 /lib/ext/pre_shared_key.h
parent: 739239e33499d350a3fb9697e303fc2d2333d223 (diff)
download: gnutls-tmp-fix-order-extensions.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/lib/ext/pre_shared_key.h b/lib/ext/pre_shared_key.h
index 2e830ff52e..1168750656 100644
--- a/lib/ext/pre_shared_key.h
+++ b/lib/ext/pre_shared_key.h
@@ -5,6 +5,8 @@
 #include <hello_ext.h>
 #include "tls13/session_ticket.h"
 
+#define PRE_SHARED_KEY_TLS_ID 41
+
 extern const hello_ext_entry_st ext_pre_shared_key;
 
 inline static
author	Nikos Mavrogiannopoulos <nmav@redhat.com>	2018-06-12 10:16:10 +0200
committer	Nikos Mavrogiannopoulos <nmav@redhat.com>	2018-06-12 10:16:14 +0200
commit	64abc885ee83884d2ec117ef63ce33ed7404b5b4 (patch)
tree	53b6428b37dfe670283dcb392bd80cb595e8ce58 /lib/ext/pre_shared_key.h
parent	739239e33499d350a3fb9697e303fc2d2333d223 (diff)
download	gnutls-tmp-fix-order-extensions.tar.gz