Check if not using Opaque PSK in ECHDE-PSK PSA version of ssl_parse_client_key_exchange() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>

commit: 1039ba5c98b35ffc8edc9a45e4b6d13f681f3c45 [log] [tgz]
author: Neil Armstrong <narmstrong@baylibre.com> Tue Apr 05 10:03:24 2022 +0200
committer: Neil Armstrong <narmstrong@baylibre.com> Tue Apr 05 10:33:01 2022 +0200
tree: 632bc5fd1da0c55d5e0979afee3c65aab6b89abb
parent: ede381c808f501d6d2e99dd4d1beb9cd544d2b4c [diff] [blame]
diff --git a/library/ssl_tls12_server.c b/library/ssl_tls12_server.c
index 7b6efb1..327109c 100644
--- a/library/ssl_tls12_server.c
+++ b/library/ssl_tls12_server.c

@@ -4046,6 +4046,10 @@
         psa_status_t destruction_status = PSA_ERROR_CORRUPTION_DETECTED;
         uint8_t ecpoint_len;
 
+        /* Opaque PSKs are currently only supported for PSK-only. */
+        if( ssl_use_opaque_psk( ssl ) == 1 )
+            return( MBEDTLS_ERR_SSL_FEATURE_UNAVAILABLE );
+
         mbedtls_ssl_handshake_params *handshake = ssl->handshake;
 
         if( ( ret = ssl_parse_client_psk_identity( ssl, &p, end ) ) != 0 )
commit	1039ba5c98b35ffc8edc9a45e4b6d13f681f3c45	[log] [tgz]
author	Neil Armstrong <narmstrong@baylibre.com>	Tue Apr 05 10:03:24 2022 +0200
committer	Neil Armstrong <narmstrong@baylibre.com>	Tue Apr 05 10:33:01 2022 +0200
tree	632bc5fd1da0c55d5e0979afee3c65aab6b89abb
parent	ede381c808f501d6d2e99dd4d1beb9cd544d2b4c [diff] [blame]