Change default config version to development style Change-Id: I9c1088f235524211e727d03b96de8d82e60bd426 Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>

commit: 4d3a60475cd76aa493e7d087f54b4c655695c449 [log] [tgz]
author: XiaokangQian <xiaokang.qian@arm.com> Thu Apr 21 13:46:17 2022 +0000
committer: XiaokangQian <xiaokang.qian@arm.com> Thu Apr 21 13:46:17 2022 +0000
tree: 327ee3754a6db1872dd0c01844fcf1167ca069e1
parent: 4e8cd7b903aecb431bd0792282ef056c6f5fa1fa [diff]
diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index 26c009a..57f4e46 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c

@@ -4210,37 +4210,39 @@
     conf->tls13_kex_modes = MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_ALL;
 #endif /* MBEDTLS_SSL_PROTO_TLS1_3 */
 
+    if( transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM  )
+    {
 #if defined(MBEDTLS_SSL_PROTO_TLS1_2)
-    conf->min_tls_version = MBEDTLS_SSL_VERSION_TLS1_2;
-#elif defined(MBEDTLS_SSL_PROTO_TLS1_3)
-    conf->min_tls_version = MBEDTLS_SSL_VERSION_TLS1_3;
-#endif
-#if defined(MBEDTLS_SSL_PROTO_TLS1_2) && defined(MBEDTLS_SSL_PROTO_TLS1_3)
-    if( transport == MBEDTLS_SSL_TRANSPORT_DATAGRAM ||
-        endpoint == MBEDTLS_SSL_IS_SERVER )
-    {
-        /* DTLS 1.3 not supported yet
-         * server side hybrid mode not support yet
-         */
+        conf->min_tls_version = MBEDTLS_SSL_VERSION_TLS1_2;
         conf->max_tls_version = MBEDTLS_SSL_VERSION_TLS1_2;
-    }
-    else
-    {
-        conf->max_tls_version = MBEDTLS_SSL_VERSION_TLS1_3;
-    }
-#elif defined(MBEDTLS_SSL_PROTO_TLS1_2)
-    conf->max_tls_version = MBEDTLS_SSL_VERSION_TLS1_2;
-#elif defined(MBEDTLS_SSL_PROTO_TLS1_3)
-    if( transport != MBEDTLS_SSL_TRANSPORT_DATAGRAM )
-    {
-        conf->max_tls_version = MBEDTLS_SSL_VERSION_TLS1_3;
-    }
-    else
-    {
-        /* DTLS 1.3 not supported yet */
+#else
         return( MBEDTLS_ERR_SSL_FEATURE_UNAVAILABLE );
-    }
 #endif
+    }
+    else
+    {
+#if defined(MBEDTLS_SSL_PROTO_TLS1_2) && defined(MBEDTLS_SSL_PROTO_TLS1_3)
+        if( endpoint == MBEDTLS_SSL_IS_CLIENT )
+        {
+            conf->min_tls_version = MBEDTLS_SSL_VERSION_TLS1_2;
+            conf->max_tls_version = MBEDTLS_SSL_VERSION_TLS1_3;
+        }
+        else
+        /* Hybrid TLS 1.2 / 1.3 is not supported on server side yet */
+        {
+            conf->min_tls_version = MBEDTLS_SSL_VERSION_TLS1_2;
+            conf->max_tls_version = MBEDTLS_SSL_VERSION_TLS1_2;
+        }
+#elif defined(MBEDTLS_SSL_PROTO_TLS1_3)
+        conf->min_tls_version = MBEDTLS_SSL_VERSION_TLS1_3;
+        conf->max_tls_version = MBEDTLS_SSL_VERSION_TLS1_3;
+#elif defined(MBEDTLS_SSL_PROTO_TLS1_2)
+        conf->min_tls_version = MBEDTLS_SSL_VERSION_TLS1_2;
+        conf->max_tls_version = MBEDTLS_SSL_VERSION_TLS1_2;
+#else
+        return( MBEDTLS_ERR_SSL_FEATURE_UNAVAILABLE );
+#endif
+    }
 
     /*
      * Preset-specific defaults
commit	4d3a60475cd76aa493e7d087f54b4c655695c449	[log] [tgz]
author	XiaokangQian <xiaokang.qian@arm.com>	Thu Apr 21 13:46:17 2022 +0000
committer	XiaokangQian <xiaokang.qian@arm.com>	Thu Apr 21 13:46:17 2022 +0000
tree	327ee3754a6db1872dd0c01844fcf1167ca069e1
parent	4e8cd7b903aecb431bd0792282ef056c6f5fa1fa [diff]