commit 1614eb668c3d6e3648cad0bbd678ef2cbfdadc04
author Ronald Cron <ronald.cron@arm.com> Fri Feb 18 17:53:01 2022 +0100
committer Ronald Cron <ronald.cron@arm.com> Tue Mar 29 17:00:29 2022 +0200
tree 5cef3aa23301dce8d132abd4876950aae37a3aa6
parent 86a477f5ee7371560460d780aa26930ea7f8ef87

ssl_client.c: Adapt TLS version writing to TLS 1.2 case

Signed-off-by: Ronald Cron <ronald.cron@arm.com>

library/ssl_client.c

diff --git a/library/ssl_client.c b/library/ssl_client.c
index 8ab53b5..cb9a560 100644
--- a/library/ssl_client.c
+++ b/library/ssl_client.c
@@ -219,14 +219,14 @@
     *out_len = 0;
 
     /*
-     * Write legacy_version
-     *    ProtocolVersion legacy_version = 0x0303;    // TLS v1.2
+     * Write client_version (TLS 1.2) or legacy_version (TLS 1.3)
      *
-     *  For TLS 1.3 we use the legacy version number {0x03, 0x03}
-     *  instead of the true version number.
+     * In all cases this is the TLS 1.2 version.
      */
     MBEDTLS_SSL_CHK_BUF_PTR( p, end, 2 );
-    MBEDTLS_PUT_UINT16_BE( 0x0303, p, 0 );
+    mbedtls_ssl_write_version( MBEDTLS_SSL_MAJOR_VERSION_3,
+                               MBEDTLS_SSL_MINOR_VERSION_3,
+                               ssl->conf->transport, p );
     p += 2;
 
     /* Write the random bytes ( random ).*/