Separate accepting TLS 1.3 middlebox compatibility from sending it The compile-time option MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE gates both support for interoperability with a peer that uses middlebox compatibility mode, and support for activating that mode ourselves. Change code that is only needed for interoperability to be guarded by MBEDTLS_SSL_TLS1_3_ACCEPT_COMPATIBILITY_MODE. As of this commit, MBEDTLS_SSL_TLS1_3_ACCEPT_COMPATIBILITY_MODE is always enabled: there is no way to disable it, and there are no tests with it disabled. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>

commit: 73a406ee60db8f59b3abfb7cf50d310e89102d65 [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Fri Sep 13 13:44:29 2024 +0200
committer: Gilles Peskine <Gilles.Peskine@arm.com> Tue Sep 24 18:58:49 2024 +0200
tree: 858a7fb9c9c0558d0ec2f7ad3a5e2bdae16deba6
parent: 7b02c1f3b63de90ae009a3bd607ae7d1384ad761 [diff] [blame]
diff --git a/library/ssl_misc.h b/library/ssl_misc.h
index 47e56e8..23d7b22 100644
--- a/library/ssl_misc.h
+++ b/library/ssl_misc.h

@@ -65,6 +65,13 @@
 /* Faked handshake message identity for HelloRetryRequest. */
 #define MBEDTLS_SSL_TLS1_3_HS_HELLO_RETRY_REQUEST (-MBEDTLS_SSL_HS_SERVER_HELLO)
 
+/* TLS 1.3: Interoperate with peers that support middlebox compatibility
+ * mode, but don't produce the relevant messages ourselves.
+ *
+ * This is always enabled (with effect only when TLS 1.3 is enabled).
+ */
+#define MBEDTLS_SSL_TLS1_3_ACCEPT_COMPATIBILITY_MODE
+
 /*
  * Internal identity of handshake extensions
  */
commit	73a406ee60db8f59b3abfb7cf50d310e89102d65	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Fri Sep 13 13:44:29 2024 +0200
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Tue Sep 24 18:58:49 2024 +0200
tree	858a7fb9c9c0558d0ec2f7ad3a5e2bdae16deba6
parent	7b02c1f3b63de90ae009a3bd607ae7d1384ad761 [diff] [blame]