TLS 1.3, plaintext alert: ignore when expecting encrypted by SparkiDev · Pull Request #9466 · wolfSSL/wolfssl

SparkiDev · 2025-11-24T02:54:05Z

Description

In TLS 1.3, ignore valid unencrypted alerts that appear after encryption has started.
Only ignore WOLFSSL_ALERT_COUNT_MAX-1 alerts.

Fixes zd#20857

Testing

./configure --disable-shared
make
./tests/unit.test -test_tls13_plaintext_alert

Checklist

added tests
updated/added doxygen
updated appropriate READMEs
Updated manual and documentation

devin-ai-integration · 2025-11-24T02:54:55Z

🛟 Devin Lifeguard found 1 likely issues in this PR

check-all-return-codes snippet snippet snippet: Capture and assert the return value of wolfSSL_SetIORecv, wolfSSL_SetIOSend and wolfSSL_SetIOReadCtx (e.g. ExpectIntEQ(wolfSSL_SetIORecv(ctx, MbRecv), WOLFSSL_SUCCESS);).

@SparkiDev
please take a look at the above issues which Devin flagged. Devin will not fix these issues automatically.

rizlik · 2025-11-24T08:20:23Z

If the goal of this PR is to protect against DoS I don't think it's a good idea:

under TCP one can easily forge a RST packet and close the connection
peer can still forge arbitrary packets that cause the handshake to error out (handshake, app_data) ecc

UDP is different but DtlsShouldDrop ignores plaintext packet after handshake keys are computed.

SparkiDev · 2025-11-24T09:30:29Z

DoS can be done by any message, it doesn't have to be a valid alert.
But yes that is the report.

Instead the PR is about skipping alerts that were sent by the client before it received anything from the server to indicate it should be encrypted. OpenSSL and others do this.

May make this a compile time option.

SparkiDev · 2025-11-24T09:33:32Z

retest this please

julek-wolfssl

I still don't agree with fixing it. IMO ignoring plaintext alerts is going to introduce edge cases in the transition period between plaintext and ciphertext. This in turn can hang clients/servers that think the connection is still alive when its really dead. The argument that its a DoS of a connection doesn't make any sense since injecting garbage would also kill the connection.

SparkiDev · 2025-12-09T23:46:43Z

Changed to be compile time option when WOLFSSL_TLS13_IGNORE_PT_ALERT_ON_ENC is defined.
Test is testing as many alerts as is required to cause an error or one less being OK.
Test is checking that without define that an error is returned.

SparkiDev · 2025-12-10T03:46:50Z

retest this please

julek-wolfssl

Please add WOLFSSL_TLS13_IGNORE_PT_ALERT_ON_ENC to os-check.yml. I think a good configuration would be one that explicitly enables TLS and DTLS both 1.2 and 1.3.

src/internal.c

SparkiDev · 2025-12-16T11:15:01Z

rebased and add configuration to os-check.yml

.github/workflows/os-check.yml

SparkiDev · 2025-12-16T23:27:57Z

rebased and updated os-check.yml to use CPPFLAGS

SparkiDev · 2025-12-16T23:28:03Z

retest this please

generic:
wolf-linux-cloud-node-d3ayn7 was marked offline: Connection was broken

In TLS 1.3, ignore valid unencrypted alerts that appear after encryption has started. Only ignore WOLFSSL_ALERT_COUNT_MAX-1 alerts.

SparkiDev · 2025-12-22T23:52:35Z

retest this please

SparkiDev self-assigned this Nov 24, 2025

SparkiDev force-pushed the tls13_pt_alert_when_enc branch 2 times, most recently from 130c70d to 8943d6c Compare November 24, 2025 08:08

dgarske assigned wolfSSL-Bot Dec 3, 2025

dgarske requested a review from julek-wolfssl December 4, 2025 19:42

dgarske previously approved these changes Dec 4, 2025

View reviewed changes

julek-wolfssl requested changes Dec 5, 2025

View reviewed changes

julek-wolfssl unassigned wolfSSL-Bot Dec 8, 2025

SparkiDev dismissed dgarske’s stale review via e2938ed December 9, 2025 23:44

SparkiDev force-pushed the tls13_pt_alert_when_enc branch from e2938ed to ebc15e8 Compare December 9, 2025 23:44

SparkiDev assigned julek-wolfssl Dec 9, 2025

SparkiDev force-pushed the tls13_pt_alert_when_enc branch 2 times, most recently from 8a94314 to 9bce18f Compare December 10, 2025 02:14

SparkiDev removed their assignment Dec 10, 2025

julek-wolfssl requested changes Dec 15, 2025

View reviewed changes

src/internal.c Outdated Show resolved Hide resolved

julek-wolfssl assigned SparkiDev and unassigned julek-wolfssl Dec 15, 2025

SparkiDev force-pushed the tls13_pt_alert_when_enc branch from 9bce18f to bfc90a4 Compare December 16, 2025 11:14

SparkiDev assigned julek-wolfssl and unassigned SparkiDev Dec 16, 2025

julek-wolfssl requested changes Dec 16, 2025

View reviewed changes

.github/workflows/os-check.yml Outdated Show resolved Hide resolved

julek-wolfssl assigned SparkiDev and unassigned julek-wolfssl Dec 16, 2025

SparkiDev force-pushed the tls13_pt_alert_when_enc branch from bfc90a4 to 8885e59 Compare December 16, 2025 22:37

SparkiDev assigned julek-wolfssl and unassigned SparkiDev Dec 17, 2025

julek-wolfssl previously approved these changes Dec 17, 2025

View reviewed changes

julek-wolfssl assigned wolfSSL-Bot and unassigned julek-wolfssl Dec 17, 2025

JacobBarthelmeh previously approved these changes Dec 19, 2025

View reviewed changes

TLS 1.3, plaintext alert: ignore when expecting encrypted

b766f11

In TLS 1.3, ignore valid unencrypted alerts that appear after encryption has started. Only ignore WOLFSSL_ALERT_COUNT_MAX-1 alerts.

SparkiDev dismissed stale reviews from JacobBarthelmeh and julek-wolfssl via b766f11 December 22, 2025 23:09

SparkiDev force-pushed the tls13_pt_alert_when_enc branch from 8885e59 to b766f11 Compare December 22, 2025 23:09

SparkiDev assigned JacobBarthelmeh Dec 23, 2025

dgarske unassigned JacobBarthelmeh Dec 23, 2025

dgarske approved these changes Dec 23, 2025

View reviewed changes

dgarske merged commit 776b312 into wolfSSL:master Dec 23, 2025
405 of 408 checks passed

Conversation

SparkiDev commented Nov 24, 2025

Description

Testing

Checklist

Uh oh!

devin-ai-integration bot commented Nov 24, 2025

Uh oh!

rizlik commented Nov 24, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

SparkiDev commented Nov 24, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

SparkiDev commented Nov 24, 2025

Uh oh!

julek-wolfssl left a comment

Choose a reason for hiding this comment

Uh oh!

SparkiDev commented Dec 9, 2025

Uh oh!

SparkiDev commented Dec 10, 2025

Uh oh!

julek-wolfssl left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

SparkiDev commented Dec 16, 2025

Uh oh!

Uh oh!

SparkiDev commented Dec 16, 2025

Uh oh!

SparkiDev commented Dec 16, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

SparkiDev commented Dec 22, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

6 participants

rizlik commented Nov 24, 2025 •

edited

Loading

SparkiDev commented Nov 24, 2025 •

edited

Loading

SparkiDev commented Dec 16, 2025 •

edited

Loading