From fbf039932ad0a824b3b222b659c4ec76bd35bc2e Mon Sep 17 00:00:00 2001
From: Jerry Yu <jerry.h.yu@arm.com>
Date: Mon, 4 Dec 2023 10:00:37 +0800
Subject: [PATCH] Send decode error alert when EOED parsing fail

Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>
---
 library/ssl_tls13_server.c | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/library/ssl_tls13_server.c b/library/ssl_tls13_server.c
index 2e51572a62..65688cffc8 100644
--- a/library/ssl_tls13_server.c
+++ b/library/ssl_tls13_server.c
@@ -2910,7 +2910,12 @@ static int ssl_tls13_parse_end_of_early_data(mbedtls_ssl_context *ssl,
      * struct {} EndOfEarlyData;
      */
     ((void) ssl);
-    return buf == end ? 0 : MBEDTLS_ERR_SSL_UNEXPECTED_MESSAGE;
+    if (buf != end) {
+        MBEDTLS_SSL_PEND_FATAL_ALERT(MBEDTLS_SSL_ALERT_MSG_DECODE_ERROR,
+                                     MBEDTLS_ERR_SSL_DECODE_ERROR);
+        return MBEDTLS_ERR_SSL_DECODE_ERROR;
+    }
+    return 0;
 }
 
 MBEDTLS_CHECK_RETURN_CRITICAL