Don't skip over early_data if we sent an HRR

It is not valid to send early_data after an HRR has been received. Fixes #6734 Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from https://github.com/openssl/openssl/pull/6737)
2025-02-17 14:32:04 +08:00 · 2018-07-18 11:16:28 +01:00 · 2018-07-18 11:16:28 +01:00 · 1c1e4160e0
commit 1c1e4160e0
parent 1c073b9521
1 changed files with 3 additions and 1 deletions
--- a/ssl/statem/statem.c
+++ b/ssl/statem/statem.c
@ -179,7 +179,9 @@ int ossl_statem_skip_early_data(SSL *s)
    if (s->ext.early_data != SSL_EARLY_DATA_REJECTED)
        return 0;

-    if (!s->server || s->statem.hand_state != TLS_ST_EARLY_DATA)
+    if (!s->server
+            || s->statem.hand_state != TLS_ST_EARLY_DATA
+            || s->hello_retry_request == SSL_HRR_COMPLETE)
        return 0;

    return 1;