Don't skip over early_data if we sent an HRR

It is not valid to send early_data after an HRR has been received. Fixes #6734 Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from #6737)
openssl · Jul 19, 2018 · 1c1e416 · 1c1e416
1 parent 1c073b9
commit 1c1e416
Showing 1 changed file with 3 additions and 1 deletion.
diff --git a/ssl/statem/statem.c b/ssl/statem/statem.c
@@ -179,7 +179,9 @@ int ossl_statem_skip_early_data(SSL *s)
     if (s->ext.early_data != SSL_EARLY_DATA_REJECTED)
         return 0;
 
-    if (!s->server || s->statem.hand_state != TLS_ST_EARLY_DATA)
+    if (!s->server
+            || s->statem.hand_state != TLS_ST_EARLY_DATA
+            || s->hello_retry_request == SSL_HRR_COMPLETE)
         return 0;
 
     return 1;