Do not generate new random number while receiving HRR
Signed-off-by: BensonLiou <momo1208@gmail.com>
diff --git a/library/ssl_client.c b/library/ssl_client.c
index 270db41..dd10d72 100644
--- a/library/ssl_client.c
+++ b/library/ssl_client.c
@@ -797,10 +797,15 @@
(ssl->handshake->cookie == NULL))
#endif
{
- ret = ssl_generate_random(ssl);
- if (ret != 0) {
- MBEDTLS_SSL_DEBUG_RET(1, "Random bytes generation failed", ret);
- return ret;
+#if defined(MBEDTLS_SSL_PROTO_TLS1_3)
+ if (ssl->handshake->hello_retry_request_count == 0)
+#endif
+ {
+ ret = ssl_generate_random(ssl);
+ if (ret != 0) {
+ MBEDTLS_SSL_DEBUG_RET(1, "Random bytes generation failed", ret);
+ return ret;
+ }
}
}