From 35178fe7ecd473328248c3f0cc0dc3a0603d2a21 Mon Sep 17 00:00:00 2001
From: BensonLiou <momo1208@gmail.com>
Date: Thu, 11 Jan 2024 15:28:17 +0800
Subject: [PATCH] Do not generate new random number while receiving HRR

Signed-off-by: BensonLiou <momo1208@gmail.com>
---
 library/ssl_client.c | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

diff --git a/library/ssl_client.c b/library/ssl_client.c
index 270db41683..dd10d72fc6 100644
--- a/library/ssl_client.c
+++ b/library/ssl_client.c
@@ -797,10 +797,15 @@ static int ssl_prepare_client_hello(mbedtls_ssl_context *ssl)
         (ssl->handshake->cookie == NULL))
 #endif
     {
-        ret = ssl_generate_random(ssl);
-        if (ret != 0) {
-            MBEDTLS_SSL_DEBUG_RET(1, "Random bytes generation failed", ret);
-            return ret;
+#if defined(MBEDTLS_SSL_PROTO_TLS1_3)
+        if (ssl->handshake->hello_retry_request_count == 0)
+#endif
+        {
+            ret = ssl_generate_random(ssl);
+            if (ret != 0) {
+                MBEDTLS_SSL_DEBUG_RET(1, "Random bytes generation failed", ret);
+                return ret;
+            }
         }
     }