From b8ac19a2961468c3ca20ed4ea64153e3765c2110 Mon Sep 17 00:00:00 2001
From: Jerry Yu <jerry.h.yu@arm.com>
Date: Thu, 5 May 2022 11:35:53 +0800
Subject: [PATCH] send alert when second hrr needed

Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>
---
 library/ssl_tls13_server.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/library/ssl_tls13_server.c b/library/ssl_tls13_server.c
index ec0df65f90..3730483d8a 100644
--- a/library/ssl_tls13_server.c
+++ b/library/ssl_tls13_server.c
@@ -1384,6 +1384,8 @@ static int ssl_tls13_write_hello_retry_request_coordinate(
     if( ssl->handshake->hello_retry_request_count > 0 )
     {
         MBEDTLS_SSL_DEBUG_MSG( 1, ( "Too many HRRs" ) );
+        MBEDTLS_SSL_PEND_FATAL_ALERT( MBEDTLS_SSL_ALERT_MSG_UNEXPECTED_MESSAGE,
+                                      MBEDTLS_ERR_SSL_UNEXPECTED_MESSAGE );
         return( MBEDTLS_ERR_SSL_HANDSHAKE_FAILURE );
     }