From f19989da313724e54a624c22846f18bb90cb4cba Mon Sep 17 00:00:00 2001
From: Ronald Cron <ronald.cron@arm.com>
Date: Thu, 22 Feb 2024 12:05:42 +0100
Subject: [PATCH] tls13: Improve sanity check in get_early_data_status

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
---
 library/ssl_tls13_client.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/library/ssl_tls13_client.c b/library/ssl_tls13_client.c
index 5fbcf45e2..df0519a08 100644
--- a/library/ssl_tls13_client.c
+++ b/library/ssl_tls13_client.c
@@ -2321,7 +2321,7 @@ cleanup:
 
 int mbedtls_ssl_get_early_data_status(mbedtls_ssl_context *ssl)
 {
-    if ((ssl->conf->endpoint == MBEDTLS_SSL_IS_SERVER) ||
+    if ((ssl->conf->endpoint != MBEDTLS_SSL_IS_CLIENT) ||
         (!mbedtls_ssl_is_handshake_over(ssl))) {
         return MBEDTLS_ERR_SSL_BAD_INPUT_DATA;
     }