make sure to only pass handshake messages that keys are available for

[marten-seemann]

Should fix https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=25397.

What's happening here is that we're replacing the EncryptedExtensions message with a NewSessionTicket message (at the correct encryption level: 1-RTT). At this point, the handshake hasn't completed yet, so the client would wait for that.
This can never happen in practice: As the handshake is not yet complete, we wouldn't even be able to open a 1-RTT packet.

The fix for the fuzz-test is straightforward: Check if the corresponding AEAD opener is available before injecting a message at a given encryption level.

[codecov]

Codecov Report

Merging #2739 into master will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##           master    #2739   +/-   ##
=======================================
  Coverage   86.52%   86.52%           
=======================================
  Files         128      128           
  Lines        9960     9960           
=======================================
  Hits         8617     8617           
  Misses       1010     1010           
  Partials      333      333           

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update cd78ea9...3f40b2f. Read the comment docs.