tls13: Add missing buffer overread check Signed-off-by: Ronald Cron <ronald.cron@arm.com>

commit: 28271061993266a333e3ca5935448668ab164e50 [log] [tgz]
author: Ronald Cron <ronald.cron@arm.com> Fri Jun 10 14:43:55 2022 +0200
committer: Ronald Cron <ronald.cron@arm.com> Tue Jun 28 09:18:42 2022 +0200
tree: bcddfa848aa013a6987fbc6c61e4ab1790d10ded
parent: b94854f8e3987f459e85f0df3787cf30267b66aa [diff]
diff --git a/library/ssl_tls13_client.c b/library/ssl_tls13_client.c
index ead0db8..9281e6e 100644
--- a/library/ssl_tls13_client.c
+++ b/library/ssl_tls13_client.c

@@ -667,6 +667,7 @@
      * - cipher_suite               2 bytes
      * - legacy_compression_method  1 byte
      */
+     MBEDTLS_SSL_CHK_BUF_READ_PTR( p, end, legacy_session_id_echo_len + 4 );
      p += legacy_session_id_echo_len + 4;
 
     /* Case of no extension */
commit	28271061993266a333e3ca5935448668ab164e50	[log] [tgz]
author	Ronald Cron <ronald.cron@arm.com>	Fri Jun 10 14:43:55 2022 +0200
committer	Ronald Cron <ronald.cron@arm.com>	Tue Jun 28 09:18:42 2022 +0200
tree	bcddfa848aa013a6987fbc6c61e4ab1790d10ded
parent	b94854f8e3987f459e85f0df3787cf30267b66aa [diff]