tls12: check buffer size before memcpy-ing data into it Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>

commit: 46520ea52d99f0d1fff225717a96294dc57cf7b7 [log] [tgz]
author: Valerio Setti <valerio.setti@nordicsemi.no> Tue Jul 25 11:41:28 2023 +0200
committer: Valerio Setti <valerio.setti@nordicsemi.no> Tue Jul 25 11:41:28 2023 +0200
tree: 0e7ee00a94ae3010339d8dbc8f81a1283b0063b8
parent: c9ae8622252bf3de245be745b8b408414ae9bc9d [diff] [blame]
diff --git a/library/ssl_tls12_client.c b/library/ssl_tls12_client.c
index 9f37fdc..ff116ad 100644
--- a/library/ssl_tls12_client.c
+++ b/library/ssl_tls12_client.c

@@ -1774,9 +1774,10 @@
         return MBEDTLS_ERR_SSL_DECODE_ERROR;
     }
 
-    /* xxdh_psa_peerkey is sized after maximum supported FFDH public key.
-     * PSA_VENDOR_FFDH_MAX_KEY_BITS is always larger than EC public key, so
-     * we can skip the buffer size check before the memcpy-ing data into it. */
+    if (ecpoint_len > PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS)) {
+        return MBEDTLS_ERR_SSL_HANDSHAKE_FAILURE;
+    }
+
     memcpy(handshake->xxdh_psa_peerkey, *p, ecpoint_len);
     handshake->xxdh_psa_peerkey_len = ecpoint_len;
     *p += ecpoint_len;
commit	46520ea52d99f0d1fff225717a96294dc57cf7b7	[log] [tgz]
author	Valerio Setti <valerio.setti@nordicsemi.no>	Tue Jul 25 11:41:28 2023 +0200
committer	Valerio Setti <valerio.setti@nordicsemi.no>	Tue Jul 25 11:41:28 2023 +0200
tree	0e7ee00a94ae3010339d8dbc8f81a1283b0063b8
parent	c9ae8622252bf3de245be745b8b408414ae9bc9d [diff] [blame]