Change the buffer boundary check and alert type Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>

commit: 7b2d4efee8b8d35b783ddf3a3bb7c263f2c04da0 [log] [tgz]
author: XiaokangQian <xiaokang.qian@arm.com> Wed Oct 13 10:19:02 2021 +0000
committer: XiaokangQian <xiaokang.qian@arm.com> Thu Oct 28 01:49:37 2021 +0000
tree: 2da27fb8001db0d0f9d451009417e60a39a482d1
parent: 8db25fffb48ca5c7c5a67d288451428e1652da8a [diff] [blame]
diff --git a/library/ssl_tls13_client.c b/library/ssl_tls13_client.c
index 68f5ae5..2c2d0f3 100644
--- a/library/ssl_tls13_client.c
+++ b/library/ssl_tls13_client.c

@@ -1510,11 +1510,11 @@
     }
 
     /* Check that we consumed all the message. */
-    if( p != extensions_end )
+    if( p != end )
     {
         MBEDTLS_SSL_DEBUG_MSG( 1, ( "EncryptedExtension lengths misaligned" ) );
-        MBEDTLS_SSL_PEND_FATAL_ALERT( MBEDTLS_SSL_ALERT_MSG_ILLEGAL_PARAMETER,   \
-                                      MBEDTLS_ERR_SSL_ILLEGAL_PARAMETER );
+        MBEDTLS_SSL_PEND_FATAL_ALERT( MBEDTLS_SSL_ALERT_MSG_DECODE_ERROR,   \
+                                      MBEDTLS_ERR_SSL_DECODE_ERROR );
         return( MBEDTLS_ERR_SSL_DECODE_ERROR );
     }
commit	7b2d4efee8b8d35b783ddf3a3bb7c263f2c04da0	[log] [tgz]
author	XiaokangQian <xiaokang.qian@arm.com>	Wed Oct 13 10:19:02 2021 +0000
committer	XiaokangQian <xiaokang.qian@arm.com>	Thu Oct 28 01:49:37 2021 +0000
tree	2da27fb8001db0d0f9d451009417e60a39a482d1
parent	8db25fffb48ca5c7c5a67d288451428e1652da8a [diff] [blame]