From b48894eca4a07a20a2806791765cf19471d80f8a Mon Sep 17 00:00:00 2001
From: XiaokangQian <xiaokang.qian@arm.com>
Date: Mon, 17 Jan 2022 02:05:52 +0000
Subject: [PATCH] Add buffer check for named group

Signed-off-by: XiaokangQian <xiaokang.qian@arm.com>
---
 library/ssl_tls13_client.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/library/ssl_tls13_client.c b/library/ssl_tls13_client.c
index c54cb755d..3b2313aa3 100644
--- a/library/ssl_tls13_client.c
+++ b/library/ssl_tls13_client.c
@@ -438,6 +438,7 @@ static int ssl_tls13_hrr_check_key_share_ext( mbedtls_ssl_context *ssl,
     MBEDTLS_SSL_DEBUG_BUF( 3, "key_share extension", p, end - buf );
 
     /* Read selected_group */
+    MBEDTLS_SSL_CHK_BUF_READ_PTR( p, end, 2 );
     tls_id = MBEDTLS_GET_UINT16_BE( p, 0 );
     MBEDTLS_SSL_DEBUG_MSG( 3, ( "selected_group ( %d )", tls_id ) );