Fix debug print of encrypted extensions Perform debug print of encrypted extensions buffer only after the buffer length was checked successfully Signed-off-by: Jan Bruckner <jan@janbruckner.de>

commit: 5a3629b6132c7dd4a517ebb6e572bb6dbaeb9888 [log] [tgz]
author: Jan Bruckner <jan@janbruckner.de> Thu Feb 23 12:08:09 2023 +0100
committer: Jan Bruckner <jan@janbruckner.de> Tue Mar 14 08:41:25 2023 +0100
tree: 850f60411f33ee6094ef0c11d36e77bd7e9c1569
parent: 2ba9794adcba7be763530ef405d9c2b14a5c961d [diff] [blame]
diff --git a/library/ssl_tls13_client.c b/library/ssl_tls13_client.c
index a72f770..8697c53 100644
--- a/library/ssl_tls13_client.c
+++ b/library/ssl_tls13_client.c

@@ -2117,10 +2117,11 @@
     extensions_len = MBEDTLS_GET_UINT16_BE(p, 0);
     p += 2;
 
-    MBEDTLS_SSL_DEBUG_BUF(3, "encrypted extensions", p, extensions_len);
     MBEDTLS_SSL_CHK_BUF_READ_PTR(p, end, extensions_len);
     extensions_end = p + extensions_len;
 
+    MBEDTLS_SSL_DEBUG_BUF(3, "encrypted extensions", p, extensions_len);
+
     handshake->received_extensions = MBEDTLS_SSL_EXT_MASK_NONE;
 
     while (p < extensions_end) {
commit	5a3629b6132c7dd4a517ebb6e572bb6dbaeb9888	[log] [tgz]
author	Jan Bruckner <jan@janbruckner.de>	Thu Feb 23 12:08:09 2023 +0100
committer	Jan Bruckner <jan@janbruckner.de>	Tue Mar 14 08:41:25 2023 +0100
tree	850f60411f33ee6094ef0c11d36e77bd7e9c1569
parent	2ba9794adcba7be763530ef405d9c2b14a5c961d [diff] [blame]