Refuse non-byte-sized raw data keys

Since the key size is stored in bytes, we can't have a key whose size isn't a whole number of bytes.
2025-12-03 11:51:24 +03:00 · 2018-06-21 09:32:47 +02:00
parent 140855615f
commit b54979a297
1 changed files with 2 additions and 0 deletions
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c
@@ -420,6 +420,8 @@ static psa_status_t prepare_raw_data_slot( psa_key_type_t type,
        default:
            return( PSA_ERROR_NOT_SUPPORTED );
    }
+    if( bits % 8 != 0 )
+        return( PSA_ERROR_INVALID_ARGUMENT );

    /* Allocate memory for the key */
    raw->bytes = PSA_BITS_TO_BYTES( bits );