commit 36ee5d0fbfd5941f9ae7f1aa105a3d980235ffd5
author Jaeden Amero <jaeden.amero@arm.com> Tue Feb 19 09:25:10 2019 +0000
committer Jaeden Amero <jaeden.amero@arm.com> Wed Feb 20 15:27:41 2019 +0000
tree 6f0fbb973f48f146d8839ab139d4b3f50375dcf1
parent 11aa7ee1891df72cedfd4453fbe40207a6d2f526

psa: Disallow repeated setup

Calling psa_*_setup() twice on a MAC, cipher, or hash context should
result in a PSA_ERROR_BAD_STATE error because the operation has already
been set up.

Fixes #10

library/psa_crypto.c

diff --git a/library/psa_crypto.c b/library/psa_crypto.c
index 1f96ae0..40c676a 100644
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c
@@ -1379,7 +1379,13 @@
                              psa_algorithm_t alg )
 {
     int ret;
-    operation->alg = 0;
+
+    /* A context must be freshly initialized before it can be set up. */
+    if( operation->alg != 0 )
+    {
+        return( PSA_ERROR_BAD_STATE );
+    }
+
     switch( alg )
     {
 #if defined(MBEDTLS_MD2_C)
@@ -1998,6 +2004,12 @@
     unsigned char truncated = PSA_MAC_TRUNCATED_LENGTH( alg );
     psa_algorithm_t full_length_alg = PSA_ALG_FULL_LENGTH_MAC( alg );
 
+    /* A context must be freshly initialized before it can be set up. */
+    if( operation->alg != 0 )
+    {
+        return( PSA_ERROR_BAD_STATE );
+    }
+
     status = psa_mac_init( operation, full_length_alg );
     if( status != PSA_SUCCESS )
         return( status );
@@ -2909,6 +2921,12 @@
                               PSA_KEY_USAGE_ENCRYPT :
                               PSA_KEY_USAGE_DECRYPT );
 
+    /* A context must be freshly initialized before it can be set up. */
+    if( operation->alg != 0 )
+    {
+        return( PSA_ERROR_BAD_STATE );
+    }
+
     status = psa_cipher_init( operation, alg );
     if( status != PSA_SUCCESS )
         return( status );