commit 3772afef0f4e3c83d913b52b9a21be530235dc97
author Ronald Cron <ronald.cron@arm.com> Mon Feb 08 16:10:05 2021 +0100
committer Ronald Cron <ronald.cron@arm.com> Tue Feb 16 09:07:46 2021 +0100
tree c0a2798991459aee5b2716e0b72ce454e987937c
parent 9539126549dbe3e100149b66426b960aa0bcfc28

psa: key generation: Use PSA_EXPORT_KEY_OUTPUT_SIZE

Use PSA_EXPORT_KEY_OUTPUT_SIZE macro to compute the
size of the buffer to contain the generated key
instead of computing it alongside the key type and
size validation.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>

library/psa_crypto.c

diff --git a/library/psa_crypto.c b/library/psa_crypto.c
index 0fd2469..782e261 100644
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c
@@ -5957,24 +5957,21 @@
 }
 #endif /* MBEDTLS_PSA_INJECT_ENTROPY */
 
-/** Get the key buffer size for the key material in export format
+/** Validate the key type and size for key generation
  *
- * \param[in] type  The key type
- * \param[in] bits  The number of bits of the key
- * \param[out] key_buffer_size  Minimum buffer size to contain the key material
- *                              in export format
+ * \param  type  The key type
+ * \param  bits  The number of bits of the key
  *
  * \retval #PSA_SUCCESS
- *         The minimum size for a buffer to contain the key material in export
- *         format has been returned successfully.
+ *         The key type and size are valid.
  * \retval #PSA_ERROR_INVALID_ARGUMENT
  *         The size in bits of the key is not valid.
  * \retval #PSA_ERROR_NOT_SUPPORTED
  *         The type and/or the size in bits of the key or the combination of
  *         the two is not supported.
  */
-static psa_status_t psa_get_key_buffer_size(
-    psa_key_type_t type, size_t bits, size_t *key_buffer_size )
+static psa_status_t psa_validate_key_type_and_size_for_key_generation(
+    psa_key_type_t type, size_t bits )
 {
     psa_status_t status = PSA_ERROR_CORRUPTION_DETECTED;
 
@@ -5983,7 +5980,6 @@
         status = validate_unstructured_key_bit_size( type, bits );
         if( status != PSA_SUCCESS )
             return( status );
-        *key_buffer_size = PSA_BITS_TO_BYTES( bits );
     }
     else
 #if defined(PSA_WANT_KEY_TYPE_RSA_KEY_PAIR)
@@ -5996,8 +5992,6 @@
          * in psa_import_rsa_key(). */
         if( bits % 8 != 0 )
             return( PSA_ERROR_NOT_SUPPORTED );
-
-        *key_buffer_size = PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE( bits );
     }
     else
 #endif /* defined(PSA_WANT_KEY_TYPE_RSA_KEY_PAIR) */
@@ -6005,7 +5999,6 @@
 #if defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR)
     if( PSA_KEY_TYPE_IS_ECC( type ) && PSA_KEY_TYPE_IS_KEY_PAIR( type ) )
     {
-        *key_buffer_size = PSA_BITS_TO_BYTES( bits );
     }
     else
 #endif /* defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR) */
@@ -6098,17 +6091,22 @@
         if ( PSA_KEY_LIFETIME_GET_LOCATION( attributes->core.lifetime ) ==
              PSA_KEY_LOCATION_LOCAL_STORAGE )
         {
-            status = psa_get_key_buffer_size( attributes->core.type,
-                                              attributes->core.bits,
-                                              &key_buffer_size );
+            status = psa_validate_key_type_and_size_for_key_generation(
+                attributes->core.type, attributes->core.bits );
+            if( status != PSA_SUCCESS )
+                goto exit;
+
+            key_buffer_size = PSA_EXPORT_KEY_OUTPUT_SIZE(
+                                  attributes->core.type,
+                                  attributes->core.bits );
         }
         else
         {
             status = psa_driver_wrapper_get_key_buffer_size(
                          attributes, &key_buffer_size );
+            if( status != PSA_SUCCESS )
+                goto exit;
         }
-        if( status != PSA_SUCCESS )
-            goto exit;
 
         status = psa_allocate_buffer_to_slot( slot, key_buffer_size );
         if( status != PSA_SUCCESS )