psa_export_key: for raw-byte keys, zero the end of the output buffer Skip all writing to the target buffer if its size is 0, since in this case the pointer might be invalid and this would cause the calls to memcpy and memset to have undefined behavior.

commit: 52b9018cf7d8a905fbad9752560a224fc75f6784 [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Mon Oct 29 19:26:27 2018 +0100
committer: Gilles Peskine <Gilles.Peskine@arm.com> Wed Oct 31 14:10:06 2018 +0100
tree: 3817ced175c9d60cf2f5f117b47606beb7e7aa7f
parent: 188c71e38253c2741494b57352e5a15158838ed9 [diff] [blame]
diff --git a/library/psa_crypto.c b/library/psa_crypto.c
index eac1eb4..87f9147 100644
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c

@@ -864,8 +864,12 @@
     {
         if( slot->data.raw.bytes > data_size )
             return( PSA_ERROR_BUFFER_TOO_SMALL );
-        if( slot->data.raw.bytes != 0 )
+        if( data_size != 0 )
+        {
             memcpy( data, slot->data.raw.data, slot->data.raw.bytes );
+            memset( data + slot->data.raw.bytes, 0,
+                    data_size - slot->data.raw.bytes );
+        }
         *data_length = slot->data.raw.bytes;
         return( PSA_SUCCESS );
     }
commit	52b9018cf7d8a905fbad9752560a224fc75f6784	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Mon Oct 29 19:26:27 2018 +0100
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Wed Oct 31 14:10:06 2018 +0100
tree	3817ced175c9d60cf2f5f117b47606beb7e7aa7f
parent	188c71e38253c2741494b57352e5a15158838ed9 [diff] [blame]