commit 60116aee9e86206caf8e16d8b2da7a4205d9735a
author Paul Elliott <paul.elliott@arm.com> Wed Sep 29 14:19:11 2021 +0100
committer Paul Elliott <paul.elliott@arm.com> Wed Sep 29 14:40:16 2021 +0100
tree f103ec290f4427b0358019d9b851f4e41b709b72
parent 355f59edbe7ef021131f1dc378a10013eb668c5f

Invert logic on nonce length tests

Signed-off-by: Paul Elliott <paul.elliott@arm.com>

library/psa_crypto.c

diff --git a/library/psa_crypto.c b/library/psa_crypto.c
index ee2eec5..ece64b1 100644
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c
@@ -3630,27 +3630,27 @@
          * PSA_AEAD_NONCE_MAX_SIZE, as large nonces are hashed to a shorter
          * size, which can then lead to collisions if you encrypt a very
          * large number of messages.*/
-        if( nonce_length == 0 )
-            return( PSA_ERROR_NOT_SUPPORTED );
+        if( nonce_length != 0 )
+            return( PSA_SUCCESS );
     }
 #endif /* PSA_WANT_ALG_GCM */
 #if defined(PSA_WANT_ALG_CCM)
     if( base_alg == PSA_ALG_CCM )
     {
-        if( nonce_length < 7 || nonce_length > 13 )
-            return( PSA_ERROR_NOT_SUPPORTED );
+        if( nonce_length >= 7 && nonce_length <= 13 )
+            return( PSA_SUCCESS );
     }
     else
 #endif /* PSA_WANT_ALG_CCM */
 #if defined(PSA_WANT_ALG_CHACHA20_POLY1305)
     if( base_alg == PSA_ALG_CHACHA20_POLY1305 )
     {
-        if( nonce_length != 12 )
-            return( PSA_ERROR_NOT_SUPPORTED );
+        if( nonce_length == 12 )
+            return( PSA_SUCCESS );
     }
 #endif /* PSA_WANT_ALG_CHACHA20_POLY1305 */
 
-    return PSA_SUCCESS;
+    return( PSA_ERROR_NOT_SUPPORTED );
 }
 
 psa_status_t psa_aead_encrypt( mbedtls_svc_key_id_t key,