TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / c48f43b44de534af4a89aae26cefebdba0a14aca^! / . / library
commitc48f43b44de534af4a89aae26cefebdba0a14aca[log] [tgz]
authorMateusz Starzyk <mateusz.starzyk@mobica.com>Mon Oct 04 13:46:38 2021 +0200
committerMateusz Starzyk <mateusz.starzyk@mobica.com>Mon Oct 04 13:54:55 2021 +0200
tree46025d6176c2440e49179d69daaa007a3cef4940
parentf28261fc14da5f52b460c903e027aff187f9cf5f [diff]
Fix PSA AEAD GCM's update output buffer length verification.

Move GCM's update output buffer length verification
from PSA AEAD to the built-in implementation of the GCM.

Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>

diff --git a/library/gcm.c b/library/gcm.c
index 910646b..6d62564 100644
--- a/library/gcm.c
+++ b/library/gcm.c

@@ -431,7 +431,7 @@
     unsigned char ectr[16];
 
     if( output_size < input_length )
-        return( MBEDTLS_ERR_GCM_BAD_INPUT );
+        return( MBEDTLS_ERR_GCM_BUFFER_TOO_SMALL );
     GCM_VALIDATE_RET( output_length != NULL );
     *output_length = input_length;
 

diff --git a/library/psa_crypto_aead.c b/library/psa_crypto_aead.c
index 673cdf3..c7f7352 100644
--- a/library/psa_crypto_aead.c
+++ b/library/psa_crypto_aead.c

@@ -510,9 +510,6 @@
 #if defined(MBEDTLS_PSA_BUILTIN_ALG_GCM)
     if( operation->alg == PSA_ALG_GCM )
     {
-        if( output_size < input_length )
-            return( PSA_ERROR_BUFFER_TOO_SMALL );
-
         status =  mbedtls_to_psa_error(
             mbedtls_gcm_update( &operation->ctx.gcm,
                                 input, input_length,