SE keys: save the bit size in storage For a key in a secure element, save the bit size alongside the slot number. This is a quick-and-dirty implementation where the storage format depends on sizeof(size_t), which is fragile. This should be replaced by a more robust implementation before going into production.

commit: e60d1d08a4c746eba03502c6a178efa20256eb1b [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Wed Jul 24 20:27:59 2019 +0200
committer: Gilles Peskine <Gilles.Peskine@arm.com> Mon Jul 29 18:11:09 2019 +0200
tree: 91afea20f347f1542cc43542684bfd577b242f4b
parent: 1801740a7c82137f637a2ad68384e22a60f826cf [diff] [blame]
diff --git a/library/psa_crypto_slot_management.c b/library/psa_crypto_slot_management.c
index 6b87ea0..e63dcda 100644
--- a/library/psa_crypto_slot_management.c
+++ b/library/psa_crypto_slot_management.c

@@ -138,13 +138,12 @@
 #if defined(MBEDTLS_PSA_CRYPTO_SE_C)
     if( psa_key_lifetime_is_external( p_slot->lifetime ) )
     {
-        if( key_data_length != sizeof( p_slot->data.se.slot_number ) )
+        if( key_data_length != sizeof( p_slot->data.se ) )
         {
             status = PSA_ERROR_STORAGE_FAILURE;
             goto exit;
         }
-        memcpy( &p_slot->data.se.slot_number, key_data,
-                sizeof( p_slot->data.se.slot_number ) );
+        memcpy( &p_slot->data.se, key_data, sizeof( p_slot->data.se ) );
     }
     else
 #endif /* MBEDTLS_PSA_CRYPTO_SE_C */
commit	e60d1d08a4c746eba03502c6a178efa20256eb1b	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Wed Jul 24 20:27:59 2019 +0200
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Mon Jul 29 18:11:09 2019 +0200
tree	91afea20f347f1542cc43542684bfd577b242f4b
parent	1801740a7c82137f637a2ad68384e22a60f826cf [diff] [blame]