commit c4c3d7962b5146431d745b145e04fc33722075fe
author Jamie Fox <jamie.fox@arm.com> Tue Aug 27 15:24:04 2024 +0100
committer Jamie Fox <jamie.fox@arm.com> Tue Aug 27 15:24:04 2024 +0100
tree 87e43e4a42670c39e683ecdacf4b951534dc4ded
parent f314bb9525e05fc83410787372e307c5f6e8c662

DPE: Fix null pointer dereference in debug logging

Changes log_derive_context_output to account for the fact that
new_certificate_actual_size may be NULL if return_certificate is false.

Signed-off-by: Jamie Fox <jamie.fox@arm.com>
Change-Id: Ia1022238b5d17b4559f1c5d4116409e456c69382

partitions/dice_protection_environment/dpe_context_mngr.c

diff --git a/partitions/dice_protection_environment/dpe_context_mngr.c b/partitions/dice_protection_environment/dpe_context_mngr.c
index d0121e0..16c5e3b 100644
--- a/partitions/dice_protection_environment/dpe_context_mngr.c
+++ b/partitions/dice_protection_environment/dpe_context_mngr.c
@@ -976,7 +976,7 @@
                               free_component_idx,
                               derived_ctx->linked_cert_ctx,
                               new_certificate_buf,
-                              *new_certificate_actual_size);
+                              new_certificate_actual_size);
 
     return DPE_NO_ERROR;
 

partitions/dice_protection_environment/dpe_log.c

diff --git a/partitions/dice_protection_environment/dpe_log.c b/partitions/dice_protection_environment/dpe_log.c
index bb78f6b..afbd951 100644
--- a/partitions/dice_protection_environment/dpe_log.c
+++ b/partitions/dice_protection_environment/dpe_log.c
@@ -198,7 +198,7 @@
                                int free_component_idx,
                                struct cert_context_t *cert_ctx,
                                uint8_t *new_certificate_buf,
-                               size_t new_certificate_actual_size)
+                               size_t *new_certificate_actual_size)
 {
     log_derive_context_output_handles(*new_parent_context_handle,
                                       *new_context_handle);
@@ -208,9 +208,9 @@
     if (cert_ctx != NULL) {
         log_dpe_cert_ctx_metadata(cert_ctx);
     }
-    if (new_certificate_actual_size > 0) {
+    if (new_certificate_actual_size != NULL && *new_certificate_actual_size > 0) {
         log_intermediate_certificate(new_certificate_buf,
-                                     new_certificate_actual_size);
+                                     *new_certificate_actual_size);
     }
 }
 

partitions/dice_protection_environment/dpe_log.h

diff --git a/partitions/dice_protection_environment/dpe_log.h b/partitions/dice_protection_environment/dpe_log.h
index e21aec7..68b1871 100644
--- a/partitions/dice_protection_environment/dpe_log.h
+++ b/partitions/dice_protection_environment/dpe_log.h
@@ -106,7 +106,7 @@
                                int free_component_idx,
                                struct cert_context_t *cert_ctx,
                                uint8_t *new_certificate_buf,
-                               size_t new_certificate_actual_size);
+                               size_t *new_certificate_actual_size);
 
 #else /* TFM_PARTITION_LOG_LEVEL */