commit df7ca5d6f53bdd6ff957e3d83c03da8484ea9aa0
author Tamas Ban <tamas.ban@arm.com> Tue Nov 05 16:49:55 2024 +0100
committer Tamas Ban <tamas.ban@arm.com> Tue Nov 05 17:19:36 2024 +0100
tree fd6cccb79d40e03e1b09515c4932e32f7af3078c
parent 3a7b4994f5c4bfbfe471c862139058e8de28a1a2

MeasuredBoot: Fix client API

The boundary check of the input params was wrong in
`tfm_measured_boot_extend_measurement()`.

Change-Id: I366c6b5d717284059a478e4bb6434b9b4f2a85ca
Signed-off-by: Tamas Ban <tamas.ban@arm.com>

partitions/measured_boot/interface/src/measured_boot_api.c

diff --git a/partitions/measured_boot/interface/src/measured_boot_api.c b/partitions/measured_boot/interface/src/measured_boot_api.c
index c35b8d1..8ef5c00 100644
--- a/partitions/measured_boot/interface/src/measured_boot_api.c
+++ b/partitions/measured_boot/interface/src/measured_boot_api.c
@@ -86,8 +86,13 @@
         .sw_type = {0},
         .sw_type_size = sw_type_size,
     };
-    if (sw_type_size > 0 && sw_type[sw_type_size - 1] == '\0') {
-        extend_iov.sw_type_size--;
+
+    if (version_size > VERSION_MAX_SIZE) {
+       return PSA_ERROR_INVALID_ARGUMENT;
+    }
+
+    if (version_size > 0 && version[version_size - 1] == '\0') {
+        version_size--;
     }
 
     psa_invec in_vec[] = {
@@ -97,14 +102,14 @@
         {.base = version, .len = version_size},
         {.base = measurement_value, .len = measurement_value_size}
     };
-    if (version_size > 0 && version[version_size - 1] == '\0') {
-        in_vec[2].len--;
-    }
 
     if (sw_type != NULL) {
         if (extend_iov.sw_type_size > SW_TYPE_MAX_SIZE) {
             return PSA_ERROR_INVALID_ARGUMENT;
         }
+        if (sw_type_size > 0 && sw_type[sw_type_size - 1] == '\0') {
+            extend_iov.sw_type_size--;
+        }
         memcpy(extend_iov.sw_type, sw_type, extend_iov.sw_type_size);
     }