Merge pull request #8066 from paul-elliott-arm/aes_memcpy_iv_fix Fix potential corruption of IV for AES CBC with zero length

commit: 2f4e6e748cded478764f8499f32c97e6aac51969 [log] [tgz]
author: Dave Rodgman <dave.rodgman@arm.com> Mon Aug 14 09:32:45 2023 +0100
committer: GitHub <noreply@github.com> Mon Aug 14 09:32:45 2023 +0100
tree: 17066c1ed9455c08d674ffce8a8588e903bf0e95
parent: 963513dba56991e2c741290841e2f33b9398ea52 [diff]
parent: 83c2e321d926d033510b080008707e56d63e6cce [diff]
diff --git a/ChangeLog.d/fix-aes-cbc-iv-corruption b/ChangeLog.d/fix-aes-cbc-iv-corruption
new file mode 100644
index 0000000..11eb946
--- /dev/null
+++ b/ChangeLog.d/fix-aes-cbc-iv-corruption

@@ -0,0 +1,3 @@
+Bugfix
+   * Fix a potential corruption of the passed-in IV when mbedtls_aes_crypt_cbc()
+     is called with zero length and padlock is not enabled.

diff --git a/library/aes.c b/library/aes.c
index 592ca64..b55c08a 100644
--- a/library/aes.c
+++ b/library/aes.c

@@ -1094,6 +1094,11 @@
         return MBEDTLS_ERR_AES_BAD_INPUT_DATA;
     }
 
+    /* Nothing to do if length is zero. */
+    if (length == 0) {
+        return 0;
+    }
+
     if (length % 16) {
         return MBEDTLS_ERR_AES_INVALID_INPUT_LENGTH;
     }
commit	2f4e6e748cded478764f8499f32c97e6aac51969	[log] [tgz]
author	Dave Rodgman <dave.rodgman@arm.com>	Mon Aug 14 09:32:45 2023 +0100
committer	GitHub <noreply@github.com>	Mon Aug 14 09:32:45 2023 +0100
tree	17066c1ed9455c08d674ffce8a8588e903bf0e95
parent	963513dba56991e2c741290841e2f33b9398ea52 [diff]
parent	83c2e321d926d033510b080008707e56d63e6cce [diff]