Reject invalid key ids/lifetimes in attribute-based creation

commit: d167b94b877c9a64cb219ebc54e98580a33bb097 [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Fri Apr 19 18:19:40 2019 +0200
committer: Gilles Peskine <Gilles.Peskine@arm.com> Wed Apr 24 15:46:04 2019 +0200
tree: 37d832a1ea8742459af3a682554ed7564fde3f31
parent: 34e23d2109129e24477dbde8e02cc915904e3706 [diff] [blame]
diff --git a/library/psa_crypto.c b/library/psa_crypto.c
index a43ccaf..efec00b 100644
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c

@@ -1284,7 +1284,13 @@
         return( status );
     slot->lifetime = attributes->lifetime;
     if( attributes->lifetime != PSA_KEY_LIFETIME_VOLATILE )
+    {
+        status = psa_validate_persistent_key_parameters( attributes->lifetime,
+                                                         attributes->id );
+        if( status != PSA_SUCCESS )
+            return( status );
         slot->persistent_storage_id = attributes->id;
+    }
     slot->type = attributes->type;
 
     return( status );
commit	d167b94b877c9a64cb219ebc54e98580a33bb097	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Fri Apr 19 18:19:40 2019 +0200
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Wed Apr 24 15:46:04 2019 +0200
tree	37d832a1ea8742459af3a682554ed7564fde3f31
parent	34e23d2109129e24477dbde8e02cc915904e3706 [diff] [blame]