commit f71c060cb202dca1ac2333d502ad0a793578c8d3
author Valerio Setti <valerio.setti@nordicsemi.no> Tue Mar 19 19:35:37 2024 +0100
committer Valerio Setti <valerio.setti@nordicsemi.no> Tue Mar 19 19:35:37 2024 +0100
tree 258fc8d456a6451433a5e1d118a6556eb76c2f2a
parent aa9cc4987985088e5f3c5ae959d73cf97a107cae

test_suite_pk: properly size buffers for public keys in pk_psa_sign()

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>

tests/suites/test_suite_pk.function

diff --git a/tests/suites/test_suite_pk.function b/tests/suites/test_suite_pk.function
index f232288..f496764 100644
--- a/tests/suites/test_suite_pk.function
+++ b/tests/suites/test_suite_pk.function
@@ -1822,8 +1822,13 @@
     mbedtls_pk_context pk;
     unsigned char hash[32];
     unsigned char sig[MBEDTLS_PK_SIGNATURE_MAX_SIZE];
-    unsigned char legacy_pub_key[PSA_EXPORT_PUBLIC_KEY_MAX_SIZE];
-    unsigned char opaque_pub_key[PSA_EXPORT_PUBLIC_KEY_MAX_SIZE];
+    /* These buffers will be used to contain the key in DER format. Unfortunately
+     * when only EC is supported on the PSA side (i.e. no RSA or DH)
+     * PSA_EXPORT_PUBLIC_KEY_MAX_SIZE falls to PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(),
+     * but this is not enough to contain the DER representation of the public key.
+     * Therefore we pick the RSA size to be safe. */
+    unsigned char legacy_pub_key[RSA_WRITE_PUBKEY_MAX_SIZE];
+    unsigned char opaque_pub_key[RSA_WRITE_PUBKEY_MAX_SIZE];
     size_t sig_len, legacy_pub_key_len, opaque_pub_key_len;
     int ret;
     mbedtls_svc_key_id_t key_id = MBEDTLS_SVC_KEY_ID_INIT;