external_rng_failure_sign: more robust buffer management Don't microoptimize memory usage in tests: use separate buffers for the input and the output. Allocate the input buffer dynamically because the size is a parameter of the test case. Allocate the output buffer dynamically because it's generally good practice in tests so that a memory sanitizer can detect a buffer overflow. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>

commit: 6beb327a5ee1642f7ad471fffa87b9f41d48febd [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Wed Jan 06 20:16:26 2021 +0100
committer: Gilles Peskine <Gilles.Peskine@arm.com> Wed Jan 06 20:16:26 2021 +0100
tree: 817ed269a07f65200a875dee651ae4ce2ff79b60
parent: 3aa5a6414e531452919855c36f10d97cc34a2ec9 [diff]
diff --git a/tests/suites/test_suite_psa_crypto_entropy.function b/tests/suites/test_suite_psa_crypto_entropy.function
index f7a398c..8c1fdab 100644
--- a/tests/suites/test_suite_psa_crypto_entropy.function
+++ b/tests/suites/test_suite_psa_crypto_entropy.function

@@ -79,18 +79,20 @@
     psa_set_key_algorithm( &attributes, alg );
     mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
     size_t input_size = input_size_arg;
-    uint8_t signature[PSA_SIGNATURE_MAX_SIZE];
+    uint8_t *input = NULL;
+    uint8_t *signature = NULL;
+    size_t signature_size = PSA_SIGNATURE_MAX_SIZE;
     size_t signature_length;
 
-    TEST_ASSERT( input_size <= sizeof( signature ) );
+    ASSERT_ALLOC( input, input_size );
+    ASSERT_ALLOC( signature, signature_size );
 
     PSA_ASSERT( psa_crypto_init( ) );
     PSA_ASSERT( psa_import_key( &attributes, key_data->x, key_data->len,
                                 &key ) );
-    memset( signature, 0, input_size );
     PSA_ASSERT( psa_sign_hash( key, alg,
-                               signature, input_size,
-                               signature, sizeof( signature ),
+                               input, input_size,
+                               signature, signature_size,
                                &signature_length ) );
     PSA_ASSERT( psa_destroy_key( key ) );
 
@@ -99,17 +101,18 @@
      * in the key object and this could perturb the test. */
     PSA_ASSERT( psa_import_key( &attributes, key_data->x, key_data->len,
                                 &key ) );
-    memset( signature, 0, input_size );
     TEST_EQUAL( PSA_ERROR_INSUFFICIENT_ENTROPY,
                 psa_sign_hash( key, alg,
-                               signature, input_size,
-                               signature, sizeof( signature ),
+                               input, input_size,
+                               signature, signature_size,
                                &signature_length ) );
     PSA_ASSERT( psa_destroy_key( key ) );
 
 exit:
     psa_destroy_key( key );
     PSA_DONE( );
+    mbedtls_free( input );
+    mbedtls_free( signature );
 }
 /* END_CASE */
commit	6beb327a5ee1642f7ad471fffa87b9f41d48febd	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Wed Jan 06 20:16:26 2021 +0100
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Wed Jan 06 20:16:26 2021 +0100
tree	817ed269a07f65200a875dee651ae4ce2ff79b60
parent	3aa5a6414e531452919855c36f10d97cc34a2ec9 [diff]