commit 8ea35458e4eaca5e88f3f8623a52bc99000b73a8
author Hanno Becker <hanno.becker@arm.com> Tue Aug 20 15:39:13 2019 +0100
committer Hanno Becker <hanno.becker@arm.com> Wed Sep 04 16:17:25 2019 +0100
tree 1119863f44b45bb12147ff1c8a25b1ef4069e074
parent 9c7a359cc451bb349b0ab7a145a4f9cb0fa6ab9b

Fixup: TinyCrypt PK verify wrapper uecc_ecdsa_verify_wrap()

- TinyCrypt uses `0` for errors.
- The first argument to uECC_verify() should be the public key,
  but the previous code passed the beginning of the entire
  private-public key structure.

library/pk_wrap.c

diff --git a/library/pk_wrap.c b/library/pk_wrap.c
index 42632fc..d683895 100644
--- a/library/pk_wrap.c
+++ b/library/pk_wrap.c
@@ -548,6 +548,7 @@
     uint8_t signature[2*NUM_ECC_BYTES];
     unsigned char *p;
     const struct uECC_Curve_t * uecc_curve = uECC_secp256r1();
+    const mbedtls_uecc_keypair *keypair = (const mbedtls_uecc_keypair *) ctx;
 
     ((void) md_alg);
     p = (unsigned char*) sig;
@@ -556,12 +557,12 @@
     if( ret != 0 )
         return( ret );
 
-    ret = uECC_verify( (uint8_t *) ctx, hash,
+    ret = uECC_verify( keypair->public_key, hash,
                        (unsigned) hash_len, signature, uecc_curve );
-    if( ret != 0 )
-        return( MBEDTLS_ERR_PK_SIG_LEN_MISMATCH );
+    if( ret == 0 )
+        return( MBEDTLS_ERR_PK_HW_ACCEL_FAILED );
 
-    return( ret );
+    return( 0 );
 }
 
 /*