psa_util: allow larger raw buffers in mbedtls_ecdsa_raw_to_der() The only real contraint on the raw buffer is that it is large enough to contain 2 coordinates. Larger buffers are therefore allowed and the extra data will simply be ignored. Note = trying to impose a strict sizing on the raw buffer causes several failures in test suites. This suggests that it is quite common to use larger buffer to store raw signatures. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>

commit: d4fc5d9d1c76a6cb978ceb4cc74ec62b111b0007 [log] [tgz]
author: Valerio Setti <valerio.setti@nordicsemi.no> Tue Feb 06 08:42:42 2024 +0100
committer: Valerio Setti <valerio.setti@nordicsemi.no> Tue Feb 06 08:42:42 2024 +0100
tree: d2d0a696ec54ce063ee8bfbeb17a5ddcccede7d6
parent: 0e60e93c12002b1aae6fb77e647b3cfdba64134e [diff] [blame]
diff --git a/library/psa_util.c b/library/psa_util.c
index 674f21b..7ce5eea 100644
--- a/library/psa_util.c
+++ b/library/psa_util.c

@@ -413,7 +413,7 @@
     unsigned char *p = der + der_size;
     int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
 
-    if ((raw_len < 2 * coordinate_len) || (raw_len > 2 * coordinate_len)) {
+    if (raw_len < 2 * coordinate_len) {
         return MBEDTLS_ERR_ASN1_INVALID_DATA;
     }
commit	d4fc5d9d1c76a6cb978ceb4cc74ec62b111b0007	[log] [tgz]
author	Valerio Setti <valerio.setti@nordicsemi.no>	Tue Feb 06 08:42:42 2024 +0100
committer	Valerio Setti <valerio.setti@nordicsemi.no>	Tue Feb 06 08:42:42 2024 +0100
tree	d2d0a696ec54ce063ee8bfbeb17a5ddcccede7d6
parent	0e60e93c12002b1aae6fb77e647b3cfdba64134e [diff] [blame]