[noup] zephyr: crypto: fix coverity issue in crypto_ecdh_set_peerkey

Qingling-Wu · jukkar · commit 9d91a1da6b9c · 2025-06-16T08:16:40.000+03:00
Fix INTEGER_OVERFLOW coverity issue.
crypto_ecdh_set_peerkey:
The decrement operator on the unsigned variable len
might result in an underflow.
Check value of the unsigned variable len before decrement.

Signed-off-by: Qingling Wu &lt;qingling.wu@nxp.com&gt;
diff --git a/src/crypto/crypto_mbedtls_alt.c b/src/crypto/crypto_mbedtls_alt.c
@@ -1927,6 +1927,8 @@ struct wpabuf *crypto_ecdh_set_peerkey(struct crypto_ecdh *ecdh, int inc_y, cons
         }
         else if (key[0] == 0x02 || key[0] == 0x03)
         {          /* (inc_y == 0) */
+            if(len == 0)
+                return NULL;
             --len; /*(repurpose len to prime_len)*/
 
             /* mbedtls_ecp_point_read_binary() does not currently support

Original file line number	Diff line number	Diff line change
`@@ -1927,6 +1927,8 @@ struct wpabuf crypto_ecdh_set_peerkey(struct crypto_ecdh ecdh, int inc_y, cons`
`1927`	`1927`	`}`
`1928`	`1928`	`else if (key[0] == 0x02 \|\| key[0] == 0x03)`
`1929`	`1929`	`{ /* (inc_y == 0) */`
	`1930`	`+ if(len == 0)`
	`1931`	`+ return NULL;`
`1930`	`1932`	`--len; /(repurpose len to prime_len)/`
`1931`	`1933`
`1932`	`1934`	`/* mbedtls_ecp_point_read_binary() does not currently support`