M467: Fix mbedtls_ecp_point_cmp() call with null argument

ccli8 · ccli8 · commit 1dd95465f6c1 · 2022-09-01T10:02:19.000+08:00
Guard from null argument passed to mbedtls_ecp_point_cmp() in ECC H/W port
diff --git a/connectivity/drivers/mbedtls/TARGET_NUVOTON/TARGET_M460/ecp/crypto_ecc_hw.c b/connectivity/drivers/mbedtls/TARGET_NUVOTON/TARGET_M460/ecp/crypto_ecc_hw.c
@@ -181,8 +181,13 @@ int crypto_ecc_run_eccop(const mbedtls_ecp_group *grp,
     }
 
     /* NOTE: Engine doesn't support P + Q when P and Q are the same. Workaround by 2*P */
-    if (mbedtls_ecp_point_cmp(P, Q) == 0) {
-        return crypto_ecc_run_eccop(grp, R, NULL, P, NULL, NULL, ECCOP_POINT_DOUBLE, blinding);
+    if (eccop == ECCOP_POINT_ADD) {
+        if (P == NULL || Q == NULL) {
+            return MBEDTLS_ERR_ECP_BAD_INPUT_DATA;
+        }
+        if (mbedtls_ecp_point_cmp(P, Q) == 0) {
+            return crypto_ecc_run_eccop(grp, R, NULL, P, NULL, NULL, ECCOP_POINT_DOUBLE, blinding);
+        }
     }
 
     /* Acquire ownership of ECC accelerator */

Original file line number	Diff line number	Diff line change
`@@ -181,8 +181,13 @@ int crypto_ecc_run_eccop(const mbedtls_ecp_group *grp,`
`181`	`181`	`}`
`182`	`182`
`183`	`183`	`/* NOTE: Engine doesn't support P + Q when P and Q are the same. Workaround by 2P /`
`184`		`- if (mbedtls_ecp_point_cmp(P, Q) == 0) {`
`185`		`- return crypto_ecc_run_eccop(grp, R, NULL, P, NULL, NULL, ECCOP_POINT_DOUBLE, blinding);`
	`184`	`+ if (eccop == ECCOP_POINT_ADD) {`
	`185`	`+ if (P == NULL \|\| Q == NULL) {`
	`186`	`+ return MBEDTLS_ERR_ECP_BAD_INPUT_DATA;`
	`187`	`+ }`
	`188`	`+ if (mbedtls_ecp_point_cmp(P, Q) == 0) {`
	`189`	`+ return crypto_ecc_run_eccop(grp, R, NULL, P, NULL, NULL, ECCOP_POINT_DOUBLE, blinding);`
	`190`	`+ }`
`186`	`191`	`}`
`187`	`192`
`188`	`193`	`/* Acquire ownership of ECC accelerator */`