nrf_security: drivers: cracen: fix AEAD w/ zero-sized input

tomi-font · nordicjm · commit 66e7711def79 · 2025-03-24T11:16:33.000Z
psa_aead_encrypt() would fail, returning PSA_ERROR_BUFFER_TOO_SMALL,
because ciphertext_length wouldn't be assigned and have a random value.

Signed-off-by: Tomi Fontanilles &lt;tomi.fontanilles@nordicsemi.no&gt;
diff --git a/subsys/nrf_security/src/drivers/cracen/cracenpsa/src/aead.c b/subsys/nrf_security/src/drivers/cracen/cracenpsa/src/aead.c
@@ -516,6 +516,7 @@ psa_status_t cracen_aead_update(cracen_aead_operation_t *operation, const uint8_
 	 * of AD buffered before creating/verifying the tag
 	 */
 	if (input_length == 0) {
+		*output_length = 0;
 		return PSA_SUCCESS;
 	}
 

Original file line number	Diff line number	Diff line change
`@@ -516,6 +516,7 @@ psa_status_t cracen_aead_update(cracen_aead_operation_t *operation, const uint8_`
`516`	`516`	`* of AD buffered before creating/verifying the tag`
`517`	`517`	`*/`
`518`	`518`	`if (input_length == 0) {`
	`519`	`+ *output_length = 0;`
`519`	`520`	`return PSA_SUCCESS;`
`520`	`521`	`}`
`521`	`522`