From 11e5338736d92796960e45d7ac9227bb1d75ae57 Mon Sep 17 00:00:00 2001
From: Pol Henarejos <pol.henarejos@cttc.es>
Date: Thu, 9 Mar 2023 20:09:32 +0100
Subject: [PATCH] Check if key domain is not already initialized when
 initializing.

Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
---
 src/hsm/cmd_key_domain.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/src/hsm/cmd_key_domain.c b/src/hsm/cmd_key_domain.c
index 46d67c0..a632ac8 100644
--- a/src/hsm/cmd_key_domain.c
+++ b/src/hsm/cmd_key_domain.c
@@ -103,6 +103,9 @@ int cmd_key_domain() {
         uint8_t t[MAX_KEY_DOMAINS * 2];
         memcpy(t, kdata, tf_kd_size);
         if (p1 == 0x1) {
+            if (t[2 * p2] != 0xff && t[2 * p2 + 1] != 0xff) {
+                return SW_INCORRECT_P1P2();
+            }
             t[2 * p2] = dkeks = apdu.data[0];
             t[2 * p2 + 1] = current_dkeks = 0;
         }