Comment on locking strategy in psa_destroy_key

Signed-off-by: Ryan Everett <ryan.everett@arm.com>
2025-02-07 15:40:27 +00:00 · 2024-01-29 17:13:36 +00:00 · 2024-01-29 17:13:36 +00:00 · 763971f32e
commit 763971f32e
parent c053d968f2
1 changed files with 4 additions and 0 deletions
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c
@ -1072,6 +1072,10 @@ psa_status_t psa_destroy_key(mbedtls_svc_key_id_t key)
    }

 #if defined(MBEDTLS_THREADING_C)
+    /* We cannot unlock between setting the state to PENDING_DELETION
+     * and destroying the key in storage, as otherwise another thread
+     * could load the key into a new slot and the key will not be
+     * fully destroyed. */
    PSA_THREADING_CHK_GOTO_EXIT(mbedtls_mutex_lock(
                                    &mbedtls_threading_key_slot_mutex));
 #endif