From c829816fb629377e6778b7c5503eff025694da3a Mon Sep 17 00:00:00 2001
From: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
Date: Mon, 5 Dec 2022 15:11:49 +0100
Subject: [PATCH] psa_export_public_key_internal: add missing check for FFDH
 key type

Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
---
 library/psa_crypto.c | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/library/psa_crypto.c b/library/psa_crypto.c
index 98dad9d089..c7d1b766c1 100644
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c
@@ -1457,15 +1457,16 @@ psa_status_t psa_export_public_key_internal(
         }
 #if defined(MBEDTLS_PSA_BUILTIN_KEY_TYPE_FFDH_KEY_PAIR) || \
         defined(MBEDTLS_PSA_BUILTIN_KEY_TYPE_FFDH_PUBLIC_KEY)
-        else {
+        else if (PSA_KEY_TYPE_IS_DH(type)) {
             return mbedtls_psa_export_ffdh_public_key(attributes,
                                                       key_buffer,
                                                       key_buffer_size,
                                                       data, data_size,
                                                       data_length);
+        } else {
+            return PSA_ERROR_NOT_SUPPORTED;
         }
 #else
-        /* We don't know how to convert a private FFDH key to public */
         return PSA_ERROR_NOT_SUPPORTED;
 #endif /* defined(MBEDTLS_PSA_BUILTIN_KEY_TYPE_FFDH_KEY_PAIR) ||
         * defined(MBEDTLS_PSA_BUILTIN_KEY_TYPE_FFDH_PUBLIC_KEY) */