Comment on locking strategy in psa_fail_key_creation

Signed-off-by: Ryan Everett <ryan.everett@arm.com>
2024-02-14 11:36:41 +00:00 · 2024-02-14 11:36:41 +00:00 · 73feaf2682
commit 73feaf2682
parent 3d8118d9dc
1 changed files with 3 additions and 0 deletions
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c
@ -1900,6 +1900,9 @@ static void psa_fail_key_creation(psa_key_slot_t *slot,
    }

 #if defined(MBEDTLS_THREADING_C)
+    /* If the lock operation fails we still wipe the slot.
+     * Operations will no longer work after a failed lock,
+     * but we still need to wipe the slot of confidential data. */
    mbedtls_mutex_lock(&mbedtls_threading_key_slot_mutex);
 #endif